$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214205.roa File: AS214205.roa (raw, json) Hash identifier: Qxe1beNVv9Y4tfSIuuDH1whzwa0rBuoUgc8e8dQZ49k= Subject key identifier: A2:F7:74:98:14:7E:21:32:BF:B0:AD:E3:9A:CC:88:51:A2:0B:D1:20 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 7D7CB9C07AB1775E681034840A73330C8222C637 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214205.roa Signing time: Tue 28 Apr 2026 13:22:50 +0000 ROA not before: Tue 28 Apr 2026 13:17:50 +0000 ROA not after: Tue 27 Apr 2027 13:22:50 +0000 asID: 214205 IP address blocks: 2a0b:4e07:44::/48 maxlen: 48 2a0b:4e07:4c::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:7c:b9:c0:7a:b1:77:5e:68:10:34:84:0a:73:33:0c:82:22:c6:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:50 2026 GMT Not After : Apr 27 13:22:50 2027 GMT Subject: CN=A2F77498147E2132BFB0ADE39ACC8851A20BD120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:60:be:4b:88:92:e7:bc:e6:2c:a7:23:21:74: c1:29:0a:84:92:77:4a:aa:08:c9:c0:bd:93:71:65: 0b:90:e6:a0:f4:25:34:b0:51:88:ec:00:7b:48:1a: 88:32:21:3e:96:b8:34:b0:75:57:63:19:cd:dd:12: ef:ec:8f:c5:8c:1f:ee:5e:99:b8:3b:51:fd:7a:f7: 93:09:9d:b8:d4:63:28:cb:a2:43:f6:82:e4:63:60: d0:fc:54:a9:8c:b6:0a:1c:4a:a1:3c:c9:e7:fa:c8: 17:30:d5:5b:51:c1:b8:6e:58:eb:5b:e2:10:0a:88: ad:a1:50:f2:f0:f0:5c:1c:ec:99:db:15:48:44:67: 49:95:6c:e0:79:18:9a:f7:24:14:b1:62:ae:bd:f1: 6d:30:6c:3d:99:15:3f:85:55:f4:11:78:ff:7d:ce: 3d:58:bb:51:54:96:a0:69:73:cb:10:b7:71:7a:ac: 22:7e:68:d6:63:f1:b9:88:81:8a:18:c1:dd:c6:82: 76:02:40:4f:c5:73:07:75:95:d4:0b:97:74:dd:41: 7b:13:49:92:a8:e6:dc:1f:d5:71:94:07:a9:1a:c5: 44:b4:75:96:35:e9:47:1c:65:0a:c0:3b:d6:07:0b: 0d:6f:6c:d2:b2:51:b9:25:f8:1c:b8:50:8f:4f:23: ea:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F7:74:98:14:7E:21:32:BF:B0:AD:E3:9A:CC:88:51:A2:0B:D1:20 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214205.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:44::/48 2a0b:4e07:4c::/46 Signature Algorithm: sha256WithRSAEncryption 0d:03:1c:ff:63:41:cb:72:06:f1:99:a5:23:90:b7:df:23:a9: f1:c1:91:8f:d7:59:23:44:51:47:d2:7b:44:05:1d:67:cc:eb: 63:2b:d5:1a:2e:5b:c5:fd:65:99:69:e7:35:ef:ac:c5:87:0e: d6:03:3d:d2:92:76:6d:d1:d3:ff:b4:33:31:42:c2:33:b8:95: dc:c2:35:d7:1a:4a:c4:d1:a7:af:f8:23:6d:c7:31:47:2e:86: d1:ae:1f:d3:08:ce:bb:3a:ec:01:6e:e0:7d:0e:ac:76:98:c1: 67:e7:d7:81:ad:36:91:a1:2f:a7:b7:1a:a5:92:4b:21:32:45: 91:80:77:7d:db:be:e3:88:4d:6b:6e:cb:a4:ec:08:86:1d:07: 6f:2a:9c:64:cf:76:16:b0:47:e6:3c:8b:0e:7f:09:16:5e:5f: f1:23:7e:e2:6a:62:5d:60:7b:5b:86:9e:2c:6c:42:f6:fd:60: e2:5c:06:b9:a7:bd:c0:28:43:17:87:46:5b:97:b4:cd:8c:c5: 06:38:6a:8a:38:6e:2d:be:11:f2:2a:a3:50:1d:77:14:71:bd: 02:d8:a8:54:50:ad:cb:ee:d3:f0:6c:c5:c7:30:be:e1:15:80: 00:a4:0a:24:54:87:91:ad:98:8b:71:17:cc:3d:f4:8d:c5:1e: 08:e9:ce:a5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfXy5wHqxd15oEDSECnMzDIIixjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NTBaFw0yNzA0MjcxMzIyNTBaMDMxMTAvBgNV BAMTKEEyRjc3NDk4MTQ3RTIxMzJCRkIwQURFMzlBQ0M4ODUxQTIwQkQxMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4YL5LiJLnvOYspyMhdMEpCoSS d0qqCMnAvZNxZQuQ5qD0JTSwUYjsAHtIGogyIT6WuDSwdVdjGc3dEu/sj8WMH+5e mbg7Uf1695MJnbjUYyjLokP2guRjYND8VKmMtgocSqE8yef6yBcw1VtRwbhuWOtb 4hAKiK2hUPLw8Fwc7JnbFUhEZ0mVbOB5GJr3JBSxYq698W0wbD2ZFT+FVfQReP99 zj1Yu1FUlqBpc8sQt3F6rCJ+aNZj8bmIgYoYwd3GgnYCQE/Fcwd1ldQLl3TdQXsT SZKo5twf1XGUB6kaxUS0dZY16UccZQrAO9YHCw1vbNKyUbkl+By4UI9PI+rZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUovd0mBR+ITK/sK3jmsyIUaIL0SAwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTQyMDUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw KwYIKwYBBQUHAQcBAf8EHDAaMBgEAgACMBIDBwAqC04HAEQDBwIqC04HAEwwDQYJ KoZIhvcNAQELBQADggEBAA0DHP9jQctyBvGZpSOQt98jqfHBkY/XWSNEUUfSe0QF HWfM62Mr1RouW8X9ZZlp5zXvrMWHDtYDPdKSdm3R0/+0MzFCwjO4ldzCNdcaSsTR p6/4I23HMUcuhtGuH9MIzrs67AFu4H0OrHaYwWfn14GtNpGhL6e3GqWSSyEyRZGA d33bvuOITWtuy6TsCIYdB28qnGTPdhawR+Y8iw5/CRZeX/EjfuJqYl1ge1uGnixs Qvb9YOJcBrmnvcAoQxeHRluXtM2MxQY4aoo4bi2+EfIqo1AddxRxvQLYqFRQrcvu 0/BsxccwvuEVgACkCiRUh5GtmItxF8w99I3FHgjpzqU= -----END CERTIFICATE-----Generated at Tue May 12 21:54:00 2026 by rpki-client