$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa File: 7332e9a4-0787-3148-ac49-59abb3ffcd35.roa (raw, json) Hash identifier: 1ee/4ueJcrhOnSjqGsixVVCX0n5R2nkCY4zS9DvdMFY= Subject key identifier: F6:BC:60:84:5A:E2:FC:77:A8:DC:CA:46:4A:57:52:3C:23:95:64:3F Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584D98BAA8932352236097841300 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa Signing time: Thu 23 Apr 2026 01:00:24 +0000 ROA not before: Thu 23 Apr 2026 01:00:24 +0000 ROA not after: Wed 22 Jul 2026 01:00:24 +0000 asID: 398210 IP address blocks: 168.220.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 28 Apr 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:98:ba:a8:93:23:52:23:60:97:84:13:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Apr 23 01:00:24 2026 GMT Not After : Jul 22 01:00:24 2026 GMT Subject: CN=95ae25d3-28c5-451f-8ad1-4e576320905e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:91:18:9b:18:a6:d4:33:1f:c0:80:d3:72:56: a4:3d:a1:5c:8d:b8:53:4a:2b:6e:eb:77:45:75:4b: 6c:12:49:99:65:39:e2:a9:ca:6d:45:88:03:22:65: 30:aa:fe:ca:a7:7d:9f:45:ae:c6:70:f4:de:c9:8d: 59:37:d4:d9:7e:70:9b:b3:f3:0b:e5:a2:62:01:02: 4a:b5:42:2b:d7:98:e2:70:f6:98:f7:ae:dd:5f:63: ce:86:47:94:ef:d7:d8:9b:34:9b:5b:c1:e5:e5:2a: fd:4b:df:4c:e7:b7:bf:1c:ba:65:3b:da:99:1a:4e: 66:e2:6c:f4:19:f4:bb:50:b4:56:3a:d0:e0:0a:4a: 44:7e:80:20:cd:84:b9:51:d3:37:72:85:fc:d3:ad: d9:ec:6a:63:e7:17:25:36:4f:34:e4:2a:e0:4f:45: 90:92:61:53:f4:2e:63:78:46:e3:b9:73:f3:4c:40: b3:38:55:46:ca:ef:53:32:f5:39:7b:1a:2c:20:7f: 01:4d:da:48:c4:98:26:3c:ca:92:f3:46:55:5e:6c: b4:87:69:7b:29:61:2f:0c:50:b7:f0:df:74:c6:4b: 7c:81:c1:06:26:0f:97:a0:6c:0d:64:24:be:97:51: fe:14:66:02:77:ce:f4:03:01:61:99:cd:58:77:6c: ee:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BC:60:84:5A:E2:FC:77:A8:DC:CA:46:4A:57:52:3C:23:95:64:3F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.168.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 57:d6:0d:e9:e9:f9:16:a5:80:d4:19:51:e3:59:66:f0:bb:29: cb:b6:a0:26:a9:c2:23:ca:97:1e:03:5a:7a:d3:53:9f:68:39: 3c:2b:2e:82:79:dd:ac:a9:92:df:ce:92:ca:45:02:03:0b:6b: 89:94:74:26:b7:1a:5a:d9:50:34:9a:5b:21:fe:f6:47:80:e3: 7e:c8:34:dd:82:af:7a:db:6d:97:b8:34:fb:52:56:e5:d8:6d: 55:0a:00:16:fe:c8:ee:6a:58:8a:83:8b:5c:78:03:b9:bf:dd: 7d:14:e7:a9:77:e3:b5:e2:b2:7f:25:0f:3b:ba:29:cd:08:bc: ec:a1:33:13:2a:83:2f:bc:23:59:6c:a4:5d:d5:9d:58:72:4d: 88:0a:81:b6:74:47:37:4e:bf:d5:30:13:96:ba:de:d1:a8:52: 8f:3f:b9:26:56:ac:a3:ea:c8:52:a8:5f:46:f8:6e:00:47:72: f1:38:2b:be:8e:5d:b8:6c:61:2e:02:fc:a3:d2:c8:b3:03:21: 75:26:db:ad:a2:d7:e3:08:f9:fb:8e:a3:23:4b:15:88:dd:43: 39:35:77:6a:53:fc:5d:22:9b:49:08:a8:cb:2b:fc:55:f6:60: fa:ed:57:0d:1f:3d:32:32:c5:09:10:96:de:12:e0:51:6c:ce: 8e:41:94:cd -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE2YuqiTI1IjYJeEEwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI2MDQyMzAxMDAyNFoXDTI2MDcyMjAxMDAyNFowLzEtMCsGA1UEAxMk OTVhZTI1ZDMtMjhjNS00NTFmLThhZDEtNGU1NzYzMjA5MDVlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5EYmxim1DMfwIDTclakPaFcjbhTSitu63dF dUtsEkmZZTniqcptRYgDImUwqv7Kp32fRa7GcPTeyY1ZN9TZfnCbs/ML5aJiAQJK tUIr15jicPaY967dX2POhkeU79fYmzSbW8Hl5Sr9S99M57e/HLplO9qZGk5m4mz0 GfS7ULRWOtDgCkpEfoAgzYS5UdM3coX8063Z7Gpj5xclNk805CrgT0WQkmFT9C5j eEbjuXPzTECzOFVGyu9TMvU5exosIH8BTdpIxJgmPMqS80ZVXmy0h2l7KWEvDFC3 8N90xkt8gcEGJg+XoGwNZCS+l1H+FGYCd870AwFhmc1Yd2zuAwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFPa8YIRa4vx3qNzKRkpXUjwjlWQ/MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvNzMzMmU5YTQtMDc4Ny0z MTQ4LWFjNDktNTlhYmIzZmZjZDM1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNyoMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFfWDenp+RalgNQZUeNZZvC7Kcu2oCapwiPKlx4DWnrTU59oOTwrLoJ5 3aypkt/OkspFAgMLa4mUdCa3GlrZUDSaWyH+9keA437INN2Cr3rbbZe4NPtSVuXY bVUKABb+yO5qWIqDi1x4A7m/3X0U56l347Xisn8lDzu6Kc0IvOyhMxMqgy+8I1ls pF3VnVhyTYgKgbZ0RzdOv9UwE5a63tGoUo8/uSZWrKPqyFKoX0b4bgBHcvE4K76O XbhsYS4C/KPSyLMDIXUm262i1+MI+fuOoyNLFYjdQzk1d2pT/F0im0kIqMsr/FX2 YPrtVw0fPTIyxQkQlt4S4FFszo5BlM0= -----END CERTIFICATE-----Generated at Mon Apr 27 11:18:35 2026 by rpki-client