$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa File: 686c395c-54ad-31c1-96df-b204d2205313.roa (raw, json) Hash identifier: Q6yNi9vPEhnHvMAqtp/Sc5rZXKT+/BSL5R32YgkA/Vs= Subject key identifier: 72:61:DC:34:18:5A:CA:8C:3B:63:9A:0C:83:05:4E:4E:51:D3:DB:83 Certificate issuer: /CN=dd3e6032-a6af-4662-8b07-848eeecc3995 Certificate serial: 010D0C9F4328584D19B4B67AAEE54DCC95D29000 Authority key identifier: 67:05:BA:E6:0C:E6:EC:BA:69:B6:2B:17:EB:42:FF:2F:6F:4E:02:2D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa Signing time: Sun 08 Mar 2026 13:00:40 +0000 ROA not before: Sun 08 Mar 2026 13:00:40 +0000 ROA not after: Sat 06 Jun 2026 13:00:40 +0000 asID: 965 IP address blocks: 23.172.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:19:b4:b6:7a:ae:e5:4d:cc:95:d2:90:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd3e6032-a6af-4662-8b07-848eeecc3995 Validity Not Before: Mar 8 13:00:40 2026 GMT Not After : Jun 6 13:00:40 2026 GMT Subject: CN=231c88f3-e77e-4a08-8656-9e0181ea8452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b7:7f:11:fb:d9:28:f7:d2:71:79:a7:02:34: 47:19:72:69:0c:a7:bc:a3:4b:8c:c5:23:63:ef:34: 90:47:ae:be:4f:d7:58:65:2c:33:fa:78:38:06:48: fd:97:83:ff:b6:6e:a2:cc:4d:97:cd:26:d3:92:0f: e2:6f:4c:5d:8a:0f:cb:1b:5a:37:34:8c:f2:b5:aa: 78:7d:f6:fa:f6:9b:8d:9c:3c:1b:5a:96:eb:0d:f9: e3:8c:9b:46:57:c1:38:ca:8c:9b:76:cd:fa:ac:a5: 9b:a1:2c:fe:b0:b6:4b:9f:9f:ac:12:d6:95:70:e8: e4:4a:e9:2e:60:06:00:2e:e7:1d:eb:4d:57:e1:0a: ff:fe:0b:a7:ab:12:d7:2e:9f:33:93:5a:c9:34:00: b5:e8:e3:e2:57:32:10:eb:73:6b:3c:6a:04:f1:48: b9:2c:77:02:aa:8c:f9:b1:3d:51:c5:85:a3:9c:a9: 2a:d2:02:ef:ec:4c:e2:d7:18:02:ba:1e:f4:73:69: 36:7d:4d:4c:5e:20:01:f4:50:1a:1c:f0:71:34:e9: a9:31:1b:de:54:29:83:79:c9:45:a7:65:66:1c:38: 62:25:11:9b:59:62:5c:4a:f7:b5:56:af:39:67:bd: d2:21:f0:ef:3d:89:90:5e:5a:a5:70:91:d0:1a:9b: ab:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:61:DC:34:18:5A:CA:8C:3B:63:9A:0C:83:05:4E:4E:51:D3:DB:83 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.crl X509v3 Authority Key Identifier: keyid:67:05:BA:E6:0C:E6:EC:BA:69:B6:2B:17:EB:42:FF:2F:6F:4E:02:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer sbgp-ipAddrBlock: critical IPv4: 23.172.136.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2c:b3:98:4a:19:73:95:bd:1b:3e:f2:94:32:35:ac:c1:e0:50: ab:12:7c:44:38:84:bd:0b:4a:9a:d8:4d:1c:54:e5:37:8c:c0: d5:b1:39:26:80:4c:3c:8e:fa:db:86:39:20:08:26:79:99:1f: e6:a1:78:43:e2:3c:b0:bc:8e:fe:85:f0:fa:10:f7:6c:63:03: d3:aa:84:e6:c5:ce:97:d2:c7:65:41:e7:11:64:fb:9b:a6:42: e7:6a:d1:e2:29:ef:7a:8d:97:91:9e:78:3c:42:91:99:d9:d5: e0:44:33:91:58:a6:34:f0:b6:9f:21:11:fc:15:af:c9:18:4a: 00:f8:47:09:05:f3:99:ba:c8:65:a0:d4:06:10:c8:5f:ed:73: 51:8d:01:35:a2:ef:db:ec:c9:4f:30:99:ad:a4:c9:c6:e5:50: 3b:8f:6b:54:77:65:8d:59:d7:8c:79:cc:82:72:a5:50:54:ba: 0f:c5:69:67:2c:a4:2c:da:14:41:10:65:3d:8d:b1:9d:f2:5d: 13:5d:fd:b7:61:71:c6:f8:a7:6b:ce:7f:99:91:24:5f:b3:42: 12:34:15:5c:6f:68:23:d2:57:11:e2:dd:12:7c:64:74:c7:62: 15:97:01:c6:ec:08:75:35:d8:9a:69:cc:4c:46:9d:5b:3b:b1: 15:ab:9e:bc -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE0ZtLZ6ruVNzJXSkAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGQzZTYwMzItYTZhZi00NjYyLThiMDctODQ4ZWVlY2Mz OTk1MB4XDTI2MDMwODEzMDA0MFoXDTI2MDYwNjEzMDA0MFowLzEtMCsGA1UEAxMk MjMxYzg4ZjMtZTc3ZS00YTA4LTg2NTYtOWUwMTgxZWE4NDUyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLd/EfvZKPfScXmnAjRHGXJpDKe8o0uMxSNj 7zSQR66+T9dYZSwz+ng4Bkj9l4P/tm6izE2XzSbTkg/ib0xdig/LG1o3NIzytap4 ffb69puNnDwbWpbrDfnjjJtGV8E4yoybds36rKWboSz+sLZLn5+sEtaVcOjkSuku YAYALucd601X4Qr//gunqxLXLp8zk1rJNAC16OPiVzIQ63NrPGoE8Ui5LHcCqoz5 sT1RxYWjnKkq0gLv7Ezi1xgCuh70c2k2fU1MXiAB9FAaHPBxNOmpMRveVCmDeclF p2VmHDhiJRGbWWJcSve1Vq85Z73SIfDvPYmQXlqlcJHQGpur8wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHJh3DQYWsqMO2OaDIMFTk5R09uDMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9kZDNl NjAzMi1hNmFmLTQ2NjItOGIwNy04NDhlZWVjYzM5OTUvNjg2YzM5NWMtNTRhZC0z MWMxLTk2ZGYtYjIwNGQyMjA1MzEzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvZGQzZTYwMzItYTZhZi00NjYyLThi MDctODQ4ZWVlY2MzOTk1L2RkM2U2MDMyLWE2YWYtNDY2Mi04YjA3LTg0OGVlZWNj Mzk5NS5jcmwwHwYDVR0jBBgwFoAUZwW65gzm7LpptisX60L/L29OAi0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9kZDNlNjAzMi1hNmFmLTQ2NjItOGIwNy04NDhl ZWVjYzM5OTUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF6yIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACyzmEoZc5W9Gz7ylDI1rMHgUKsSfEQ4hL0LSprYTRxU5TeMwNWxOSaA TDyO+tuGOSAIJnmZH+aheEPiPLC8jv6F8PoQ92xjA9OqhObFzpfSx2VB5xFk+5um Qudq0eIp73qNl5GeeDxCkZnZ1eBEM5FYpjTwtp8hEfwVr8kYSgD4RwkF85m6yGWg 1AYQyF/tc1GNATWi79vsyU8wma2kycblUDuPa1R3ZY1Z14x5zIJypVBUug/FaWcs pCzaFEEQZT2NsZ3yXRNd/bdhccb4p2vOf5mRJF+zQhI0FVxvaCPSVxHi3RJ8ZHTH YhWXAcbsCHU12JppzExGnVs7sRWrnrw= -----END CERTIFICATE-----Generated at Thu Mar 26 17:07:27 2026 by rpki-client