
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa
File: d57da0e6-f691-31f3-9cdb-493375eb5d74.roa (raw, json)
Hash identifier: GMWw1MNA/tEBjjMKWWbC+oiFSglfrKyo1AFbsvKjCp4=
Subject key identifier: 4F:E4:EB:DC:3D:4B:4B:6B:13:AA:6D:9D:5A:90:EA:3D:A7:8C:6F:B3
Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3
Certificate serial: 010D0C9F4328584E5FDF65D304F62C211BF796C0
Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa
Signing time: Fri 03 Jul 2026 09:00:12 +0000
ROA not before: Fri 03 Jul 2026 09:00:12 +0000
ROA not after: Thu 01 Oct 2026 09:00:12 +0000
asID: 7029
IP address blocks: 71.29.252.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Tue 14 Jul 2026 13:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:4e:5f:df:65:d3:04:f6:2c:21:1b:f7:96:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3
Validity
Not Before: Jul 3 09:00:12 2026 GMT
Not After : Oct 1 09:00:12 2026 GMT
Subject: CN=39a76b47-c451-4f52-a943-10ba1e937160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3d:e6:5a:2a:ce:d4:fa:a5:72:11:1e:01:a6:
87:8b:d3:47:f5:b4:48:bc:92:87:41:05:b8:60:a7:
50:04:f3:75:a8:33:fc:33:08:52:aa:87:06:ba:0f:
f9:44:dd:bf:c7:fc:7a:18:90:4b:cf:d5:f4:50:4d:
3f:dd:2c:90:93:b6:38:10:c7:2f:94:e6:eb:4b:99:
3f:09:60:9f:7c:a9:0c:36:76:c9:5a:ae:ed:ef:d4:
5f:5a:f6:d1:4b:27:a8:4c:a7:87:17:16:c7:ae:fa:
de:21:9f:49:61:33:26:a2:b6:20:63:fb:9a:ab:f1:
f7:58:ab:6c:04:2e:79:01:af:84:46:3b:71:4b:21:
ea:c6:f0:55:8f:97:06:b1:87:3d:e7:39:d5:43:e8:
37:d5:11:40:cb:31:e0:cf:fc:be:99:cc:f2:86:cb:
28:43:7f:ec:51:24:f6:a9:8b:71:1c:25:a9:66:62:
f4:c5:1f:5f:cb:66:75:2f:b2:87:53:8c:61:fe:2e:
8b:50:e8:c0:aa:56:1a:50:c4:f1:76:2d:c2:dd:d2:
9e:50:5e:f1:10:6d:7b:64:25:c6:62:98:65:40:3d:
80:f6:6d:f9:40:ad:dd:db:00:0a:3c:b0:85:fd:88:
8d:b8:a3:84:ce:56:5d:2f:f5:4a:80:1f:14:ed:0a:
1e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:E4:EB:DC:3D:4B:4B:6B:13:AA:6D:9D:5A:90:EA:3D:A7:8C:6F:B3
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl
X509v3 Authority Key Identifier:
keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
sbgp-ipAddrBlock: critical
IPv4:
71.29.252.0/22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
1d:09:a9:b2:58:e5:f2:3b:d6:2c:b4:d1:1a:53:40:1f:19:ef:
2a:a3:0a:18:48:43:bc:b2:53:7c:56:10:af:29:47:7f:cc:c6:
6f:4b:4d:ea:d4:2d:e2:1a:22:e5:08:32:58:3d:d6:5e:f2:fe:
e9:4b:f6:4b:7a:40:3b:f2:09:0f:10:26:c6:9f:02:32:e9:c0:
dd:47:87:f1:ae:e3:65:8d:c1:3a:31:4c:9e:8c:e0:1e:08:8a:
17:c2:c8:ad:fc:e7:9c:bb:8c:a8:2a:98:7e:58:2f:1b:87:87:
30:6e:2b:f9:0d:e9:64:21:3f:2b:23:e0:74:7c:87:af:45:9f:
10:da:f4:f9:25:d6:41:93:b3:ed:31:ad:2d:16:8d:cf:cf:5a:
59:2a:ad:3d:bb:2d:77:56:7f:7c:86:9e:62:aa:6c:33:7a:98:
6e:d7:e7:59:9d:db:b0:5b:2b:df:8f:d0:24:c4:80:29:af:66:
50:f5:df:1b:e9:0f:15:ff:71:de:c8:84:00:0c:f4:82:dc:d6:
8c:84:73:cd:79:c0:7d:f0:02:27:55:70:c6:6e:ec:37:0b:2e:
b2:52:4a:af:12:77:f0:22:96:a0:05:e1:8b:c2:0a:1b:84:28:
88:48:23:ca:51:62:dc:6d:03:bb:06:5a:bd:ce:1c:ab:77:8d:
26:37:2d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 07:24:10 2026 by rpki-client