$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214543.roa File: AS214543.roa (raw, json) Hash identifier: mk0wN4tTKqtcxF/U6cdAhx9ONszjER95ebIUJnVAx9Y= Subject key identifier: C4:FB:20:D7:0C:2C:81:31:FB:65:9F:5B:1B:78:0C:55:84:22:7E:79 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 42E314E040606DA656856187254005407839728E Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214543.roa Signing time: Tue 28 Apr 2026 13:22:49 +0000 ROA not before: Tue 28 Apr 2026 13:17:49 +0000 ROA not after: Tue 27 Apr 2027 13:22:49 +0000 asID: 214543 IP address blocks: 2a0b:4e07:511::/48 maxlen: 48 2a0b:4e07:5a1::/48 maxlen: 48 2a0b:4e07:5f1::/48 maxlen: 48 2a0b:4e07:606::/48 maxlen: 48 2a0b:4e07:608::/46 maxlen: 46 2a0b:4e07:2a0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e3:14:e0:40:60:6d:a6:56:85:61:87:25:40:05:40:78:39:72:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:49 2026 GMT Not After : Apr 27 13:22:49 2027 GMT Subject: CN=C4FB20D70C2C8131FB659F5B1B780C5584227E79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8c:71:1c:93:40:e0:bd:0f:eb:3d:22:39:c9: 47:e1:31:0a:21:f9:5a:49:f8:98:60:87:70:77:bf: 17:38:85:b7:2c:2c:55:51:fc:0e:68:2b:3c:02:4e: 7a:52:e7:7f:e4:c2:70:07:2b:e9:9f:30:57:90:f1: 5b:f7:08:7e:87:f6:f2:38:99:b4:70:1e:05:e3:70: 79:09:3b:e9:25:a4:25:47:89:80:5a:17:ea:a3:e6: 51:23:d6:62:60:24:24:75:bd:e1:65:f5:07:48:43: bb:46:a1:6c:d6:ff:98:35:cd:ee:2c:e4:9a:a5:51: 08:5e:27:ce:4a:91:c7:da:44:b0:f1:ea:fc:f2:7c: f1:af:94:df:ec:4a:f9:25:5c:1d:8d:30:1d:9f:5e: 8c:00:7a:b2:dc:74:34:b0:4a:8c:b1:83:43:df:d9: ea:dc:a4:ea:df:c1:aa:ac:ad:e9:49:d9:e2:43:d7: 70:28:e8:35:e3:4a:71:d9:03:8d:13:26:93:3f:a1: 9b:f8:65:8a:86:f2:b6:c1:71:1d:99:2d:5a:5d:fe: 70:13:83:49:40:cd:6b:93:96:71:75:a1:9f:16:78: 9b:73:b7:69:b2:4b:1b:5a:c6:c1:a8:d5:d8:f0:b8: 3a:95:9d:f7:34:19:cf:f9:41:32:61:0b:31:7a:63: 01:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FB:20:D7:0C:2C:81:31:FB:65:9F:5B:1B:78:0C:55:84:22:7E:79 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214543.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:511::/48 2a0b:4e07:5a1::/48 2a0b:4e07:5f1::/48 2a0b:4e07:606::/48 2a0b:4e07:608::/46 2a0b:4e07:2a0b::/48 Signature Algorithm: sha256WithRSAEncryption 41:67:76:34:6b:8b:6b:bd:2d:58:33:31:2d:3e:2d:ad:8b:6e: c9:c4:4f:2a:32:65:d0:cc:5f:c9:1a:ba:53:ea:6e:ca:45:ae: 01:cc:97:1c:63:ff:25:df:87:fd:c5:16:72:28:ef:0a:b6:55: 8c:2f:02:41:16:ae:2b:c3:90:96:1c:36:11:82:33:55:02:58: 9a:c3:7c:ef:6a:3d:85:eb:aa:b9:1b:a5:ed:bd:00:24:0b:6d: f5:fe:6f:f8:dd:c6:fb:aa:f2:e5:11:e2:80:be:5f:0e:1b:c5: 51:4b:33:af:32:33:9b:8c:f6:9a:18:2d:fb:12:50:3d:a0:80: c5:16:91:20:4d:6a:95:dd:64:66:4d:f9:e6:6b:96:ad:3a:25: de:03:ac:b6:a5:a2:24:f0:56:60:87:81:1a:76:2b:a6:01:e5: a0:dc:d1:da:b5:7e:49:52:75:9a:c3:97:2e:d2:92:a5:f7:8a: 60:bd:a1:88:be:37:8f:b3:e4:ac:27:83:15:33:55:aa:9b:95: d3:d8:21:9f:ca:11:e8:04:35:0a:6b:ba:bb:a3:41:a2:fc:df: d8:d9:0c:71:69:30:0d:34:53:ca:09:33:9b:d4:c3:03:d3:03: 8a:ae:a6:4c:d5:13:36:d3:0a:ed:f1:d8:9e:7a:d4:4c:2e:37: 63:37:cd:fb -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIUQuMU4EBgbaZWhWGHJUAFQHg5co4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDlaFw0yNzA0MjcxMzIyNDlaMDMxMTAvBgNV BAMTKEM0RkIyMEQ3MEMyQzgxMzFGQjY1OUY1QjFCNzgwQzU1ODQyMjdFNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdjHEck0DgvQ/rPSI5yUfhMQoh +VpJ+Jhgh3B3vxc4hbcsLFVR/A5oKzwCTnpS53/kwnAHK+mfMFeQ8Vv3CH6H9vI4 mbRwHgXjcHkJO+klpCVHiYBaF+qj5lEj1mJgJCR1veFl9QdIQ7tGoWzW/5g1ze4s 5JqlUQheJ85KkcfaRLDx6vzyfPGvlN/sSvklXB2NMB2fXowAerLcdDSwSoyxg0Pf 2ercpOrfwaqsrelJ2eJD13Ao6DXjSnHZA40TJpM/oZv4ZYqG8rbBcR2ZLVpd/nAT g0lAzWuTlnF1oZ8WeJtzt2mySxtaxsGo1djwuDqVnfc0Gc/5QTJhCzF6YwErAgMB AAGjggJaMIICVjAdBgNVHQ4EFgQUxPsg1wwsgTH7ZZ9bG3gMVYQifnkwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTQ1NDMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw TwYIKwYBBQUHAQcBAf8EQDA+MDwEAgACMDYDBwAqC04HBREDBwAqC04HBaEDBwAq C04HBfEDBwAqC04HBgYDBwIqC04HBggDBwAqC04HKgswDQYJKoZIhvcNAQELBQAD ggEBAEFndjRri2u9LVgzMS0+La2LbsnETyoyZdDMX8kaulPqbspFrgHMlxxj/yXf h/3FFnIo7wq2VYwvAkEWrivDkJYcNhGCM1UCWJrDfO9qPYXrqrkbpe29ACQLbfX+ b/jdxvuq8uUR4oC+Xw4bxVFLM68yM5uM9poYLfsSUD2ggMUWkSBNapXdZGZN+eZr lq06Jd4DrLaloiTwVmCHgRp2K6YB5aDc0dq1fklSdZrDly7SkqX3imC9oYi+N4+z 5KwngxUzVaqbldPYIZ/KEegENQprurujQaL839jZDHFpMA00U8oJM5vUwwPTA4qu pkzVEzbTCu3x2J561EwuN2M3zfs= -----END CERTIFICATE-----Generated at Wed May 13 06:38:33 2026 by rpki-client