$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS205941.roa File: AS205941.roa (raw, json) Hash identifier: uBFE2Y6mbruZSO9E/KG3LGE0POJZpGLifI/6u3By3NY= Subject key identifier: FE:68:18:D8:AE:27:27:18:1E:7B:1F:D6:7A:97:4D:94:D9:13:C8:B5 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 439A6B0458D385B823C01E0898FFA13023ADC41C Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS205941.roa Signing time: Tue 28 Apr 2026 13:22:50 +0000 ROA not before: Tue 28 Apr 2026 13:17:50 +0000 ROA not after: Tue 27 Apr 2027 13:22:50 +0000 asID: 205941 IP address blocks: 2a0b:4e07:2f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:9a:6b:04:58:d3:85:b8:23:c0:1e:08:98:ff:a1:30:23:ad:c4:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:50 2026 GMT Not After : Apr 27 13:22:50 2027 GMT Subject: CN=FE6818D8AE2727181E7B1FD67A974D94D913C8B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4d:b2:06:d2:25:ab:bf:05:b7:5e:ef:dc:d3: 77:79:c0:1c:04:ee:99:9d:17:39:fc:ac:85:4d:ed: 8a:7f:8e:d2:40:57:a0:67:6c:c1:65:d7:a9:81:9f: b7:86:02:cf:76:c0:b5:8f:a8:d1:d2:a5:a5:d6:b2: 12:e5:2c:22:c2:87:78:83:2f:72:53:6a:55:ac:c2: 3d:0d:4b:20:aa:e6:fc:2e:33:84:5c:ee:c1:d1:d0: c6:84:8a:8e:13:c1:48:3a:49:3b:ea:b5:52:a3:7e: 11:84:8a:2d:ff:9a:ea:90:39:b1:1c:eb:41:85:cc: 22:16:97:6b:79:10:cf:15:a5:4b:70:9f:32:d4:89: 0b:f6:c9:e0:dd:10:ae:99:11:2b:63:88:56:a6:cd: 20:90:48:f1:d5:dc:00:66:68:b9:9e:54:bd:56:d3: d3:9e:49:3e:64:54:08:c3:9e:9e:66:08:41:b3:38: 13:cc:6d:96:6a:72:ae:c2:86:12:7a:c3:7c:80:64: b3:a9:ee:5c:1a:e1:ae:d1:a4:e7:eb:73:cb:cf:02: 35:dc:12:b7:f5:55:74:e0:d9:ef:7a:77:c1:cf:b9: ee:a1:6e:8e:ab:dd:ab:11:76:85:d5:e5:03:7e:bd: d5:19:1a:70:f8:74:cc:60:d1:92:1d:8e:ee:90:a9: 97:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:68:18:D8:AE:27:27:18:1E:7B:1F:D6:7A:97:4D:94:D9:13:C8:B5 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS205941.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2f::/48 Signature Algorithm: sha256WithRSAEncryption 3d:3f:d9:ed:d8:08:15:58:f8:30:d8:be:ab:f3:9f:18:d6:1e: b2:d5:70:83:5f:ae:59:72:b6:3e:38:77:0b:47:7b:fa:b7:4f: 0d:e1:8f:03:78:8b:35:50:0e:1c:9f:e5:7c:3c:33:64:d2:d7: 0a:b3:73:1c:01:08:2d:c3:88:16:55:62:d9:8b:0f:aa:94:e7: 1f:1b:10:71:fe:71:ce:4b:47:68:ca:d6:4e:8e:74:16:ff:88: 1d:a0:f1:ba:9c:88:f4:a5:7b:d8:30:6d:4e:7c:ac:e2:3b:7c: 7d:64:24:e5:81:fc:55:1d:cb:e2:36:9e:d3:b0:b0:60:90:16: 4b:85:66:d7:b9:d0:8e:08:94:a0:de:4b:52:81:6e:bd:44:95: d4:65:78:08:51:7b:b9:6b:28:66:32:da:95:93:bc:aa:6d:12: b3:9e:8d:31:b7:ee:70:65:22:2d:d6:98:1b:18:f0:25:4c:0f: 70:ed:0e:b6:10:b7:64:8b:6d:d3:91:2a:d7:79:3d:a4:f4:42: a4:6f:86:f4:53:59:81:83:d6:f3:cb:f9:12:30:54:2c:2c:8e: 94:25:e8:db:aa:ff:ef:31:2e:85:aa:e0:77:35:b7:95:28:86: 85:70:d1:57:04:8b:83:4e:db:2e:e7:f7:03:06:f0:72:33:1a: 57:6a:8d:54 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQ5prBFjThbgjwB4ImP+hMCOtxBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NTBaFw0yNzA0MjcxMzIyNTBaMDMxMTAvBgNV BAMTKEZFNjgxOEQ4QUUyNzI3MTgxRTdCMUZENjdBOTc0RDk0RDkxM0M4QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvTbIG0iWrvwW3Xu/c03d5wBwE 7pmdFzn8rIVN7Yp/jtJAV6BnbMFl16mBn7eGAs92wLWPqNHSpaXWshLlLCLCh3iD L3JTalWswj0NSyCq5vwuM4Rc7sHR0MaEio4TwUg6STvqtVKjfhGEii3/muqQObEc 60GFzCIWl2t5EM8VpUtwnzLUiQv2yeDdEK6ZEStjiFamzSCQSPHV3ABmaLmeVL1W 09OeST5kVAjDnp5mCEGzOBPMbZZqcq7ChhJ6w3yAZLOp7lwa4a7RpOfrc8vPAjXc Erf1VXTg2e96d8HPue6hbo6r3asRdoXV5QN+vdUZGnD4dMxg0ZIdju6QqZf7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQU/mgY2K4nJxgeex/WepdNlNkTyLUwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMDU5NDEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAC8wDQYJKoZIhvcNAQEL BQADggEBAD0/2e3YCBVY+DDYvqvznxjWHrLVcINfrllytj44dwtHe/q3Tw3hjwN4 izVQDhyf5Xw8M2TS1wqzcxwBCC3DiBZVYtmLD6qU5x8bEHH+cc5LR2jK1k6OdBb/ iB2g8bqciPSle9gwbU58rOI7fH1kJOWB/FUdy+I2ntOwsGCQFkuFZte50I4IlKDe S1KBbr1EldRleAhRe7lrKGYy2pWTvKptErOejTG37nBlIi3WmBsY8CVMD3DtDrYQ t2SLbdORKtd5PaT0QqRvhvRTWYGD1vPL+RIwVCwsjpQl6Nuq/+8xLoWq4Hc1t5Uo hoVw0VcEi4NO2y7n9wMG8HIzGldqjVQ= -----END CERTIFICATE-----Generated at Tue May 12 21:53:58 2026 by rpki-client