$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS209552.roa File: AS209552.roa (raw, json) Hash identifier: 4sL0ARLjjCkNoQXXoswJ0tJtJYSWdYMRA7dTMstkamw= Subject key identifier: 7A:11:07:8D:92:48:03:98:1A:2A:73:A0:DC:F1:82:EB:9F:71:05:91 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 1FFDBDA076ED70B28C177B6660D0AD6145782D2D Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS209552.roa Signing time: Tue 28 Apr 2026 13:22:49 +0000 ROA not before: Tue 28 Apr 2026 13:17:49 +0000 ROA not after: Tue 27 Apr 2027 13:22:49 +0000 asID: 209552 IP address blocks: 2a0b:4e07:2d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 May 2026 19:56:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:fd:bd:a0:76:ed:70:b2:8c:17:7b:66:60:d0:ad:61:45:78:2d:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:49 2026 GMT Not After : Apr 27 13:22:49 2027 GMT Subject: CN=7A11078D924803981A2A73A0DCF182EB9F710591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ba:22:6c:73:53:e6:42:60:ba:a3:1a:9a:7b: 49:5f:d0:e2:36:91:2b:8d:9a:19:f6:47:43:45:de: ca:cd:c6:e9:d3:ce:3c:8d:63:d3:6c:c4:1b:4b:19: 01:6b:2e:65:ad:dd:c2:a8:36:7b:bf:41:00:bf:d9: cf:27:4d:54:22:d2:d0:0f:e8:5b:03:87:ed:b2:35: 4c:b1:a8:2e:da:6a:7f:39:16:02:29:f6:5b:60:e6: b0:49:ec:71:81:02:21:2b:87:83:78:34:c9:23:54: d4:8b:1d:8c:5d:af:e9:05:43:4c:92:e1:c9:87:4a: 76:cc:89:43:03:31:42:7e:9c:67:2d:b2:a0:65:23: 20:5c:86:b5:fb:1b:7a:d8:b0:89:56:65:cd:0b:61: 4d:c1:52:f0:71:42:93:0a:4a:dd:d7:dd:3b:c0:14: 82:62:0f:56:cc:77:39:5e:10:eb:2a:3a:04:91:f1: 76:46:26:b0:f6:71:eb:4d:71:c1:53:ba:c6:f1:0a: 7d:a3:fe:7c:4a:17:3d:66:16:85:63:19:cb:dc:ba: a9:44:fc:b6:97:96:29:7f:6b:54:dc:ba:77:5a:8b: 4b:0b:66:b5:99:33:8c:73:b8:52:4f:b0:0b:b4:ec: 23:ce:00:ee:68:67:6a:24:6a:3e:ce:60:3d:41:31: 38:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:11:07:8D:92:48:03:98:1A:2A:73:A0:DC:F1:82:EB:9F:71:05:91 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS209552.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2d::/48 Signature Algorithm: sha256WithRSAEncryption 9b:5d:33:c1:6e:70:ea:fa:77:fc:4a:b5:30:05:59:df:7e:45: 7e:5f:74:73:a4:49:7b:5a:2a:fb:77:5d:83:20:2b:53:5f:96: 85:bb:7f:df:a1:0a:22:fe:a0:28:1e:87:27:4c:67:cd:a1:38: 60:6e:7f:6c:31:0d:d2:db:34:cb:d4:34:c5:80:b3:72:69:7a: f0:98:a5:f7:5e:7b:5e:51:5c:85:0c:0d:df:3e:89:32:a4:57: b8:2e:f3:32:b0:ad:57:fd:6b:f3:b6:56:d6:ad:77:f1:1b:a3: 12:05:35:c5:93:6d:74:be:a0:c4:ae:e0:c6:09:07:50:4a:d7: f7:1f:fa:c3:2b:ac:cb:97:d7:92:23:3b:81:e0:6e:a5:8d:b8: a3:00:93:0c:80:cc:b8:be:ef:f7:4a:c0:7c:c1:38:77:0a:03: d1:31:3b:60:f0:5e:da:32:09:94:a0:0c:c9:45:8b:91:e0:b6: 34:df:6b:6a:22:f5:e0:b3:07:c3:17:61:97:97:3b:ad:d2:c3: 42:7f:60:1c:cd:c6:99:e7:e3:8c:1b:89:b2:ab:5f:ba:80:3a: e2:ee:21:76:c8:56:1a:47:fa:05:1e:27:95:02:64:35:74:9e: b5:a0:75:0a:a5:4c:ba:31:d2:41:8a:73:34:4e:2d:68:18:d8: 2d:03:04:95 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUH/29oHbtcLKMF3tmYNCtYUV4LS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDlaFw0yNzA0MjcxMzIyNDlaMDMxMTAvBgNV BAMTKDdBMTEwNzhEOTI0ODAzOTgxQTJBNzNBMERDRjE4MkVCOUY3MTA1OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5uiJsc1PmQmC6oxqae0lf0OI2 kSuNmhn2R0NF3srNxunTzjyNY9NsxBtLGQFrLmWt3cKoNnu/QQC/2c8nTVQi0tAP 6FsDh+2yNUyxqC7aan85FgIp9ltg5rBJ7HGBAiErh4N4NMkjVNSLHYxdr+kFQ0yS 4cmHSnbMiUMDMUJ+nGctsqBlIyBchrX7G3rYsIlWZc0LYU3BUvBxQpMKSt3X3TvA FIJiD1bMdzleEOsqOgSR8XZGJrD2cetNccFTusbxCn2j/nxKFz1mFoVjGcvcuqlE /LaXlil/a1Tcundai0sLZrWZM4xzuFJPsAu07CPOAO5oZ2okaj7OYD1BMTjxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUehEHjZJIA5gaKnOg3PGC659xBZEwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMDk1NTIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAC0wDQYJKoZIhvcNAQEL BQADggEBAJtdM8FucOr6d/xKtTAFWd9+RX5fdHOkSXtaKvt3XYMgK1NfloW7f9+h CiL+oCgehydMZ82hOGBuf2wxDdLbNMvUNMWAs3JpevCYpfdee15RXIUMDd8+iTKk V7gu8zKwrVf9a/O2Vtatd/EboxIFNcWTbXS+oMSu4MYJB1BK1/cf+sMrrMuX15Ij O4HgbqWNuKMAkwyAzLi+7/dKwHzBOHcKA9ExO2DwXtoyCZSgDMlFi5HgtjTfa2oi 9eCzB8MXYZeXO63Sw0J/YBzNxpnn44wbibKrX7qAOuLuIXbIVhpH+gUeJ5UCZDV0 nrWgdQqlTLox0kGKczROLWgY2C0DBJU= -----END CERTIFICATE-----Generated at Mon May 4 09:38:55 2026 by rpki-client