$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa File: 2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa (raw, json) Hash identifier: xPhTJobR14THIgbs0yPCd1+QbAd8Cu1iqm0vWPpAGJY= Subject key identifier: 24:28:E5:14:73:D9:1D:C5:BF:F0:9A:F7:78:F1:22:BC:1D:36:B9:CC Certificate issuer: /CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Certificate serial: 010D0C9F4328584D4A8FA18F81EA5552ABFAB300 Authority key identifier: 6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa Signing time: Thu 26 Mar 2026 01:00:32 +0000 ROA not before: Thu 26 Mar 2026 01:00:32 +0000 ROA not after: Wed 24 Jun 2026 01:00:32 +0000 asID: 20473 IP address blocks: 136.228.0.0/19 maxlen: 32 139.60.200.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 29 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:4a:8f:a1:8f:81:ea:55:52:ab:fa:b3:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Validity Not Before: Mar 26 01:00:32 2026 GMT Not After : Jun 24 01:00:32 2026 GMT Subject: CN=61f44d65-65a5-4961-83b4-7277d357828e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:30:63:b5:98:67:b3:7a:af:0b:42:da:d5:5a: e1:9f:da:48:f6:72:f9:5e:02:3a:90:e7:13:43:16: ed:e9:a5:d2:10:2b:09:c0:8b:16:aa:aa:a5:14:30: fa:da:8a:19:55:d1:d7:3b:e0:83:97:fe:15:e3:20: e1:ff:44:80:73:dc:1c:09:4f:cd:79:0c:36:b9:1d: 8e:9d:66:a1:e6:d3:c4:ec:48:aa:df:1c:ca:58:5e: f4:f2:72:3d:54:d8:46:42:72:c7:cd:3f:57:cc:22: 54:ee:95:07:40:be:a2:3c:3b:60:aa:2c:76:e0:32: f4:08:0e:d9:23:8f:0f:09:e9:7d:d5:be:a3:5e:98: f6:80:a0:30:67:bb:b7:06:31:4a:d1:3b:a9:90:83: 48:60:55:4c:cb:dc:98:fc:6d:ae:f8:21:c1:16:a2: 65:07:05:97:5a:f3:bc:8e:df:d0:df:3c:b8:0f:81: 82:ed:68:cf:56:12:30:c1:e8:8b:ab:b9:29:53:8e: 3b:91:57:b2:fb:58:89:f9:2f:8a:65:17:85:c0:a8: ff:5c:a6:35:61:d7:30:14:1b:8c:0f:64:bb:db:fa: 6f:77:81:a7:2a:87:d2:34:5f:73:43:16:4f:ac:4f: 7f:cc:dc:bb:52:0c:b0:b9:c3:a5:6d:bd:c3:d9:70: 0c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:28:E5:14:73:D9:1D:C5:BF:F0:9A:F7:78:F1:22:BC:1D:36:B9:CC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl X509v3 Authority Key Identifier: keyid:6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer sbgp-ipAddrBlock: critical IPv4: 136.228.0.0/19 139.60.200.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 26:1a:76:05:80:ab:28:70:cb:61:32:d7:04:0e:bd:92:7c:c1: 5a:49:0d:17:a3:18:71:ca:6a:ef:86:2c:a0:67:e5:f8:1d:bc: 69:9e:66:7b:b9:7e:d1:64:e7:45:d4:4a:34:c6:72:0d:46:48: a7:e1:d4:52:f8:38:73:94:95:75:0f:89:4d:91:71:83:8b:45: 16:7c:8f:08:0a:38:f9:33:bd:53:37:2c:0b:92:8d:6e:f2:24: 83:5f:75:b9:74:fb:c2:b3:da:cf:93:4c:ce:cf:0d:8a:6d:4c: b3:b3:2c:d4:f8:98:ee:bc:1f:ee:9d:a1:aa:31:71:56:dd:2e: f2:c6:1b:09:48:9a:e0:0b:d8:82:e8:fe:e9:30:d0:8b:96:26: 64:2a:6e:57:b5:07:f8:0f:12:c8:20:6e:70:01:1f:a9:ae:28: e0:10:e9:8b:f3:dc:cf:69:6e:96:b9:fc:73:dc:39:f3:94:37: d4:3f:d7:45:58:f9:0b:09:fe:4b:7f:4f:90:2b:83:57:59:e1: 82:2e:f9:5e:2d:00:23:d7:01:85:84:21:9a:40:be:fa:63:bb: 57:1f:fb:3f:1d:ec:9b:58:3a:64:e0:f9:6b:cc:8b:75:89:94: da:2d:ab:ae:bf:36:e1:2a:ed:af:38:d3:64:d6:fd:bf:52:b8: 07:4c:8d:7f -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWE1Kj6GPgepVUqv6swAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAyYTUyZTUtMmI3MS00MTI0LWJkMjktNjBlOTBlNTlm NDdkMB4XDTI2MDMyNjAxMDAzMloXDTI2MDYyNDAxMDAzMlowLzEtMCsGA1UEAxMk NjFmNDRkNjUtNjVhNS00OTYxLTgzYjQtNzI3N2QzNTc4MjhlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizBjtZhns3qvC0La1Vrhn9pI9nL5XgI6kOcT Qxbt6aXSECsJwIsWqqqlFDD62ooZVdHXO+CDl/4V4yDh/0SAc9wcCU/NeQw2uR2O nWah5tPE7Eiq3xzKWF708nI9VNhGQnLHzT9XzCJU7pUHQL6iPDtgqix24DL0CA7Z I48PCel91b6jXpj2gKAwZ7u3BjFK0TupkINIYFVMy9yY/G2u+CHBFqJlBwWXWvO8 jt/Q3zy4D4GC7WjPVhIwweiLq7kpU447kVey+1iJ+S+KZReFwKj/XKY1YdcwFBuM D2S72/pvd4GnKofSNF9zQxZPrE9/zNy7UgywucOlbb3D2XAM7QIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFCQo5RRz2R3Fv/Ca93jxIrwdNrnMMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJh NTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5MGU1OWY0N2QvMmIyNWM0ZWEtM2MzOS0z NzRkLWE4MjMtMmQ5MzYxZDc5ZmU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvZDAyYTUyZTUtMmI3MS00MTI0LWJk MjktNjBlOTBlNTlmNDdkL2QwMmE1MmU1LTJiNzEtNDEyNC1iZDI5LTYwZTkwZTU5 ZjQ3ZC5jcmwwHwYDVR0jBBgwFoAUauWbwwPnU/AIdM3iI5bDJH4557EwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJhNTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5 MGU1OWY0N2QuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFiOQAAwQD izzIMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBACYadgWAqyhwy2Ey1wQOvZJ8wVpJDRejGHHKau+GLKBn5fgd vGmeZnu5ftFk50XUSjTGcg1GSKfh1FL4OHOUlXUPiU2RcYOLRRZ8jwgKOPkzvVM3 LAuSjW7yJINfdbl0+8Kz2s+TTM7PDYptTLOzLNT4mO68H+6doaoxcVbdLvLGGwlI muAL2ILo/ukw0IuWJmQqble1B/gPEsggbnABH6muKOAQ6Yvz3M9pbpa5/HPcOfOU N9Q/10VY+QsJ/kt/T5Arg1dZ4YIu+V4tACPXAYWEIZpAvvpju1cf+z8d7JtYOmTg +WvMi3WJlNotq66/NuEq7a8402TW/b9SuAdMjX8= -----END CERTIFICATE-----Generated at Sat Mar 28 18:56:36 2026 by rpki-client