$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/0f6981fa-1e72-324a-bc08-0e353c6fbbda.roa File: 0f6981fa-1e72-324a-bc08-0e353c6fbbda.roa (raw, json) Hash identifier: JgeFrauwiRm6X51N1nvh/L2+VbABCjfmbayvzrshXAs= Subject key identifier: 6C:FC:ED:90:01:1F:95:64:1F:FA:B7:16:1A:E2:8C:DB:E0:4B:DD:E5 Certificate issuer: /CN=2aa438c9-0cbb-4364-946d-9714249a8222 Certificate serial: 010D0C9F4328584D143D9C12C148787F115DCEC0 Authority key identifier: 05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/0f6981fa-1e72-324a-bc08-0e353c6fbbda.roa Signing time: Fri 06 Mar 2026 14:00:40 +0000 ROA not before: Fri 06 Mar 2026 14:00:40 +0000 ROA not after: Thu 04 Jun 2026 13:00:40 +0000 asID: 63293 IP address blocks: 129.134.128.0/24 maxlen: 24 129.134.130.0/24 maxlen: 24 129.134.131.0/24 maxlen: 24 129.134.132.0/24 maxlen: 24 129.134.135.0/24 maxlen: 24 129.134.136.0/24 maxlen: 24 129.134.137.0/24 maxlen: 24 129.134.138.0/24 maxlen: 24 129.134.139.0/24 maxlen: 24 129.134.140.0/24 maxlen: 24 129.134.143.0/24 maxlen: 24 129.134.144.0/24 maxlen: 24 129.134.147.0/24 maxlen: 24 129.134.148.0/24 maxlen: 24 129.134.149.0/24 maxlen: 24 129.134.150.0/24 maxlen: 24 129.134.154.0/24 maxlen: 24 129.134.155.0/24 maxlen: 24 129.134.156.0/24 maxlen: 24 129.134.157.0/24 maxlen: 24 129.134.158.0/24 maxlen: 24 129.134.159.0/24 maxlen: 24 129.134.160.0/26 maxlen: 26 129.134.161.0/24 maxlen: 24 129.134.163.0/24 maxlen: 24 129.134.164.0/24 maxlen: 24 129.134.165.0/24 maxlen: 24 129.134.168.0/24 maxlen: 24 129.134.169.0/24 maxlen: 24 129.134.170.0/24 maxlen: 24 129.134.171.0/24 maxlen: 24 129.134.172.0/24 maxlen: 24 129.134.173.0/24 maxlen: 24 129.134.174.0/24 maxlen: 24 129.134.175.0/24 maxlen: 24 129.134.176.0/24 maxlen: 24 129.134.177.0/24 maxlen: 24 129.134.178.0/24 maxlen: 24 129.134.179.0/24 maxlen: 24 129.134.181.0/24 maxlen: 24 129.134.182.0/24 maxlen: 24 129.134.183.0/24 maxlen: 24 129.134.184.0/24 maxlen: 24 129.134.185.0/24 maxlen: 24 129.134.186.0/24 maxlen: 24 129.134.187.0/24 maxlen: 24 157.240.128.0/24 maxlen: 24 157.240.157.0/24 maxlen: 24 157.240.158.0/24 maxlen: 24 157.240.169.0/24 maxlen: 24 157.240.170.0/24 maxlen: 24 157.240.175.0/24 maxlen: 24 157.240.176.0/24 maxlen: 24 157.240.177.0/24 maxlen: 24 157.240.179.0/24 maxlen: 24 157.240.181.0/24 maxlen: 24 157.240.182.0/24 maxlen: 24 157.240.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 21 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:14:3d:9c:12:c1:48:78:7f:11:5d:ce:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2aa438c9-0cbb-4364-946d-9714249a8222 Validity Not Before: Mar 6 14:00:40 2026 GMT Not After : Jun 4 13:00:40 2026 GMT Subject: CN=12e7ab02-bf4f-4ea7-8521-b39110797796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8b:cb:66:0d:6e:a0:65:84:7c:c9:f7:4b:dc: a9:d4:1f:40:7d:b2:34:bd:8c:d3:81:89:ba:ba:9e: 76:a3:b8:63:fc:8b:a6:9f:20:ed:77:37:45:ed:59: 25:6b:9a:6c:3b:e4:c2:da:50:f4:e2:3b:ef:b5:c7: 0f:31:4d:16:68:90:59:76:4d:3a:db:5e:32:a1:8f: a7:29:8d:4e:da:4c:de:77:e3:60:08:7b:a6:d8:87: 88:80:e8:fe:34:d9:f4:c1:a9:9c:95:1b:fc:3b:32: 78:1c:98:51:68:79:ff:0d:46:82:6b:be:9b:b5:46: 60:ac:9d:cc:ba:8b:2e:2b:97:c1:6d:67:3c:a7:30: 03:31:c3:8f:26:a0:19:62:4a:a2:8a:a5:3a:88:be: ad:5b:33:51:84:d2:10:b7:d2:b2:05:66:d1:55:a3: 91:45:0b:48:81:26:13:09:0c:fa:7c:2e:a4:ab:5b: a1:78:e1:ac:10:7d:1e:67:8d:3c:1d:88:43:44:5c: 05:0c:fc:1c:50:3b:06:0d:7f:6e:fc:ab:79:5e:fd: c1:fd:f4:4b:df:e0:69:d5:c5:4e:e6:41:82:56:e7: 70:8f:b0:54:d4:a6:64:07:58:16:1c:6d:84:3b:24: ac:3a:4d:12:73:ab:ce:b2:6f:ba:1e:35:25:6b:e1: 70:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:FC:ED:90:01:1F:95:64:1F:FA:B7:16:1A:E2:8C:DB:E0:4B:DD:E5 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/0f6981fa-1e72-324a-bc08-0e353c6fbbda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl X509v3 Authority Key Identifier: keyid:05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer sbgp-ipAddrBlock: critical IPv4: 129.134.128.0/24 129.134.130.0-129.134.132.255 129.134.135.0-129.134.140.255 129.134.143.0-129.134.144.255 129.134.147.0-129.134.150.255 129.134.154.0-129.134.160.63 129.134.161.0/24 129.134.163.0-129.134.165.255 129.134.168.0-129.134.179.255 129.134.181.0-129.134.187.255 157.240.128.0/24 157.240.157.0-157.240.158.255 157.240.169.0-157.240.170.255 157.240.175.0-157.240.177.255 157.240.179.0/24 157.240.181.0-157.240.183.255 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6b:8c:b7:58:66:c7:9e:62:36:40:da:58:72:e9:3d:e3:e1:da: 2d:d8:c7:f9:63:14:d0:a1:9b:63:4a:c7:4c:88:53:37:d3:05: 50:53:52:23:60:a2:e0:17:57:42:81:7d:4c:25:f7:e4:5d:ff: 98:4f:3c:9c:06:e8:e8:9f:43:eb:36:ec:38:ba:40:2c:00:b2: 15:8f:cd:b8:e9:ac:85:31:3e:76:3d:13:a0:4f:b4:93:d9:ff: a1:d0:32:9b:e4:4e:34:5c:73:7e:e9:b8:44:26:f4:3b:1e:de: b3:d9:69:01:ec:df:6a:bf:4c:07:c7:6e:85:40:f9:64:4e:72: 85:d4:d4:41:01:0f:11:c5:45:6a:93:65:22:1d:17:c2:0e:37: ba:f2:2f:67:fd:8e:1b:e4:b6:84:f2:61:a3:13:8d:b0:76:1d: 40:0c:6f:af:f2:06:ba:55:2c:58:45:01:37:5e:0c:8e:bc:8a: 11:c0:31:95:e5:77:46:f6:49:a9:ee:1e:bf:5f:fc:6e:f5:6c: 2c:b7:f0:05:52:e9:9c:dc:d1:cb:7c:cd:cc:91:39:a6:2e:13: 4d:58:df:b6:45:d2:b4:4d:78:73:85:b0:30:17:83:28:b8:53: 71:c7:da:b2:9c:50:29:85:31:6c:84:63:06:10:ec:11:01:53: 29:f0:37:2b -----BEGIN CERTIFICATE----- MIIHAzCCBeugAwIBAgIUAQ0Mn0MoWE0UPZwSwUh4fxFdzsAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmFhNDM4YzktMGNiYi00MzY0LTk0NmQtOTcxNDI0OWE4 MjIyMB4XDTI2MDMwNjE0MDA0MFoXDTI2MDYwNDEzMDA0MFowLzEtMCsGA1UEAxMk MTJlN2FiMDItYmY0Zi00ZWE3LTg1MjEtYjM5MTEwNzk3Nzk2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqovLZg1uoGWEfMn3S9yp1B9AfbI0vYzTgYm6 up52o7hj/IumnyDtdzdF7Vkla5psO+TC2lD04jvvtccPMU0WaJBZdk06214yoY+n KY1O2kzed+NgCHum2IeIgOj+NNn0wamclRv8OzJ4HJhRaHn/DUaCa76btUZgrJ3M uosuK5fBbWc8pzADMcOPJqAZYkqiiqU6iL6tWzNRhNIQt9KyBWbRVaORRQtIgSYT CQz6fC6kq1uheOGsEH0eZ408HYhDRFwFDPwcUDsGDX9u/Kt5Xv3B/fRL3+Bp1cVO 5kGCVudwj7BU1KZkB1gWHG2EOySsOk0Sc6vOsm+6HjUla+FwKwIDAQABo4IEFTCC BBEwHQYDVR0OBBYEFGz87ZABH5VkH/q3FhrijNvgS93lMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8yYWE0 MzhjOS0wY2JiLTQzNjQtOTQ2ZC05NzE0MjQ5YTgyMjIvMGY2OTgxZmEtMWU3Mi0z MjRhLWJjMDgtMGUzNTNjNmZiYmRhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMmFhNDM4YzktMGNiYi00MzY0LTk0 NmQtOTcxNDI0OWE4MjIyLzJhYTQzOGM5LTBjYmItNDM2NC05NDZkLTk3MTQyNDlh ODIyMi5jcmwwHwYDVR0jBBgwFoAUBSPfkxv/OUKcKv57/3pLM1boXrAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS8yYWE0MzhjOS0wY2JiLTQzNjQtOTQ2ZC05NzE0 MjQ5YTgyMjIuY2VyMIHeBggrBgEFBQcBBwEB/wSBzjCByzCByAQCAAEwgcEDBACB hoAwDAMEAYGGggMEAIGGhDAMAwQAgYaHAwQAgYaMMAwDBACBho8DBACBhpAwDAME AIGGkwMEAIGGljANAwQBgYaaAwUGgYagAAMEAIGGoTAMAwQAgYajAwQBgYakMAwD BAOBhqgDBAKBhrAwDAMEAIGGtQMEAoGGuAMEAJ3wgDAMAwQAnfCdAwQAnfCeMAwD BACd8KkDBACd8KowDAMEAJ3wrwMEAZ3wsAMEAJ3wszAMAwQAnfC1AwQDnfCwMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGuMt1hmx55iNkDaWHLpPePh2i3Yx/ljFNChm2NKx0yIUzfTBVBTUiNg ouAXV0KBfUwl9+Rd/5hPPJwG6OifQ+s27Di6QCwAshWPzbjprIUxPnY9E6BPtJPZ /6HQMpvkTjRcc37puEQm9Dse3rPZaQHs32q/TAfHboVA+WROcoXU1EEBDxHFRWqT ZSIdF8ION7ryL2f9jhvktoTyYaMTjbB2HUAMb6/yBrpVLFhFATdeDI68ihHAMZXl d0b2SanuHr9f/G71bCy38AVS6Zzc0ct8zcyROaYuE01Y37ZF0rRNeHOFsDAXgyi4 U3HH2rKcUCmFMWyEYwYQ7BEBUynwNys= -----END CERTIFICATE-----Generated at Fri Mar 20 22:13:08 2026 by rpki-client