$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/70af8ef2-4e52-368a-a50c-aa4fc74ac17e.roa File: 70af8ef2-4e52-368a-a50c-aa4fc74ac17e.roa (raw, json) Hash identifier: Emyyha3tVTGNY2EdKnrShILTXNOgVqoQG0m7irOx1dc= Subject key identifier: 77:09:CA:DD:FA:30:71:AF:71:8A:00:A1:87:7D:78:87:BC:49:6B:52 Certificate issuer: /CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Certificate serial: 010D0C9F4328584D2BDA2B4ED3067200C242CA00 Authority key identifier: 86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/70af8ef2-4e52-368a-a50c-aa4fc74ac17e.roa Signing time: Sun 15 Mar 2026 01:00:32 +0000 ROA not before: Sun 15 Mar 2026 01:00:32 +0000 ROA not after: Sat 13 Jun 2026 01:00:32 +0000 asID: 20940 IP address blocks: 23.223.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:2b:da:2b:4e:d3:06:72:00:c2:42:ca:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Validity Not Before: Mar 15 01:00:32 2026 GMT Not After : Jun 13 01:00:32 2026 GMT Subject: CN=420d07ab-e886-42b4-8893-b56df591875e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:2b:1f:fd:05:31:78:f2:17:54:d8:1f:14:1b: 7c:f7:86:29:7b:5a:a9:3c:88:13:7f:53:e1:10:ea: ed:1d:f1:ae:bf:da:ad:78:1c:01:da:44:ba:30:30: 23:5b:59:97:37:69:45:c8:b4:4b:9f:6f:25:f5:95: a0:87:f4:90:5b:12:02:42:f0:82:78:d4:60:10:dd: e3:ed:85:30:bc:05:a6:d6:88:42:6e:50:1f:c4:fc: 32:be:d1:60:9d:e5:82:ad:9f:01:64:4c:34:be:40: 09:ce:b0:e4:c6:a6:0a:b5:90:7e:f5:8a:5c:91:7e: 58:c1:a2:e0:8b:c8:03:18:a9:a0:ba:30:24:7e:20: c3:f6:05:94:44:c4:ab:58:81:c1:08:a6:40:14:59: 48:da:5e:4b:3b:95:03:ef:b7:84:48:fc:da:5a:6e: f7:87:44:95:32:55:ed:82:ca:11:66:ea:46:2a:80: fd:a5:52:e4:bf:27:45:a1:f7:af:35:07:87:1d:7a: 97:33:02:9f:1d:da:7d:2c:86:45:99:b6:50:92:18: 70:fe:5d:84:e7:dc:e5:9f:28:64:39:67:3c:7a:a8: db:a7:62:b4:a1:f4:8e:8d:b3:76:ee:87:58:4e:c7: b8:e8:d9:36:ea:3c:4e:4f:64:9d:8e:99:22:64:0e: 58:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:09:CA:DD:FA:30:71:AF:71:8A:00:A1:87:7D:78:87:BC:49:6B:52 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/70af8ef2-4e52-368a-a50c-aa4fc74ac17e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl X509v3 Authority Key Identifier: keyid:86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer sbgp-ipAddrBlock: critical IPv4: 23.223.28.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 62:67:4c:fd:ca:50:8e:34:f9:52:6e:ad:9c:3f:23:ce:45:5e: 29:d9:6b:04:5b:a3:73:78:48:e3:ad:0f:32:9e:0c:14:0f:96: 9b:00:81:cf:00:d0:eb:5b:dd:86:03:30:0d:87:f3:86:2f:4f: cf:51:58:43:40:6a:fa:d8:14:b0:b6:fa:01:54:f7:94:10:74: f5:45:34:29:6e:28:86:4c:da:2e:a6:78:60:0d:90:c9:d9:d3: 48:13:d1:2d:ad:a7:56:da:f5:7c:c6:63:7c:24:d7:c5:48:bb: 7f:4d:a2:cd:00:aa:f9:67:d1:bc:ed:cb:51:a7:52:e9:2b:b6: b0:e8:c8:ba:ad:0c:d8:a3:84:a0:29:09:23:95:c0:0d:b8:e9: 22:14:a5:6c:64:f0:a7:66:4c:87:44:49:62:ee:09:ff:10:95: 5a:ab:ad:9c:4d:c5:2e:00:0a:d2:28:9c:95:0d:21:c5:3c:67: f4:42:fd:09:f1:85:b7:34:8b:f0:bb:52:a6:69:91:5d:9d:83: 4a:27:f8:a3:e0:22:e3:0d:7f:03:e9:51:27:6a:f4:7c:cf:ca: 81:b1:62:79:98:40:a5:e7:ad:8c:9b:1b:ba:ff:19:06:6e:be: 29:48:c9:d5:ef:32:46:ca:03:7c:c6:c0:d5:f6:ca:d3:80:a5: b5:6e:89:2f -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE0r2itO0wZyAMJCygAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWQ5YzllZjUtYjk2MC00MTJkLWFmNWUtMmRmMThjMjFm ODA5MB4XDTI2MDMxNTAxMDAzMloXDTI2MDYxMzAxMDAzMlowLzEtMCsGA1UEAxMk NDIwZDA3YWItZTg4Ni00MmI0LTg4OTMtYjU2ZGY1OTE4NzVlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhSsf/QUxePIXVNgfFBt894Ype1qpPIgTf1Ph EOrtHfGuv9qteBwB2kS6MDAjW1mXN2lFyLRLn28l9ZWgh/SQWxICQvCCeNRgEN3j 7YUwvAWm1ohCblAfxPwyvtFgneWCrZ8BZEw0vkAJzrDkxqYKtZB+9YpckX5YwaLg i8gDGKmgujAkfiDD9gWURMSrWIHBCKZAFFlI2l5LO5UD77eESPzaWm73h0SVMlXt gsoRZupGKoD9pVLkvydFofevNQeHHXqXMwKfHdp9LIZFmbZQkhhw/l2E59zlnyhk OWc8eqjbp2K0ofSOjbN27odYTse46Nk26jxOT2SdjpkiZA5Y+wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHcJyt36MHGvcYoAoYd9eIe8SWtSMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS81ZDlj OWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYxOGMyMWY4MDkvNzBhZjhlZjItNGU1Mi0z NjhhLWE1MGMtYWE0ZmM3NGFjMTdlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNWQ5YzllZjUtYjk2MC00MTJkLWFm NWUtMmRmMThjMjFmODA5LzVkOWM5ZWY1LWI5NjAtNDEyZC1hZjVlLTJkZjE4YzIx ZjgwOS5jcmwwHwYDVR0jBBgwFoAUhqQ31G26knrmjZ1q8zXGRprdF+0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS81ZDljOWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYx OGMyMWY4MDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF98cMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGJnTP3KUI40+VJurZw/I85FXinZawRbo3N4SOOtDzKeDBQPlpsAgc8A 0Otb3YYDMA2H84YvT89RWENAavrYFLC2+gFU95QQdPVFNCluKIZM2i6meGANkMnZ 00gT0S2tp1ba9XzGY3wk18VIu39Nos0Aqvln0bzty1GnUukrtrDoyLqtDNijhKAp CSOVwA246SIUpWxk8KdmTIdESWLuCf8QlVqrrZxNxS4ACtIonJUNIcU8Z/RC/Qnx hbc0i/C7UqZpkV2dg0on+KPgIuMNfwPpUSdq9HzPyoGxYnmYQKXnrYybG7r/GQZu vilIydXvMkbKA3zGwNX2ytOApbVuiS8= -----END CERTIFICATE-----Generated at Thu Mar 26 13:53:17 2026 by rpki-client