$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS201124.roa File: AS201124.roa (raw, json) Hash identifier: d7M4kpap7bCs4sAtCS0PcW9DPQWOWeEf5JC/09o6r5I= Subject key identifier: 8B:03:8B:54:80:52:BE:24:50:10:E5:FB:5F:4F:E4:B1:B4:59:45:EE Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 78241C8EA953B722158EEF0D14F78AD6FDCFFA79 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS201124.roa Signing time: Tue 28 Apr 2026 13:22:46 +0000 ROA not before: Tue 28 Apr 2026 13:17:46 +0000 ROA not after: Tue 27 Apr 2027 13:22:46 +0000 asID: 201124 IP address blocks: 2a0b:4e07:2b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:24:1c:8e:a9:53:b7:22:15:8e:ef:0d:14:f7:8a:d6:fd:cf:fa:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:46 2026 GMT Not After : Apr 27 13:22:46 2027 GMT Subject: CN=8B038B548052BE245010E5FB5F4FE4B1B45945EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f5:9d:6d:83:4e:0b:6a:5b:5f:91:54:cc:fc: 42:23:bb:c8:3c:08:88:b4:32:e0:43:45:ee:c2:4d: 09:97:7a:8a:c8:d1:d2:80:4a:b3:d6:01:df:bc:39: 39:dd:90:8c:2a:89:8b:d3:e1:16:1d:dc:ed:2f:c8: 8c:e9:09:33:be:8a:1e:0e:db:40:fe:5f:5b:cb:85: 0d:7f:fa:73:ca:34:93:01:45:c1:84:16:e8:e7:70: 23:0c:99:3b:82:f7:ec:11:83:27:8a:15:86:03:44: 13:00:ca:bd:17:13:20:ef:1a:f0:3e:d6:58:17:06: 18:04:1c:90:b5:d3:7a:49:d0:28:ac:28:22:b5:6c: fd:8b:fb:99:e7:50:7c:b5:b9:b5:6f:dc:68:eb:ed: 7e:36:b6:79:7c:59:21:23:7f:a0:6e:1b:8f:41:26: d6:17:2d:68:52:be:09:8f:ab:ce:aa:8c:46:70:1d: 57:69:53:ba:38:69:ac:c5:a5:28:e8:fb:90:19:38: 2f:36:5e:47:05:d5:f8:13:ef:10:94:0d:7e:58:7f: cd:77:24:d7:b8:57:f0:09:84:70:12:1c:8f:90:f2: 05:27:9d:c1:04:65:f2:0a:a4:7c:cc:9b:bf:88:5e: 6b:16:3c:5f:56:ce:87:14:7d:c3:df:12:81:4f:00: 29:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:03:8B:54:80:52:BE:24:50:10:E5:FB:5F:4F:E4:B1:B4:59:45:EE X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS201124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2b::/48 Signature Algorithm: sha256WithRSAEncryption 7b:33:2e:af:7f:51:81:a1:a5:f5:d6:7c:f8:30:f1:60:a3:34: dc:34:7d:30:2e:0e:12:ad:eb:fd:0c:34:30:2e:6b:65:c6:75: 0e:ff:86:ba:56:83:5c:69:a0:c3:53:9a:10:05:62:5b:f3:c7: 19:c3:6b:20:f8:e1:d5:e2:ef:36:c9:fc:f3:b1:77:17:d0:50: fc:82:f2:14:61:cc:e7:ab:95:00:87:31:2b:26:d9:b9:81:7f: b3:fd:b2:d7:fa:99:73:04:87:71:f5:67:77:e8:b1:38:63:8e: 36:6f:4f:81:e0:b9:d7:c3:c1:e6:34:58:01:a9:bc:5c:cd:0f: c6:4e:a9:dd:8c:a0:b3:ec:9f:b3:05:7d:ae:7f:6b:26:d7:1d: 89:70:dd:cd:b5:56:9d:d0:02:b1:5c:03:e8:4e:82:71:94:2c: e3:fc:be:08:8e:e1:61:ab:3b:0f:11:b8:2c:ed:c1:58:42:ad: 93:43:14:6b:17:e5:db:13:5c:aa:a8:fd:98:19:14:64:e8:be: 71:86:a7:25:aa:25:5f:c6:78:23:72:45:3f:a4:25:f8:ba:d2: 92:2c:3a:a9:ae:32:e9:09:e2:24:23:df:82:2c:a0:e4:da:6a: 05:ae:d3:a0:c4:b2:fe:81:e5:ad:61:ea:4f:bf:9b:7a:c5:9a: 5c:db:b4:7f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUeCQcjqlTtyIVju8NFPeK1v3P+nkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDZaFw0yNzA0MjcxMzIyNDZaMDMxMTAvBgNV BAMTKDhCMDM4QjU0ODA1MkJFMjQ1MDEwRTVGQjVGNEZFNEIxQjQ1OTQ1RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh9Z1tg04LaltfkVTM/EIju8g8 CIi0MuBDRe7CTQmXeorI0dKASrPWAd+8OTndkIwqiYvT4RYd3O0vyIzpCTO+ih4O 20D+X1vLhQ1/+nPKNJMBRcGEFujncCMMmTuC9+wRgyeKFYYDRBMAyr0XEyDvGvA+ 1lgXBhgEHJC103pJ0CisKCK1bP2L+5nnUHy1ubVv3Gjr7X42tnl8WSEjf6BuG49B JtYXLWhSvgmPq86qjEZwHVdpU7o4aazFpSjo+5AZOC82XkcF1fgT7xCUDX5Yf813 JNe4V/AJhHASHI+Q8gUnncEEZfIKpHzMm7+IXmsWPF9WzocUfcPfEoFPAClzAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUiwOLVIBSviRQEOX7X0/ksbRZRe4wHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMDExMjQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HACswDQYJKoZIhvcNAQEL BQADggEBAHszLq9/UYGhpfXWfPgw8WCjNNw0fTAuDhKt6/0MNDAua2XGdQ7/hrpW g1xpoMNTmhAFYlvzxxnDayD44dXi7zbJ/POxdxfQUPyC8hRhzOerlQCHMSsm2bmB f7P9stf6mXMEh3H1Z3fosThjjjZvT4HgudfDweY0WAGpvFzND8ZOqd2MoLPsn7MF fa5/aybXHYlw3c21Vp3QArFcA+hOgnGULOP8vgiO4WGrOw8RuCztwVhCrZNDFGsX 5dsTXKqo/ZgZFGTovnGGpyWqJV/GeCNyRT+kJfi60pIsOqmuMukJ4iQj34IsoOTa agWu06DEsv6B5a1h6k+/m3rFmlzbtH8= -----END CERTIFICATE-----Generated at Wed May 13 06:38:33 2026 by rpki-client