$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214929.roa File: AS214929.roa (raw, json) Hash identifier: C/Q8YeqP+WjQnXi6MZJPAE6ChbAZc9n4UCKD0lNvvdI= Subject key identifier: 11:DB:AB:3F:75:E7:FB:BB:E5:39:8F:63:79:8C:F1:EC:C4:42:80:CC Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 23602B12F0589273A3703BDA1F089139FD31233D Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214929.roa Signing time: Tue 28 Apr 2026 13:22:50 +0000 ROA not before: Tue 28 Apr 2026 13:17:50 +0000 ROA not after: Tue 27 Apr 2027 13:22:50 +0000 asID: 214929 IP address blocks: 2a0b:4e07:39::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 May 2026 19:56:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:60:2b:12:f0:58:92:73:a3:70:3b:da:1f:08:91:39:fd:31:23:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 28 13:17:50 2026 GMT Not After : Apr 27 13:22:50 2027 GMT Subject: CN=11DBAB3F75E7FBBBE5398F63798CF1ECC44280CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:35:b5:84:49:c4:23:9e:a4:70:a9:d9:a8:58: e3:87:3b:fb:e7:d7:6d:1c:14:15:b6:0e:8b:f4:bd: fa:d8:18:49:15:bf:89:5f:76:4b:26:e6:bf:01:90: 2c:eb:13:e6:72:66:c9:9f:a1:56:7b:2a:81:57:ed: 94:89:ad:1f:82:69:61:4c:54:cb:b9:c0:f7:e3:93: 16:1b:82:c7:81:07:47:b2:59:5e:b3:30:f0:4a:73: ce:3a:f3:8f:ed:25:04:07:c9:47:ec:97:54:c3:47: d1:f8:bd:81:ac:03:57:a3:48:ae:cb:e6:67:16:19: 2a:97:ee:9f:30:62:db:bb:b0:0d:52:39:e1:46:7d: da:41:9f:76:e6:37:69:33:40:29:43:0a:fe:d8:e1: 34:94:4e:42:cb:4f:07:5e:ea:d0:4a:59:c4:49:87: c1:43:5c:ea:c3:cb:a0:e4:7a:f4:a7:ea:2c:a9:a4: df:c3:4a:ca:a2:fd:08:c7:58:f0:35:dc:3e:38:ee: ab:89:24:ed:64:14:c9:27:95:19:16:7b:53:23:e9: 6b:1c:c1:06:60:52:9e:2a:11:8b:44:fb:01:fe:1d: f8:89:7e:6a:42:15:77:fa:7c:96:96:60:49:d4:2f: 90:42:f2:4c:5e:64:53:79:d4:55:c7:1b:dc:f7:ce: 1f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DB:AB:3F:75:E7:FB:BB:E5:39:8F:63:79:8C:F1:EC:C4:42:80:CC X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/AS214929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:39::/48 Signature Algorithm: sha256WithRSAEncryption 3f:6e:aa:35:90:1d:90:11:b4:fb:c1:bf:63:60:87:f1:49:11: 9f:63:da:d0:9f:74:7d:71:95:fb:77:e3:00:b7:af:38:8c:18: be:6a:e9:26:37:9b:6f:3c:95:4a:42:70:ce:6d:d3:b9:95:4d: 57:c9:31:86:21:3a:1d:b1:e5:bb:f2:a3:3e:e9:b4:48:91:b1: 48:88:5e:7a:cd:f6:19:ad:de:b4:c5:d5:33:85:17:6c:64:ad: 03:b0:b5:97:4d:18:50:85:c7:7d:a5:0a:8c:a9:26:db:8e:96: c9:48:bf:00:1d:9e:01:cf:a0:f0:44:f0:2f:c4:f8:e9:fe:8d: b1:9f:ed:18:f9:d9:4a:fd:0b:f3:41:dc:78:e9:bc:69:d3:67: bd:09:14:2b:ac:d0:ef:bc:45:fd:50:e2:0a:84:e5:a7:63:51: 08:05:9a:37:4e:5f:14:44:50:d3:6e:03:68:ed:3d:85:44:2a: 4c:ac:b6:21:17:e3:2b:fc:a4:e2:40:b8:73:a8:82:13:fa:2d: 38:f5:3d:1d:91:f4:12:8d:e8:fd:c5:8c:13:c3:31:97:5d:c7: 7f:50:dc:6d:1b:02:e6:23:80:49:c7:af:50:b4:c3:5b:07:c7: d5:83:64:e6:24:c2:70:9b:7c:f1:3d:b9:cc:30:61:a8:7f:c8: f2:eb:26:5f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUI2ArEvBYknOjcDvaHwiROf0xIz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjA0MjgxMzE3NTBaFw0yNzA0MjcxMzIyNTBaMDMxMTAvBgNV BAMTKDExREJBQjNGNzVFN0ZCQkJFNTM5OEY2Mzc5OENGMUVDQzQ0MjgwQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnNbWEScQjnqRwqdmoWOOHO/vn 120cFBW2Dov0vfrYGEkVv4lfdksm5r8BkCzrE+ZyZsmfoVZ7KoFX7ZSJrR+CaWFM VMu5wPfjkxYbgseBB0eyWV6zMPBKc84684/tJQQHyUfsl1TDR9H4vYGsA1ejSK7L 5mcWGSqX7p8wYtu7sA1SOeFGfdpBn3bmN2kzQClDCv7Y4TSUTkLLTwde6tBKWcRJ h8FDXOrDy6DkevSn6iyppN/DSsqi/QjHWPA13D447quJJO1kFMknlRkWe1Mj6Wsc wQZgUp4qEYtE+wH+HfiJfmpCFXf6fJaWYEnUL5BC8kxeZFN51FXHG9z3zh/tAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUEdurP3Xn+7vlOY9jeYzx7MRCgMwwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJw cy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQzMDUz ZjgyMGY1LzEvQVMyMTQ5Mjkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HADkwDQYJKoZIhvcNAQEL BQADggEBAD9uqjWQHZARtPvBv2Ngh/FJEZ9j2tCfdH1xlft34wC3rziMGL5q6SY3 m288lUpCcM5t07mVTVfJMYYhOh2x5bvyoz7ptEiRsUiIXnrN9hmt3rTF1TOFF2xk rQOwtZdNGFCFx32lCoypJtuOlslIvwAdngHPoPBE8C/E+On+jbGf7Rj52Ur9C/NB 3HjpvGnTZ70JFCus0O+8Rf1Q4gqE5adjUQgFmjdOXxREUNNuA2jtPYVEKkystiEX 4yv8pOJAuHOoghP6LTj1PR2R9BKN6P3FjBPDMZddx39Q3G0bAuYjgEnHr1C0w1sH x9WDZOYkwnCbfPE9ucwwYah/yPLrJl8= -----END CERTIFICATE-----Generated at Mon May 4 09:20:06 2026 by rpki-client