$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS201823.roa File: AS201823.roa (raw, json) Hash identifier: nrfFRTtHDPpX3nsgamMSz1P5E7PnVvgO1ye2SycL23Q= Subject key identifier: 0E:6C:96:9B:4F:E6:B9:E6:E9:6A:36:FD:AF:E4:5E:15:C6:1A:05:1F Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 3DEDAA96AF22C88F8796273275F1890196F5B7F7 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS201823.roa Signing time: Tue 28 Apr 2026 13:22:50 +0000 ROA not before: Tue 28 Apr 2026 13:17:50 +0000 ROA not after: Tue 27 Apr 2027 13:22:50 +0000 asID: 201823 IP address blocks: 2a0b:4e07:bf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ed:aa:96:af:22:c8:8f:87:96:27:32:75:f1:89:01:96:f5:b7:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:50 2026 GMT Not After : Apr 27 13:22:50 2027 GMT Subject: CN=0E6C969B4FE6B9E6E96A36FDAFE45E15C61A051F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2d:96:9d:ed:c7:d7:6f:19:16:30:15:15:8e: 4f:16:46:b6:87:85:d2:4f:86:4c:73:f5:8f:55:7b: 8f:80:b3:e6:17:c1:00:02:48:ab:77:b4:e1:53:fa: dd:44:45:d8:f6:08:2b:29:27:9c:42:61:77:1b:71: 28:f8:69:a3:65:7c:c6:e0:e0:ba:e9:12:62:09:19: 8c:4a:fb:f5:6e:b0:31:a0:50:33:ee:3e:44:bc:1f: 60:de:54:31:71:b0:62:0b:3f:24:87:f8:ef:c5:d2: 92:97:33:41:d0:1f:fd:4b:49:b3:02:23:80:15:1d: 8e:cc:43:25:70:b2:8b:eb:85:32:70:77:9c:bc:fe: 90:db:5f:6c:a4:24:3b:48:21:29:7a:18:e3:c0:77: 1f:90:98:c4:f5:a4:c3:c8:1a:97:c9:53:0e:0f:62: 67:03:f8:73:ba:c8:27:e7:0b:a3:0d:ca:ae:48:94: 9f:13:93:4f:fd:bb:5b:80:a6:af:52:0c:5a:97:1b: 4d:a6:a0:b2:63:a1:34:f3:ee:0b:9b:12:67:62:b8: bb:8c:62:e8:4d:71:ca:62:16:05:db:3d:8e:f2:b4: 2c:1d:ef:e7:d3:e1:e5:7c:76:a2:59:a8:86:da:2c: 18:f3:05:20:a5:26:6e:68:e4:21:e1:33:06:a2:34: 6e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6C:96:9B:4F:E6:B9:E6:E9:6A:36:FD:AF:E4:5E:15:C6:1A:05:1F X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS201823.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:bf::/48 Signature Algorithm: sha256WithRSAEncryption 10:e6:bf:ad:f8:3a:8f:bf:d7:35:b5:41:e6:80:56:5b:9d:7c: 63:b0:92:5b:81:34:c7:16:4e:fd:2b:44:61:15:70:f1:d3:19: 36:12:ab:83:8f:d2:da:5b:03:14:82:fc:d5:d0:8e:fd:60:7c: f8:d9:f5:28:ef:28:40:07:ef:a3:1f:13:10:55:d3:61:51:c3: 21:0c:1f:29:39:c3:8f:db:0b:df:5f:91:3c:3e:22:a6:2a:5f: 45:83:e8:68:43:2f:54:0d:ba:82:86:12:7b:8f:fc:b2:1b:46: 2a:76:90:6b:09:ec:d6:19:1c:33:b8:f9:e5:98:29:5f:f5:07: e9:ba:cb:99:1e:9b:e5:44:de:c1:1c:5d:6e:21:65:1b:22:ae: 5d:b9:eb:f6:19:b3:c3:2e:d4:f3:fa:90:cc:32:5f:44:8d:1d: 28:80:3b:6c:30:74:f7:18:85:7e:b5:e9:6b:c6:66:2e:49:63: 6c:a4:02:24:9b:0b:d3:37:45:5f:77:65:12:d8:54:79:6d:9a: b1:47:d4:72:14:11:60:3b:af:af:88:83:c4:25:62:6a:75:57: d5:1f:75:a8:9b:a9:b9:82:31:e8:1c:c7:6b:b5:86:d0:0d:b4: 5d:4a:0d:f5:72:0e:07:62:dd:0c:21:58:c5:79:02:97:c0:38: 08:69:8b:81 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPe2qlq8iyI+HlicydfGJAZb1t/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NTBaFw0yNzA0MjcxMzIyNTBaMDMxMTAvBgNV BAMTKDBFNkM5NjlCNEZFNkI5RTZFOTZBMzZGREFGRTQ1RTE1QzYxQTA1MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTLZad7cfXbxkWMBUVjk8WRraH hdJPhkxz9Y9Ve4+As+YXwQACSKt3tOFT+t1ERdj2CCspJ5xCYXcbcSj4aaNlfMbg 4LrpEmIJGYxK+/VusDGgUDPuPkS8H2DeVDFxsGILPySH+O/F0pKXM0HQH/1LSbMC I4AVHY7MQyVwsovrhTJwd5y8/pDbX2ykJDtIISl6GOPAdx+QmMT1pMPIGpfJUw4P YmcD+HO6yCfnC6MNyq5IlJ8Tk0/9u1uApq9SDFqXG02moLJjoTTz7gubEmdiuLuM YuhNccpiFgXbPY7ytCwd7+fT4eV8dqJZqIbaLBjzBSClJm5o5CHhMwaiNG5DAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUDmyWm0/muebpajb9r+ReFcYaBR8wHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMDE4MjMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAL8wDQYJKoZIhvcNAQEL BQADggEBABDmv634Oo+/1zW1QeaAVludfGOwkluBNMcWTv0rRGEVcPHTGTYSq4OP 0tpbAxSC/NXQjv1gfPjZ9SjvKEAH76MfExBV02FRwyEMHyk5w4/bC99fkTw+IqYq X0WD6GhDL1QNuoKGEnuP/LIbRip2kGsJ7NYZHDO4+eWYKV/1B+m6y5kem+VE3sEc XW4hZRsirl256/YZs8Mu1PP6kMwyX0SNHSiAO2wwdPcYhX616WvGZi5JY2ykAiSb C9M3RV93ZRLYVHltmrFH1HIUEWA7r6+Ig8QlYmp1V9UfdaibqbmCMegcx2u1htAN tF1KDfVyDgdi3QwhWMV5ApfAOAhpi4E= -----END CERTIFICATE-----Generated at Wed May 13 06:38:33 2026 by rpki-client