$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS216091.roa File: AS216091.roa (raw, json) Hash identifier: eTebNhCmoTefp0Pzy7W3jYTt8wnq2Bn5VS14gaN0ZSo= Subject key identifier: 88:45:DC:8F:05:3E:B4:BC:64:1D:D7:D8:D1:AF:58:B1:2D:88:DB:AF Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 3EE06AB1F9F04E052773B2842A64BC1CDAEEAEFD Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS216091.roa Signing time: Tue 28 Apr 2026 13:22:46 +0000 ROA not before: Tue 28 Apr 2026 13:17:46 +0000 ROA not after: Tue 27 Apr 2027 13:22:46 +0000 asID: 216091 IP address blocks: 2a0b:4e07:43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e0:6a:b1:f9:f0:4e:05:27:73:b2:84:2a:64:bc:1c:da:ee:ae:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:46 2026 GMT Not After : Apr 27 13:22:46 2027 GMT Subject: CN=8845DC8F053EB4BC641DD7D8D1AF58B12D88DBAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:85:e9:28:cd:7e:74:1b:81:f7:c9:5f:39:a9: 09:e6:5d:32:c1:e7:ee:4e:6d:b2:84:26:b1:8d:ee: 6e:71:bc:00:03:60:c1:49:e0:11:74:a2:d7:a1:ef: 89:c5:c6:96:4d:7f:8f:de:d4:81:b0:43:a8:9c:1f: 80:5e:83:f5:d2:3f:b2:cb:f0:d4:12:c0:ac:63:23: 16:2e:99:85:c5:ae:19:89:f0:6e:53:5d:d1:96:43: de:4f:9c:7f:1a:3a:da:e0:df:e9:92:16:2f:80:cb: da:75:73:6f:af:72:d0:50:05:74:0c:73:e5:91:bc: b4:5c:8c:dc:87:0e:6a:fa:0b:7a:38:eb:b3:21:e3: b9:f8:bb:3a:5a:9a:09:11:78:73:4a:3c:0c:cd:1e: de:a0:2e:38:11:99:a2:d1:5f:11:15:d4:cc:8d:aa: 24:37:1f:f3:cb:1c:f6:7b:2d:8d:04:db:cc:44:86: 5c:6a:d6:0c:8d:cb:5d:80:1a:2b:b1:bb:27:de:bd: b6:97:c3:c9:00:83:49:87:95:e4:02:83:a1:17:13: a6:cc:3f:03:ac:b0:96:93:3a:71:26:95:4c:e7:0e: 73:a9:dd:01:09:08:f8:37:fb:f0:97:23:de:73:5f: 95:2a:fc:c5:05:fa:2a:ec:63:da:42:34:83:b1:bf: ea:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:45:DC:8F:05:3E:B4:BC:64:1D:D7:D8:D1:AF:58:B1:2D:88:DB:AF X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS216091.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:43::/48 Signature Algorithm: sha256WithRSAEncryption 3c:02:8e:d3:b3:0d:ae:16:12:84:50:8e:b2:e5:ac:ee:2a:dd: a4:03:6e:27:0a:d1:72:ff:3d:da:fb:d5:5b:34:2f:19:82:11: ad:d0:dc:fb:75:8a:34:c6:ff:18:e8:aa:67:89:dd:12:6b:06: e8:71:a3:67:d7:d4:81:27:8a:e5:6b:3d:0f:b4:ba:17:aa:4b: 8d:68:42:2f:50:80:70:62:a1:44:d8:47:77:ea:7c:81:b0:7c: 53:c6:79:23:ba:e7:02:56:15:eb:87:8d:27:1e:c5:c6:56:48: e6:ab:90:2f:46:6c:bd:ad:d7:cf:e5:13:de:04:c3:b1:60:03: 3e:9f:0a:1a:96:f9:c9:50:6a:24:e8:20:81:9f:f2:97:85:0d: 89:5a:01:70:e9:0f:69:c8:f6:12:c0:4d:6d:36:df:88:6c:d4: d6:83:75:9d:53:59:e0:dd:09:5e:70:c2:c3:bd:b5:b6:f4:6e: da:59:70:e5:08:c2:a1:e2:72:be:46:75:36:c9:a2:96:0e:a4: d1:3d:ba:63:91:5f:a1:c5:48:45:9f:c8:fe:40:1a:69:e2:70: b5:f3:7d:35:6f:62:d0:82:dd:e8:e5:56:58:9f:21:b6:c3:f6: 96:fe:81:d7:77:d2:b6:ed:8f:65:01:e7:51:39:08:ed:6d:7f: 25:d2:a1:93 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPuBqsfnwTgUnc7KEKmS8HNrurv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDZaFw0yNzA0MjcxMzIyNDZaMDMxMTAvBgNV BAMTKDg4NDVEQzhGMDUzRUI0QkM2NDFERDdEOEQxQUY1OEIxMkQ4OERCQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzhekozX50G4H3yV85qQnmXTLB 5+5ObbKEJrGN7m5xvAADYMFJ4BF0oteh74nFxpZNf4/e1IGwQ6icH4Beg/XSP7LL 8NQSwKxjIxYumYXFrhmJ8G5TXdGWQ95PnH8aOtrg3+mSFi+Ay9p1c2+vctBQBXQM c+WRvLRcjNyHDmr6C3o467Mh47n4uzpamgkReHNKPAzNHt6gLjgRmaLRXxEV1MyN qiQ3H/PLHPZ7LY0E28xEhlxq1gyNy12AGiuxuyfevbaXw8kAg0mHleQCg6EXE6bM PwOssJaTOnEmlUznDnOp3QEJCPg3+/CXI95zX5Uq/MUF+irsY9pCNIOxv+pxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUiEXcjwU+tLxkHdfY0a9YsS2I268wHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTYwOTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAEMwDQYJKoZIhvcNAQEL BQADggEBADwCjtOzDa4WEoRQjrLlrO4q3aQDbicK0XL/Pdr71Vs0LxmCEa3Q3Pt1 ijTG/xjoqmeJ3RJrBuhxo2fX1IEniuVrPQ+0uheqS41oQi9QgHBioUTYR3fqfIGw fFPGeSO65wJWFeuHjScexcZWSOarkC9GbL2t18/lE94Ew7FgAz6fChqW+clQaiTo IIGf8peFDYlaAXDpD2nI9hLATW0234hs1NaDdZ1TWeDdCV5wwsO9tbb0btpZcOUI wqHicr5GdTbJopYOpNE9umORX6HFSEWfyP5AGmnicLXzfTVvYtCC3ejlVlifIbbD 9pb+gdd30rbtj2UB51E5CO1tfyXSoZM= -----END CERTIFICATE-----Generated at Wed May 13 06:38:32 2026 by rpki-client