$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa File: 91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa (raw, json) Hash identifier: 6TtDxov2dHe2kqS0Ri1lHbu6VUiHzaph8pPG5KVKcxg= Subject key identifier: D8:17:41:35:81:28:1E:1E:B9:91:13:E4:A6:41:B1:96:A6:05:EE:EE Certificate issuer: /CN=3aeb4dac-8911-4f44-9f24-1f5081193043 Certificate serial: 010D0C9F4328584D55BA4703596B9744601C2400 Authority key identifier: 96:FF:31:79:24:B5:E1:3A:74:B0:00:4D:50:56:C3:6D:12:47:5E:9D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa Signing time: Mon 30 Mar 2026 01:00:23 +0000 ROA not before: Mon 30 Mar 2026 01:00:23 +0000 ROA not after: Sun 28 Jun 2026 01:00:23 +0000 asID: 55077 IP address blocks: 23.128.208.0/24 maxlen: 24 103.25.230.0/24 maxlen: 24 104.36.4.0/22 maxlen: 22 198.44.204.0/22 maxlen: 22 2602:ff31::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/3aeb4dac-8911-4f44-9f24-1f5081193043.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/3aeb4dac-8911-4f44-9f24-1f5081193043.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 Apr 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:55:ba:47:03:59:6b:97:44:60:1c:24:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3aeb4dac-8911-4f44-9f24-1f5081193043 Validity Not Before: Mar 30 01:00:23 2026 GMT Not After : Jun 28 01:00:23 2026 GMT Subject: CN=a964b82a-c15d-4e2a-a5f2-a465295c1ea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:11:1c:a0:dd:16:6d:86:51:d8:8d:15:0f:80: 16:30:8b:c3:d1:bb:e9:5c:7a:42:dd:7f:e5:1f:c7: 23:46:2e:81:dd:aa:4c:22:ea:a7:fa:84:00:84:6c: 8e:19:87:85:6c:b6:45:50:f8:a4:34:37:03:42:fe: fb:8f:78:07:aa:59:9e:f5:de:10:93:27:be:f9:d9: 65:2b:9e:26:08:75:1f:84:f6:6b:59:90:54:dc:9e: 29:2b:1a:a7:98:0d:cf:d8:43:c5:db:51:2a:44:ee: f6:bb:0e:33:ea:f6:d2:2d:5a:5b:ad:02:67:93:6f: 57:61:5e:ae:63:13:4a:b8:ad:66:7b:a6:73:a1:69: 4a:a4:33:2f:86:7a:d3:78:76:39:05:44:68:09:3c: aa:f0:a8:1b:45:f6:f3:7f:b6:f8:d8:79:1d:08:54: d1:0b:f3:57:84:d2:43:09:1c:76:09:7a:67:c1:4b: 1b:68:d2:4b:3d:93:f5:50:03:40:3f:6a:10:89:71: cf:ac:16:39:fb:82:3f:6b:06:74:75:6d:c9:1d:bb: 00:10:97:50:0e:b5:92:46:8d:b7:26:bb:cc:ce:b3: 13:97:42:89:cf:4b:59:a0:9a:96:e2:53:a2:ee:e3: 16:01:d6:9a:b8:7b:64:2a:70:7b:fa:66:8c:99:83: 7a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:17:41:35:81:28:1E:1E:B9:91:13:E4:A6:41:B1:96:A6:05:EE:EE Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/3aeb4dac-8911-4f44-9f24-1f5081193043.crl X509v3 Authority Key Identifier: keyid:96:FF:31:79:24:B5:E1:3A:74:B0:00:4D:50:56:C3:6D:12:47:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043.cer sbgp-ipAddrBlock: critical IPv4: 23.128.208.0/24 103.25.230.0/24 104.36.4.0/22 198.44.204.0/22 IPv6: 2602:ff31::/36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 37:7b:4c:9a:5e:c0:54:23:45:81:8c:fb:49:44:32:3b:0a:f6: 15:9d:98:a3:4c:57:f3:9c:48:10:5c:96:83:48:6b:2e:24:15: 43:c7:62:48:bb:6a:8d:35:e3:d3:a1:5f:ce:21:c6:cf:fa:91: c4:42:55:5c:26:9b:e6:31:08:9d:0d:1d:c0:2e:a1:7d:d8:9d: 49:c6:dc:df:cc:41:ac:3c:b0:c8:81:19:d7:89:34:d4:81:83: 18:00:bc:7e:be:7c:9f:1c:e6:95:19:74:31:ee:e0:05:90:75: c1:13:e0:9f:fb:df:0f:1e:75:6e:ea:3e:5c:80:06:42:ae:cd: 66:7b:04:2c:fd:91:4d:cd:20:12:8d:df:b0:bd:a9:dc:3b:66: de:eb:63:b8:6a:76:b3:39:b4:ab:7c:39:cb:85:11:0b:b3:37: 41:e0:cb:ac:5e:85:b6:ac:db:ec:45:19:66:12:40:38:ca:cf: 42:bd:a2:8a:5e:88:81:85:7c:09:f1:91:2a:85:6b:bb:1b:09: 07:c7:6e:96:07:20:41:36:6f:38:a1:47:54:3e:ca:c3:f5:3b: 43:ba:d8:f7:26:ba:b0:1c:ff:a2:d2:8d:36:eb:09:7c:f0:c2: 80:f4:00:bb:24:69:8b:21:73:2d:fa:d1:31:a2:ac:f5:01:b5: 20:d3:a4:3b -----BEGIN CERTIFICATE----- MIIGZTCCBU2gAwIBAgIUAQ0Mn0MoWE1VukcDWWuXRGAcJAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkM2FlYjRkYWMtODkxMS00ZjQ0LTlmMjQtMWY1MDgxMTkz MDQzMB4XDTI2MDMzMDAxMDAyM1oXDTI2MDYyODAxMDAyM1owLzEtMCsGA1UEAxMk YTk2NGI4MmEtYzE1ZC00ZTJhLWE1ZjItYTQ2NTI5NWMxZWE2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBEcoN0WbYZR2I0VD4AWMIvD0bvpXHpC3X/l H8cjRi6B3apMIuqn+oQAhGyOGYeFbLZFUPikNDcDQv77j3gHqlme9d4Qkye++dll K54mCHUfhPZrWZBU3J4pKxqnmA3P2EPF21EqRO72uw4z6vbSLVpbrQJnk29XYV6u YxNKuK1me6ZzoWlKpDMvhnrTeHY5BURoCTyq8KgbRfbzf7b42HkdCFTRC/NXhNJD CRx2CXpnwUsbaNJLPZP1UANAP2oQiXHPrBY5+4I/awZ0dW3JHbsAEJdQDrWSRo23 JrvMzrMTl0KJz0tZoJqW4lOi7uMWAdaauHtkKnB7+maMmYN6SQIDAQABo4IDdzCC A3MwHQYDVR0OBBYEFNgXQTWBKB4euZET5KZBsZamBe7uMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS8zYWVi NGRhYy04OTExLTRmNDQtOWYyNC0xZjUwODExOTMwNDMvOTFlYzFiOWEtNTMxOC0z YjBiLThkMGQtMTgxODNlNzFlOTI0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy82OWZkMDE1Ni1i YjFmLTQ4YjYtYmYzMi1jOTQ5MjI4NmYxOTUvM2FlYjRkYWMtODkxMS00ZjQ0LTlm MjQtMWY1MDgxMTkzMDQzLzNhZWI0ZGFjLTg5MTEtNGY0NC05ZjI0LTFmNTA4MTE5 MzA0My5jcmwwHwYDVR0jBBgwFoAUlv8xeSS14Tp0sABNUFbDbRJHXp0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhi Ni1iZjMyLWM5NDkyMjg2ZjE5NS8zYWViNGRhYy04OTExLTRmNDQtOWYyNC0xZjUw ODExOTMwNDMuY2VyMEEGCCsGAQUFBwEHAQH/BDIwMDAeBAIAATAYAwQAF4DQAwQA ZxnmAwQCaCQEAwQCxizMMA4EAgACMAgDBgQmAv8xADBUBgNVHSABAf8ESjBIMEYG CCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jl c291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUAA4IBAQA3e0yaXsBU I0WBjPtJRDI7CvYVnZijTFfznEgQXJaDSGsuJBVDx2JIu2qNNePToV/OIcbP+pHE QlVcJpvmMQidDR3ALqF92J1JxtzfzEGsPLDIgRnXiTTUgYMYALx+vnyfHOaVGXQx 7uAFkHXBE+Cf+98PHnVu6j5cgAZCrs1mewQs/ZFNzSASjd+wvancO2be62O4anaz ObSrfDnLhRELszdB4MusXoW2rNvsRRlmEkA4ys9CvaKKXoiBhXwJ8ZEqhWu7GwkH x26WByBBNm84oUdUPsrD9TtDutj3JrqwHP+i0o026wl88MKA9AC7JGmLIXMt+tEx oqz1AbUg06Q7 -----END CERTIFICATE-----Generated at Tue Apr 7 18:31:27 2026 by rpki-client