$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS216388.roa File: AS216388.roa (raw, json) Hash identifier: FrAw2ZHiatjwr6bkAJckjehPm3KZ3DML/uCrX+PHgXg= Subject key identifier: 08:F6:C1:FA:14:51:17:3D:6C:F5:C6:7C:B9:E6:13:EA:EB:6C:D3:65 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 38D9185EC2174E969229068234453822F0070D8D Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS216388.roa Signing time: Tue 28 Apr 2026 13:22:47 +0000 ROA not before: Tue 28 Apr 2026 13:17:47 +0000 ROA not after: Tue 27 Apr 2027 13:22:47 +0000 asID: 216388 IP address blocks: 2a0b:4e07:e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 01 May 2026 04:55:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d9:18:5e:c2:17:4e:96:92:29:06:82:34:45:38:22:f0:07:0d:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:47 2026 GMT Not After : Apr 27 13:22:47 2027 GMT Subject: CN=08F6C1FA1451173D6CF5C67CB9E613EAEB6CD365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:25:42:69:f0:4e:2b:b2:97:20:00:53:09:7d: 72:cf:0f:6d:7a:48:9c:05:7e:1b:0a:bb:7b:87:d0: 83:c3:76:d5:80:94:fc:aa:ec:32:c3:48:db:58:52: 7d:2a:de:67:90:9c:e4:4c:6d:fa:90:02:77:2c:7b: a1:9c:21:3c:c3:ee:f9:7b:8c:19:bd:53:91:6d:a0: b3:c1:35:bd:e6:02:6c:4b:4d:e5:bb:00:93:6e:4c: 00:72:4e:a8:5d:f5:1a:26:4b:59:a2:3a:78:bb:95: 6a:e6:c0:78:27:e0:38:7b:0e:e8:c3:bb:3f:0f:49: da:58:ab:2a:80:38:45:c9:6a:2e:b8:03:8a:d5:5c: 2b:38:64:aa:d4:df:e1:33:c5:a5:59:ee:39:27:23: 53:e4:d6:26:c3:26:b5:52:0b:bc:7e:aa:f1:c6:86: c0:95:fc:7e:92:2a:7e:53:1e:94:d4:d5:23:8a:86: b5:29:6f:c9:17:bf:22:f1:90:2e:d2:d3:28:bf:67: 37:45:82:ad:85:a3:74:28:56:5a:d0:db:02:02:25: 42:8b:72:a7:30:30:7c:f7:e2:c2:6f:17:00:21:07: ea:cc:ce:58:73:e7:0c:c1:19:7b:b0:e7:cb:ba:ea: e5:e2:36:87:e3:3e:c3:af:be:e7:5c:1c:88:51:f7: 6d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F6:C1:FA:14:51:17:3D:6C:F5:C6:7C:B9:E6:13:EA:EB:6C:D3:65 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS216388.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:e0::/48 Signature Algorithm: sha256WithRSAEncryption 04:51:79:f6:7a:82:20:b1:5a:e8:3a:53:64:5f:0d:3f:11:ba: 91:0b:dd:fb:90:95:0c:49:a3:5b:45:be:1a:62:f6:03:eb:8c: 0e:1d:16:5a:bf:b1:a6:4c:85:32:03:8f:f3:b0:a7:b6:3b:11: 22:28:cb:3a:ff:c5:8b:24:f8:69:0f:43:03:9c:a0:67:ae:38: c3:0d:dc:ca:58:f0:37:f3:5e:2e:8e:4a:8f:48:ff:c8:8b:0e: ac:8b:13:14:3c:5b:2b:f6:ff:d4:95:dd:f7:92:4e:16:e2:b1: 89:41:72:a0:08:f6:6b:76:41:ec:c3:d8:0f:8c:2f:a4:0f:df: 83:d9:cf:81:28:c0:c4:6e:13:a2:1a:f7:a6:1b:51:56:bb:ab: 46:8d:50:e6:97:4d:5c:3a:e0:c2:a9:b6:2a:a2:a2:1d:11:bf: ee:3a:27:b4:ad:68:66:d6:9d:d8:df:5b:78:3d:59:33:c5:32: 03:a1:8a:ae:c5:5a:7e:04:bb:b1:b2:50:e5:75:a4:47:2a:be: fa:b9:77:dd:f5:38:8b:5a:8b:52:15:98:50:7b:7b:3e:69:0c: 97:f3:f0:ae:8f:bf:14:2c:a9:f3:b6:08:01:f3:d7:e4:de:bb: 6c:e7:6e:34:d9:41:15:f2:f0:79:7e:64:02:f0:50:12:50:65: c6:78:e5:54 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUONkYXsIXTpaSKQaCNEU4IvAHDY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDdaFw0yNzA0MjcxMzIyNDdaMDMxMTAvBgNV BAMTKDA4RjZDMUZBMTQ1MTE3M0Q2Q0Y1QzY3Q0I5RTYxM0VBRUI2Q0QzNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVJUJp8E4rspcgAFMJfXLPD216 SJwFfhsKu3uH0IPDdtWAlPyq7DLDSNtYUn0q3meQnORMbfqQAncse6GcITzD7vl7 jBm9U5FtoLPBNb3mAmxLTeW7AJNuTAByTqhd9RomS1miOni7lWrmwHgn4Dh7DujD uz8PSdpYqyqAOEXJai64A4rVXCs4ZKrU3+EzxaVZ7jknI1Pk1ibDJrVSC7x+qvHG hsCV/H6SKn5THpTU1SOKhrUpb8kXvyLxkC7S0yi/ZzdFgq2Fo3QoVlrQ2wICJUKL cqcwMHz34sJvFwAhB+rMzlhz5wzBGXuw58u66uXiNofjPsOvvudcHIhR920tAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUCPbB+hRRFz1s9cZ8ueYT6uts02UwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTYzODgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAOAwDQYJKoZIhvcNAQEL BQADggEBAARRefZ6giCxWug6U2RfDT8RupEL3fuQlQxJo1tFvhpi9gPrjA4dFlq/ saZMhTIDj/Owp7Y7ESIoyzr/xYsk+GkPQwOcoGeuOMMN3MpY8DfzXi6OSo9I/8iL DqyLExQ8Wyv2/9SV3feSThbisYlBcqAI9mt2QezD2A+ML6QP34PZz4EowMRuE6Ia 96YbUVa7q0aNUOaXTVw64MKptiqioh0Rv+46J7StaGbWndjfW3g9WTPFMgOhiq7F Wn4Eu7GyUOV1pEcqvvq5d931OItai1IVmFB7ez5pDJfz8K6PvxQsqfO2CAHz1+Te u2znbjTZQRXy8Hl+ZALwUBJQZcZ45VQ= -----END CERTIFICATE-----Generated at Thu Apr 30 15:35:55 2026 by rpki-client