$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62363a3a2f34372d3438203d3e20323133363631.roa File: 326130623a346530373a62363a3a2f34372d3438203d3e20323133363631.roa (raw, json) Hash identifier: Uz8ED3xB4NJUuHKN2WS2Hc6/1qQDO1ZJ03BKILfqMzc= Subject key identifier: 92:5C:0B:23:69:8A:C9:E3:71:65:BA:1A:A5:AD:3E:A0:A5:7B:E1:78 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 3A69DCE7F0F0B703FEC65044FC683774B00122CC Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62363a3a2f34372d3438203d3e20323133363631.roa Signing time: Wed 25 Feb 2026 12:57:33 +0000 ROA not before: Wed 25 Feb 2026 12:52:33 +0000 ROA not after: Wed 24 Feb 2027 12:57:33 +0000 asID: 213661 IP address blocks: 2a0b:4e07:b6::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 23:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:69:dc:e7:f0:f0:b7:03:fe:c6:50:44:fc:68:37:74:b0:01:22:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Feb 25 12:52:33 2026 GMT Not After : Feb 24 12:57:33 2027 GMT Subject: CN=925C0B23698AC9E37165BA1AA5AD3EA0A57BE178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:41:ae:45:83:bd:1f:e2:0b:46:8e:7f:cc:6e: 13:64:2e:44:a3:33:2b:e4:62:4f:42:2f:95:d9:83: e9:9a:9f:11:45:8b:26:0e:78:26:3a:14:26:4c:a1: f9:77:fa:c7:0c:0e:00:57:1a:69:e0:5c:5b:f4:9a: 5d:d7:43:13:14:1b:e2:30:2a:3c:98:2f:77:38:05: bd:b4:8f:ce:92:ed:aa:a6:28:7a:f2:8a:62:ed:07: 00:20:39:05:2a:69:68:01:46:7d:9a:4c:41:29:2b: 43:82:00:2b:8d:eb:6c:32:12:f5:e0:8c:6a:05:89: 65:ed:bc:0f:db:32:ce:f5:ef:24:b7:56:29:c2:1b: bc:cf:53:0e:db:13:6c:81:7e:da:1e:02:4a:cd:d2: cb:78:b3:c9:46:94:6e:ad:dd:2f:82:e0:be:01:c1: f3:46:e9:f0:db:9f:8e:be:c3:3d:1e:0a:8f:e9:63: 45:31:13:26:90:15:5a:4b:ee:37:9f:cb:e1:ef:d4: ac:87:5d:d5:c9:69:71:85:e3:36:6b:58:bf:d8:3a: 7a:08:cc:bc:98:aa:c3:d2:72:7d:b3:82:b8:5a:7a: dc:49:4a:24:45:14:c5:fc:fd:2a:e5:6d:a8:81:42: df:67:a6:50:32:21:0b:96:bf:8b:7b:5f:d2:56:0b: 0f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:5C:0B:23:69:8A:C9:E3:71:65:BA:1A:A5:AD:3E:A0:A5:7B:E1:78 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62363a3a2f34372d3438203d3e20323133363631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:b6::/47 Signature Algorithm: sha256WithRSAEncryption 2a:24:b2:8f:c9:6a:f7:ef:9d:4d:f4:69:29:f7:bb:2e:7e:ea: 7f:7a:bd:b0:ee:76:5a:4e:d0:19:a5:3b:1e:ea:96:3f:2d:f5: a1:5a:2a:e1:7d:fa:f9:19:23:a9:cd:74:92:c9:31:37:c7:95: 52:93:bb:8e:41:8d:e6:62:ec:bb:c4:ff:81:48:6f:8f:15:2b: 07:89:38:30:32:54:02:44:d1:76:d7:ea:ef:67:ca:4d:05:5b: 1a:83:02:c1:88:cc:6c:e8:70:97:89:2e:9b:a3:ed:78:0c:8d: 57:4d:e2:d4:22:89:fe:dc:a3:c9:3f:23:0b:7c:54:3e:de:43: 8f:c3:a7:5e:30:20:bb:c2:af:76:fc:4f:db:34:23:2a:e2:2f: af:2c:a0:7c:ee:60:da:ca:d4:dd:32:53:79:4a:05:8b:bd:30: 3d:b1:de:51:d3:8d:47:8b:c9:29:60:c5:76:7d:c1:e1:f8:7b: 21:69:39:b3:10:6c:7f:70:3b:a1:ea:e5:57:4c:22:da:a0:19: 05:2b:9e:a2:68:af:ec:f2:42:79:2e:3a:67:3c:d0:be:a8:b6: 0f:c5:a4:96:21:7d:af:d9:94:79:e1:d9:0c:fa:4e:34:6e:a7: 90:ca:a2:82:0c:50:3a:cf:eb:10:ce:7e:a0:db:22:bd:1a:8f: 8c:a8:72:34 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUOmnc5/DwtwP+xlBE/Gg3dLABIswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjAyMjUxMjUyMzNaFw0yNzAyMjQxMjU3MzNaMDMxMTAvBgNV BAMTKDkyNUMwQjIzNjk4QUM5RTM3MTY1QkExQUE1QUQzRUEwQTU3QkUxNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Qa5Fg70f4gtGjn/MbhNkLkSj MyvkYk9CL5XZg+manxFFiyYOeCY6FCZMofl3+scMDgBXGmngXFv0ml3XQxMUG+Iw KjyYL3c4Bb20j86S7aqmKHryimLtBwAgOQUqaWgBRn2aTEEpK0OCACuN62wyEvXg jGoFiWXtvA/bMs717yS3VinCG7zPUw7bE2yBftoeAkrN0st4s8lGlG6t3S+C4L4B wfNG6fDbn46+wz0eCo/pY0UxEyaQFVpL7jefy+Hv1KyHXdXJaXGF4zZrWL/YOnoI zLyYqsPScn2zgrhaetxJSiRFFMX8/SrlbaiBQt9nplAyIQuWv4t7X9JWCw+7AgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUklwLI2mKyeNxZboapa0+oKV74XgwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYyMzYzYTNhMmYzNDM3 MmQzNDM4MjAzZDNlMjAzMjMxMzMzNjM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEqC04HALYwDQYJ KoZIhvcNAQELBQADggEBACokso/JavfvnU30aSn3uy5+6n96vbDudlpO0BmlOx7q lj8t9aFaKuF9+vkZI6nNdJLJMTfHlVKTu45BjeZi7LvE/4FIb48VKweJODAyVAJE 0XbX6u9nyk0FWxqDAsGIzGzocJeJLpuj7XgMjVdN4tQiif7co8k/Iwt8VD7eQ4/D p14wILvCr3b8T9s0IyriL68soHzuYNrK1N0yU3lKBYu9MD2x3lHTjUeLySlgxXZ9 weH4eyFpObMQbH9wO6Hq5VdMItqgGQUrnqJor+zyQnkuOmc80L6otg/FpJYhfa/Z lHnh2Qz6TjRup5DKooIMUDrP6xDOfqDbIr0aj4yocjQ= -----END CERTIFICATE-----Generated at Mon Mar 2 11:51:53 2026 by rpki-client