$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa File: 40be57dc-7156-3f97-b77b-4e30e5469063.roa (raw, json) Hash identifier: W5v/N64JeLzDyKWf9AvISam4iKsCAars0Z9GZgYqiAM= Subject key identifier: 2A:99:0C:89:C9:66:64:7C:0F:6E:A7:10:87:85:F9:4E:5E:39:CB:9D Certificate issuer: /CN=5bb89f91-a9a1-4d88-b9d0-f7882ea134a9 Certificate serial: 010D0C9F4328584D3DFFA701011657206D71E780 Authority key identifier: CE:3A:6A:1D:7B:CD:04:74:BB:B3:D6:43:72:CF:AE:22:23:D4:A8:74 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa Signing time: Sat 21 Mar 2026 13:00:39 +0000 ROA not before: Sat 21 Mar 2026 13:00:39 +0000 ROA not after: Fri 19 Jun 2026 13:00:39 +0000 asID: 54911 IP address blocks: 104.171.32.0/20 maxlen: 20 104.171.36.0/22 maxlen: 22 104.171.39.0/24 maxlen: 24 104.171.40.0/22 maxlen: 22 104.171.40.0/24 maxlen: 24 104.171.41.0/24 maxlen: 24 104.171.43.0/24 maxlen: 24 104.171.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:3d:ff:a7:01:01:16:57:20:6d:71:e7:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bb89f91-a9a1-4d88-b9d0-f7882ea134a9 Validity Not Before: Mar 21 13:00:39 2026 GMT Not After : Jun 19 13:00:39 2026 GMT Subject: CN=98eeb80d-4d5e-4a0d-845c-3de10f2e14eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:5c:c7:be:a3:ed:bc:43:d1:6a:a3:cc:c5:7d: d2:39:af:93:cc:16:02:d2:89:78:9f:7d:bb:57:77: 3f:f9:76:c4:4f:42:20:7e:a5:1b:b9:43:a5:33:b1: ab:a9:52:3f:83:cf:f2:61:4a:cd:d1:14:68:82:4f: d3:bd:4d:ab:f4:1b:68:cd:a6:2a:6e:62:92:15:af: ae:a7:5b:32:08:13:2a:69:c3:99:aa:bc:08:3d:4e: 2f:4c:a3:b0:71:fa:2a:85:d2:91:f6:69:6d:0c:46: 79:96:5c:eb:e5:4c:92:fa:c5:1d:52:ed:d5:e6:9a: 32:ae:69:22:1b:9a:d1:23:8c:16:ae:d8:f9:c2:ee: 1a:4b:c3:f5:87:60:8b:be:d2:6a:a3:84:19:31:24: 3e:06:4c:90:03:69:d5:24:a3:7b:fe:1b:50:97:ad: 82:c5:bf:ff:a2:f6:c0:33:0d:76:2b:58:28:8d:1e: d1:b5:76:0b:0e:fd:51:f4:48:38:28:34:76:91:f4: 91:55:1d:df:b8:ce:05:03:32:a6:5c:91:8b:a2:2a: 5e:75:a1:ac:f7:d2:10:d7:7a:10:fe:51:29:1c:16: 00:1d:67:c2:94:bc:48:94:e4:17:7f:d0:25:52:c7: 30:15:1d:33:4b:68:f3:d0:14:20:65:4b:60:bc:14: 01:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:99:0C:89:C9:66:64:7C:0F:6E:A7:10:87:85:F9:4E:5E:39:CB:9D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.crl X509v3 Authority Key Identifier: keyid:CE:3A:6A:1D:7B:CD:04:74:BB:B3:D6:43:72:CF:AE:22:23:D4:A8:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer sbgp-ipAddrBlock: critical IPv4: 104.171.32.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7e:6c:2f:1c:93:72:b2:c1:ac:af:6e:31:1c:7f:07:a7:bf:f9: 67:5b:af:e8:3f:5d:7c:26:b4:8a:65:b1:59:49:7f:ff:8e:2e: 73:7f:65:f2:91:6d:75:c6:48:84:4d:b2:fd:0c:37:08:60:09: a1:15:31:33:06:68:3b:e2:a8:5a:3f:bb:79:1e:a9:40:64:e8: ee:dc:61:6c:35:14:a4:ed:54:a6:e6:66:9d:72:ec:8c:bd:a1: fe:0c:8d:b5:be:6c:5e:89:53:4b:5c:62:bf:6c:44:fb:c8:38: b9:70:16:02:06:85:8f:b9:ae:df:0b:19:2b:16:3a:33:96:7e: 5a:5a:0b:e7:e5:7c:75:67:da:f9:3c:e1:00:79:d3:db:9f:52: 2d:4f:b1:98:a3:af:69:4a:a4:05:8e:7e:87:ed:00:1f:ff:3e: a3:9a:7e:29:3b:6c:ab:7d:97:d5:2b:ac:f8:3d:06:23:0b:80: 65:65:53:91:75:f4:6f:92:b2:00:f7:96:76:d5:39:8f:92:e9: 29:b4:31:63:e0:3e:94:5f:5e:58:29:a0:6e:93:0c:ae:8f:2b: dc:32:d6:fe:1c:ce:c6:80:c9:ec:fc:c2:3e:c7:42:b0:60:68: c0:fe:c2:ec:27:f5:8c:84:d5:8f:b9:83:ef:98:b4:e0:8b:3d: 47:68:68:71 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE09/6cBARZXIG1x54AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWJiODlmOTEtYTlhMS00ZDg4LWI5ZDAtZjc4ODJlYTEz NGE5MB4XDTI2MDMyMTEzMDAzOVoXDTI2MDYxOTEzMDAzOVowLzEtMCsGA1UEAxMk OThlZWI4MGQtNGQ1ZS00YTBkLTg0NWMtM2RlMTBmMmUxNGViMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFzHvqPtvEPRaqPMxX3SOa+TzBYC0ol4n327 V3c/+XbET0IgfqUbuUOlM7GrqVI/g8/yYUrN0RRogk/TvU2r9BtozaYqbmKSFa+u p1syCBMqacOZqrwIPU4vTKOwcfoqhdKR9mltDEZ5llzr5UyS+sUdUu3V5poyrmki G5rRI4wWrtj5wu4aS8P1h2CLvtJqo4QZMSQ+BkyQA2nVJKN7/htQl62Cxb//ovbA Mw12K1gojR7RtXYLDv1R9Eg4KDR2kfSRVR3fuM4FAzKmXJGLoipedaGs99IQ13oQ /lEpHBYAHWfClLxIlOQXf9AlUscwFR0zS2jz0BQgZUtgvBQBTQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCqZDInJZmR8D26nEIeF+U5eOcudMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi81YmI4 OWY5MS1hOWExLTRkODgtYjlkMC1mNzg4MmVhMTM0YTkvNDBiZTU3ZGMtNzE1Ni0z Zjk3LWI3N2ItNGUzMGU1NDY5MDYzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNWJiODlmOTEtYTlhMS00ZDg4LWI5 ZDAtZjc4ODJlYTEzNGE5LzViYjg5ZjkxLWE5YTEtNGQ4OC1iOWQwLWY3ODgyZWEx MzRhOS5jcmwwHwYDVR0jBBgwFoAUzjpqHXvNBHS7s9ZDcs+uIiPUqHQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi81YmI4OWY5MS1hOWExLTRkODgtYjlkMC1mNzg4 MmVhMTM0YTkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEaKsgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAH5sLxyTcrLBrK9uMRx/B6e/+Wdbr+g/XXwmtIplsVlJf/+OLnN/ZfKR bXXGSIRNsv0MNwhgCaEVMTMGaDviqFo/u3keqUBk6O7cYWw1FKTtVKbmZp1y7Iy9 of4MjbW+bF6JU0tcYr9sRPvIOLlwFgIGhY+5rt8LGSsWOjOWflpaC+flfHVn2vk8 4QB509ufUi1PsZijr2lKpAWOfoftAB//PqOafik7bKt9l9UrrPg9BiMLgGVlU5F1 9G+SsgD3lnbVOY+S6Sm0MWPgPpRfXlgpoG6TDK6PK9wy1v4czsaAyez8wj7HQrBg aMD+wuwn9YyE1Y+5g++YtOCLPUdoaHE= -----END CERTIFICATE-----Generated at Thu Mar 26 06:29:02 2026 by rpki-client