$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS211708.roa File: AS211708.roa (raw, json) Hash identifier: 9pa+YtDnALDj9YE43cQz8cvTtcojKd0y5XnZBmqRpaA= Subject key identifier: BF:AE:49:41:6A:1D:EF:B9:C4:57:8B:4E:22:8E:5D:39:47:BA:76:AC Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 3B0E7061EEFD9F6F62F445A8DFED3AA1C7D21F92 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS211708.roa Signing time: Tue 28 Apr 2026 13:22:48 +0000 ROA not before: Tue 28 Apr 2026 13:17:48 +0000 ROA not after: Tue 27 Apr 2027 13:22:48 +0000 asID: 211708 IP address blocks: 2a0b:4e07:60::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:0e:70:61:ee:fd:9f:6f:62:f4:45:a8:df:ed:3a:a1:c7:d2:1f:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:48 2026 GMT Not After : Apr 27 13:22:48 2027 GMT Subject: CN=BFAE49416A1DEFB9C4578B4E228E5D3947BA76AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b4:75:83:ec:1e:5f:2a:23:90:c4:38:bd:f1: 39:89:07:fb:34:56:2d:94:8b:77:29:af:a5:a7:23: be:50:da:48:20:41:59:bc:64:ce:b6:a4:b5:63:cd: 2b:19:06:48:46:11:49:8f:45:e6:89:4f:a9:7b:f6: 88:89:15:fa:a2:c5:1d:62:f8:16:5f:39:1e:51:87: 88:7c:ec:98:14:30:36:bb:d7:5a:ea:82:b3:5a:34: 15:70:5b:2b:90:eb:3f:22:c8:31:e9:df:52:cf:d1: 76:83:71:27:54:82:60:e9:6c:2d:67:f7:34:1c:a1: f7:b7:66:40:84:55:e1:b8:71:1d:a6:f6:5d:77:8d: df:00:3d:98:9b:db:25:a5:5c:0d:33:dd:69:bf:6b: 2e:1f:56:91:a1:5b:2b:23:81:3a:e5:7e:cb:45:5f: 42:49:50:22:6b:d6:37:3e:ed:90:d0:73:b6:f4:5b: d1:7c:c9:b3:ff:89:d7:28:7e:e9:60:78:c9:7a:fc: 2a:fc:ec:30:ee:0e:d5:7a:4b:7e:f5:6e:95:20:66: 91:f8:20:24:6b:8d:bc:2d:ae:63:bd:70:55:2a:95: db:be:5a:80:88:58:8f:26:62:b7:13:b0:68:66:7e: d9:f6:3b:e6:7d:97:63:d8:49:bc:26:6c:57:d5:4e: 0a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:AE:49:41:6A:1D:EF:B9:C4:57:8B:4E:22:8E:5D:39:47:BA:76:AC X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS211708.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:60::/44 Signature Algorithm: sha256WithRSAEncryption 1a:a4:6c:10:d3:41:2d:a1:31:7e:08:21:e6:61:3d:71:f4:9f: 7f:59:c8:7a:6b:4a:38:a0:1a:ee:b7:39:29:49:b4:4b:05:44: 15:5d:e7:f7:82:96:f1:f9:71:21:26:8a:90:9c:52:9c:a9:ad: b3:1c:dd:5e:65:e0:c8:8f:40:78:7e:d4:05:5d:67:67:04:a0: f6:86:83:a5:c0:5b:53:3f:63:31:2e:c9:c3:79:2d:9c:13:46: d4:e8:63:cc:6f:1c:44:44:73:93:ae:19:f7:c7:b6:6a:15:ad: 1f:01:f2:21:94:ab:96:d1:4b:c0:66:c3:b9:93:e9:e4:a5:a2: 60:ed:a0:c0:ca:dc:15:6d:f2:7c:b7:31:8d:d6:0e:0d:25:1c: 1b:e7:72:83:5d:25:99:e0:24:7a:41:87:c5:64:a4:80:7e:b4: 15:4c:d9:d0:3b:72:04:04:d7:f0:ef:1d:f2:3d:92:6b:21:2e: aa:1c:93:9c:e7:0f:43:e9:36:a5:52:b9:86:76:a9:e0:d0:0e: 3b:21:f5:e3:a2:f0:36:f2:fe:9f:1d:a5:39:5d:25:a2:42:88: 1d:e4:d6:69:49:62:17:77:55:2d:46:4f:d5:26:51:fe:23:81: 45:7c:ac:12:cb:9d:2c:12:44:c6:ac:bd:e2:a0:5f:80:b4:4c: 7c:7c:40:9a -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUOw5wYe79n29i9EWo3+06ocfSH5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDhaFw0yNzA0MjcxMzIyNDhaMDMxMTAvBgNV BAMTKEJGQUU0OTQxNkExREVGQjlDNDU3OEI0RTIyOEU1RDM5NDdCQTc2QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgtHWD7B5fKiOQxDi98TmJB/s0 Vi2Ui3cpr6WnI75Q2kggQVm8ZM62pLVjzSsZBkhGEUmPReaJT6l79oiJFfqixR1i +BZfOR5Rh4h87JgUMDa711rqgrNaNBVwWyuQ6z8iyDHp31LP0XaDcSdUgmDpbC1n 9zQcofe3ZkCEVeG4cR2m9l13jd8APZib2yWlXA0z3Wm/ay4fVpGhWysjgTrlfstF X0JJUCJr1jc+7ZDQc7b0W9F8ybP/idcofulgeMl6/Cr87DDuDtV6S371bpUgZpH4 ICRrjbwtrmO9cFUqldu+WoCIWI8mYrcTsGhmftn2O+Z9l2PYSbwmbFfVTgofAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUv65JQWod77nEV4tOIo5dOUe6dqwwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTE3MDgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqC04HAGAwDQYJKoZIhvcNAQEL BQADggEBABqkbBDTQS2hMX4IIeZhPXH0n39ZyHprSjigGu63OSlJtEsFRBVd5/eC lvH5cSEmipCcUpyprbMc3V5l4MiPQHh+1AVdZ2cEoPaGg6XAW1M/YzEuycN5LZwT RtToY8xvHEREc5OuGffHtmoVrR8B8iGUq5bRS8Bmw7mT6eSlomDtoMDK3BVt8ny3 MY3WDg0lHBvncoNdJZngJHpBh8VkpIB+tBVM2dA7cgQE1/DvHfI9kmshLqock5zn D0PpNqVSuYZ2qeDQDjsh9eOi8Dby/p8dpTldJaJCiB3k1mlJYhd3VS1GT9UmUf4j gUV8rBLLnSwSRMasveKgX4C0THx8QJo= -----END CERTIFICATE-----Generated at Wed May 13 06:04:57 2026 by rpki-client