$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa File: 40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa (raw, json) Hash identifier: c5BiPtqbid5LICFHlQo/UlVDWCKeArTJdUxsyke6zck= Subject key identifier: 28:D9:8F:0D:3D:37:09:BF:E1:9B:40:81:25:C7:58:85:9C:36:28:5B Certificate issuer: /CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Certificate serial: 010D0C9F4328584D2BDA315CB49C70B271785000 Authority key identifier: 86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa Signing time: Sun 15 Mar 2026 01:00:32 +0000 ROA not before: Sun 15 Mar 2026 01:00:32 +0000 ROA not after: Sat 13 Jun 2026 01:00:32 +0000 asID: 20940 IP address blocks: 23.221.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:2b:da:31:5c:b4:9c:70:b2:71:78:50:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Validity Not Before: Mar 15 01:00:32 2026 GMT Not After : Jun 13 01:00:32 2026 GMT Subject: CN=109b9e12-263c-4ad7-b6b5-c3ab1034a33a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b6:8a:aa:2f:e2:81:f5:9b:a8:54:8b:d5:1c: 23:c3:01:f6:31:ca:3c:77:85:f3:08:aa:fa:3b:9d: 75:53:8e:70:fb:a0:70:03:c4:17:d6:53:78:db:3c: 72:d9:44:f9:c0:1c:f8:83:58:79:e7:62:ac:e5:8e: ec:c3:72:6c:89:d9:3f:61:4c:21:da:50:12:aa:fd: 59:12:ad:57:61:1f:ce:2a:f8:cb:3e:e9:9f:88:d7: 85:96:b4:46:63:7d:41:18:2b:52:96:cd:d2:58:e3: f0:b6:ac:20:18:63:39:90:a1:f7:34:ad:08:1c:66: 62:68:2d:2e:7d:d3:df:6e:4d:9f:55:83:dd:bd:ba: ef:2b:46:58:94:e4:68:78:4b:c1:32:4b:66:67:f0: ca:0b:a9:7d:a4:06:91:be:6f:b8:00:23:cc:c2:73: c5:50:c4:44:db:31:5d:83:30:2d:9f:2e:dc:43:a0: 34:d4:db:27:c1:55:20:38:ac:d5:2b:21:6b:46:e6: 9e:2b:10:8b:7f:c6:f0:77:f8:e8:42:93:ed:ff:65: ea:1c:06:09:03:b9:cf:99:a2:a8:f2:57:98:36:7b: 29:f0:4b:4c:61:94:e2:76:44:ac:5d:94:ad:b5:29: bf:b6:d1:c0:17:d6:f0:8d:69:de:13:b9:2b:23:2d: d1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D9:8F:0D:3D:37:09:BF:E1:9B:40:81:25:C7:58:85:9C:36:28:5B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl X509v3 Authority Key Identifier: keyid:86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer sbgp-ipAddrBlock: critical IPv4: 23.221.25.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 77:5a:c0:c5:97:89:a4:ce:c9:62:15:7e:48:98:8a:e7:b1:04: 25:24:ab:23:d2:d4:0b:f9:45:86:40:58:82:a1:50:b5:c9:80: 2e:e6:f1:f5:5c:3c:6f:70:ca:d8:9f:1e:81:b9:6d:ed:cd:26: 73:90:43:52:00:dc:98:cb:ac:b9:97:03:6a:ff:af:21:ba:ea: 45:ca:26:c1:6d:6d:d7:3c:fd:79:fc:d5:82:41:b0:d2:a9:40: 52:85:82:8f:09:66:87:3c:67:3b:17:96:2d:1d:6d:b9:a4:22: d2:f2:72:2b:bb:1a:0f:da:45:ad:20:2e:26:30:a0:82:1b:ab: e1:90:7a:8b:e3:52:52:2f:b3:3f:09:ac:2e:48:bf:2a:fc:bc: c1:d4:a8:a5:88:0a:18:78:b7:0f:a4:da:31:36:74:a8:41:cf: f5:9f:1b:53:da:ed:89:fb:39:32:79:51:77:18:2e:47:05:1c: 53:9a:c0:52:ed:7d:dc:87:54:aa:8f:e5:05:9a:83:4f:49:e3: 46:fc:6e:a9:41:e8:3e:6b:b8:86:08:82:1e:e5:67:1c:52:46: 5a:7c:24:40:8f:ad:b1:e0:49:42:74:84:7c:2a:ff:47:9e:54: 88:da:ce:12:39:fb:a6:ff:f3:00:1e:9b:08:6a:36:24:91:13: ce:61:db:67 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE0r2jFctJxwsnF4UAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWQ5YzllZjUtYjk2MC00MTJkLWFmNWUtMmRmMThjMjFm ODA5MB4XDTI2MDMxNTAxMDAzMloXDTI2MDYxMzAxMDAzMlowLzEtMCsGA1UEAxMk MTA5YjllMTItMjYzYy00YWQ3LWI2YjUtYzNhYjEwMzRhMzNhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybaKqi/igfWbqFSL1RwjwwH2Mco8d4XzCKr6 O511U45w+6BwA8QX1lN42zxy2UT5wBz4g1h552Ks5Y7sw3Jsidk/YUwh2lASqv1Z Eq1XYR/OKvjLPumfiNeFlrRGY31BGCtSls3SWOPwtqwgGGM5kKH3NK0IHGZiaC0u fdPfbk2fVYPdvbrvK0ZYlORoeEvBMktmZ/DKC6l9pAaRvm+4ACPMwnPFUMRE2zFd gzAtny7cQ6A01NsnwVUgOKzVKyFrRuaeKxCLf8bwd/joQpPt/2XqHAYJA7nPmaKo 8leYNnsp8EtMYZTidkSsXZSttSm/ttHAF9bwjWneE7krIy3RrQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCjZjw09Nwm/4ZtAgSXHWIWcNihbMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS81ZDlj OWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYxOGMyMWY4MDkvNDBhMzg5ZmYtYjMwMy0z ZGI5LThmZjctODAyNzZhNmNmNmViLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNWQ5YzllZjUtYjk2MC00MTJkLWFm NWUtMmRmMThjMjFmODA5LzVkOWM5ZWY1LWI5NjAtNDEyZC1hZjVlLTJkZjE4YzIx ZjgwOS5jcmwwHwYDVR0jBBgwFoAUhqQ31G26knrmjZ1q8zXGRprdF+0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS81ZDljOWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYx OGMyMWY4MDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF90ZMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHdawMWXiaTOyWIVfkiYiuexBCUkqyPS1Av5RYZAWIKhULXJgC7m8fVc PG9wytifHoG5be3NJnOQQ1IA3JjLrLmXA2r/ryG66kXKJsFtbdc8/Xn81YJBsNKp QFKFgo8JZoc8ZzsXli0dbbmkItLyciu7Gg/aRa0gLiYwoIIbq+GQeovjUlIvsz8J rC5Ivyr8vMHUqKWIChh4tw+k2jE2dKhBz/WfG1Pa7Yn7OTJ5UXcYLkcFHFOawFLt fdyHVKqP5QWag09J40b8bqlB6D5ruIYIgh7lZxxSRlp8JECPrbHgSUJ0hHwq/0ee VIjazhI5+6b/8wAemwhqNiSRE85h22c= -----END CERTIFICATE-----Generated at Thu Mar 26 03:43:24 2026 by rpki-client