$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS198657.roa File: AS198657.roa (raw, json) Hash identifier: 2DbHHOVkqMW5FweEQEPv0yBV0aa7ov2vtU8hjUZM4rE= Subject key identifier: 9D:C0:6A:DF:03:FD:FE:AD:E6:3A:95:8F:21:29:87:7B:E8:94:18:78 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 102BAB2D0BE40618391B36D2039A1DC3C753146B Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS198657.roa Signing time: Thu 21 May 2026 08:18:32 +0000 ROA not before: Thu 21 May 2026 08:13:32 +0000 ROA not after: Thu 20 May 2027 08:18:32 +0000 asID: 198657 IP address blocks: 2a0b:4e07:b00::/40 maxlen: 48 2a0b:4e07:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:2b:ab:2d:0b:e4:06:18:39:1b:36:d2:03:9a:1d:c3:c7:53:14:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: May 21 08:13:32 2026 GMT Not After : May 20 08:18:32 2027 GMT Subject: CN=9DC06ADF03FDFEADE63A958F2129877BE8941878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b3:9c:8c:1a:d4:ef:0e:ee:88:de:9d:04:16: 47:eb:63:49:2b:fc:a5:1b:a2:51:35:72:13:ab:92: 39:e9:7a:ed:95:1d:df:e0:19:67:8f:7d:a2:f9:db: d0:43:11:4f:88:34:38:65:d6:3e:72:0c:2d:4d:e4: 23:ba:25:f6:bc:cf:91:5a:e1:a8:85:62:97:b7:37: e0:a9:22:c6:35:6e:77:d4:4a:9c:e6:44:4f:b4:8d: 10:69:68:ce:d4:de:4e:74:a1:70:de:b1:29:7c:44: 80:58:45:2d:a2:b0:45:05:20:f9:52:97:0c:1f:99: bb:e0:cd:48:75:f5:02:3e:5b:4c:10:e6:82:e4:8f: 46:d9:3e:63:4b:6c:32:f8:c3:44:2c:49:fe:5d:a9: 6d:d3:8a:d0:d1:4a:f2:bb:57:b5:73:bb:41:14:19: 40:e4:b9:50:c3:79:4c:69:88:91:6c:8e:d0:b0:a7: 4a:e4:8a:b0:b9:1d:65:7b:a2:06:4c:bc:c4:88:46: 60:1c:5d:85:30:4b:ea:b9:ef:bd:77:2c:91:96:fa: d1:23:04:cf:ad:a1:19:28:52:a6:64:aa:92:a8:2f: 1a:6a:7f:bb:4a:05:98:27:b1:16:01:f3:ab:bd:19: d5:f2:17:91:77:98:cc:6b:29:61:5f:c2:df:ca:4b: 52:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C0:6A:DF:03:FD:FE:AD:E6:3A:95:8F:21:29:87:7B:E8:94:18:78 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS198657.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:b00::/40 2a0b:4e07:2800::/40 Signature Algorithm: sha256WithRSAEncryption 5a:69:62:2b:c8:ec:c7:ef:88:de:1f:91:5d:b1:23:66:21:6f: 6a:b7:92:4d:d0:f4:dc:8e:c1:17:34:d3:81:e4:3d:4c:66:eb: 31:c2:3a:ab:8c:13:6a:88:3e:66:47:d1:3c:35:11:5f:15:37: 12:11:94:2d:4f:17:20:6f:2e:fb:93:bc:c7:1e:7d:b8:ca:a9: ff:22:c1:a8:4d:28:17:50:3f:b9:b3:85:ba:86:e5:c2:44:bd: 2e:25:5c:51:02:f7:09:22:9f:85:57:b6:f7:3e:cd:ee:4b:da: d4:87:d0:8a:38:ac:38:1d:8a:ac:3f:5d:ea:ea:82:54:1a:f4: 59:9e:06:7f:39:32:af:8f:32:c2:57:2c:92:ed:00:72:78:ba: ee:99:57:13:dc:06:26:62:a8:35:14:c6:f0:b9:a3:22:72:b3: f1:59:dc:58:a5:a5:0d:2a:17:3b:d0:2b:81:dc:be:f7:eb:3b: 6d:75:5d:3c:c2:e1:24:c5:71:05:e5:34:7f:c7:33:d1:54:1b: d4:9c:d2:22:2d:4a:81:2e:39:38:b9:02:cf:68:b0:ed:6c:a3: 39:09:18:14:24:06:61:a1:42:4b:17:34:36:3a:22:6e:1a:bd: 4a:47:04:ea:8a:4a:29:24:7f:b9:f8:5c:57:87:49:e3:6e:58: 31:c9:d5:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUECurLQvkBhg5GzbSA5odw8dTFGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA1MjEwODEzMzJaFw0yNzA1MjAwODE4MzJaMDMxMTAvBgNV BAMTKDlEQzA2QURGMDNGREZFQURFNjNBOTU4RjIxMjk4NzdCRTg5NDE4NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCps5yMGtTvDu6I3p0EFkfrY0kr /KUbolE1chOrkjnpeu2VHd/gGWePfaL529BDEU+INDhl1j5yDC1N5CO6Jfa8z5Fa 4aiFYpe3N+CpIsY1bnfUSpzmRE+0jRBpaM7U3k50oXDesSl8RIBYRS2isEUFIPlS lwwfmbvgzUh19QI+W0wQ5oLkj0bZPmNLbDL4w0QsSf5dqW3TitDRSvK7V7Vzu0EU GUDkuVDDeUxpiJFsjtCwp0rkirC5HWV7ogZMvMSIRmAcXYUwS+q57713LJGW+tEj BM+toRkoUqZkqpKoLxpqf7tKBZgnsRYB86u9GdXyF5F3mMxrKWFfwt/KS1LRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUncBq3wP9/q3mOpWPISmHe+iUGHgwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMxOTg2NTcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw KQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgAqC04HCwMGACoLTgcoMA0GCSqG SIb3DQEBCwUAA4IBAQBaaWIryOzH74jeH5FdsSNmIW9qt5JN0PTcjsEXNNOB5D1M ZusxwjqrjBNqiD5mR9E8NRFfFTcSEZQtTxcgby77k7zHHn24yqn/IsGoTSgXUD+5 s4W6huXCRL0uJVxRAvcJIp+FV7b3Ps3uS9rUh9CKOKw4HYqsP13q6oJUGvRZngZ/ OTKvjzLCVyyS7QByeLrumVcT3AYmYqg1FMbwuaMicrPxWdxYpaUNKhc70CuB3L73 6zttdV08wuEkxXEF5TR/xzPRVBvUnNIiLUqBLjk4uQLPaLDtbKM5CRgUJAZhoUJL FzQ2OiJuGr1KRwTqikopJH+5+FxXh0njblgxydUR -----END CERTIFICATE-----Generated at Sat Jun 6 02:27:22 2026 by rpki-client