$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214677.roa File: AS214677.roa (raw, json) Hash identifier: xOD7t7ZcL5MIMHWECCkauWNOZyaH5Suh4KUHsLllXyM= Subject key identifier: 18:BE:01:17:67:CA:6F:D3:87:7B:03:0F:DB:56:3D:87:61:91:05:B9 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 74AA377EF8AA6939FEC65FFE5AE9460D9C9779A9 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214677.roa Signing time: Mon 01 Jun 2026 20:54:49 +0000 ROA not before: Mon 01 Jun 2026 20:49:49 +0000 ROA not after: Mon 31 May 2027 20:54:49 +0000 asID: 214677 IP address blocks: 2a0b:4e07:60::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:aa:37:7e:f8:aa:69:39:fe:c6:5f:fe:5a:e9:46:0d:9c:97:79:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Jun 1 20:49:49 2026 GMT Not After : May 31 20:54:49 2027 GMT Subject: CN=18BE011767CA6FD3877B030FDB563D87619105B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:de:fe:af:0a:3b:76:4d:05:8d:46:17:5e:f2: a4:bb:e6:70:9d:91:0d:b6:ac:1f:bf:2a:66:7b:7b: b5:60:95:b8:f5:83:61:5c:6e:c4:ec:e7:3c:27:c4: 03:b6:95:2b:72:e0:3f:7b:5a:e2:26:7c:b6:43:70: 35:e6:a7:88:e8:90:c7:77:54:9f:f2:17:c2:3f:57: 46:0d:47:e1:89:8f:7a:a4:90:62:2d:bf:06:98:c2: e8:4e:f5:98:c6:a9:82:54:7c:b2:32:47:59:a0:77: f7:56:ac:55:b6:a7:21:29:1c:4d:de:e7:37:ed:25: 29:11:c4:22:7b:19:1f:10:6a:0f:4d:be:43:5d:b2: 7b:36:d4:e1:cd:10:f7:17:de:56:df:38:ca:f9:88: bb:ac:09:b4:0f:e3:05:29:4c:b1:0d:d6:36:07:98: e4:2c:f5:2d:57:6e:52:bc:68:4f:2a:ea:a5:2e:0d: 8c:33:eb:4e:0d:d4:8c:00:31:e9:75:32:2b:18:d9: 6e:f4:8b:91:b8:98:28:0a:b9:21:53:c7:96:44:23: 2a:0e:33:b8:97:97:64:36:1f:c1:60:f5:2a:0d:eb: 3f:64:d4:99:f4:99:ea:c2:33:ef:fd:5d:e2:c2:f6: e3:1e:57:46:e2:de:a9:2c:55:6e:16:c6:6a:89:3a: 36:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BE:01:17:67:CA:6F:D3:87:7B:03:0F:DB:56:3D:87:61:91:05:B9 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214677.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:60::/44 Signature Algorithm: sha256WithRSAEncryption 2f:a9:d9:20:2e:a3:8d:c1:2b:98:b9:24:38:8f:4c:e9:20:8b: 62:5b:7f:d7:15:dd:dd:b9:09:7e:4d:89:27:56:89:41:9b:9d: a8:17:a6:45:1b:96:5b:0d:ef:44:50:4f:73:fd:10:8b:e0:64: 48:dd:ca:40:d0:ab:17:b4:a1:57:c2:41:2e:62:75:3e:ad:bd: ca:a4:4c:61:80:04:66:0e:f2:87:0c:57:be:ad:c6:48:18:e0: d8:3a:53:5e:a4:fd:70:4f:9c:ec:ad:80:a8:0a:26:b3:3f:4b: d8:c8:83:f5:00:6e:0e:1f:79:3a:56:d0:85:51:7d:4d:57:cd: cf:ad:20:17:90:15:33:89:46:f2:a2:b0:c2:48:f0:ed:ad:ca: 34:51:43:ca:8b:f3:12:24:d9:b3:f0:9d:dc:36:b8:09:e6:6e: dd:8a:b7:d6:a4:52:1a:39:b4:9f:4d:a2:e5:80:60:db:31:c4: d7:b0:f5:34:36:35:5d:82:ee:4d:68:65:2f:b6:9f:ce:08:35: d6:8b:c9:5c:f8:e7:01:cc:e4:a9:e9:89:b6:45:40:e5:ae:6a: 7a:6a:76:23:34:5f:c1:32:bb:a4:fe:93:f9:1c:01:c8:c0:4d: 1b:ca:5f:5f:35:7a:09:2e:51:f7:13:73:fe:1b:9b:b6:33:18: 51:41:92:1f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUdKo3fviqaTn+xl/+WulGDZyXeakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA2MDEyMDQ5NDlaFw0yNzA1MzEyMDU0NDlaMDMxMTAvBgNV BAMTKDE4QkUwMTE3NjdDQTZGRDM4NzdCMDMwRkRCNTYzRDg3NjE5MTA1QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp3v6vCjt2TQWNRhde8qS75nCd kQ22rB+/KmZ7e7Vglbj1g2FcbsTs5zwnxAO2lSty4D97WuImfLZDcDXmp4jokMd3 VJ/yF8I/V0YNR+GJj3qkkGItvwaYwuhO9ZjGqYJUfLIyR1mgd/dWrFW2pyEpHE3e 5zftJSkRxCJ7GR8Qag9NvkNdsns21OHNEPcX3lbfOMr5iLusCbQP4wUpTLEN1jYH mOQs9S1XblK8aE8q6qUuDYwz604N1IwAMel1MisY2W70i5G4mCgKuSFTx5ZEIyoO M7iXl2Q2H8Fg9SoN6z9k1Jn0merCM+/9XeLC9uMeV0bi3qksVW4WxmqJOjZRAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUGL4BF2fKb9OHewMP21Y9h2GRBbkwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTQ2Nzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqC04HAGAwDQYJKoZIhvcNAQEL BQADggEBAC+p2SAuo43BK5i5JDiPTOkgi2Jbf9cV3d25CX5NiSdWiUGbnagXpkUb llsN70RQT3P9EIvgZEjdykDQqxe0oVfCQS5idT6tvcqkTGGABGYO8ocMV76txkgY 4Ng6U16k/XBPnOytgKgKJrM/S9jIg/UAbg4feTpW0IVRfU1Xzc+tIBeQFTOJRvKi sMJI8O2tyjRRQ8qL8xIk2bPwndw2uAnmbt2Kt9akUho5tJ9NouWAYNsxxNew9TQ2 NV2C7k1oZS+2n84INdaLyVz45wHM5KnpibZFQOWuanpqdiM0X8Eyu6T+k/kcAcjA TRvKX181egkuUfcTc/4bm7YzGFFBkh8= -----END CERTIFICATE-----Generated at Sat Jun 6 02:27:15 2026 by rpki-client