$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa File: bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa (raw, json) Hash identifier: 0pgqlYTDrNe+0vNnpD/l960oUVZCR193QxRlsiWXyFs= Subject key identifier: 59:34:B9:5D:9C:3A:FD:D4:E2:2B:3C:4C:ED:4F:C4:67:06:8F:D3:79 Certificate issuer: /CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Certificate serial: 010D0C9F4328584D11726C4710C5AD1222227C80 Authority key identifier: AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa Signing time: Thu 05 Mar 2026 14:00:40 +0000 ROA not before: Thu 05 Mar 2026 14:00:40 +0000 ROA not after: Wed 03 Jun 2026 13:00:40 +0000 asID: 54994 IP address blocks: 157.185.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:11:72:6c:47:10:c5:ad:12:22:22:7c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Validity Not Before: Mar 5 14:00:40 2026 GMT Not After : Jun 3 13:00:40 2026 GMT Subject: CN=b750b298-4bdf-4464-91be-77a3eea746f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:95:f2:f0:b4:76:34:1b:d9:b3:b8:93:a8:a4: 88:ec:b2:43:27:84:f7:71:68:f2:55:aa:4b:dc:d5: 22:dc:98:e4:25:49:90:61:ba:9a:56:1e:e1:71:6f: 2e:32:c9:c1:d7:0f:1d:ac:d7:c7:df:62:5e:28:ac: 78:77:fe:4a:78:e6:d2:d2:bb:2c:c4:c1:6d:b2:08: fe:bf:bf:a9:2d:b6:7e:10:b7:73:85:9c:8d:91:04: 9c:b9:db:da:5c:33:61:1a:38:8e:06:e4:5f:6d:02: 82:4d:03:af:b3:ed:ac:5b:77:9e:a1:fb:da:66:71: 5e:f3:7a:e6:4e:26:6c:be:49:6d:61:80:b3:89:3c: 7d:c5:f1:21:d6:d7:27:f0:91:e0:18:a4:85:09:8f: 62:8f:0c:50:b3:98:87:61:6d:d2:8a:8d:ab:ed:dd: d8:39:4d:90:16:01:1e:c2:35:fe:b1:ea:cb:b3:1f: e3:66:d4:1d:98:7a:3c:e2:5a:87:fd:b6:5f:36:0d: d9:8b:8f:46:ce:83:90:93:b2:97:39:24:19:40:29: 46:1f:da:f5:8a:50:57:49:32:ad:50:3d:2e:ce:e1: b8:36:d9:79:1a:90:a4:37:3d:1a:b2:73:0d:3f:55: 2c:7d:15:40:fd:85:e6:e9:f5:79:43:24:43:67:54: 7c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:34:B9:5D:9C:3A:FD:D4:E2:2B:3C:4C:ED:4F:C4:67:06:8F:D3:79 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl X509v3 Authority Key Identifier: keyid:AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer sbgp-ipAddrBlock: critical IPv4: 157.185.172.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 4d:63:bf:7f:96:8b:24:d3:3f:7c:a1:59:53:68:53:2b:73:8c: 4f:c9:36:da:1c:c0:cd:c2:d2:82:78:72:14:8b:12:d4:34:d2: eb:40:b3:8c:de:14:a7:b4:00:cc:36:42:47:53:da:b8:c3:21: 7d:c0:54:e2:33:d6:18:83:d3:3a:a9:8c:18:32:4e:24:1c:07: a9:d8:6f:58:b5:45:47:f6:ab:c9:59:ae:4b:36:c4:b2:b1:47: d6:cd:6e:7e:d0:cf:74:bf:df:0a:c6:41:e3:a7:01:f9:c0:97: b2:80:e0:19:11:27:aa:33:e3:3f:59:bc:b7:7a:8b:c8:19:f2: 65:5d:09:1e:fb:03:f0:f3:6d:94:f8:9b:2b:86:59:d6:28:8b: ab:08:99:16:59:c2:4f:02:fd:c4:16:ee:d5:6c:53:1a:ad:a4: 9b:00:ae:20:ee:1e:02:fe:f8:4e:7f:00:59:60:ef:d6:8a:f2: d9:65:34:21:9b:49:70:be:0a:f2:09:a4:d3:cd:2c:34:a9:24: 14:50:85:b3:4d:50:40:94:09:c4:ee:f0:6d:d4:5f:eb:55:69: f2:0f:2d:35:b8:af:4d:b7:e4:e2:f3:19:12:5a:d8:96:6f:ad: 43:27:4b:84:e0:5a:e6:9c:f9:70:89:c5:53:ee:47:7a:05:d4: 47:12:d2:3c -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE0RcmxHEMWtEiIifIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDFkYmMwZDctNGVjZi00YjliLTljN2ItOTIwMGFmOTAy ZDFiMB4XDTI2MDMwNTE0MDA0MFoXDTI2MDYwMzEzMDA0MFowLzEtMCsGA1UEAxMk Yjc1MGIyOTgtNGJkZi00NDY0LTkxYmUtNzdhM2VlYTc0NmYzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgZXy8LR2NBvZs7iTqKSI7LJDJ4T3cWjyVapL 3NUi3JjkJUmQYbqaVh7hcW8uMsnB1w8drNfH32JeKKx4d/5KeObS0rssxMFtsgj+ v7+pLbZ+ELdzhZyNkQScudvaXDNhGjiOBuRfbQKCTQOvs+2sW3eeofvaZnFe83rm TiZsvkltYYCziTx9xfEh1tcn8JHgGKSFCY9ijwxQs5iHYW3Sio2r7d3YOU2QFgEe wjX+serLsx/jZtQdmHo84lqH/bZfNg3Zi49GzoOQk7KXOSQZQClGH9r1ilBXSTKt UD0uzuG4Ntl5GpCkNz0asnMNP1UsfRVA/YXm6fV5QyRDZ1R8ewIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFk0uV2cOv3U4is8TO1PxGcGj9N5MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS80MWRi YzBkNy00ZWNmLTRiOWItOWM3Yi05MjAwYWY5MDJkMWIvYmZhMGJhYjMtYTU2NC0z ZTdjLWFiZDgtOGEwMDlmMTA0N2Y2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNDFkYmMwZDctNGVjZi00YjliLTlj N2ItOTIwMGFmOTAyZDFiLzQxZGJjMGQ3LTRlY2YtNGI5Yi05YzdiLTkyMDBhZjkw MmQxYi5jcmwwHwYDVR0jBBgwFoAUr+2KlmaX9JrFjYUWRsptXpsJ0LcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS80MWRiYzBkNy00ZWNmLTRiOWItOWM3Yi05MjAw YWY5MDJkMWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnbmsMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAE1jv3+WiyTTP3yhWVNoUytzjE/JNtocwM3C0oJ4chSLEtQ00utAs4ze FKe0AMw2QkdT2rjDIX3AVOIz1hiD0zqpjBgyTiQcB6nYb1i1RUf2q8lZrks2xLKx R9bNbn7Qz3S/3wrGQeOnAfnAl7KA4BkRJ6oz4z9ZvLd6i8gZ8mVdCR77A/DzbZT4 myuGWdYoi6sImRZZwk8C/cQW7tVsUxqtpJsAriDuHgL++E5/AFlg79aK8tllNCGb SXC+CvIJpNPNLDSpJBRQhbNNUECUCcTu8G3UX+tVafIPLTW4r0235OLzGRJa2JZv rUMnS4TgWuac+XCJxVPuR3oF1EcS0jw= -----END CERTIFICATE-----Generated at Thu Mar 26 07:26:02 2026 by rpki-client