
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/02fbacaf-8802-3ac3-8a45-51b85f88e011.roa
File: 02fbacaf-8802-3ac3-8a45-51b85f88e011.roa (raw, json)
Hash identifier: 6gr8nV9wrIBe+usPFopar/0g4DNhIjFr1fJcstf7gCk=
Subject key identifier: B6:3A:5F:62:A2:BC:5E:D9:6B:8F:1B:8C:1D:9D:CD:42:E7:22:7A:C8
Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial: 010D0C9F4328584E35FFD5343CD0F7C88062E580
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/02fbacaf-8802-3ac3-8a45-51b85f88e011.roa
Signing time: Thu 18 Jun 2026 09:00:12 +0000
ROA not before: Thu 18 Jun 2026 09:00:12 +0000
ROA not after: Wed 16 Sep 2026 09:00:12 +0000
asID: 33668
IP address blocks: 68.36.10.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Mon 20 Jul 2026 00:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:4e:35:ff:d5:34:3c:d0:f7:c8:80:62:e5:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Validity
Not Before: Jun 18 09:00:12 2026 GMT
Not After : Sep 16 09:00:12 2026 GMT
Subject: CN=cbe8796c-a3e8-4f1d-a4fd-3dfac84c0edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f2:0d:f7:05:70:42:a8:25:5e:cf:36:46:22:
0d:d1:ed:83:4f:fe:0f:30:0f:5b:e8:e1:6c:2e:c8:
71:31:d3:bf:41:a4:64:df:34:d2:82:c4:77:ff:e1:
d5:99:7d:b5:7f:74:43:1e:b8:0a:0c:4b:80:3f:4b:
e8:98:0a:6a:ed:34:58:33:4c:a7:1a:b4:da:47:5c:
a6:9c:ed:60:55:a4:a9:86:ac:3e:55:e0:9e:c3:65:
fb:33:f7:c4:df:2b:59:2b:46:07:17:56:0c:40:fd:
ff:08:2a:6f:97:e0:ef:35:14:99:35:39:f2:d5:2c:
ec:66:7f:04:c9:eb:77:b0:19:5e:ed:0c:c1:47:4f:
5f:fa:d7:dc:c2:42:c5:fb:72:03:b5:49:04:99:e9:
e2:22:09:6d:8d:14:27:6b:1f:a6:af:66:84:59:ac:
ba:d5:dd:ae:59:e6:c8:6f:a0:b1:bc:19:52:bd:1a:
69:a7:b6:76:8c:af:4a:0f:6e:9f:0b:1b:65:d7:79:
1e:10:42:c8:18:3a:fa:8e:aa:d7:96:53:89:b9:b7:
a6:b6:6d:f9:72:30:80:ed:69:7c:01:e0:89:97:a9:
2c:53:85:63:de:1f:6b:79:79:26:6a:f2:16:32:db:
fe:ef:59:c7:38:56:29:25:19:9e:31:c2:30:64:61:
e1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3A:5F:62:A2:BC:5E:D9:6B:8F:1B:8C:1D:9D:CD:42:E7:22:7A:C8
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/02fbacaf-8802-3ac3-8a45-51b85f88e011.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
X509v3 Authority Key Identifier:
keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
sbgp-ipAddrBlock: critical
IPv4:
68.36.10.0/23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
44:87:53:17:c7:47:bf:4c:22:6a:fd:cf:d7:2d:c4:3b:36:3a:
14:e0:bd:a3:0c:a2:50:54:12:52:cf:f9:c8:27:82:c1:ab:32:
ec:d3:cb:e7:83:ac:de:53:26:d8:cd:28:a0:ad:fc:81:0d:31:
21:a5:07:65:7d:da:b2:3e:bf:58:ae:c8:70:6e:f9:80:d4:2d:
45:cb:11:90:7c:0f:6d:07:22:0c:9d:83:5c:76:f3:ce:18:ac:
55:5b:82:12:3e:d2:42:73:24:87:03:14:4f:91:59:f8:e1:19:
3d:6c:ae:55:49:69:d0:1b:0c:9a:d5:1a:29:d7:fa:1e:7a:3a:
2e:56:d0:e9:ad:bb:8e:43:39:41:5c:ba:ec:8d:f9:a9:84:b3:
91:e2:16:17:39:12:8e:c9:23:93:6d:e0:56:71:e8:3b:2f:e8:
f5:83:cc:67:2a:6b:30:d8:1c:31:4f:77:44:43:a7:99:80:b3:
6c:5d:1d:ca:2e:c5:f1:1e:13:d1:75:fa:71:7c:36:f2:1e:b9:
f8:69:f4:22:6b:92:00:64:a8:bb:2e:e8:43:c1:4e:0e:b3:b4:
d9:3c:28:56:c1:78:ea:23:ac:31:39:b2:6a:e5:80:d1:af:8d:
03:be:34:3e:c9:eb:f8:4d:8c:3d:89:f0:44:15:30:9b:6a:1c:
4a:ca:d0:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:33:27 2026 by rpki-client