$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa File: a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa (raw, json) Hash identifier: 2MvkMKv9kTLpKFdae6BiaOguOd2DR50ob8GBCVPcSI8= Subject key identifier: ED:16:59:82:ED:08:0A:2C:72:A8:82:6E:46:E7:78:5B:05:C2:2B:DB Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F4328584D8AC549A5FD8F99BE7AF62980 Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa Signing time: Sat 18 Apr 2026 01:00:24 +0000 ROA not before: Sat 18 Apr 2026 01:00:24 +0000 ROA not after: Fri 17 Jul 2026 01:00:24 +0000 asID: 7181 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Apr 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:8a:c5:49:a5:fd:8f:99:be:7a:f6:29:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: Apr 18 01:00:24 2026 GMT Not After : Jul 17 01:00:24 2026 GMT Subject: CN=fd093564-7703-494a-b1f0-616c0c93e3f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:96:8b:d3:7c:97:8e:bd:35:ba:70:6d:1b:7f: fb:9a:53:9a:52:da:4c:9c:40:c3:3b:52:c7:66:c2: b2:5a:5f:3d:78:b0:35:47:f0:68:6a:d3:ac:c6:1b: f5:2e:7a:72:f8:f6:83:39:f7:af:e8:36:57:bd:4e: 20:dd:61:3c:ee:4c:a2:1c:3c:ae:87:62:94:e1:66: f1:f6:57:0b:40:cc:e7:f1:31:8a:d6:8c:ab:de:af: 0c:3f:65:4f:db:80:4d:67:65:88:37:60:70:d1:61: be:65:d9:e2:05:6c:61:af:68:2f:84:ba:28:9f:8f: fc:79:e7:08:9d:5c:4c:d3:06:56:c7:5f:fc:03:06: 4d:3e:7e:2a:ab:4b:47:cf:99:08:a2:53:30:54:2b: ca:87:30:ac:5f:56:e5:3e:fc:14:f6:25:d6:5f:f6: 97:9f:fa:f1:80:4f:23:aa:5d:7f:ca:45:12:2d:f3: 7c:52:36:f9:4c:60:a3:10:40:19:84:d3:e6:91:83: 5e:ba:00:30:39:8c:7d:a6:a7:d4:8d:8d:e9:b7:4d: e8:a0:22:6d:31:80:ff:78:98:58:0d:30:60:ef:98: 57:25:a5:10:46:32:0a:a1:17:09:ca:d7:d4:f8:02: b4:5e:f0:4b:eb:fc:8b:4c:d9:36:66:87:34:2b:5a: 1d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:16:59:82:ED:08:0A:2C:72:A8:82:6E:46:E7:78:5B:05:C2:2B:DB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 39:d4:39:c1:4b:c8:1c:5a:7e:47:f3:21:3a:dd:a9:e2:0f:39: d5:8b:c1:38:4d:87:68:d7:d8:22:ab:09:22:66:31:b5:db:0f: 88:61:01:af:3e:85:d4:a2:1d:cc:98:01:01:31:dc:20:82:a9: c6:09:e6:87:6a:3e:77:c8:5a:98:ac:eb:c2:8d:19:c2:78:f7: 85:c4:30:b6:9a:f6:87:d6:69:29:a4:00:14:17:33:02:1a:c9: 20:d1:75:e4:68:1e:7c:c0:cc:c8:d4:3f:90:72:5d:a6:83:08: 09:5b:e8:31:c8:57:de:90:8b:e8:12:29:bd:3a:55:1b:62:56: d6:3b:45:b3:88:58:5c:df:ab:56:a3:e6:33:e2:81:45:bc:4b: b8:cc:49:20:e3:44:45:f8:ed:f8:74:67:41:fd:a2:71:d3:aa: 64:2a:1c:e5:c9:7f:ac:81:8c:31:38:4f:18:bc:79:f5:04:a0: 9f:b6:5f:14:c8:9f:83:8e:e3:61:cb:5e:82:62:e3:ff:8d:87: b8:cf:4c:51:38:b8:f5:94:c6:39:f4:5f:d5:86:f6:61:aa:41: 73:31:a5:73:bb:48:1c:d3:80:b4:5f:2a:93:56:81:5a:38:ec: 9d:27:17:99:99:53:68:0e:6a:e7:3d:c8:72:5d:5a:a1:ef:85: 7d:99:51:6a -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWE2KxUml/Y+Zvnr2KYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI2MDQxODAxMDAyNFoXDTI2MDcxNzAxMDAyNFowLzEtMCsGA1UEAxMk ZmQwOTM1NjQtNzcwMy00OTRhLWIxZjAtNjE2YzBjOTNlM2YyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpaL03yXjr01unBtG3/7mlOaUtpMnEDDO1LH ZsKyWl89eLA1R/BoatOsxhv1Lnpy+PaDOfev6DZXvU4g3WE87kyiHDyuh2KU4Wbx 9lcLQMzn8TGK1oyr3q8MP2VP24BNZ2WIN2Bw0WG+ZdniBWxhr2gvhLoon4/8eecI nVxM0wZWx1/8AwZNPn4qq0tHz5kIolMwVCvKhzCsX1blPvwU9iXWX/aXn/rxgE8j ql1/ykUSLfN8Ujb5TGCjEEAZhNPmkYNeugAwOYx9pqfUjY3pt03ooCJtMYD/eJhY DTBg75hXJaUQRjIKoRcJytfU+AK0XvBL6/yLTNk2Zoc0K1od1QIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFO0WWYLtCAoscqiCbkbneFsFwivbMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvYTc0OGY3NzctOGI3OS0z YWQ2LTkxMjctOGVhZDdhNGNmN2QxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAOdQ5wUvIHFp+R/MhOt2p4g85 1YvBOE2HaNfYIqsJImYxtdsPiGEBrz6F1KIdzJgBATHcIIKpxgnmh2o+d8hamKzr wo0Zwnj3hcQwtpr2h9ZpKaQAFBczAhrJINF15GgefMDMyNQ/kHJdpoMICVvoMchX 3pCL6BIpvTpVG2JW1jtFs4hYXN+rVqPmM+KBRbxLuMxJIONERfjt+HRnQf2icdOq ZCoc5cl/rIGMMThPGLx59QSgn7ZfFMifg47jYctegmLj/42HuM9MUTi49ZTGOfRf 1Yb2YapBczGlc7tIHNOAtF8qk1aBWjjsnScXmZlTaA5q5z3Icl1aoe+FfZlRag== -----END CERTIFICATE-----Generated at Wed Apr 22 08:33:57 2026 by rpki-client