$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa File: c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa (raw, json) Hash identifier: 3qx7XHuX8ckE2mEPOHO9Vxtt3psT2gdihFAGaClMNyQ= Subject key identifier: E8:9D:75:28:48:B6:59:3D:AE:E5:F9:99:EE:2B:FD:E4:AC:9C:09:30 Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F4328584D40CA5D941AEC89BBDDECD6E0 Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa Signing time: Sun 22 Mar 2026 13:00:41 +0000 ROA not before: Sun 22 Mar 2026 13:00:41 +0000 ROA not after: Sat 20 Jun 2026 13:00:41 +0000 asID: 46687 IP address blocks: 24.213.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:40:ca:5d:94:1a:ec:89:bb:dd:ec:d6:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: Mar 22 13:00:41 2026 GMT Not After : Jun 20 13:00:41 2026 GMT Subject: CN=1ebab60d-f3f8-42ff-abc1-23535eb49d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e1:60:a2:6c:8d:dc:c2:69:02:33:d1:1d:6e: b0:6a:11:22:7f:b6:75:f0:a4:10:82:c5:af:7c:4b: 4e:4f:86:7f:6c:65:0f:43:8e:56:b7:9f:ff:65:0e: 78:ab:84:e5:31:a1:4a:db:5c:10:98:68:09:7d:9d: 1f:0f:40:37:ce:ec:a7:e1:c9:41:81:92:3f:62:b1: 14:39:26:ae:f6:7b:02:81:c8:d7:69:19:ad:dc:a9: 7e:d0:ee:e8:b8:07:7f:6c:d0:61:5b:17:51:13:92: 27:09:ee:4e:e3:85:82:1a:12:3f:f5:21:49:5f:a1: 25:30:e3:ec:f1:64:b0:0d:b8:5a:2d:80:a0:1e:2d: 3f:49:fe:5d:4f:bd:2c:8f:c5:4b:a0:5f:b9:cb:ac: b5:73:b0:6d:1e:e0:aa:3b:33:ff:63:f2:40:76:c6: 24:36:7b:86:b1:4f:ce:75:58:d0:c8:24:27:7e:28: 84:02:61:ab:71:9c:6d:fe:02:0a:c5:48:b4:b1:de: cc:7a:ca:50:7b:45:1b:e4:f3:96:80:e6:fd:99:f8: 12:86:62:b9:96:d9:9a:b4:8f:9a:ad:19:62:f3:7c: 65:63:de:80:05:7b:6b:2f:9d:48:1e:3f:3b:c9:82: cf:0c:14:76:81:16:13:ec:10:09:09:50:d6:02:87: 9f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:9D:75:28:48:B6:59:3D:AE:E5:F9:99:EE:2B:FD:E4:AC:9C:09:30 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 24.213.96.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3a:b3:7d:5f:3c:ec:e2:c7:1d:de:49:01:fb:ab:3d:47:b4:f5: 03:b2:d0:e8:5d:39:14:a6:a5:03:26:66:f4:1d:bd:a1:bb:d7: b3:58:a2:8c:79:0d:f5:ea:31:07:92:f7:1d:f2:b8:07:cf:0f: 4c:ce:cc:04:d9:90:64:42:42:b6:79:b2:b6:34:79:57:11:2a: 7b:2a:11:49:bb:b5:2b:2a:e0:8b:69:05:f6:8d:06:74:e3:0b: 35:4b:d3:25:3d:2d:c6:f1:c2:aa:ed:eb:e3:35:13:48:02:cb: fa:5a:d2:2b:c2:c4:c9:53:4e:41:16:70:4c:d4:86:d7:13:13: 17:a5:3d:d7:d0:78:76:f5:0b:01:90:0f:6f:69:c6:8f:ef:97: 56:a5:2b:e5:1b:da:1f:7b:7e:4b:a6:0d:51:59:16:19:7f:d8: 48:d1:5d:59:84:ac:4e:be:83:5b:33:fb:c3:25:0f:e4:b9:02: 84:62:b6:e8:a4:0c:75:fb:0a:07:84:07:4a:f3:8c:c5:00:b9: 51:62:35:08:cd:10:8a:de:b0:13:fd:18:f0:07:cc:00:d5:08: f3:f7:9b:95:58:1c:3d:32:e1:11:fb:62:41:14:4a:8f:32:14: 92:f1:f4:4a:39:76:c9:ff:c8:c9:a5:77:de:f2:a4:3f:23:e8: 2f:75:c7:34 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE1Ayl2UGuyJu93s1uAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI2MDMyMjEzMDA0MVoXDTI2MDYyMDEzMDA0MVowLzEtMCsGA1UEAxMk MWViYWI2MGQtZjNmOC00MmZmLWFiYzEtMjM1MzVlYjQ5ZDQ2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOFgomyN3MJpAjPRHW6wahEif7Z18KQQgsWv fEtOT4Z/bGUPQ45Wt5//ZQ54q4TlMaFK21wQmGgJfZ0fD0A3zuyn4clBgZI/YrEU OSau9nsCgcjXaRmt3Kl+0O7ouAd/bNBhWxdRE5InCe5O44WCGhI/9SFJX6ElMOPs 8WSwDbhaLYCgHi0/Sf5dT70sj8VLoF+5y6y1c7BtHuCqOzP/Y/JAdsYkNnuGsU/O dVjQyCQnfiiEAmGrcZxt/gIKxUi0sd7MespQe0Ub5POWgOb9mfgShmK5ltmatI+a rRli83xlY96ABXtrL51IHj87yYLPDBR2gRYT7BAJCVDWAoefPQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFOiddShItlk9ruX5me4r/eSsnAkwMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvYzEzMzdlZjAtZjdlNi0z ODRmLWEzNDktNTJiN2FiM2FmOWRlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEGNVgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADqzfV887OLHHd5JAfurPUe09QOy0OhdORSmpQMmZvQdvaG717NYoox5 DfXqMQeS9x3yuAfPD0zOzATZkGRCQrZ5srY0eVcRKnsqEUm7tSsq4ItpBfaNBnTj CzVL0yU9Lcbxwqrt6+M1E0gCy/pa0ivCxMlTTkEWcEzUhtcTExelPdfQeHb1CwGQ D29pxo/vl1alK+Ub2h97fkumDVFZFhl/2EjRXVmErE6+g1sz+8MlD+S5AoRituik DHX7CgeEB0rzjMUAuVFiNQjNEIresBP9GPAHzADVCPP3m5VYHD0y4RH7YkEUSo8y FJLx9Eo5dsn/yMmld97ypD8j6C91xzQ= -----END CERTIFICATE-----Generated at Thu Mar 26 13:08:49 2026 by rpki-client