$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa File: 3e233b44-911d-3c32-9600-9580640a3557.roa (raw, json) Hash identifier: m7LaVEtoAThNqYbBtOdGLd1kK3Ao20zlwxBMQdRoPX4= Subject key identifier: 46:7E:E2:79:5D:D2:E1:75:DC:9E:83:F0:CC:02:44:0E:CD:26:41:9C Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F4328584D8AC54994A2E5F382B5902D60 Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa Signing time: Sat 18 Apr 2026 01:00:24 +0000 ROA not before: Sat 18 Apr 2026 01:00:24 +0000 ROA not after: Fri 17 Jul 2026 01:00:24 +0000 asID: 17378 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Apr 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:8a:c5:49:94:a2:e5:f3:82:b5:90:2d:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: Apr 18 01:00:24 2026 GMT Not After : Jul 17 01:00:24 2026 GMT Subject: CN=39d1ea92-cb8d-45f8-afbc-d706015c8e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fa:62:e1:76:87:22:6b:2a:c0:7c:a9:b0:27: c0:86:60:70:36:1c:cd:d8:67:4c:83:21:ab:df:b3: 74:44:15:45:6b:d4:8a:ed:44:e2:94:96:95:8a:af: 45:fb:b9:fa:b9:85:85:c2:61:a0:37:3a:a1:85:58: 15:c7:88:57:11:f8:cf:84:00:52:0b:ea:3a:77:ad: e5:59:ad:9d:95:90:5a:bf:ee:06:37:59:32:6b:e2: 5c:fc:43:d6:1c:e2:ea:ef:a3:dc:c5:1b:b5:c8:0d: ab:46:8b:7d:1d:2a:03:24:6b:f4:35:4d:d2:0c:3c: c3:4f:0d:bb:ca:81:24:f2:cf:e4:7c:ea:df:fa:8b: e2:5a:60:53:5d:4a:ef:72:fb:39:ad:ad:0e:24:05: 1c:fd:10:07:98:ec:44:1a:57:0f:e3:35:ad:44:71: 75:3e:e3:20:48:02:f3:be:b5:68:a5:e4:9a:98:33: 95:ef:53:7a:4c:c1:46:19:2d:54:ae:69:ab:c5:69: 68:b1:d5:f3:5f:86:18:2f:cc:08:73:04:26:4c:f2: 66:e8:61:41:99:8f:42:26:32:95:67:ec:a7:40:da: cd:7a:20:b0:78:19:42:fc:c0:c4:c7:d3:f5:d4:dc: 9b:b9:1c:ba:9d:e6:d0:45:e9:78:e1:14:59:da:70: 03:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:7E:E2:79:5D:D2:E1:75:DC:9E:83:F0:CC:02:44:0E:CD:26:41:9C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 79:b1:2b:f0:b9:53:81:b5:2a:c8:cf:9d:0e:94:10:f3:ed:b6: a8:82:a5:38:a1:58:29:86:e8:dd:3f:62:0e:44:bd:cc:ee:11: 62:56:1c:23:1d:c7:db:7c:02:07:ed:0a:41:b5:de:ef:52:83: 0b:31:39:21:12:a4:09:7c:0f:08:9d:7e:c5:5e:c5:2a:67:97: c8:81:e8:6b:d4:4a:2c:8d:77:44:84:14:d8:1a:5b:12:1c:8f: 2c:d7:a3:63:b9:82:b0:25:44:9b:60:cd:35:96:d7:2c:ff:ad: 6f:37:9b:47:af:00:11:a7:0b:1c:fe:8d:08:73:9e:5a:c4:3a: 4f:ea:64:2d:96:1d:ef:6d:47:19:19:2d:aa:e0:84:b0:62:16: 54:65:52:34:c5:ce:13:7d:04:8a:de:66:36:e6:44:67:ae:b2: c0:60:a1:7b:ad:40:c4:34:5e:34:88:a4:03:f6:24:44:a7:f5: 9b:f0:13:da:8c:a7:6e:5e:ee:f3:0b:14:74:8b:9b:f6:fd:d5: 5c:de:e4:88:f1:5c:4a:27:90:66:79:5b:cc:34:3d:b7:32:e8: 89:13:5f:05:82:25:e9:ac:80:0f:2f:1c:db:56:ae:53:2b:fd: 68:6b:db:01:92:ad:c3:ac:11:7a:6c:55:20:9f:b5:40:66:dc: 4f:75:d6:ba -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWE2KxUmUouXzgrWQLWAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI2MDQxODAxMDAyNFoXDTI2MDcxNzAxMDAyNFowLzEtMCsGA1UEAxMk MzlkMWVhOTItY2I4ZC00NWY4LWFmYmMtZDcwNjAxNWM4ZTFhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vpi4XaHImsqwHypsCfAhmBwNhzN2GdMgyGr 37N0RBVFa9SK7UTilJaViq9F+7n6uYWFwmGgNzqhhVgVx4hXEfjPhABSC+o6d63l Wa2dlZBav+4GN1kya+Jc/EPWHOLq76PcxRu1yA2rRot9HSoDJGv0NU3SDDzDTw27 yoEk8s/kfOrf+oviWmBTXUrvcvs5ra0OJAUc/RAHmOxEGlcP4zWtRHF1PuMgSALz vrVopeSamDOV71N6TMFGGS1UrmmrxWlosdXzX4YYL8wIcwQmTPJm6GFBmY9CJjKV Z+ynQNrNeiCweBlC/MDEx9P11NybuRy6nebQRel44RRZ2nADlwIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFEZ+4nld0uF13J6D8MwCRA7NJkGcMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvM2UyMzNiNDQtOTExZC0z YzMyLTk2MDAtOTU4MDY0MGEzNTU3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAebEr8LlTgbUqyM+dDpQQ8+22 qIKlOKFYKYbo3T9iDkS9zO4RYlYcIx3H23wCB+0KQbXe71KDCzE5IRKkCXwPCJ1+ xV7FKmeXyIHoa9RKLI13RIQU2BpbEhyPLNejY7mCsCVEm2DNNZbXLP+tbzebR68A EacLHP6NCHOeWsQ6T+pkLZYd721HGRktquCEsGIWVGVSNMXOE30Eit5mNuZEZ66y wGChe61AxDReNIikA/YkRKf1m/AT2oynbl7u8wsUdIub9v3VXN7kiPFcSieQZnlb zDQ9tzLoiRNfBYIl6ayADy8c21auUyv9aGvbAZKtw6wRemxVIJ+1QGbcT3XWug== -----END CERTIFICATE-----Generated at Wed Apr 22 08:34:01 2026 by rpki-client