$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa File: d1206389-b9de-36cd-8068-be081e3c00dd.roa (raw, json) Hash identifier: W5GL0oGC4Oat80JWtrWUzp2a7FKBSkD7grM7STPdxKU= Subject key identifier: 6D:94:05:4E:0A:98:6F:96:A8:E5:1E:EE:43:DD:5F:BA:82:71:CF:5A Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584D98BAA8A2502EF6A2297B9F00 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa Signing time: Thu 23 Apr 2026 01:00:24 +0000 ROA not before: Thu 23 Apr 2026 01:00:24 +0000 ROA not after: Wed 22 Jul 2026 01:00:24 +0000 asID: 398210 IP address blocks: 168.220.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 28 Apr 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:98:ba:a8:a2:50:2e:f6:a2:29:7b:9f:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Apr 23 01:00:24 2026 GMT Not After : Jul 22 01:00:24 2026 GMT Subject: CN=bf2022ed-8ee0-4a22-928b-aeb9c5d5d9dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:88:32:c9:9c:0e:20:76:ce:00:bd:a4:26:4e: 56:6a:d7:e6:2f:15:11:b3:da:81:b5:03:6c:77:ea: d9:fe:f3:a9:c8:71:58:3c:25:ba:b5:d5:7c:e1:eb: 56:08:ae:21:d2:76:cd:d2:2a:1b:2b:05:b7:b9:09: ef:0b:91:50:bb:b9:2c:c4:3d:d5:15:17:6f:98:59: 91:60:c1:a5:41:8c:55:52:66:54:a5:d6:aa:91:97: 98:2f:b9:10:d0:68:c1:63:c0:91:8f:2c:89:45:ad: 94:ad:93:e6:dc:e0:8d:70:6b:92:7a:e5:04:4e:6b: b6:8d:de:c7:0a:96:3e:e0:67:df:59:07:d8:21:4a: 42:e6:8b:a6:e3:0a:87:cf:f4:9f:ef:08:a9:d1:9b: 00:d5:d1:72:34:83:7a:50:b8:e2:15:e8:a4:72:e3: 7a:20:0b:51:60:17:ea:62:6e:e1:5a:95:4e:9e:22: f0:5b:aa:e4:05:24:a5:b6:62:01:53:5e:ac:6d:9c: d9:a5:23:9f:1d:57:5c:59:84:56:75:32:15:4b:b4: 38:52:2d:5a:4e:30:cb:08:05:8e:58:ba:4f:af:de: 85:2a:cf:ff:39:c6:91:77:4d:b9:c3:27:85:12:a6: 21:31:76:8f:b1:eb:0f:43:d8:93:5c:05:c2:06:c7: 01:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:94:05:4E:0A:98:6F:96:A8:E5:1E:EE:43:DD:5F:BA:82:71:CF:5A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.170.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2b:25:f9:95:d9:c8:1b:e1:7b:bb:64:ec:fe:13:6b:a5:bf:6f: 4b:98:55:91:94:85:7b:33:8a:53:81:40:c4:2d:eb:28:6a:6a: 8c:11:b0:19:76:48:9b:c0:45:62:27:dc:59:9a:70:98:76:c9: 14:be:d3:63:69:bd:cb:2d:57:cd:44:6d:b7:79:c7:91:c6:9c: f2:30:e7:7c:30:7f:9e:4e:d5:09:18:82:58:b0:4a:db:83:88: 6f:32:da:ab:28:2b:b4:4b:06:b7:ea:0f:29:d7:23:f4:25:6e: 5b:8c:e6:93:84:7f:ed:8a:7c:48:83:c0:f7:f0:c4:4f:88:87: 2a:2f:67:3f:56:da:17:60:43:8a:be:f6:49:99:1a:b3:98:a8: a1:9a:b3:28:44:b3:ee:27:f2:3f:61:f3:dd:7a:29:57:db:e5: 5e:35:86:d2:f0:eb:6e:fd:fe:d0:ce:f8:e2:b6:d5:10:6b:97: 78:04:a0:9f:a3:4a:fe:79:2f:cd:40:92:27:bc:2b:7d:19:86: fa:fc:5b:bc:ab:cc:e7:f5:a8:41:16:a8:be:4f:33:84:3f:82: e2:8f:52:ad:60:82:34:73:f1:c3:f5:cd:2e:f1:64:d1:00:66: 88:1e:d7:16:47:4d:e0:fd:70:61:e4:85:1f:c1:79:fd:5d:22: 6b:eb:a4:3f -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE2YuqiiUC72oil7nwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI2MDQyMzAxMDAyNFoXDTI2MDcyMjAxMDAyNFowLzEtMCsGA1UEAxMk YmYyMDIyZWQtOGVlMC00YTIyLTkyOGItYWViOWM1ZDVkOWRjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4gyyZwOIHbOAL2kJk5WatfmLxURs9qBtQNs d+rZ/vOpyHFYPCW6tdV84etWCK4h0nbN0iobKwW3uQnvC5FQu7ksxD3VFRdvmFmR YMGlQYxVUmZUpdaqkZeYL7kQ0GjBY8CRjyyJRa2UrZPm3OCNcGuSeuUETmu2jd7H CpY+4GffWQfYIUpC5oum4wqHz/Sf7wip0ZsA1dFyNIN6ULjiFeikcuN6IAtRYBfq Ym7hWpVOniLwW6rkBSSltmIBU16sbZzZpSOfHVdcWYRWdTIVS7Q4Ui1aTjDLCAWO WLpPr96FKs//OcaRd025wyeFEqYhMXaPsesPQ9iTXAXCBscB0wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFG2UBU4KmG+WqOUe7kPdX7qCcc9aMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvZDEyMDYzODktYjlkZS0z NmNkLTgwNjgtYmUwODFlM2MwMGRkLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNyqMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACsl+ZXZyBvhe7tk7P4Ta6W/b0uYVZGUhXszilOBQMQt6yhqaowRsBl2 SJvARWIn3FmacJh2yRS+02NpvcstV81Ebbd5x5HGnPIw53wwf55O1QkYgliwStuD iG8y2qsoK7RLBrfqDynXI/QlbluM5pOEf+2KfEiDwPfwxE+IhyovZz9W2hdgQ4q+ 9kmZGrOYqKGasyhEs+4n8j9h8916KVfb5V41htLw6279/tDO+OK21RBrl3gEoJ+j Sv55L81Akie8K30Zhvr8W7yrzOf1qEEWqL5PM4Q/guKPUq1ggjRz8cP1zS7xZNEA Zoge1xZHTeD9cGHkhR/Bef1dImvrpD8= -----END CERTIFICATE-----Generated at Mon Apr 27 11:18:19 2026 by rpki-client