$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/3d884570-87a9-34e5-b8d7-d777763d0b30.roa File: 3d884570-87a9-34e5-b8d7-d777763d0b30.roa (raw, json) Hash identifier: h4YUmcvTH8OD439n3k9QzEZERJQpN4ZKtLMFI0YzvBg= Subject key identifier: A4:BC:91:74:1E:5A:2D:F8:DD:65:69:37:7B:CC:C6:70:38:35:2F:35 Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F4328584D1B1A10EAD624542F5038F090 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/3d884570-87a9-34e5-b8d7-d777763d0b30.roa Signing time: Mon 09 Mar 2026 01:00:32 +0000 ROA not before: Mon 09 Mar 2026 01:00:32 +0000 ROA not after: Sun 07 Jun 2026 01:00:32 +0000 asID: 394437 IP address blocks: 72.20.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Mar 2026 05:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:1b:1a:10:ea:d6:24:54:2f:50:38:f0:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Mar 9 01:00:32 2026 GMT Not After : Jun 7 01:00:32 2026 GMT Subject: CN=c5f19d6a-e215-4280-975f-c62fdf45d2bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:89:38:48:db:40:24:b9:a3:3a:69:b4:47:1c: 05:5d:2d:02:e6:3d:c3:4a:25:5f:c9:c1:18:0d:f2: 3f:42:fe:8a:4b:f3:93:b1:e7:1f:42:0e:3d:84:b6: 72:af:24:e8:8c:33:b8:08:e4:8e:dd:e7:90:10:8c: b1:2c:a9:aa:b4:2a:c3:2f:b8:c6:e4:31:38:65:7d: d8:b4:e0:97:f2:b3:6a:df:92:a4:0c:b4:46:1c:25: 0a:14:31:38:ff:ea:0c:17:49:d1:bd:d5:da:13:5d: 2b:2c:33:15:fd:be:2f:be:fd:f0:50:7e:9e:50:f5: 98:25:7d:56:ca:da:92:41:6b:d1:c5:22:8b:2b:09: 13:93:a2:57:3d:49:6f:0a:f5:cf:8d:5e:25:7b:1e: 05:f2:96:fe:cf:ee:de:d1:46:14:36:4d:2c:70:94: cc:d2:12:43:51:f4:4e:bb:a6:40:55:d1:e5:6f:dd: 3a:5d:a2:36:6f:19:d9:43:b4:bf:f5:49:e6:fa:c5: 35:52:62:46:a3:e9:e1:0c:db:73:50:9a:d4:ab:f0: 4f:4f:d8:26:79:9d:dd:80:98:20:d9:e3:72:6c:9a: fb:54:76:e5:19:fc:4e:9f:97:91:6c:dc:73:54:98: 14:7b:f4:bb:30:f5:88:37:b7:f4:21:61:a7:f7:7b: 9c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BC:91:74:1E:5A:2D:F8:DD:65:69:37:7B:CC:C6:70:38:35:2F:35 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/3d884570-87a9-34e5-b8d7-d777763d0b30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 72.20.133.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 51:25:9b:07:cc:24:ef:77:7b:4a:70:ae:09:fa:51:4f:79:b9: a2:60:4c:d4:33:70:19:e0:d7:c9:12:a6:e9:79:6c:25:6c:79: ca:df:91:2e:44:a7:73:e6:af:58:96:13:68:f5:39:3a:06:03: 45:65:6c:44:93:d0:62:c7:cd:67:91:7e:17:34:b4:ea:19:f0: 67:02:cf:fe:12:1b:eb:68:74:08:4c:e3:7f:bc:24:77:0d:2b: da:2e:b0:7b:5a:a6:8a:72:55:56:62:85:3d:a9:06:fc:24:7e: 9e:00:be:a3:f2:e1:5f:c1:d7:7d:98:8f:de:a7:03:39:a4:56: 95:83:1e:58:82:53:82:13:df:86:5d:90:e5:3d:1f:7b:91:29: 68:06:eb:0b:9a:66:d2:87:ac:3c:27:e3:42:41:b9:72:ff:2c: 0a:47:a1:de:81:4b:45:bf:6a:1f:8b:5a:ec:90:01:48:7f:7d: 8d:1f:4c:fa:b5:98:20:2e:02:16:ab:aa:ba:4c:4f:5b:b9:f6: dc:c9:d0:53:5e:52:00:08:53:e1:54:32:98:b2:3a:b2:47:66: 1a:ed:e6:d9:14:17:6b:78:2e:dc:01:3a:bb:ea:4b:4d:90:90: 4b:2f:8e:b0:cb:95:c1:32:f9:57:4a:cd:ad:e1:67:d0:06:1a: c2:9f:50:82 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE0bGhDq1iRUL1A48JAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI2MDMwOTAxMDAzMloXDTI2MDYwNzAxMDAzMlowLzEtMCsGA1UEAxMk YzVmMTlkNmEtZTIxNS00MjgwLTk3NWYtYzYyZmRmNDVkMmJiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgIk4SNtAJLmjOmm0RxwFXS0C5j3DSiVfycEY DfI/Qv6KS/OTsecfQg49hLZyryTojDO4COSO3eeQEIyxLKmqtCrDL7jG5DE4ZX3Y tOCX8rNq35KkDLRGHCUKFDE4/+oMF0nRvdXaE10rLDMV/b4vvv3wUH6eUPWYJX1W ytqSQWvRxSKLKwkTk6JXPUlvCvXPjV4lex4F8pb+z+7e0UYUNk0scJTM0hJDUfRO u6ZAVdHlb906XaI2bxnZQ7S/9Unm+sU1UmJGo+nhDNtzUJrUq/BPT9gmeZ3dgJgg 2eNybJr7VHblGfxOn5eRbNxzVJgUe/S7MPWIN7f0IWGn93ucfwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFKS8kXQeWi343WVpN3vMxnA4NS81MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvM2Q4ODQ1NzAtODdhOS0z NGU1LWI4ZDctZDc3Nzc2M2QwYjMwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSFMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFElmwfMJO93e0pwrgn6UU95uaJgTNQzcBng18kSpul5bCVsecrfkS5E p3Pmr1iWE2j1OToGA0VlbEST0GLHzWeRfhc0tOoZ8GcCz/4SG+todAhM43+8JHcN K9ousHtapopyVVZihT2pBvwkfp4AvqPy4V/B132Yj96nAzmkVpWDHliCU4IT34Zd kOU9H3uRKWgG6wuaZtKHrDwn40JBuXL/LApHod6BS0W/ah+LWuyQAUh/fY0fTPq1 mCAuAharqrpMT1u59tzJ0FNeUgAIU+FUMpiyOrJHZhrt5tkUF2t4LtwBOrvqS02Q kEsvjrDLlcEy+VdKza3hZ9AGGsKfUII= -----END CERTIFICATE-----Generated at Thu Mar 26 18:56:49 2026 by rpki-client