$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS215191.roa File: AS215191.roa (raw, json) Hash identifier: 20pwlaPq2gxjJU8hX5FCRcD8KlHCPWDduX4h2gHKDtM= Subject key identifier: 85:6B:95:25:5B:A3:D0:B6:CA:A3:64:D2:E5:1D:D0:E2:27:ED:4E:43 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 718D82A99A53F16D04CF05258C6C910BDA7ED494 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS215191.roa Signing time: Tue 28 Apr 2026 13:22:46 +0000 ROA not before: Tue 28 Apr 2026 13:17:46 +0000 ROA not after: Tue 27 Apr 2027 13:22:46 +0000 asID: 215191 IP address blocks: 2a0b:4e07:ffc::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8d:82:a9:9a:53:f1:6d:04:cf:05:25:8c:6c:91:0b:da:7e:d4:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:46 2026 GMT Not After : Apr 27 13:22:46 2027 GMT Subject: CN=856B95255BA3D0B6CAA364D2E51DD0E227ED4E43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ea:1f:c7:a5:03:3b:0b:b2:5d:cc:84:1b:fd: 55:ba:2e:e1:ac:f7:4f:60:96:98:b0:ea:ea:03:af: b7:15:b1:c9:ba:9c:1a:09:e2:09:cb:75:0b:6e:a9: 2c:7a:d6:57:64:4f:11:7a:cd:8c:af:74:da:c0:42: 1a:c4:60:52:19:25:e9:24:f9:76:96:d4:20:bc:96: ad:21:54:95:80:e6:95:e0:58:fe:d8:54:f6:d7:7b: dc:10:49:c5:d5:49:a8:0a:87:9c:69:64:98:68:79: bf:ff:a0:42:69:4e:29:c5:9d:33:3b:ca:5e:a0:40: 71:49:07:c8:3f:0e:cd:1c:f6:b9:4e:fb:f5:b4:f3: ef:a9:82:1e:85:78:36:eb:7b:ca:9d:17:91:d4:24: c2:e3:eb:70:fd:11:33:de:a6:1f:e3:6d:13:14:3e: 74:0a:2f:e9:f1:c2:c9:77:46:7c:39:89:73:86:09: 28:98:73:b0:93:81:ea:ed:f0:88:3e:15:01:60:f6: d8:39:57:49:da:fc:03:d8:ef:92:e0:2c:d8:69:bd: ca:66:c0:67:40:a3:d9:1f:6c:6e:cf:36:58:02:fd: b9:9d:16:b6:7d:b7:f2:05:d5:0e:5b:5d:ae:37:21: eb:db:eb:27:a5:e2:4b:87:5f:8b:5d:b5:77:31:23: 16:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:6B:95:25:5B:A3:D0:B6:CA:A3:64:D2:E5:1D:D0:E2:27:ED:4E:43 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS215191.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:ffc::/46 Signature Algorithm: sha256WithRSAEncryption 43:29:42:ee:81:48:f9:33:a1:2b:19:34:fe:f0:05:e5:71:a3: 95:87:4e:bf:20:5c:c7:90:24:8e:3b:24:a1:70:57:2e:3b:4a: a6:d3:b0:a6:4f:54:a7:5e:d6:04:b3:9a:59:b5:98:dd:16:9a: 2b:77:36:9c:34:9f:44:94:ca:1f:2b:ef:5c:7f:1f:94:d8:1b: cc:17:04:f9:31:12:da:4d:53:07:0c:e0:b7:0b:6a:2b:ee:82: cd:44:66:a6:6f:8b:8f:c6:40:aa:4b:78:7b:82:e8:d6:ee:5a: c1:75:90:0f:54:e6:22:2f:5d:f1:e5:0a:b5:05:d9:4e:fa:66: 45:9b:54:15:53:c7:e4:12:48:80:b4:30:30:e7:1e:66:76:64: 68:3a:2a:28:11:27:a7:3b:ed:9c:d2:fb:8a:79:0b:32:7f:9b: bb:ef:da:9a:1a:43:f7:03:f2:cd:69:24:4e:58:e3:ed:0f:b9: ce:d3:01:18:95:20:b9:e3:c1:be:68:be:76:86:07:22:33:38: f4:03:df:0e:ab:c7:aa:2f:14:56:43:48:42:a6:06:f0:b8:1a: 65:69:26:e9:32:3a:a9:69:be:1e:d1:0f:80:ad:63:04:56:a2: 13:e1:0d:84:d9:35:27:fc:e6:1b:05:37:b0:16:64:93:90:61: 32:57:73:f2 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUcY2CqZpT8W0EzwUljGyRC9p+1JQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDZaFw0yNzA0MjcxMzIyNDZaMDMxMTAvBgNV BAMTKDg1NkI5NTI1NUJBM0QwQjZDQUEzNjREMkU1MUREMEUyMjdFRDRFNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI6h/HpQM7C7JdzIQb/VW6LuGs 909glpiw6uoDr7cVscm6nBoJ4gnLdQtuqSx61ldkTxF6zYyvdNrAQhrEYFIZJekk +XaW1CC8lq0hVJWA5pXgWP7YVPbXe9wQScXVSagKh5xpZJhoeb//oEJpTinFnTM7 yl6gQHFJB8g/Ds0c9rlO+/W08++pgh6FeDbre8qdF5HUJMLj63D9ETPeph/jbRMU PnQKL+nxwsl3Rnw5iXOGCSiYc7CTgert8Ig+FQFg9tg5V0na/APY75LgLNhpvcpm wGdAo9kfbG7PNlgC/bmdFrZ9t/IF1Q5bXa43Ievb6yel4kuHX4tdtXcxIxZJAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUhWuVJVuj0LbKo2TS5R3Q4iftTkMwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTUxOTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwIqC04HD/wwDQYJKoZIhvcNAQEL BQADggEBAEMpQu6BSPkzoSsZNP7wBeVxo5WHTr8gXMeQJI47JKFwVy47SqbTsKZP VKde1gSzmlm1mN0Wmit3Npw0n0SUyh8r71x/H5TYG8wXBPkxEtpNUwcM4LcLaivu gs1EZqZvi4/GQKpLeHuC6NbuWsF1kA9U5iIvXfHlCrUF2U76ZkWbVBVTx+QSSIC0 MDDnHmZ2ZGg6KigRJ6c77ZzS+4p5CzJ/m7vv2poaQ/cD8s1pJE5Y4+0Puc7TARiV ILnjwb5ovnaGByIzOPQD3w6rx6ovFFZDSEKmBvC4GmVpJukyOqlpvh7RD4CtYwRW ohPhDYTZNSf85hsFN7AWZJOQYTJXc/I= -----END CERTIFICATE-----Generated at Wed May 13 06:15:31 2026 by rpki-client