$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214675.roa File: AS214675.roa (raw, json) Hash identifier: Okh/7GyT/VWzuNCDxU92w1XRrefcWbsgJfFlBcFLadw= Subject key identifier: F7:D2:4A:70:9D:96:A6:12:4B:32:8C:00:DE:44:A5:A0:51:01:2C:97 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 2CC2805E19800F3963648C2C1F495022AEFAB91C Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214675.roa Signing time: Tue 28 Apr 2026 13:22:46 +0000 ROA not before: Tue 28 Apr 2026 13:17:46 +0000 ROA not after: Tue 27 Apr 2027 13:22:46 +0000 asID: 214675 IP address blocks: 2a0b:4e07:300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c2:80:5e:19:80:0f:39:63:64:8c:2c:1f:49:50:22:ae:fa:b9:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:46 2026 GMT Not After : Apr 27 13:22:46 2027 GMT Subject: CN=F7D24A709D96A6124B328C00DE44A5A051012C97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0b:f5:2c:8e:a5:de:94:9c:4b:bf:96:ce:62: 04:0d:f2:4b:b3:86:69:d0:a5:a6:72:62:e7:15:34: 00:6d:59:b3:b6:41:78:54:2c:37:e0:1f:02:4f:18: be:79:7f:45:18:49:16:23:0e:32:1d:62:2a:87:54: 47:06:08:77:0c:fb:3f:48:b5:35:39:50:30:97:32: 70:62:e8:37:d4:5e:72:d9:59:26:c4:be:ae:e1:b3: 5f:f7:c2:57:eb:2d:82:c1:e9:ea:45:45:1b:98:6a: 02:9d:07:42:17:c8:5f:9c:7b:be:ad:f7:cd:c5:8f: 8a:70:56:d1:5e:2b:8a:33:57:f9:c9:48:9e:0b:04: 36:b7:b3:4e:ea:62:09:04:86:78:db:0e:8f:08:20: fd:c5:19:3a:03:e6:21:d7:25:49:6a:b6:62:4e:b2: 0e:74:3f:7e:4b:9e:1d:52:b7:ff:46:ee:3d:2b:d1: b2:50:ed:d2:56:f0:cf:13:3e:30:a4:9d:f4:a1:38: 52:f8:4b:39:4e:21:76:66:b1:ed:3f:16:fe:85:89: 36:f3:c4:19:d6:50:83:f2:e7:2a:ee:98:0a:83:d6: e8:67:ac:75:b5:7b:88:43:a2:fc:38:a3:5e:5a:a3: 4b:d6:c3:6e:b8:17:18:e0:31:24:4c:3e:ed:bf:0f: 4d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D2:4A:70:9D:96:A6:12:4B:32:8C:00:DE:44:A5:A0:51:01:2C:97 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214675.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:300::/40 Signature Algorithm: sha256WithRSAEncryption 99:7a:59:98:75:c8:2a:0a:2b:f5:d5:10:a3:0d:8c:67:c7:65: 91:2b:29:e3:d4:f1:7a:c1:65:a8:7a:ba:73:b9:50:31:bd:ab: 2c:e4:c4:a8:bb:e4:2e:84:ec:26:92:eb:12:e8:74:85:a3:34: b5:b3:9e:f1:20:51:5e:c5:f8:8d:c2:25:e3:06:c9:9e:b6:4e: e5:9e:a8:32:a7:68:5d:45:e7:db:c4:92:8a:f7:1f:a5:f8:9b: 85:d4:d9:08:e9:e9:4a:e4:b1:31:ba:b5:ec:5e:61:76:fe:fc: 7b:47:d1:3c:0c:07:24:10:10:a2:10:16:0b:9d:0f:46:44:11: f2:56:bb:52:0b:62:6a:20:ad:85:41:b1:d6:40:fc:58:38:aa: 18:d4:33:25:fe:1d:ed:89:55:93:f3:e7:a6:fa:8b:4f:a1:80: ec:1b:55:30:61:92:9c:7d:a9:b4:8e:e7:96:73:25:35:a9:5d: ff:5b:94:a4:1f:e4:8a:9c:c6:19:85:69:52:f3:dd:fa:a0:35: 2f:4b:6b:57:e8:c5:ef:31:be:cc:b9:15:f7:e6:44:96:8c:6f: 91:3d:51:0d:cb:3b:a4:3d:df:14:92:6e:6a:05:e0:05:ae:34: d1:e6:ed:bd:ec:f7:b5:08:6a:05:b7:a9:f0:53:ae:8e:29:54: 6c:00:5b:3e -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIULMKAXhmADzljZIwsH0lQIq76uRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NDZaFw0yNzA0MjcxMzIyNDZaMDMxMTAvBgNV BAMTKEY3RDI0QTcwOUQ5NkE2MTI0QjMyOEMwMERFNDRBNUEwNTEwMTJDOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+C/UsjqXelJxLv5bOYgQN8kuz hmnQpaZyYucVNABtWbO2QXhULDfgHwJPGL55f0UYSRYjDjIdYiqHVEcGCHcM+z9I tTU5UDCXMnBi6DfUXnLZWSbEvq7hs1/3wlfrLYLB6epFRRuYagKdB0IXyF+ce76t 983Fj4pwVtFeK4ozV/nJSJ4LBDa3s07qYgkEhnjbDo8IIP3FGToD5iHXJUlqtmJO sg50P35Lnh1St/9G7j0r0bJQ7dJW8M8TPjCknfShOFL4SzlOIXZmse0/Fv6FiTbz xBnWUIPy5yrumAqD1uhnrHW1e4hDovw4o15ao0vWw264FxjgMSRMPu2/D00nAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQU99JKcJ2WphJLMowA3kSloFEBLJcwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTQ2NzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqC04HAzANBgkqhkiG9w0BAQsF AAOCAQEAmXpZmHXIKgor9dUQow2MZ8dlkSsp49TxesFlqHq6c7lQMb2rLOTEqLvk LoTsJpLrEuh0haM0tbOe8SBRXsX4jcIl4wbJnrZO5Z6oMqdoXUXn28SSivcfpfib hdTZCOnpSuSxMbq17F5hdv78e0fRPAwHJBAQohAWC50PRkQR8la7UgtiaiCthUGx 1kD8WDiqGNQzJf4d7YlVk/PnpvqLT6GA7BtVMGGSnH2ptI7nlnMlNald/1uUpB/k ipzGGYVpUvPd+qA1L0trV+jF7zG+zLkV9+ZEloxvkT1RDcs7pD3fFJJuagXgBa40 0ebtvez3tQhqBbep8FOujilUbABbPg== -----END CERTIFICATE-----Generated at Tue May 12 21:54:01 2026 by rpki-client