$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa File: 8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa (raw, json) Hash identifier: m3XIglCqevqORb9wU4NWIPhQMdpJ/BMfjzl/ImhRg84= Subject key identifier: 8D:E2:1C:F6:20:1E:7C:9B:C9:87:65:13:E3:AB:D6:B4:4E:47:AE:B5 Certificate issuer: /CN=1add3b23-5fb0-4412-be17-98450d352516 Certificate serial: 010D0C9F4328584D0EA7B65EB3FB7C42D958C580 Authority key identifier: DF:D6:AB:35:08:C4:67:A3:69:8E:4B:5D:EA:87:78:C0:7A:1D:8E:26 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa Signing time: Wed 04 Mar 2026 14:00:41 +0000 ROA not before: Wed 04 Mar 2026 14:00:41 +0000 ROA not after: Tue 02 Jun 2026 13:00:41 +0000 asID: 400209 IP address blocks: 209.143.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 14 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:0e:a7:b6:5e:b3:fb:7c:42:d9:58:c5:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1add3b23-5fb0-4412-be17-98450d352516 Validity Not Before: Mar 4 14:00:41 2026 GMT Not After : Jun 2 13:00:41 2026 GMT Subject: CN=2b5c9313-83e7-4c27-b559-d03449107086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:84:b0:01:ba:05:ed:85:0d:d7:e7:30:0e: d4:af:81:21:72:67:1b:fe:b8:83:c0:25:18:2b:f0: 6f:1a:e0:a9:49:0f:e6:11:cb:ce:b4:b3:8a:ad:6a: da:08:fa:f2:3b:8b:ca:be:9a:9d:4b:86:b1:12:37: b0:b4:95:bf:35:96:86:69:72:42:5d:3a:fb:91:6d: c5:fb:00:30:83:e5:c4:55:b8:da:33:1e:92:39:41: bf:52:bf:26:37:c7:47:30:9d:f2:eb:0b:95:04:e4: c8:17:c2:fa:c0:b0:5e:80:ac:e5:93:c5:ff:35:43: 37:c1:58:1e:f6:cd:74:6d:3e:25:9b:20:18:c9:47: 8a:96:5f:e3:40:24:6f:66:d6:6d:d0:b3:4b:b2:85: f4:10:88:24:4e:7c:82:8d:e1:55:0e:d4:40:5d:cf: c2:97:ff:ff:cd:d0:8e:63:fb:49:32:ac:13:80:57: 82:b3:e2:0d:33:b4:86:e9:a9:e9:78:94:35:20:fe: f6:cb:c2:aa:74:0e:29:10:0d:92:1b:22:dd:37:f3: dc:d3:aa:e2:38:17:31:65:15:96:94:e4:a1:f8:f7: 48:dc:ec:da:63:f0:1e:48:2f:fa:33:97:b1:ae:8b: 08:0e:e7:8c:1a:c2:27:37:99:2c:54:36:2a:b0:fc: af:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E2:1C:F6:20:1E:7C:9B:C9:87:65:13:E3:AB:D6:B4:4E:47:AE:B5 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.crl X509v3 Authority Key Identifier: keyid:DF:D6:AB:35:08:C4:67:A3:69:8E:4B:5D:EA:87:78:C0:7A:1D:8E:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer sbgp-ipAddrBlock: critical IPv4: 209.143.96.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 5d:e1:7c:36:17:33:d6:b0:d6:5d:c5:d7:31:89:34:38:fe:33: 68:da:dc:ed:91:af:18:dc:a8:cd:5e:0b:e8:81:20:96:fd:c4: 30:8a:f8:d7:53:22:04:96:e9:67:d1:c9:de:b0:da:6c:82:4e: 7f:aa:1a:01:3a:72:f1:5e:f1:eb:dd:86:b5:5d:1f:d0:39:9f: 12:1b:3a:e0:0f:17:b1:99:7d:2a:ec:58:74:c9:4e:36:97:eb: 64:d2:ed:6e:f1:38:95:6b:84:93:a9:02:40:a3:16:2f:80:d0: 3b:e8:6d:9b:52:db:0e:d1:13:22:6d:af:7c:b6:cb:ca:13:a0: 7e:8d:5b:44:18:39:01:85:25:81:b9:fb:06:97:99:77:da:c9: ce:63:c8:5a:04:70:c1:90:69:ec:2e:29:63:4f:72:64:aa:0e: 9c:da:e7:70:83:2d:4e:13:a8:6d:a3:b1:7e:4d:11:1f:dd:27: c3:1a:25:06:dd:c5:b2:4f:52:6a:17:f4:9e:a8:45:5d:f4:9c: 3d:7b:e5:f4:da:24:18:32:6e:6c:6a:6a:90:01:ba:a8:aa:04: d7:ce:81:16:9c:fa:de:6d:6c:2b:18:a7:44:32:a5:d4:4c:a4: a0:61:f9:15:7b:d9:c8:65:e7:89:5e:9a:eb:20:65:d3:3e:f5: a6:39:e1:b1 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE0Op7Zes/t8QtlYxYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWFkZDNiMjMtNWZiMC00NDEyLWJlMTctOTg0NTBkMzUy NTE2MB4XDTI2MDMwNDE0MDA0MVoXDTI2MDYwMjEzMDA0MVowLzEtMCsGA1UEAxMk MmI1YzkzMTMtODNlNy00YzI3LWI1NTktZDAzNDQ5MTA3MDg2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuheEsAG6Be2FDdfnMA7Ur4Ehcmcb/riDwCUY K/BvGuCpSQ/mEcvOtLOKrWraCPryO4vKvpqdS4axEjewtJW/NZaGaXJCXTr7kW3F +wAwg+XEVbjaMx6SOUG/Ur8mN8dHMJ3y6wuVBOTIF8L6wLBegKzlk8X/NUM3wVge 9s10bT4lmyAYyUeKll/jQCRvZtZt0LNLsoX0EIgkTnyCjeFVDtRAXc/Cl///zdCO Y/tJMqwTgFeCs+INM7SG6anpeJQ1IP72y8KqdA4pEA2SGyLdN/Pc06riOBcxZRWW lOSh+PdI3OzaY/AeSC/6M5exrosIDueMGsInN5ksVDYqsPyvVQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFI3iHPYgHnybyYdlE+Or1rROR661MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8xYWRk M2IyMy01ZmIwLTQ0MTItYmUxNy05ODQ1MGQzNTI1MTYvOGEyMzQ0M2QtMWVkOC0z ZDgwLWFjMDItYmQzZGYzZDhmMWI3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMWFkZDNiMjMtNWZiMC00NDEyLWJl MTctOTg0NTBkMzUyNTE2LzFhZGQzYjIzLTVmYjAtNDQxMi1iZTE3LTk4NDUwZDM1 MjUxNi5jcmwwHwYDVR0jBBgwFoAU39arNQjEZ6Npjktd6od4wHodjiYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8xYWRkM2IyMy01ZmIwLTQ0MTItYmUxNy05ODQ1 MGQzNTI1MTYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0Y9gMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAF3hfDYXM9aw1l3F1zGJNDj+M2ja3O2RrxjcqM1eC+iBIJb9xDCK+NdT IgSW6WfRyd6w2myCTn+qGgE6cvFe8evdhrVdH9A5nxIbOuAPF7GZfSrsWHTJTjaX 62TS7W7xOJVrhJOpAkCjFi+A0DvobZtS2w7REyJtr3y2y8oToH6NW0QYOQGFJYG5 +waXmXfayc5jyFoEcMGQaewuKWNPcmSqDpza53CDLU4TqG2jsX5NER/dJ8MaJQbd xbJPUmoX9J6oRV30nD175fTaJBgybmxqapABuqiqBNfOgRac+t5tbCsYp0QypdRM pKBh+RV72chl54lemusgZdM+9aY54bE= -----END CERTIFICATE-----Generated at Fri Mar 13 13:15:43 2026 by rpki-client