$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/dfe22e5b-6650-3d51-aa9c-66a2e02b6967.roa File: dfe22e5b-6650-3d51-aa9c-66a2e02b6967.roa (raw, json) Hash identifier: dwIJfPdk4Ay0qyMg9tBJP+tlPbzJwWHtVM4dQuV8Ukk= Subject key identifier: 55:AA:2A:76:ED:5E:24:26:2D:C3:8C:71:19:79:97:C5:A6:B1:A1:86 Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584D98BAA920981B8AE42B5E27E0 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/dfe22e5b-6650-3d51-aa9c-66a2e02b6967.roa Signing time: Thu 23 Apr 2026 01:00:24 +0000 ROA not before: Thu 23 Apr 2026 01:00:24 +0000 ROA not after: Wed 22 Jul 2026 01:00:24 +0000 asID: 398210 IP address blocks: 168.220.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 28 Apr 2026 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:98:ba:a9:20:98:1b:8a:e4:2b:5e:27:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Apr 23 01:00:24 2026 GMT Not After : Jul 22 01:00:24 2026 GMT Subject: CN=8a4fc36f-83ee-432c-8c9b-1bc9f9b69362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2d:03:be:4c:01:8d:7f:a0:0b:9a:c7:f0:31: 84:ab:03:28:c7:de:82:50:db:22:0d:9c:41:ee:0c: 07:38:b1:e1:3a:9b:cf:6e:38:99:b7:f3:64:b9:7c: 5e:48:0b:5a:d0:ac:07:a2:4e:45:44:5a:fd:ac:eb: 0e:57:21:ba:86:22:eb:31:80:26:34:81:ac:dd:1e: 66:08:3b:9b:da:9a:6d:70:fe:e0:bc:24:39:82:4b: 5e:7e:86:a8:53:0d:98:2e:ef:1c:70:7f:88:7f:32: 4d:d3:47:75:44:b8:fe:2c:c7:69:19:ef:79:af:99: 0b:ff:85:fd:cb:ba:76:fe:85:47:77:97:7c:bc:b6: 3d:24:7e:21:3a:76:e2:1f:ee:57:1a:23:dd:c7:2a: 50:36:2f:8e:ed:bb:fe:e5:ae:df:52:8a:07:c7:0a: bc:5d:ba:0f:da:07:c5:3e:a1:c5:ef:92:c2:f4:6a: 28:cc:c3:a2:95:f6:58:53:a0:99:45:b4:e2:d6:d9: ae:87:88:5d:d3:d0:ac:f0:8a:11:f9:f4:b8:e9:a1: 64:2a:5a:77:ce:d0:c3:43:3a:ea:d3:7f:e7:7a:12: 6e:89:0f:a3:3c:13:33:e8:33:a3:00:44:13:bb:a0: 00:b6:cb:ea:1b:2e:14:1f:f2:f2:58:b2:aa:da:e2: 3d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:AA:2A:76:ED:5E:24:26:2D:C3:8C:71:19:79:97:C5:A6:B1:A1:86 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/dfe22e5b-6650-3d51-aa9c-66a2e02b6967.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.184.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 64:ab:df:91:4e:e9:64:2e:b1:5a:19:22:55:99:76:6e:aa:c2: 81:39:79:05:3d:8f:e7:50:cd:b1:d1:9b:6e:d4:ab:01:52:46: 3c:4e:e0:c4:00:30:c1:3b:1e:bb:f8:01:8f:ae:df:24:86:9a: 97:8a:1e:29:1b:c0:45:56:00:46:00:f3:a8:43:07:e2:87:d5: 07:f7:b7:c6:04:f7:25:db:b7:54:a4:e0:aa:30:9f:fd:76:42: 68:d8:ba:3c:e5:32:4c:f6:02:7e:ca:0a:ca:01:07:f4:03:e1: 50:e8:94:ce:a8:e4:0a:9e:4b:f3:36:9f:1b:f3:5f:0e:6c:e7: d7:22:4c:c0:87:f5:41:d2:27:02:67:ae:ec:ab:88:b7:4a:7c: 74:91:3c:f2:60:ed:b9:78:e4:24:b9:9b:fd:8b:cf:1a:a1:a9: 8f:65:6d:2b:db:9c:03:5d:23:02:c7:37:fb:a4:74:d9:9b:9d: 87:de:18:92:85:96:4c:b2:95:dc:87:fc:49:0f:28:ce:43:34: 9d:ba:2d:51:f0:c8:77:09:ec:79:12:3c:9e:40:7e:73:22:77: e2:20:93:32:3f:4a:0c:52:62:64:3d:ba:57:17:02:a4:8a:b7: 0d:9a:d2:30:a6:18:44:43:3f:d1:94:a4:7c:c4:ae:69:c3:9f: f5:c0:d9:15 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE2YuqkgmBuK5CteJ+AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI2MDQyMzAxMDAyNFoXDTI2MDcyMjAxMDAyNFowLzEtMCsGA1UEAxMk OGE0ZmMzNmYtODNlZS00MzJjLThjOWItMWJjOWY5YjY5MzYyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArS0DvkwBjX+gC5rH8DGEqwMox96CUNsiDZxB 7gwHOLHhOpvPbjiZt/NkuXxeSAta0KwHok5FRFr9rOsOVyG6hiLrMYAmNIGs3R5m CDub2pptcP7gvCQ5gktefoaoUw2YLu8ccH+IfzJN00d1RLj+LMdpGe95r5kL/4X9 y7p2/oVHd5d8vLY9JH4hOnbiH+5XGiPdxypQNi+O7bv+5a7fUooHxwq8XboP2gfF PqHF75LC9GoozMOilfZYU6CZRbTi1tmuh4hd09Cs8IoR+fS46aFkKlp3ztDDQzrq 03/nehJuiQ+jPBMz6DOjAEQTu6AAtsvqGy4UH/LyWLKq2uI9pwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFWqKnbtXiQmLcOMcRl5l8WmsaGGMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvZGZlMjJlNWItNjY1MC0z ZDUxLWFhOWMtNjZhMmUwMmI2OTY3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNy4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGSr35FO6WQusVoZIlWZdm6qwoE5eQU9j+dQzbHRm27UqwFSRjxO4MQA MME7Hrv4AY+u3ySGmpeKHikbwEVWAEYA86hDB+KH1Qf3t8YE9yXbt1Sk4Kown/12 QmjYujzlMkz2An7KCsoBB/QD4VDolM6o5AqeS/M2nxvzXw5s59ciTMCH9UHSJwJn ruyriLdKfHSRPPJg7bl45CS5m/2LzxqhqY9lbSvbnANdIwLHN/ukdNmbnYfeGJKF lkyyldyH/EkPKM5DNJ26LVHwyHcJ7HkSPJ5AfnMid+IgkzI/SgxSYmQ9ulcXAqSK tw2a0jCmGERDP9GUpHzErmnDn/XA2RU= -----END CERTIFICATE-----Generated at Mon Apr 27 11:18:25 2026 by rpki-client