$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214223.roa File: AS214223.roa (raw, json) Hash identifier: 7PXKBkWM+emzi/kr5Zy8QMqiuPLQoQDa+GtolAqyoKk= Subject key identifier: 47:2E:7A:DB:C3:20:CA:35:A1:94:E6:3B:47:CA:7A:00:BA:2F:ED:4A Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 2D392340830AE9E5729AAA69DAF248A07E15FA9B Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214223.roa Signing time: Tue 28 Apr 2026 13:22:51 +0000 ROA not before: Tue 28 Apr 2026 13:17:51 +0000 ROA not after: Tue 27 Apr 2027 13:22:51 +0000 asID: 214223 IP address blocks: 2a0b:4e07:2c00::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:39:23:40:83:0a:e9:e5:72:9a:aa:69:da:f2:48:a0:7e:15:fa:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:51 2026 GMT Not After : Apr 27 13:22:51 2027 GMT Subject: CN=472E7ADBC320CA35A194E63B47CA7A00BA2FED4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:21:0d:8e:99:3d:b6:9c:e7:64:b4:67:b0: 45:d9:9d:21:38:d9:05:51:a1:29:e4:3b:6f:6d:30: f5:c2:c2:2a:89:90:f2:24:b8:18:3e:7e:d0:ae:f0: da:66:54:1b:d5:51:68:87:98:cf:ef:cd:0b:f5:24: 62:a2:c8:69:18:30:d6:2e:c7:24:c1:bd:9c:70:17: 5a:78:a0:83:63:f6:1a:70:84:48:f0:4e:1a:ab:68: f4:f0:ae:1f:fe:3a:bf:8f:13:b2:b3:9c:38:08:51: b0:21:f2:6f:66:42:85:14:5c:bf:2b:5b:55:33:17: d2:59:56:12:2b:26:00:19:3f:cc:57:9c:49:77:cc: cf:bc:94:65:68:ac:8f:03:72:1f:3c:44:f8:1d:ad: 26:c3:cb:c1:3c:9d:60:46:90:73:99:b1:f5:b7:22: b4:df:5a:f2:d1:76:83:95:c1:ef:ed:a6:57:ac:2d: 03:0b:22:0a:43:c7:f1:d4:5e:53:fd:13:74:b3:70: c2:58:1d:9b:f3:a4:de:d5:b7:18:82:f7:ba:28:e7: 5e:3a:4a:db:39:7e:16:da:3f:ee:62:8d:75:97:33: f9:8d:4a:cc:fc:2b:71:9c:0e:a2:f1:77:4f:a4:7e: 1d:3f:73:6e:4c:fb:39:d3:0f:a8:98:be:aa:5c:97: fa:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2E:7A:DB:C3:20:CA:35:A1:94:E6:3B:47:CA:7A:00:BA:2F:ED:4A X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214223.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2c00::/38 Signature Algorithm: sha256WithRSAEncryption 4a:8d:72:f3:1d:63:45:e2:fe:81:a1:1a:fc:83:c3:6c:03:7b: c0:be:ba:79:b8:9e:de:2f:6b:18:e4:cc:bd:e5:cc:d2:11:4b: 2f:5c:3f:63:91:55:c3:5e:c0:dc:66:98:11:6d:62:da:04:c5: 65:86:c3:62:64:1b:3f:1a:c5:47:3e:c3:ef:69:e9:76:06:ab: b2:55:b1:ac:79:c2:a9:0b:0e:87:23:f7:1a:d3:31:b8:ea:15: c7:d9:9e:c8:97:eb:4a:b0:5a:01:8f:b5:9c:f0:b9:0e:de:19: 43:40:7a:02:c8:74:b4:52:f2:ed:9a:38:97:5c:22:69:2e:6e: 5b:49:04:58:0f:bd:94:86:ad:05:f7:be:7b:3c:c2:c8:46:56: e4:10:ef:de:10:71:f2:b0:06:10:5a:d1:af:e4:1c:66:61:f2: 03:f7:70:b7:fd:34:13:8e:f9:44:76:65:47:74:35:df:4b:95: 43:34:80:08:07:7a:32:7b:a1:0b:15:e6:b2:ba:a1:62:e7:20: c1:da:61:59:d6:13:55:74:a9:24:9a:1b:6c:8d:9b:d9:d5:92: 81:ae:f6:d5:94:49:78:61:84:2e:6e:cd:76:ff:a6:52:a4:08: 98:50:ca:23:cc:13:2c:6f:1c:73:b0:95:7a:df:57:4d:7f:f6: 8f:6e:22:7a -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIULTkjQIMK6eVymqpp2vJIoH4V+pswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NTFaFw0yNzA0MjcxMzIyNTFaMDMxMTAvBgNV BAMTKDQ3MkU3QURCQzMyMENBMzVBMTk0RTYzQjQ3Q0E3QTAwQkEyRkVENEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd+SENjpk9tpznZLRnsEXZnSE4 2QVRoSnkO29tMPXCwiqJkPIkuBg+ftCu8NpmVBvVUWiHmM/vzQv1JGKiyGkYMNYu xyTBvZxwF1p4oINj9hpwhEjwThqraPTwrh/+Or+PE7KznDgIUbAh8m9mQoUUXL8r W1UzF9JZVhIrJgAZP8xXnEl3zM+8lGVorI8Dch88RPgdrSbDy8E8nWBGkHOZsfW3 IrTfWvLRdoOVwe/tplesLQMLIgpDx/HUXlP9E3SzcMJYHZvzpN7VtxiC97oo5146 Sts5fhbaP+5ijXWXM/mNSsz8K3GcDqLxd0+kfh0/c25M+znTD6iYvqpcl/p9AgMB AAGjggIsMIICKDAdBgNVHQ4EFgQURy5628MgyjWhlOY7R8p6ALov7UowHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTQyMjMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgIqC04HLDANBgkqhkiG9w0BAQsF AAOCAQEASo1y8x1jReL+gaEa/IPDbAN7wL66ebie3i9rGOTMveXM0hFLL1w/Y5FV w17A3GaYEW1i2gTFZYbDYmQbPxrFRz7D72npdgarslWxrHnCqQsOhyP3GtMxuOoV x9meyJfrSrBaAY+1nPC5Dt4ZQ0B6Ash0tFLy7Zo4l1wiaS5uW0kEWA+9lIatBfe+ ezzCyEZW5BDv3hBx8rAGEFrRr+QcZmHyA/dwt/00E475RHZlR3Q130uVQzSACAd6 MnuhCxXmsrqhYucgwdphWdYTVXSpJJobbI2b2dWSga721ZRJeGGELm7Ndv+mUqQI mFDKI8wTLG8cc7CVet9XTX/2j24ieg== -----END CERTIFICATE-----Generated at Wed May 13 01:12:00 2026 by rpki-client