$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS197658.roa File: AS197658.roa (raw, json) Hash identifier: o/+snR6oXa92rgTu1LOVSHraU5we+wpooFOa+ha1EIs= Subject key identifier: 06:C0:2F:EA:8F:24:95:6E:7E:85:91:C5:E6:AA:F1:FA:3D:53:31:40 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 21A0B78AADC578DFFE0554C813CD8983719FF3F8 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS197658.roa Signing time: Tue 12 May 2026 16:18:09 +0000 ROA not before: Tue 12 May 2026 16:13:09 +0000 ROA not after: Tue 11 May 2027 16:18:09 +0000 asID: 197658 IP address blocks: 2a0b:4e07:e3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:a0:b7:8a:ad:c5:78:df:fe:05:54:c8:13:cd:89:83:71:9f:f3:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: May 12 16:13:09 2026 GMT Not After : May 11 16:18:09 2027 GMT Subject: CN=06C02FEA8F24956E7E8591C5E6AAF1FA3D533140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:94:41:3c:ba:d8:c5:c5:71:2d:85:44:01:2f: ea:be:3b:7a:cc:93:80:8f:dc:31:fb:ed:99:8d:ae: fa:17:73:13:fd:c9:6a:c3:5a:27:4c:6f:eb:06:57: 59:0e:d2:36:61:de:b6:89:5d:16:1c:98:73:75:ef: e8:de:40:50:67:c5:b9:25:46:c2:63:64:89:46:12: f0:87:c9:63:10:2b:a3:81:ce:8c:0c:cd:7a:e8:5a: ea:69:af:d2:06:af:68:42:09:16:c9:eb:51:ba:b8: e3:33:00:93:08:7d:c1:f6:fc:bf:a5:6e:f1:2f:75: a2:5c:2c:cd:d1:2c:8b:bb:88:c7:41:0f:1e:95:6b: 4a:69:d7:6c:ed:21:9f:de:2b:ea:01:57:22:bd:0b: ae:a5:19:4f:74:03:96:25:14:4e:cc:01:5b:a1:c6: c6:5d:10:0a:73:68:a2:32:ee:fa:0a:d6:42:cf:4c: 81:e1:df:d2:3d:d4:f4:9a:0c:3d:3e:51:69:64:5d: d9:43:6e:16:08:e9:f8:f7:c0:19:ab:3d:57:10:e7: eb:11:f1:77:20:7a:b0:69:0c:c8:61:5f:c4:e5:40: e5:8d:8a:95:61:b1:10:8d:76:52:2f:af:1f:a2:eb: 12:95:6e:cb:94:8a:7b:93:db:34:67:bd:fd:a8:e8: 0c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C0:2F:EA:8F:24:95:6E:7E:85:91:C5:E6:AA:F1:FA:3D:53:31:40 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS197658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:e3::/48 Signature Algorithm: sha256WithRSAEncryption 27:82:ca:99:32:5e:aa:4f:e3:26:27:fa:a6:35:1f:ad:5f:5b: 4f:40:4d:d9:7c:3b:6e:21:d2:c3:97:18:b0:01:a7:52:cf:9c: d4:68:86:a4:a5:1e:d1:c6:b4:9e:2d:86:bf:ac:48:55:9d:e8: dc:fd:7c:89:5d:56:de:e6:05:70:e2:13:28:5e:8d:54:4f:4d: e5:a2:3f:30:5b:b7:7c:23:77:61:aa:4a:a8:6a:e4:2c:0a:72: dc:b4:6f:8c:14:36:0e:10:50:af:05:12:dd:46:48:1d:cb:5e: 44:98:99:0c:5b:7e:3f:b9:4d:56:4d:fe:36:1c:56:44:42:25: 58:40:39:62:e2:69:89:9e:74:d2:dc:59:33:f2:4a:a1:cb:0d: 2e:bd:e9:24:d5:58:82:66:d3:a4:d9:0a:52:e3:be:41:49:a4: e3:d3:61:53:b0:2f:e7:97:fa:34:61:db:7b:95:37:07:9f:57: ef:21:45:75:43:d4:23:c8:bf:f2:fe:d3:fa:56:02:48:90:8b: 21:b7:1b:f8:05:a5:89:e7:c9:64:2c:54:41:80:55:7f:56:8a: 26:c7:cd:97:74:48:cb:5c:ea:5f:ef:27:0b:15:62:8b:53:6a: f9:81:c6:78:ac:56:77:78:81:b5:e4:c4:41:75:2c:ae:35:fe: 4a:99:85:1b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUIaC3iq3FeN/+BVTIE82Jg3Gf8/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA1MTIxNjEzMDlaFw0yNzA1MTExNjE4MDlaMDMxMTAvBgNV BAMTKDA2QzAyRkVBOEYyNDk1NkU3RTg1OTFDNUU2QUFGMUZBM0Q1MzMxNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCglEE8utjFxXEthUQBL+q+O3rM k4CP3DH77ZmNrvoXcxP9yWrDWidMb+sGV1kO0jZh3raJXRYcmHN17+jeQFBnxbkl RsJjZIlGEvCHyWMQK6OBzowMzXroWuppr9IGr2hCCRbJ61G6uOMzAJMIfcH2/L+l bvEvdaJcLM3RLIu7iMdBDx6Va0pp12ztIZ/eK+oBVyK9C66lGU90A5YlFE7MAVuh xsZdEApzaKIy7voK1kLPTIHh39I91PSaDD0+UWlkXdlDbhYI6fj3wBmrPVcQ5+sR 8XcgerBpDMhhX8TlQOWNipVhsRCNdlIvrx+i6xKVbsuUinuT2zRnvf2o6AyLAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUBsAv6o8klW5+hZHF5qrx+j1TMUAwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMxOTc2NTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAOMwDQYJKoZIhvcNAQEL BQADggEBACeCypkyXqpP4yYn+qY1H61fW09ATdl8O24h0sOXGLABp1LPnNRohqSl HtHGtJ4thr+sSFWd6Nz9fIldVt7mBXDiEyhejVRPTeWiPzBbt3wjd2GqSqhq5CwK cty0b4wUNg4QUK8FEt1GSB3LXkSYmQxbfj+5TVZN/jYcVkRCJVhAOWLiaYmedNLc WTPySqHLDS696STVWIJm06TZClLjvkFJpOPTYVOwL+eX+jRh23uVNwefV+8hRXVD 1CPIv/L+0/pWAkiQiyG3G/gFpYnnyWQsVEGAVX9WiibHzZd0SMtc6l/vJwsVYotT avmBxnisVnd4gbXkxEF1LK41/kqZhRs= -----END CERTIFICATE-----Generated at Wed May 13 06:38:31 2026 by rpki-client