$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa File: ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa (raw, json) Hash identifier: xNyoR8Gb+dCc9NQwFnFVERWjm15oAf9D/1c4Q4cCYQs= Subject key identifier: 45:7D:78:8D:1E:38:1C:A6:9D:1C:C6:4C:CD:E2:38:59:1D:C9:76:04 Certificate issuer: /CN=64da013d-8ba3-4af5-80ad-7674bd0cc403 Certificate serial: 010D0C9F4328584DCAFB08450BEB1A27BEFB4C80 Authority key identifier: 2D:D1:01:C1:DB:B3:F5:6C:57:8C:83:E5:D4:15:B8:40:06:A9:9F:34 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa Signing time: Mon 11 May 2026 01:00:24 +0000 ROA not before: Mon 11 May 2026 01:00:24 +0000 ROA not after: Sun 09 Aug 2026 01:00:24 +0000 asID: 399916 IP address blocks: 66.118.0.0/22 maxlen: 22 66.118.0.0/24 maxlen: 24 66.118.1.0/24 maxlen: 24 66.118.2.0/24 maxlen: 24 66.118.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 15 May 2026 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:ca:fb:08:45:0b:eb:1a:27:be:fb:4c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64da013d-8ba3-4af5-80ad-7674bd0cc403 Validity Not Before: May 11 01:00:24 2026 GMT Not After : Aug 9 01:00:24 2026 GMT Subject: CN=837431e7-e11b-4cbe-96c1-a4d33d7faa6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:47:0b:39:29:b5:f5:d1:70:a8:6e:b7:f3:28: 8f:01:62:14:eb:bf:9f:9c:e9:02:a8:38:15:c7:ea: 18:2e:47:c2:f9:e6:b9:88:90:c0:bf:6a:33:cc:be: 22:46:9f:4b:5d:0d:b1:48:7f:6d:a4:9d:f5:51:3b: 86:95:1a:33:d1:95:1b:e0:8d:56:e6:88:d5:a7:ab: d6:ba:b5:56:8c:b3:1d:e2:9b:10:bf:87:54:e5:81: 96:a9:5a:d4:31:f0:5c:ee:7a:f5:4a:23:5e:11:c5: d6:ef:95:c9:80:64:8e:fa:ca:73:9d:35:9a:2e:0a: bd:08:01:f2:df:16:3e:9d:5e:01:5c:61:94:89:c5: 4d:1e:30:66:99:3c:e6:92:ba:71:fd:d0:1d:5f:b6: 16:c4:db:a9:ca:b1:9d:b3:fe:1f:a9:ef:7e:65:1d: 92:74:65:d6:71:a8:bf:cc:47:3b:14:af:03:99:cb: b9:b4:f4:91:f8:38:77:3f:b2:12:32:db:52:a0:25: 87:a7:15:0b:8b:be:af:2e:4b:f8:8b:5a:c3:74:47: 96:ba:7b:ba:82:d6:a5:22:2d:a1:f8:b2:b7:86:0b: 26:05:d4:0d:99:a1:2c:6c:ac:53:44:c7:52:59:ba: 2e:39:e9:9e:94:3a:9e:d9:43:c4:4b:b4:a2:f3:8e: 4c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:7D:78:8D:1E:38:1C:A6:9D:1C:C6:4C:CD:E2:38:59:1D:C9:76:04 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.crl X509v3 Authority Key Identifier: keyid:2D:D1:01:C1:DB:B3:F5:6C:57:8C:83:E5:D4:15:B8:40:06:A9:9F:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer sbgp-ipAddrBlock: critical IPv4: 66.118.0.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 08:35:13:db:5b:59:2e:a1:01:ea:82:b2:13:43:0e:96:c7:be: 2a:34:a3:1f:0f:e0:c3:9f:27:29:57:14:95:85:d8:00:84:f9: 81:4b:44:47:80:ee:d8:6a:32:2d:fd:4b:32:06:a0:c5:6f:f3: 82:7a:80:87:c1:00:51:4c:c0:80:ac:04:ed:75:0f:ad:d7:32: 0e:f9:f2:fa:09:cf:f2:0b:6f:8c:72:a2:d8:4c:f9:48:4f:03: 3c:68:ea:00:88:78:98:c9:30:35:7a:2f:dd:8f:11:3c:ad:3a: 6e:d6:33:51:be:b2:7f:0b:04:72:a4:81:75:97:ea:5d:5b:b1: 78:86:79:a7:29:fd:4b:d9:fc:7e:c2:ed:b7:b7:b0:77:41:3d: 9e:37:40:42:44:6d:70:91:51:e2:b0:ef:f3:8d:64:44:b3:1d: f6:05:ea:de:20:f6:41:0c:3d:69:51:ce:24:2b:63:1d:ef:70: 1e:eb:07:a0:2d:14:72:6d:f9:27:ee:89:d2:5a:d0:53:ad:c2: 53:c0:ab:89:7a:0b:eb:37:a7:39:58:25:93:16:df:dc:de:7f: 89:84:8f:c9:0c:97:55:aa:39:b3:0a:3c:b2:5e:96:2d:23:09: 3e:8c:d7:93:24:75:fb:e8:5b:8f:a1:8f:6d:88:56:74:13:e2: 70:22:50:c0 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE3K+whFC+saJ777TIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjRkYTAxM2QtOGJhMy00YWY1LTgwYWQtNzY3NGJkMGNj NDAzMB4XDTI2MDUxMTAxMDAyNFoXDTI2MDgwOTAxMDAyNFowLzEtMCsGA1UEAxMk ODM3NDMxZTctZTExYi00Y2JlLTk2YzEtYTRkMzNkN2ZhYTZkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkEcLOSm19dFwqG638yiPAWIU67+fnOkCqDgV x+oYLkfC+ea5iJDAv2ozzL4iRp9LXQ2xSH9tpJ31UTuGlRoz0ZUb4I1W5ojVp6vW urVWjLMd4psQv4dU5YGWqVrUMfBc7nr1SiNeEcXW75XJgGSO+spznTWaLgq9CAHy 3xY+nV4BXGGUicVNHjBmmTzmkrpx/dAdX7YWxNupyrGds/4fqe9+ZR2SdGXWcai/ zEc7FK8Dmcu5tPSR+Dh3P7ISMttSoCWHpxULi76vLkv4i1rDdEeWunu6gtalIi2h +LK3hgsmBdQNmaEsbKxTRMdSWbouOemelDqe2UPES7Si845M9wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFEV9eI0eOBymnRzGTM3iOFkdyXYEMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82NGRh MDEzZC04YmEzLTRhZjUtODBhZC03Njc0YmQwY2M0MDMvYmE5YWY3YzktNDE4OC0z YWVjLTgzY2EtMGU2MDI5OGE5OWQ0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNjRkYTAxM2QtOGJhMy00YWY1LTgw YWQtNzY3NGJkMGNjNDAzLzY0ZGEwMTNkLThiYTMtNGFmNS04MGFkLTc2NzRiZDBj YzQwMy5jcmwwHwYDVR0jBBgwFoAULdEBwduz9WxXjIPl1BW4QAapnzQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy82NGRhMDEzZC04YmEzLTRhZjUtODBhZC03Njc0 YmQwY2M0MDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQnYAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAg1E9tbWS6hAeqCshNDDpbHvio0ox8P4MOfJylXFJWF2ACE+YFLREeA 7thqMi39SzIGoMVv84J6gIfBAFFMwICsBO11D63XMg758voJz/ILb4xyothM+UhP Azxo6gCIeJjJMDV6L92PETytOm7WM1G+sn8LBHKkgXWX6l1bsXiGeacp/UvZ/H7C 7be3sHdBPZ43QEJEbXCRUeKw7/ONZESzHfYF6t4g9kEMPWlRziQrYx3vcB7rB6At FHJt+SfuidJa0FOtwlPAq4l6C+s3pzlYJZMW39zef4mEj8kMl1WqObMKPLJeli0j CT6M15MkdfvoW4+hj22IVnQT4nAiUMA= -----END CERTIFICATE-----Generated at Wed May 13 11:31:44 2026 by rpki-client