$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/35396bc4-0ed0-3b26-8fe5-c2883baf0997.roa File: 35396bc4-0ed0-3b26-8fe5-c2883baf0997.roa (raw, json) Hash identifier: 0YzWgcvSvarlDghppzH1VDhZab3Yodx6RZfRt/cTof4= Subject key identifier: 26:FC:27:C0:0C:31:5D:37:B4:FA:7E:8D:53:52:88:F6:0F:14:30:60 Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F4328584DFBD5E7D89CB0B905348E5680 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/35396bc4-0ed0-3b26-8fe5-c2883baf0997.roa Signing time: Thu 28 May 2026 13:00:12 +0000 ROA not before: Thu 28 May 2026 13:00:12 +0000 ROA not after: Wed 26 Aug 2026 13:00:12 +0000 asID: 394437 IP address blocks: 72.20.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 02 Jun 2026 05:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:fb:d5:e7:d8:9c:b0:b9:05:34:8e:56:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: May 28 13:00:12 2026 GMT Not After : Aug 26 13:00:12 2026 GMT Subject: CN=eaadb85c-2cda-4266-94d7-919afe1e1694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:e2:5f:89:56:da:57:c3:17:45:1a:75:32:07: 0e:dc:ea:50:f1:8f:41:bb:ed:eb:48:5f:ab:90:97: ac:32:59:79:00:6c:27:a4:0b:44:e5:e4:46:f6:3b: 26:e6:25:ca:e9:9a:cc:61:94:67:d0:f0:06:d7:69: 29:75:da:ad:28:18:e8:31:d1:a3:0e:62:73:91:de: b1:36:d1:ec:fd:14:83:35:b5:af:86:d7:63:82:a3: 10:92:4d:25:bb:3f:3f:b1:5a:60:64:e1:20:d2:c7: 42:a8:e9:d6:77:47:d6:68:ca:92:26:19:85:a3:3e: cd:98:31:cd:b0:6a:20:2b:47:6b:11:98:38:3e:bb: 02:6e:d5:8d:78:69:4f:4b:e8:fe:f4:2c:47:0d:91: 2d:f5:1f:8d:30:63:1c:30:6e:00:57:39:b0:87:aa: d6:91:ee:61:80:b0:ed:c6:df:b0:a8:60:02:bc:46: 47:1f:d3:e9:4b:92:b8:4f:e3:a7:3e:12:ef:97:5a: b4:bb:bf:60:2a:12:9b:a3:1d:aa:1b:23:a9:26:83: 7e:21:30:ca:63:d9:15:a7:5d:76:15:1e:0e:b3:1f: 9b:bf:5f:e5:d1:9c:a2:36:9a:19:00:40:88:b7:bc: 99:7f:cc:93:bd:7a:93:47:95:7f:41:d5:6f:42:2e: 37:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:FC:27:C0:0C:31:5D:37:B4:FA:7E:8D:53:52:88:F6:0F:14:30:60 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/35396bc4-0ed0-3b26-8fe5-c2883baf0997.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 72.20.138.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption c2:57:b1:e5:e9:71:8a:98:97:25:a0:c4:5c:f0:a8:0a:4c:44: 29:eb:cb:20:ec:05:bc:f0:d1:6d:de:c9:1c:47:b9:84:fe:52: f0:fc:cd:6b:c1:97:7f:dd:a4:ee:ba:a0:17:04:b6:71:d2:2b: 27:22:78:8c:65:c5:ae:64:ca:f8:41:55:ef:5f:56:7b:ec:3d: cc:cd:92:ef:1d:5c:cf:32:2b:60:9f:52:ca:cb:28:a8:ff:65: 25:a9:0b:68:d8:d9:dc:40:80:f2:de:33:9c:39:98:b7:5a:c2: 8d:c8:e4:1b:d1:bd:4d:96:58:cb:92:83:a0:95:5d:68:c8:06: 01:30:e8:b8:09:f9:a2:30:9b:ab:57:22:ee:5c:31:ec:b3:a3: bb:45:da:9f:92:9e:25:3e:b6:d8:86:7e:78:85:33:7f:cb:87: eb:ad:ba:5a:55:10:44:b6:62:b1:8d:78:9f:e1:07:fb:e6:6b: 18:96:c0:fc:ac:7d:26:87:59:77:d4:d6:15:68:59:0c:a2:54: 48:78:0d:9b:6c:f2:96:da:b3:49:81:19:a7:00:d4:a4:82:1d: 39:4b:a5:fb:f7:9a:c8:2e:fc:64:90:2d:a7:e1:f3:a8:83:37: bb:4b:df:d7:ba:ad:5a:5b:4d:8f:98:47:86:fe:62:60:f3:f3: 3f:c1:2b:d9 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE371efYnLC5BTSOVoAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI2MDUyODEzMDAxMloXDTI2MDgyNjEzMDAxMlowLzEtMCsGA1UEAxMk ZWFhZGI4NWMtMmNkYS00MjY2LTk0ZDctOTE5YWZlMWUxNjk0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+JfiVbaV8MXRRp1MgcO3OpQ8Y9Bu+3rSF+r kJesMll5AGwnpAtE5eRG9jsm5iXK6ZrMYZRn0PAG12kpddqtKBjoMdGjDmJzkd6x NtHs/RSDNbWvhtdjgqMQkk0luz8/sVpgZOEg0sdCqOnWd0fWaMqSJhmFoz7NmDHN sGogK0drEZg4PrsCbtWNeGlPS+j+9CxHDZEt9R+NMGMcMG4AVzmwh6rWke5hgLDt xt+wqGACvEZHH9PpS5K4T+OnPhLvl1q0u79gKhKbox2qGyOpJoN+ITDKY9kVp112 FR4Osx+bv1/l0ZyiNpoZAECIt7yZf8yTvXqTR5V/QdVvQi43lQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCb8J8AMMV03tPp+jVNSiPYPFDBgMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvMzUzOTZiYzQtMGVkMC0z YjI2LThmZTUtYzI4ODNiYWYwOTk3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSKMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAMJXseXpcYqYlyWgxFzwqApMRCnryyDsBbzw0W3eyRxHuYT+UvD8zWvB l3/dpO66oBcEtnHSKycieIxlxa5kyvhBVe9fVnvsPczNku8dXM8yK2CfUsrLKKj/ ZSWpC2jY2dxAgPLeM5w5mLdawo3I5BvRvU2WWMuSg6CVXWjIBgEw6LgJ+aIwm6tX Iu5cMeyzo7tF2p+SniU+ttiGfniFM3/Lh+utulpVEES2YrGNeJ/hB/vmaxiWwPys fSaHWXfU1hVoWQyiVEh4DZts8pbas0mBGacA1KSCHTlLpfv3msgu/GSQLafh86iD N7tL39e6rVpbTY+YR4b+YmDz8z/BK9k= -----END CERTIFICATE-----Generated at Sun May 31 02:38:43 2026 by rpki-client