$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/2320df0a-ba1a-380c-be0f-d8e3c7f973a3.roa File: 2320df0a-ba1a-380c-be0f-d8e3c7f973a3.roa (raw, json) Hash identifier: 5F2ZkG+l+RrH8f55DSWVkTuMcYFcPP24dcE5hw5cnaA= Subject key identifier: 70:76:78:E1:71:8B:AC:92:A6:C7:A6:2E:D0:70:10:3F:8D:F2:43:CB Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F4328584D1B1A10D86DD88F96E1EA0900 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/2320df0a-ba1a-380c-be0f-d8e3c7f973a3.roa Signing time: Mon 09 Mar 2026 01:00:32 +0000 ROA not before: Mon 09 Mar 2026 01:00:32 +0000 ROA not after: Sun 07 Jun 2026 01:00:32 +0000 asID: 394437 IP address blocks: 72.20.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Mar 2026 05:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:1b:1a:10:d8:6d:d8:8f:96:e1:ea:09:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Mar 9 01:00:32 2026 GMT Not After : Jun 7 01:00:32 2026 GMT Subject: CN=95c1f8c8-8a87-4cd0-b7d1-7f2687a01489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:f0:c0:9e:20:bd:fb:70:63:91:53:11:5c:6f: 22:d6:5d:1a:43:23:27:56:e2:77:c7:49:1a:ec:46: 5b:60:3e:42:6b:b7:81:39:05:11:84:b7:6a:40:31: f7:f3:b8:e3:0a:2b:7a:f2:8e:a2:ca:70:d3:89:0f: 6a:4b:d5:e5:ab:f2:95:e0:74:8b:fd:5d:b8:30:1c: 13:cb:e1:34:73:68:85:9f:81:fc:0e:73:3f:18:89: 0a:4f:6d:62:f1:07:96:23:88:37:fa:fe:37:60:cc: 44:ca:0f:5e:b6:8f:05:cf:ef:34:aa:3b:5d:ce:26: fc:53:d9:28:b3:f5:96:b1:7f:81:ee:4f:04:0b:57: 27:23:54:24:21:03:b4:d9:4c:5a:de:16:6a:c4:47: 9a:84:ba:1d:d9:d7:31:92:dc:e6:23:b7:1f:20:c9: da:6e:63:8c:7d:20:ba:43:7f:38:4a:34:30:ac:24: 6f:5c:86:ff:91:03:0b:d0:91:93:aa:59:db:c3:b2: 7a:30:43:9b:c6:79:f1:43:9c:46:59:e3:11:b5:88: 3b:b2:28:c6:e4:89:ed:0e:14:11:a4:d3:f1:79:82: c7:fb:05:bb:e9:ff:02:28:23:08:ed:b8:7d:3f:5b: e8:e2:5d:69:8b:51:6a:7f:bc:98:9a:e3:8f:64:aa: 99:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:76:78:E1:71:8B:AC:92:A6:C7:A6:2E:D0:70:10:3F:8D:F2:43:CB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/2320df0a-ba1a-380c-be0f-d8e3c7f973a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 72.20.132.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3e:49:34:db:2d:e8:34:bf:c2:5d:e6:e7:e3:74:a4:02:ea:67: 42:d6:58:3f:a5:74:35:fa:75:c7:86:24:3d:13:9e:8e:f3:ec: cf:65:be:91:28:3b:3e:0a:21:2d:61:2c:f9:a9:a4:04:9f:5b: be:79:80:b8:be:3e:2b:47:4c:94:5c:37:c9:ed:cb:6e:d6:83: 5d:bd:fd:33:1b:c5:3c:cc:61:17:25:9a:cf:5d:03:02:3d:d7: 6e:67:bc:b1:35:28:f3:bf:8e:c7:43:36:cb:0b:f6:06:76:af: c5:fd:4b:ca:f0:c5:11:81:44:a8:a9:99:f8:9f:bc:0e:27:60: f8:bb:b4:f0:13:53:d8:2c:fb:2f:c8:be:1b:84:b5:de:1c:ef: 8a:c2:30:4e:51:ad:b8:ba:32:fd:39:27:9d:70:8b:31:bd:3e: 73:38:af:0d:d3:78:83:57:01:88:69:5a:a2:30:14:05:88:56: d8:6e:a6:72:df:77:b5:1a:19:16:c2:45:ea:a0:bc:5d:a5:68: d1:70:2e:9e:e6:79:11:1e:e9:11:47:54:4f:41:df:7c:84:2b: e7:47:a3:f5:be:16:20:fc:9e:50:1b:8a:07:df:d3:4e:18:21: f7:61:80:74:1c:cc:36:a2:0f:f2:f5:51:c4:f7:1c:16:9d:21: 5c:5e:94:6f -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE0bGhDYbdiPluHqCQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI2MDMwOTAxMDAzMloXDTI2MDYwNzAxMDAzMlowLzEtMCsGA1UEAxMk OTVjMWY4YzgtOGE4Ny00Y2QwLWI3ZDEtN2YyNjg3YTAxNDg5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgPDAniC9+3BjkVMRXG8i1l0aQyMnVuJ3x0ka 7EZbYD5Ca7eBOQURhLdqQDH387jjCit68o6iynDTiQ9qS9Xlq/KV4HSL/V24MBwT y+E0c2iFn4H8DnM/GIkKT21i8QeWI4g3+v43YMxEyg9eto8Fz+80qjtdzib8U9ko s/WWsX+B7k8EC1cnI1QkIQO02Uxa3hZqxEeahLod2dcxktzmI7cfIMnabmOMfSC6 Q384SjQwrCRvXIb/kQML0JGTqlnbw7J6MEObxnnxQ5xGWeMRtYg7sijG5IntDhQR pNPxeYLH+wW76f8CKCMI7bh9P1vo4l1pi1Fqf7yYmuOPZKqZUQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHB2eOFxi6ySpsemLtBwED+N8kPLMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvMjMyMGRmMGEtYmExYS0z ODBjLWJlMGYtZDhlM2M3Zjk3M2EzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSEMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAD5JNNst6DS/wl3m5+N0pALqZ0LWWD+ldDX6dceGJD0Tno7z7M9lvpEo Oz4KIS1hLPmppASfW755gLi+PitHTJRcN8nty27Wg129/TMbxTzMYRclms9dAwI9 125nvLE1KPO/jsdDNssL9gZ2r8X9S8rwxRGBRKipmfifvA4nYPi7tPATU9gs+y/I vhuEtd4c74rCME5Rrbi6Mv05J51wizG9PnM4rw3TeINXAYhpWqIwFAWIVthupnLf d7UaGRbCReqgvF2laNFwLp7meREe6RFHVE9B33yEK+dHo/W+FiD8nlAbigff004Y IfdhgHQczDaiD/L1UcT3HBadIVxelG8= -----END CERTIFICATE-----Generated at Thu Mar 26 17:38:10 2026 by rpki-client