$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a64633a3a2f34362d3438203d3e20323134383138.roa File: 326130623a346530373a64633a3a2f34362d3438203d3e20323134383138.roa (raw, json) Hash identifier: 5cqcpPZpUp7HGJuO6uIG+jhp+FrTI+wluWiM206lUb0= Subject key identifier: 09:FD:94:0E:E0:D9:EC:09:DA:79:95:CF:B1:91:DA:59:34:B5:BD:85 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 7CCB86303AFA4131DD75087CA993A25EEB31DC72 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a64633a3a2f34362d3438203d3e20323134383138.roa Signing time: Wed 15 Apr 2026 13:57:35 +0000 ROA not before: Wed 15 Apr 2026 13:52:35 +0000 ROA not after: Wed 14 Apr 2027 13:57:35 +0000 asID: 214818 IP address blocks: 2a0b:4e07:dc::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 04:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:cb:86:30:3a:fa:41:31:dd:75:08:7c:a9:93:a2:5e:eb:31:dc:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 15 13:52:35 2026 GMT Not After : Apr 14 13:57:35 2027 GMT Subject: CN=09FD940EE0D9EC09DA7995CFB191DA5934B5BD85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c1:c9:51:83:23:d8:c8:b9:94:f8:e5:39:a7: ff:cc:40:49:48:e2:d8:26:be:f4:84:d0:5e:1d:87: 6d:0a:bc:29:17:cc:cc:5a:5a:a7:ac:86:30:3e:03: 33:bd:cb:b0:fc:ac:17:da:5b:8f:c9:c0:de:48:6b: ef:b3:36:0f:38:90:97:63:9d:15:08:b0:32:29:36: f3:61:88:8d:73:70:85:55:5e:20:63:ab:e1:a5:e8: d9:7f:b6:40:3b:1a:d7:2e:ef:fb:74:04:46:2b:95: 25:ba:93:da:2a:ee:43:23:15:58:08:57:23:bd:99: 4e:49:15:00:2c:95:78:d7:5b:1b:a4:1e:f3:24:d9: 58:4d:60:b2:7a:f1:3c:33:18:27:16:c9:1d:e9:ca: 98:4e:3d:42:55:a0:ca:0b:16:13:40:0d:65:a2:49: 8e:57:33:0c:ac:bc:08:e0:9a:2e:21:3e:00:ce:7d: 0e:43:08:55:1d:18:80:84:f5:24:b6:4c:e6:86:9a: 18:3a:d2:bb:98:5c:31:09:94:45:42:6f:46:f2:53: 64:f1:13:cc:c1:5c:5c:9b:97:2f:fc:6c:72:91:3b: dc:33:bb:50:d5:91:23:a9:39:05:f0:04:68:fa:2c: 62:51:17:63:27:d1:45:ae:4e:85:0c:7e:87:e8:00: ef:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FD:94:0E:E0:D9:EC:09:DA:79:95:CF:B1:91:DA:59:34:B5:BD:85 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a64633a3a2f34362d3438203d3e20323134383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:dc::/46 Signature Algorithm: sha256WithRSAEncryption 1a:bf:79:ea:fe:11:d1:42:56:5b:b4:87:a9:17:98:e4:e7:6d: 8b:14:69:74:0b:01:2f:53:5f:4b:ad:e0:8f:ac:c4:a4:ba:19: 29:eb:25:0f:b1:f8:f4:03:8d:92:1e:85:4b:04:1a:95:9b:1f: 39:e9:0b:ac:72:eb:61:5d:1b:31:bd:78:6d:98:ea:2e:61:a7: 72:09:d6:70:e5:5a:f7:bd:ac:d8:71:a4:43:78:85:2e:93:80: 40:c4:d0:b2:61:72:64:52:97:06:94:41:ef:38:b2:ee:75:d5: c4:7c:42:8b:bb:2a:87:71:39:47:ed:33:01:34:e1:d1:77:c7: 36:60:dd:67:22:e8:20:53:8c:90:cd:c3:58:2c:41:0f:af:18: bb:95:72:5b:97:d1:84:4f:ed:78:a0:3a:1f:b1:26:3b:4d:01: c7:52:a1:28:33:fd:b3:2f:42:9c:a1:a3:22:2e:27:50:a3:18: d6:cb:d0:b3:e7:74:6c:25:b8:73:dd:67:ed:ff:7e:7b:78:bc: d6:77:03:1b:98:53:8a:b4:d4:a9:ab:fd:96:68:e6:a4:a1:c5: eb:9e:7a:8a:37:56:99:bc:88:60:4b:16:0a:8f:a0:d8:f8:9c: 3b:c3:6c:4f:4a:bb:f8:f2:a3:e1:83:fa:8a:b7:9a:1e:9a:93: dd:9d:02:66 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUfMuGMDr6QTHddQh8qZOiXusx3HIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MTUxMzUyMzVaFw0yNzA0MTQxMzU3MzVaMDMxMTAvBgNV BAMTKDA5RkQ5NDBFRTBEOUVDMDlEQTc5OTVDRkIxOTFEQTU5MzRCNUJEODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8wclRgyPYyLmU+OU5p//MQElI 4tgmvvSE0F4dh20KvCkXzMxaWqeshjA+AzO9y7D8rBfaW4/JwN5Ia++zNg84kJdj nRUIsDIpNvNhiI1zcIVVXiBjq+Gl6Nl/tkA7Gtcu7/t0BEYrlSW6k9oq7kMjFVgI VyO9mU5JFQAslXjXWxukHvMk2VhNYLJ68TwzGCcWyR3pyphOPUJVoMoLFhNADWWi SY5XMwysvAjgmi4hPgDOfQ5DCFUdGICE9SS2TOaGmhg60ruYXDEJlEVCb0byU2Tx E8zBXFybly/8bHKRO9wzu1DVkSOpOQXwBGj6LGJRF2Mn0UWuToUMfofoAO8tAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUCf2UDuDZ7AnaeZXPsZHaWTS1vYUwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTY0NjMzYTNhMmYzNDM2 MmQzNDM4MjAzZDNlMjAzMjMxMzQzODMxMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwIqC04HANwwDQYJ KoZIhvcNAQELBQADggEBABq/eer+EdFCVlu0h6kXmOTnbYsUaXQLAS9TX0ut4I+s xKS6GSnrJQ+x+PQDjZIehUsEGpWbHznpC6xy62FdGzG9eG2Y6i5hp3IJ1nDlWve9 rNhxpEN4hS6TgEDE0LJhcmRSlwaUQe84su511cR8Qou7KodxOUftMwE04dF3xzZg 3Wci6CBTjJDNw1gsQQ+vGLuVcluX0YRP7XigOh+xJjtNAcdSoSgz/bMvQpyhoyIu J1CjGNbL0LPndGwluHPdZ+3/fnt4vNZ3AxuYU4q01Kmr/ZZo5qShxeueeoo3Vpm8 iGBLFgqPoNj4nDvDbE9Ku/jyo+GD+oq3mh6ak92dAmY= -----END CERTIFICATE-----Generated at Fri Apr 17 20:24:50 2026 by rpki-client