$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa File: d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa (raw, json) Hash identifier: LmZ5bCzWbNYDySOAlu6BRuHS2qVXPeK95WZEYsCXV8g= Subject key identifier: 21:39:C3:0E:8E:D3:07:33:40:0D:87:83:8F:8A:58:29:10:81:8E:B0 Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F4328584D40CA5DF16592001B96A02100 Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa Signing time: Sun 22 Mar 2026 13:00:41 +0000 ROA not before: Sun 22 Mar 2026 13:00:41 +0000 ROA not after: Sat 20 Jun 2026 13:00:41 +0000 asID: 46687 IP address blocks: 173.44.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Mar 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:40:ca:5d:f1:65:92:00:1b:96:a0:21:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: Mar 22 13:00:41 2026 GMT Not After : Jun 20 13:00:41 2026 GMT Subject: CN=8c154672-3893-4c85-95cf-33bfddcff0d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:01:8f:4e:f6:01:5b:82:fb:85:59:35:bd:fc: 37:9f:cf:a8:c8:3c:9b:f7:a3:27:b8:01:07:df:30: 5d:90:af:cf:e8:01:42:f0:53:fa:ea:70:4a:54:8b: 1a:7b:60:12:7c:e3:6e:6d:f0:3b:07:a6:25:61:15: 67:71:50:a4:16:c4:cf:17:05:e9:30:4a:46:d9:44: b0:eb:3d:af:40:2e:5c:c3:c8:16:53:8a:31:2b:48: 02:5d:86:e9:c2:0c:99:78:90:97:d8:5d:71:29:29: cd:01:1b:e0:d8:e4:f9:11:9b:81:cb:bd:08:60:11: 04:71:1f:2f:6d:d0:0e:36:84:7c:42:42:86:fc:c1: 28:0e:84:58:f1:8c:a4:d2:da:12:23:b4:0f:aa:4e: 09:3a:10:59:30:e8:b6:9c:4e:ff:eb:08:6d:69:ea: 19:74:24:89:34:ee:d5:4a:54:4a:65:01:19:22:14: d4:e0:3c:95:aa:6c:83:1d:88:59:28:3f:5b:30:90: 9e:92:fe:8d:b0:91:d7:a9:64:f9:2e:c1:ce:9f:91: cd:ef:65:0b:9a:34:95:4f:48:d4:44:3a:4c:e6:4e: 34:c2:47:fc:c8:1f:82:bf:13:25:7b:34:53:40:3e: 2c:69:43:8f:7e:6b:1c:8f:a7:92:86:27:d4:95:8e: ce:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:39:C3:0E:8E:D3:07:33:40:0D:87:83:8F:8A:58:29:10:81:8E:B0 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 173.44.116.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2f:38:9a:ec:3d:88:e8:1d:38:96:19:f5:ac:b7:f3:d0:89:4a: 6f:bd:8f:5c:69:d5:76:ad:1a:4c:0b:ba:7b:e8:e9:ac:2f:27: 8e:41:f6:c4:aa:22:a9:fb:94:02:da:d0:f4:2e:a2:77:3a:5e: 09:a4:74:8b:02:97:57:0b:9e:b9:72:94:f3:4f:c7:ab:eb:dd: 21:d3:3e:9a:e2:5e:bc:d4:fc:dc:89:c3:dc:36:e2:d4:0e:a0: 69:d7:6c:07:87:ef:d9:ec:6b:55:a0:ca:02:05:12:6f:a7:19: 64:20:f6:34:e9:86:ca:89:29:6a:0d:ca:ae:64:59:4a:a1:1e: 36:82:d6:c6:83:70:5e:52:ca:21:d4:da:90:1a:52:23:16:ca: fb:6e:ba:32:20:44:f6:c1:79:22:1a:04:56:c8:03:59:e2:f8: 96:3c:e4:2c:8f:fd:36:d0:22:05:ac:d9:a9:15:51:5a:6d:e6: 84:fd:13:dd:a4:34:de:d5:2c:d9:ba:ee:65:43:1a:20:2b:ef: fd:b1:4d:6c:17:f1:b9:c7:ee:28:09:a1:28:74:85:cc:cb:ee: 9b:d0:e3:00:52:9b:c1:c1:b7:5a:c1:18:44:00:d2:14:86:1d: f1:2a:8e:d8:33:0a:ce:59:9d:e7:d0:92:ad:da:f3:35:21:8a: 15:14:d6:8e -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE1Ayl3xZZIAG5agIQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI2MDMyMjEzMDA0MVoXDTI2MDYyMDEzMDA0MVowLzEtMCsGA1UEAxMk OGMxNTQ2NzItMzg5My00Yzg1LTk1Y2YtMzNiZmRkY2ZmMGQ0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgAGPTvYBW4L7hVk1vfw3n8+oyDyb96MnuAEH 3zBdkK/P6AFC8FP66nBKVIsae2ASfONubfA7B6YlYRVncVCkFsTPFwXpMEpG2USw 6z2vQC5cw8gWU4oxK0gCXYbpwgyZeJCX2F1xKSnNARvg2OT5EZuBy70IYBEEcR8v bdAONoR8QkKG/MEoDoRY8Yyk0toSI7QPqk4JOhBZMOi2nE7/6whtaeoZdCSJNO7V SlRKZQEZIhTU4DyVqmyDHYhZKD9bMJCekv6NsJHXqWT5LsHOn5HN72ULmjSVT0jU RDpM5k40wkf8yB+CvxMlezRTQD4saUOPfmscj6eShifUlY7OzwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCE5ww6O0wczQA2Hg4+KWCkQgY6wMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvZDJjZGNkNzctYWUzMS0z NjliLTlmNjMtY2UyYTQ2Y2M4ZjYyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCrSx0MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAC84muw9iOgdOJYZ9ay389CJSm+9j1xp1XatGkwLunvo6awvJ45B9sSq Iqn7lALa0PQuonc6XgmkdIsCl1cLnrlylPNPx6vr3SHTPpriXrzU/NyJw9w24tQO oGnXbAeH79nsa1WgygIFEm+nGWQg9jTphsqJKWoNyq5kWUqhHjaC1saDcF5SyiHU 2pAaUiMWyvtuujIgRPbBeSIaBFbIA1ni+JY85CyP/TbQIgWs2akVUVpt5oT9E92k NN7VLNm67mVDGiAr7/2xTWwX8bnH7igJoSh0hczL7pvQ4wBSm8HBt1rBGEQA0hSG HfEqjtgzCs5ZnefQkq3a8zUhihUU1o4= -----END CERTIFICATE-----Generated at Thu Mar 26 18:01:21 2026 by rpki-client