$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63323a3a2f34382d3438203d3e20333939363436.roa File: 326130623a346530373a63323a3a2f34382d3438203d3e20333939363436.roa (raw, json) Hash identifier: N4c9Ig1WMbXG0eL3Io6tkCngeFL3fAVc4mSucRcCmOA= Subject key identifier: 17:A9:6B:13:F8:6B:E5:66:3D:9B:D1:89:A7:10:FA:0E:F1:0C:34:BC Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 097C571F3FBE34262DA4F8ECE06B4D0E3555B89A Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63323a3a2f34382d3438203d3e20333939363436.roa Signing time: Fri 06 Mar 2026 15:12:06 +0000 ROA not before: Fri 06 Mar 2026 15:07:06 +0000 ROA not after: Fri 05 Mar 2027 15:12:06 +0000 asID: 399646 IP address blocks: 2a0b:4e07:c2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Mar 2026 16:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7c:57:1f:3f:be:34:26:2d:a4:f8:ec:e0:6b:4d:0e:35:55:b8:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Mar 6 15:07:06 2026 GMT Not After : Mar 5 15:12:06 2027 GMT Subject: CN=17A96B13F86BE5663D9BD189A710FA0EF10C34BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b4:e5:2a:a3:2d:08:ae:30:cf:e3:fc:05:3f: 1d:26:c0:5b:2d:ca:2b:bd:80:1f:5a:84:d6:e9:62: 7d:76:30:ab:39:30:84:07:1e:95:33:7d:08:e1:35: 4f:77:25:96:cb:ee:3a:fa:c3:82:f7:a9:85:42:42: 1e:cb:a0:ef:ec:7c:96:43:fb:96:b7:4c:81:0c:ec: a5:f2:46:cb:3e:90:f7:d6:11:09:8a:d3:1c:7f:ca: db:5e:14:60:97:25:c3:51:54:fa:0b:ad:e5:b7:32: 24:33:82:4c:53:e2:35:5b:f8:94:bd:53:e3:aa:b7: 51:39:bb:b2:d1:33:7c:c4:d6:eb:b8:cd:72:65:44: ed:7a:dd:78:c0:73:87:10:ea:47:33:55:2b:4d:8f: 45:50:83:60:54:df:0d:50:00:6c:8d:70:3d:2a:3a: fd:2e:e7:98:ab:a7:87:8e:93:7f:98:ec:9d:97:1b: e5:6e:4e:08:0e:1d:0d:83:04:83:8e:e0:3f:a3:9f: 74:95:f4:c5:cf:5f:d2:1a:82:18:35:2c:73:de:14: 84:69:b9:e8:45:8f:ac:b2:95:6f:78:6c:1c:c9:ec: 03:88:08:aa:61:8d:60:d5:01:1b:b6:3d:4b:11:09: 5d:54:b3:2f:74:1a:78:ca:8a:55:50:34:0e:1f:d8: 9b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A9:6B:13:F8:6B:E5:66:3D:9B:D1:89:A7:10:FA:0E:F1:0C:34:BC X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63323a3a2f34382d3438203d3e20333939363436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:c2::/48 Signature Algorithm: sha256WithRSAEncryption 4b:84:7d:70:6b:9f:e1:d7:f3:40:6c:68:fc:72:6d:94:e9:46: f4:63:f7:fb:b9:b2:3b:b1:28:78:0e:93:36:34:18:51:27:30: 2d:90:6b:31:20:8a:1e:a6:c9:0d:90:b5:cf:0b:0f:2d:45:00: bb:e0:21:2b:3a:24:74:2e:f3:a2:0d:53:a5:05:e3:0b:79:b2: 80:b4:3b:5a:5f:a5:81:41:df:a9:cb:8a:e5:e4:fe:f2:a3:31: 85:f3:89:c3:bb:86:75:1c:fd:fa:57:f0:b9:23:42:40:8e:24: be:c7:ce:3b:8c:9a:5b:e6:90:81:92:e3:89:c0:4d:5b:a3:7a: 90:1d:b8:63:1b:7e:b8:70:f0:6c:28:ee:9f:62:24:6b:69:49: 7f:00:08:55:b8:83:8a:a9:99:86:14:4c:f6:40:84:00:ce:4f: ea:92:bb:cb:e4:b2:f2:bc:80:9f:df:9e:c7:80:0e:a1:d9:45: cb:3e:8f:25:83:0b:d1:ff:1f:b8:4b:dc:2a:9e:a1:40:bf:7b: 60:71:90:0f:e0:a2:dd:12:9d:b4:ea:1a:c7:da:85:d9:e4:31: 3f:84:ec:5b:49:4f:f4:42:70:3f:cb:3a:0d:05:b1:bf:09:f6: 08:b0:0e:6c:7a:77:02:fe:9e:7d:c7:57:f6:9b:ee:43:5b:ad: 3d:da:4f:36 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUCXxXHz++NCYtpPjs4GtNDjVVuJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjAzMDYxNTA3MDZaFw0yNzAzMDUxNTEyMDZaMDMxMTAvBgNV BAMTKDE3QTk2QjEzRjg2QkU1NjYzRDlCRDE4OUE3MTBGQTBFRjEwQzM0QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDtOUqoy0IrjDP4/wFPx0mwFst yiu9gB9ahNbpYn12MKs5MIQHHpUzfQjhNU93JZbL7jr6w4L3qYVCQh7LoO/sfJZD +5a3TIEM7KXyRss+kPfWEQmK0xx/ytteFGCXJcNRVPoLreW3MiQzgkxT4jVb+JS9 U+Oqt1E5u7LRM3zE1uu4zXJlRO163XjAc4cQ6kczVStNj0VQg2BU3w1QAGyNcD0q Ov0u55irp4eOk3+Y7J2XG+VuTggOHQ2DBIOO4D+jn3SV9MXPX9Iaghg1LHPeFIRp uehFj6yylW94bBzJ7AOICKphjWDVARu2PUsRCV1Usy90GnjKilVQNA4f2JvxAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUF6lrE/hr5WY9m9GJpxD6DvEMNLwwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYzMzIzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMzM5MzkzNjM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAMIwDQYJ KoZIhvcNAQELBQADggEBAEuEfXBrn+HX80BsaPxybZTpRvRj9/u5sjuxKHgOkzY0 GFEnMC2QazEgih6myQ2Qtc8LDy1FALvgISs6JHQu86INU6UF4wt5soC0O1pfpYFB 36nLiuXk/vKjMYXzicO7hnUc/fpX8LkjQkCOJL7HzjuMmlvmkIGS44nATVujepAd uGMbfrhw8Gwo7p9iJGtpSX8ACFW4g4qpmYYUTPZAhADOT+qSu8vksvK8gJ/fnseA DqHZRcs+jyWDC9H/H7hL3CqeoUC/e2BxkA/got0SnbTqGsfahdnkMT+E7FtJT/RC cD/LOg0Fsb8J9giwDmx6dwL+nn3HV/ab7kNbrT3aTzY= -----END CERTIFICATE-----Generated at Sat Mar 7 07:59:26 2026 by rpki-client