$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214312.roa File: AS214312.roa (raw, json) Hash identifier: JgsU9RdRzORTGhegtPVIQkqFwmECAkYZwoNQ/uK4Dbo= Subject key identifier: 55:01:67:CD:E8:F4:85:44:15:D9:37:87:B0:6C:DA:74:04:B3:38:10 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 5D3EEFD99B695B5FAA6791964DCC809342C52A48 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214312.roa Signing time: Tue 28 Apr 2026 13:22:48 +0000 ROA not before: Tue 28 Apr 2026 13:17:48 +0000 ROA not after: Tue 27 Apr 2027 13:22:48 +0000 asID: 214312 IP address blocks: 2a0b:4e07:bc6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:3e:ef:d9:9b:69:5b:5f:aa:67:91:96:4d:cc:80:93:42:c5:2a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:48 2026 GMT Not After : Apr 27 13:22:48 2027 GMT Subject: CN=550167CDE8F4854415D93787B06CDA7404B33810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:87:0b:66:39:28:3c:97:90:8a:15:cc:dd:03: 98:68:80:e1:df:8f:d8:7e:a1:87:c7:6d:64:6a:b2: 7d:61:a4:02:bd:ef:0b:31:a6:cb:76:7d:56:7e:a5: 38:65:6c:c8:29:a5:44:9a:27:f6:47:3a:4d:b6:77: 28:91:da:de:5e:90:b8:5d:8f:ff:9c:54:eb:25:a8: 41:c6:a8:ac:3d:ac:b2:5f:5e:b9:d7:ee:fb:96:58: 96:d2:bf:e1:3b:b6:13:17:e4:eb:d3:7d:5e:44:c1: 4c:37:67:4a:c7:8b:7f:5d:e2:b1:8b:e1:08:ec:22: 6e:63:f3:28:85:f1:ed:ba:ff:d0:80:e9:53:bd:7c: be:34:4b:f5:8a:98:60:7a:8b:c3:2f:a1:94:33:e7: fd:75:7c:56:a9:f0:73:13:39:e2:93:05:fb:3a:2d: f8:98:3a:40:5a:7e:f2:7e:9c:f3:d1:a3:23:74:49: 8e:a0:ea:7f:c5:61:96:eb:24:94:c7:a5:14:ae:75: 93:71:18:28:f8:aa:a2:1f:90:c5:41:8f:a8:3e:dc: b1:fd:f0:f4:5a:16:04:98:25:ed:18:7d:30:82:70: 48:09:55:20:25:fe:23:a5:08:46:76:de:c3:d4:c6: 8c:65:0d:15:d5:7b:65:97:e7:13:cb:a3:bf:a0:ba: 22:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:01:67:CD:E8:F4:85:44:15:D9:37:87:B0:6C:DA:74:04:B3:38:10 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214312.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:bc6::/48 Signature Algorithm: sha256WithRSAEncryption 40:35:db:91:00:27:c1:8f:52:b5:3f:1e:ff:54:f9:06:ce:3a: a8:91:40:40:56:e8:dd:7c:c2:dc:b2:4d:2f:be:5b:d1:e4:f8: d7:09:b0:be:9e:ad:24:05:33:3a:9d:90:c6:c5:6f:e7:9b:30: 41:28:e5:fd:ce:a4:1d:97:cf:f2:44:53:f4:e9:f4:31:2c:bd: ab:c6:55:2b:67:33:8c:c9:1b:b6:00:c9:76:86:e6:17:3b:dd: 03:f0:fc:c6:5f:b4:3b:b7:e4:cd:db:2f:d9:9e:49:03:f2:58: 1b:77:b6:2e:b2:ca:38:a3:a7:43:f2:09:93:0b:02:c5:4a:89: c8:cc:78:86:3d:3d:76:44:c8:77:4f:dd:6e:6b:4e:45:cd:1d: 0f:cd:6c:13:b1:a0:c2:46:c9:1e:91:d1:9a:4e:7c:04:ac:c5: 9e:b4:52:27:6f:5a:b3:78:aa:cd:33:fc:2c:ef:3d:3c:c2:b0: 70:b9:9f:0b:de:0e:61:f0:3c:29:1b:63:2d:de:85:3e:2a:a8: 24:30:63:74:11:7f:8f:a3:5e:02:56:0f:91:60:f8:34:20:f4: 03:c0:db:f5:27:48:04:4d:d7:a0:f6:b8:27:bd:8d:7c:5d:e9: ee:2a:f4:68:26:95:43:f6:22:d9:06:9b:f6:00:d9:50:15:7a: fb:b1:7f:c3 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUXT7v2ZtpW1+qZ5GWTcyAk0LFKkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDhaFw0yNzA0MjcxMzIyNDhaMDMxMTAvBgNV BAMTKDU1MDE2N0NERThGNDg1NDQxNUQ5Mzc4N0IwNkNEQTc0MDRCMzM4MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCshwtmOSg8l5CKFczdA5hogOHf j9h+oYfHbWRqsn1hpAK97wsxpst2fVZ+pThlbMgppUSaJ/ZHOk22dyiR2t5ekLhd j/+cVOslqEHGqKw9rLJfXrnX7vuWWJbSv+E7thMX5OvTfV5EwUw3Z0rHi39d4rGL 4QjsIm5j8yiF8e26/9CA6VO9fL40S/WKmGB6i8MvoZQz5/11fFap8HMTOeKTBfs6 LfiYOkBafvJ+nPPRoyN0SY6g6n/FYZbrJJTHpRSudZNxGCj4qqIfkMVBj6g+3LH9 8PRaFgSYJe0YfTCCcEgJVSAl/iOlCEZ23sPUxoxlDRXVe2WX5xPLo7+guiLhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUVQFnzej0hUQV2TeHsGzadASzOBAwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTQzMTIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HC8YwDQYJKoZIhvcNAQEL BQADggEBAEA125EAJ8GPUrU/Hv9U+QbOOqiRQEBW6N18wtyyTS++W9Hk+NcJsL6e rSQFMzqdkMbFb+ebMEEo5f3OpB2Xz/JEU/Tp9DEsvavGVStnM4zJG7YAyXaG5hc7 3QPw/MZftDu35M3bL9meSQPyWBt3ti6yyjijp0PyCZMLAsVKicjMeIY9PXZEyHdP 3W5rTkXNHQ/NbBOxoMJGyR6R0ZpOfASsxZ60UidvWrN4qs0z/CzvPTzCsHC5nwve DmHwPCkbYy3ehT4qqCQwY3QRf4+jXgJWD5Fg+DQg9APA2/UnSARN16D2uCe9jXxd 6e4q9GgmlUP2ItkGm/YA2VAVevuxf8M= -----END CERTIFICATE-----Generated at Tue May 12 22:17:22 2026 by rpki-client