$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS202358.roa File: AS202358.roa (raw, json) Hash identifier: sHy4M6bnECFiPSds46IKLvwIjOWfA4OYat0Q97lWcSU= Subject key identifier: 6D:F4:F2:EC:2F:4C:2F:B4:96:55:6D:C9:3D:90:B5:3C:BB:AB:19:A2 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 5F4FC559D7130D2F741741756139821CB0A4814A Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS202358.roa Signing time: Tue 28 Apr 2026 13:22:48 +0000 ROA not before: Tue 28 Apr 2026 13:17:48 +0000 ROA not after: Tue 27 Apr 2027 13:22:48 +0000 asID: 202358 IP address blocks: 2a0b:4e07:48::/46 maxlen: 48 2a0b:4e07:6400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4f:c5:59:d7:13:0d:2f:74:17:41:75:61:39:82:1c:b0:a4:81:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:48 2026 GMT Not After : Apr 27 13:22:48 2027 GMT Subject: CN=6DF4F2EC2F4C2FB496556DC93D90B53CBBAB19A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:04:97:e7:37:cf:83:07:37:e7:11:d6:58:ca: f0:65:24:1b:8f:15:91:58:17:24:46:f3:f3:1f:7c: 13:11:d3:8e:21:ef:6b:27:f7:b4:7c:86:5d:12:8a: 14:60:85:83:e1:5e:98:07:bc:70:75:dd:87:67:c1: f0:ef:e8:ad:38:c4:5d:c8:8e:74:b9:23:32:27:b8: a3:f4:8c:57:d3:2d:ce:76:f9:1d:53:e2:95:b9:56: f0:14:c0:9e:87:09:ea:2c:1b:4c:34:be:49:d1:68: 83:62:7d:7f:33:1e:f9:00:01:69:13:60:10:de:6a: 38:58:a9:02:d1:2c:5a:63:c9:29:2e:65:d5:52:65: f8:f1:b1:1e:ea:7f:d0:be:14:d6:eb:9b:08:5c:d1: 42:49:1b:f5:7b:ef:94:a5:da:52:38:aa:a3:55:52: 10:c1:53:75:e0:db:7f:cb:3b:9a:e5:be:85:82:0f: b5:3b:2c:55:8a:5c:79:dc:08:d3:23:6d:70:be:65: 7e:18:4a:52:ce:79:c6:59:e0:46:e8:ea:2b:d4:36: e7:a2:2a:7e:00:e5:f6:a1:c0:11:64:74:22:cb:04: aa:17:75:94:55:c7:de:f2:f5:8c:a1:49:bc:5e:ae: 5d:6f:48:68:83:66:27:d6:e6:cc:d6:a8:7d:f0:17: a7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F4:F2:EC:2F:4C:2F:B4:96:55:6D:C9:3D:90:B5:3C:BB:AB:19:A2 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS202358.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:48::/46 2a0b:4e07:6400::/38 Signature Algorithm: sha256WithRSAEncryption 41:24:e5:82:cf:be:d7:51:ca:e5:ad:ee:5c:59:e9:dd:88:e6: db:e1:8a:09:53:a7:58:d5:d8:53:e5:30:be:8c:9f:c7:91:07: 2f:1f:b3:1e:26:63:ac:3a:10:fc:dc:84:58:f8:d8:a0:1f:6d: 0a:40:90:97:da:4a:22:fe:70:8a:62:1b:bd:2f:f7:5b:64:7b: a6:f5:de:56:38:97:74:4e:44:44:a8:ef:dc:6e:56:2e:5d:8a: 34:d6:c0:23:66:cb:ba:d8:3e:65:dc:c4:67:aa:44:6e:d8:e7: 46:6b:36:4d:a5:17:6b:9e:04:a6:23:30:0b:ad:2d:a7:79:e0: 95:20:46:78:29:04:82:1c:d6:78:af:38:a7:96:3f:5c:ed:6e: b7:5f:6e:d4:5b:01:5e:8d:45:bf:e4:df:a5:1f:84:25:18:ef: cf:12:49:ce:36:4e:0c:99:7b:7a:36:49:11:15:37:ff:0d:0d: c5:93:9b:a0:fd:f1:45:a9:93:6b:40:9e:8d:81:34:a7:4f:35: 1e:9a:9d:cd:ae:6d:05:a3:74:8a:3b:2e:2c:e1:9f:24:5e:94: fc:e7:57:1f:00:7c:4c:2d:8c:ad:78:48:64:77:10:63:74:3a: 57:2e:44:44:85:15:39:d4:a2:26:31:21:4f:27:78:db:70:93: d5:84:84:57 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUX0/FWdcTDS90F0F1YTmCHLCkgUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDhaFw0yNzA0MjcxMzIyNDhaMDMxMTAvBgNV BAMTKDZERjRGMkVDMkY0QzJGQjQ5NjU1NkRDOTNEOTBCNTNDQkJBQjE5QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKBJfnN8+DBzfnEdZYyvBlJBuP FZFYFyRG8/MffBMR044h72sn97R8hl0SihRghYPhXpgHvHB13YdnwfDv6K04xF3I jnS5IzInuKP0jFfTLc52+R1T4pW5VvAUwJ6HCeosG0w0vknRaINifX8zHvkAAWkT YBDeajhYqQLRLFpjySkuZdVSZfjxsR7qf9C+FNbrmwhc0UJJG/V775Sl2lI4qqNV UhDBU3Xg23/LO5rlvoWCD7U7LFWKXHncCNMjbXC+ZX4YSlLOecZZ4Ebo6ivUNuei Kn4A5fahwBFkdCLLBKoXdZRVx97y9YyhSbxerl1vSGiDZifW5szWqH3wF6chAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUbfTy7C9ML7SWVW3JPZC1PLurGaIwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMDIzNTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw KgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBwIqC04HAEgDBgIqC04HZDANBgkq hkiG9w0BAQsFAAOCAQEAQSTlgs++11HK5a3uXFnp3Yjm2+GKCVOnWNXYU+Uwvoyf x5EHLx+zHiZjrDoQ/NyEWPjYoB9tCkCQl9pKIv5wimIbvS/3W2R7pvXeVjiXdE5E RKjv3G5WLl2KNNbAI2bLutg+ZdzEZ6pEbtjnRms2TaUXa54EpiMwC60tp3nglSBG eCkEghzWeK84p5Y/XO1ut19u1FsBXo1Fv+TfpR+EJRjvzxJJzjZODJl7ejZJERU3 /w0NxZOboP3xRamTa0CejYE0p081Hpqdza5tBaN0ijsuLOGfJF6U/OdXHwB8TC2M rXhIZHcQY3Q6Vy5ERIUVOdSiJjEhTyd423CT1YSEVw== -----END CERTIFICATE-----Generated at Tue May 12 21:53:55 2026 by rpki-client