$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS215760.roa File: AS215760.roa (raw, json) Hash identifier: 91BfisvPQ+gc2xqX6U43UEkZl2MHz2loIrMLLsaM1LY= Subject key identifier: 3E:A2:D0:DB:CC:0B:29:A5:04:87:F8:72:15:89:34:EE:FD:2E:E9:C0 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 76CCBE1D4DD58E4808E60D699F8FD2758EA873CD Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS215760.roa Signing time: Tue 28 Apr 2026 13:22:46 +0000 ROA not before: Tue 28 Apr 2026 13:17:46 +0000 ROA not after: Tue 27 Apr 2027 13:22:46 +0000 asID: 215760 IP address blocks: 2a0b:4e07:20::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:cc:be:1d:4d:d5:8e:48:08:e6:0d:69:9f:8f:d2:75:8e:a8:73:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:46 2026 GMT Not After : Apr 27 13:22:46 2027 GMT Subject: CN=3EA2D0DBCC0B29A50487F872158934EEFD2EE9C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9d:10:59:03:8b:c0:5e:b3:99:24:61:83:18: 59:39:50:e5:43:2d:12:d2:32:63:8c:8e:28:42:8a: 45:13:02:65:25:64:c5:88:a4:d5:60:3f:e9:da:1b: f6:d8:13:1a:92:40:cc:42:58:22:46:bd:6a:e2:ce: cb:bf:02:bf:8a:ca:4d:40:eb:34:f1:53:86:75:51: da:8d:69:d6:06:1f:f2:98:09:87:28:2d:96:21:9d: 4e:e0:b5:2e:82:3a:02:85:c7:dd:0b:71:5d:a8:ae: 48:d7:d7:39:dd:b3:21:37:e2:e1:2a:f4:b2:e9:21: 4e:27:f4:53:49:37:0f:2d:28:4c:3d:93:1c:73:85: a6:39:90:af:3a:e3:42:e1:6c:6e:12:ca:c9:5d:96: 97:c5:29:96:de:a8:09:c6:3e:57:72:47:64:42:4e: e3:3f:ce:10:91:9b:f0:01:41:b4:1b:53:f6:8a:c1: 74:1d:91:b9:eb:7f:23:df:d5:3f:6f:13:95:fa:75: ea:f0:ab:56:f4:81:6f:e0:a9:be:af:58:1c:90:3c: 1b:67:48:7e:98:de:3d:59:8e:88:ef:90:83:be:5e: f4:f0:de:4d:a4:a3:cb:11:07:52:39:d0:8d:c3:ac: 6e:06:77:29:38:46:05:93:fe:94:48:e2:94:18:c0: 0a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:A2:D0:DB:CC:0B:29:A5:04:87:F8:72:15:89:34:EE:FD:2E:E9:C0 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS215760.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:20::/46 Signature Algorithm: sha256WithRSAEncryption 1e:6b:bf:70:89:91:13:bb:f2:d0:03:7f:5e:66:dc:2c:df:41: 6c:95:e9:cd:90:e2:68:af:ea:30:4d:ee:9a:be:50:00:ad:8a: 47:31:04:60:ad:db:5d:01:f4:ab:b7:3a:9b:76:9c:c8:d5:d3: 10:5c:94:36:93:74:7d:3e:f4:cf:9e:9f:2a:aa:02:dc:7e:fc: f6:db:40:02:64:e3:d3:eb:49:c3:09:4d:f6:d6:ac:c3:24:93: 95:2d:ca:14:7a:63:97:17:4d:3e:bc:d2:9e:56:57:ad:71:b3: 31:f4:1b:96:fc:76:5a:7b:24:82:ce:73:58:c5:8d:e1:c8:6b: ca:0c:57:5a:c7:5e:df:67:87:33:ab:53:2b:d5:b7:10:46:00: 6f:36:53:7d:eb:97:33:19:e6:ea:25:12:f2:a0:72:ae:cc:b2: 07:04:6d:b8:a1:d7:f5:04:b9:8e:a3:fa:bc:82:3d:43:7e:0c: 67:8f:b1:90:a1:72:38:93:85:a0:7e:76:82:d1:58:6c:6a:67: 52:ab:30:f7:b9:5c:a1:b7:e2:ff:7b:a0:64:2d:83:f0:4c:c9: f2:45:c2:63:78:f5:12:c5:23:f3:d5:5a:cc:cd:3a:de:60:27: bc:8d:04:6c:7c:9a:16:0a:8f:75:ea:79:84:d8:b0:86:23:01: 0b:b8:e8:94 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUdsy+HU3VjkgI5g1pn4/SdY6oc80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDZaFw0yNzA0MjcxMzIyNDZaMDMxMTAvBgNV BAMTKDNFQTJEMERCQ0MwQjI5QTUwNDg3Rjg3MjE1ODkzNEVFRkQyRUU5QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxnRBZA4vAXrOZJGGDGFk5UOVD LRLSMmOMjihCikUTAmUlZMWIpNVgP+naG/bYExqSQMxCWCJGvWrizsu/Ar+Kyk1A 6zTxU4Z1UdqNadYGH/KYCYcoLZYhnU7gtS6COgKFx90LcV2orkjX1zndsyE34uEq 9LLpIU4n9FNJNw8tKEw9kxxzhaY5kK8640LhbG4SysldlpfFKZbeqAnGPldyR2RC TuM/zhCRm/ABQbQbU/aKwXQdkbnrfyPf1T9vE5X6derwq1b0gW/gqb6vWByQPBtn SH6Y3j1ZjojvkIO+XvTw3k2ko8sRB1I50I3DrG4Gdyk4RgWT/pRI4pQYwArNAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUPqLQ28wLKaUEh/hyFYk07v0u6cAwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTU3NjAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwIqC04HACAwDQYJKoZIhvcNAQEL BQADggEBAB5rv3CJkRO78tADf15m3CzfQWyV6c2Q4miv6jBN7pq+UACtikcxBGCt 210B9Ku3Opt2nMjV0xBclDaTdH0+9M+enyqqAtx+/PbbQAJk49PrScMJTfbWrMMk k5UtyhR6Y5cXTT680p5WV61xszH0G5b8dlp7JILOc1jFjeHIa8oMV1rHXt9nhzOr UyvVtxBGAG82U33rlzMZ5uolEvKgcq7MsgcEbbih1/UEuY6j+ryCPUN+DGePsZCh cjiThaB+doLRWGxqZ1KrMPe5XKG34v97oGQtg/BMyfJFwmN49RLFI/PVWszNOt5g J7yNBGx8mhYKj3XqeYTYsIYjAQu46JQ= -----END CERTIFICATE-----Generated at Tue May 12 21:54:01 2026 by rpki-client