$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa File: 8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa (raw, json) Hash identifier: z3z+s8dt4V236QiKFoUOixErfRAzkjMD+r/XWyXlT54= Subject key identifier: DE:53:7C:FF:E0:24:2E:B9:D1:CA:F4:54:6D:F5:62:A0:E3:3D:22:AA Certificate issuer: /CN=1add3b23-5fb0-4412-be17-98450d352516 Certificate serial: 010D0C9F4328584DEF45DCE302F920C6FA353500 Authority key identifier: DF:D6:AB:35:08:C4:67:A3:69:8E:4B:5D:EA:87:78:C0:7A:1D:8E:26 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa Signing time: Sun 24 May 2026 01:00:27 +0000 ROA not before: Sun 24 May 2026 01:00:27 +0000 ROA not after: Sat 22 Aug 2026 01:00:27 +0000 asID: 400209 IP address blocks: 209.143.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:ef:45:dc:e3:02:f9:20:c6:fa:35:35:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1add3b23-5fb0-4412-be17-98450d352516 Validity Not Before: May 24 01:00:27 2026 GMT Not After : Aug 22 01:00:27 2026 GMT Subject: CN=416595f9-0142-42ff-8757-937d2e57bb8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0d:0b:80:87:bd:ba:5f:c6:7c:b7:bc:09:f8: 43:3b:42:77:d1:a8:2c:f0:fb:0c:01:2a:23:c0:92: 89:09:79:59:05:64:da:02:c7:8e:4f:0b:23:b5:d5: 87:c7:80:90:26:4b:e9:26:79:f8:0d:43:b5:52:1f: 3e:de:e3:95:00:42:aa:c5:7d:ca:1b:ec:cc:f9:60: 2d:f0:dd:1a:ea:e7:9f:11:55:66:83:f3:d6:f1:60: fa:5a:16:27:20:fd:c0:b0:d0:61:23:7c:c1:0a:66: fb:77:31:f3:1b:f9:32:10:e0:81:8c:e3:4a:3b:90: 60:1f:61:d0:3f:8a:d7:a1:ce:c4:dc:2a:86:90:67: f8:c6:2b:cc:3a:68:34:c6:c8:40:b4:47:fc:d2:7f: b2:d3:ed:d6:0f:6f:2b:f5:70:f5:64:3a:5f:e4:fe: ec:ab:cd:4b:4f:f2:6c:29:8a:fd:2d:04:bf:16:16: c9:ff:95:44:27:c6:ca:6c:7c:de:53:e7:d8:41:89: a0:ef:eb:ca:ee:04:d5:c6:5e:78:0d:fd:58:ab:bc: d1:d8:34:e0:7f:46:c4:26:23:21:90:95:84:8f:2c: 62:0c:64:ab:be:8f:b4:f8:67:7c:35:6d:aa:65:55: 70:6a:13:4f:6d:1f:ee:3f:dd:81:a1:d3:c3:b6:3c: ea:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:53:7C:FF:E0:24:2E:B9:D1:CA:F4:54:6D:F5:62:A0:E3:3D:22:AA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.crl X509v3 Authority Key Identifier: keyid:DF:D6:AB:35:08:C4:67:A3:69:8E:4B:5D:EA:87:78:C0:7A:1D:8E:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer sbgp-ipAddrBlock: critical IPv4: 209.143.96.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 87:2c:fd:f7:31:73:e6:7c:6a:02:b5:b9:18:b8:53:17:0a:5f: 5d:50:69:27:bb:13:e8:77:d8:e0:94:8c:64:eb:a0:d7:02:36: 5e:35:56:e9:db:e4:68:5d:81:5f:d6:47:3d:52:3a:45:b5:e5: b0:e3:0b:a4:85:7d:fa:b6:4d:1d:e5:a5:ba:b0:f5:99:db:4b: da:af:ed:f1:07:d5:11:1b:82:02:27:51:3e:24:4e:9c:64:ca: f0:a8:f7:23:09:25:e3:51:fa:1e:68:38:52:4c:d5:65:f0:fe: 2b:f4:3b:d6:93:5d:f0:9a:52:1f:3a:63:89:a2:10:2e:58:45: 77:0c:6f:54:6a:94:73:c7:9e:4c:84:1b:08:f4:90:59:bc:c6: 2c:fe:de:04:6f:7d:86:b9:b3:f0:8a:dc:c3:52:4d:4e:66:b1: f9:f2:ae:1a:b2:be:6a:b2:47:94:9d:c9:1e:40:e9:ec:e1:80: cb:37:30:73:91:a6:eb:d4:50:fa:6e:1e:c8:69:92:1f:27:60: c3:26:56:90:54:7e:49:1e:74:2b:b8:6a:d7:cb:bf:62:72:d3: 85:c3:53:fa:8b:16:8d:4b:4a:a1:5d:02:07:b7:db:c7:24:f8: 6f:1e:40:39:38:b0:3f:6c:a0:51:28:37:8d:b0:30:30:f0:53: 6c:be:06:80 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE3vRdzjAvkgxvo1NQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWFkZDNiMjMtNWZiMC00NDEyLWJlMTctOTg0NTBkMzUy NTE2MB4XDTI2MDUyNDAxMDAyN1oXDTI2MDgyMjAxMDAyN1owLzEtMCsGA1UEAxMk NDE2NTk1ZjktMDE0Mi00MmZmLTg3NTctOTM3ZDJlNTdiYjhiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtg0LgIe9ul/GfLe8CfhDO0J30ags8PsMASoj wJKJCXlZBWTaAseOTwsjtdWHx4CQJkvpJnn4DUO1Uh8+3uOVAEKqxX3KG+zM+WAt 8N0a6uefEVVmg/PW8WD6WhYnIP3AsNBhI3zBCmb7dzHzG/kyEOCBjONKO5BgH2HQ P4rXoc7E3CqGkGf4xivMOmg0xshAtEf80n+y0+3WD28r9XD1ZDpf5P7sq81LT/Js KYr9LQS/FhbJ/5VEJ8bKbHzeU+fYQYmg7+vK7gTVxl54Df1Yq7zR2DTgf0bEJiMh kJWEjyxiDGSrvo+0+Gd8NW2qZVVwahNPbR/uP92BodPDtjzquwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFN5TfP/gJC650cr0VG31YqDjPSKqMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8xYWRk M2IyMy01ZmIwLTQ0MTItYmUxNy05ODQ1MGQzNTI1MTYvOGEyMzQ0M2QtMWVkOC0z ZDgwLWFjMDItYmQzZGYzZDhmMWI3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMWFkZDNiMjMtNWZiMC00NDEyLWJl MTctOTg0NTBkMzUyNTE2LzFhZGQzYjIzLTVmYjAtNDQxMi1iZTE3LTk4NDUwZDM1 MjUxNi5jcmwwHwYDVR0jBBgwFoAU39arNQjEZ6Npjktd6od4wHodjiYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8xYWRkM2IyMy01ZmIwLTQ0MTItYmUxNy05ODQ1 MGQzNTI1MTYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0Y9gMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAIcs/fcxc+Z8agK1uRi4UxcKX11QaSe7E+h32OCUjGTroNcCNl41Vunb 5GhdgV/WRz1SOkW15bDjC6SFffq2TR3lpbqw9ZnbS9qv7fEH1REbggInUT4kTpxk yvCo9yMJJeNR+h5oOFJM1WXw/iv0O9aTXfCaUh86Y4miEC5YRXcMb1RqlHPHnkyE Gwj0kFm8xiz+3gRvfYa5s/CK3MNSTU5msfnyrhqyvmqyR5SdyR5A6ezhgMs3MHOR puvUUPpuHshpkh8nYMMmVpBUfkkedCu4atfLv2Jy04XDU/qLFo1LSqFdAge328ck +G8eQDk4sD9soFEoN42wMDDwU2y+BoA= -----END CERTIFICATE-----Generated at Fri Jun 12 12:40:12 2026 by rpki-client