$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa File: de58c588-4488-3729-a7e1-98130f91c66c.roa (raw, json) Hash identifier: OOFEnCPLPaxwXAkEWMk6jXo5KlstlFKMBVZJ0MOMZlA= Subject key identifier: 4A:52:77:94:9A:65:74:53:B2:7B:1F:5D:63:98:D4:21:F9:97:15:06 Certificate issuer: /CN=ca2c0e73-f7f7-4070-98aa-c78ef1752849 Certificate serial: 010D0C9F4328584CCBA7536780F82E9E6C728C00 Authority key identifier: 76:CE:90:F2:9A:98:0C:BD:C1:58:74:E2:1C:58:59:B7:53:0A:4E:6A Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa Signing time: Sun 08 Feb 2026 14:00:41 +0000 ROA not before: Sun 08 Feb 2026 14:00:41 +0000 ROA not after: Sat 09 May 2026 13:00:41 +0000 asID: 32867 IP address blocks: 64.5.64.0/20 maxlen: 20 64.186.16.0/21 maxlen: 21 66.172.192.0/18 maxlen: 18 74.221.32.0/20 maxlen: 20 143.223.184.0/21 maxlen: 21 199.116.180.0/22 maxlen: 22 199.247.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Mar 2026 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:cb:a7:53:67:80:f8:2e:9e:6c:72:8c:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca2c0e73-f7f7-4070-98aa-c78ef1752849 Validity Not Before: Feb 8 14:00:41 2026 GMT Not After : May 9 13:00:41 2026 GMT Subject: CN=df7c4add-3e7a-496d-8acf-239d9e5a73ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:25:a8:18:eb:e8:ea:9d:3b:71:70:1f:55:5a: 9a:1d:11:62:89:2b:4a:f7:ec:97:7f:a6:09:dd:f6: 53:db:14:97:35:a3:cd:b5:42:a2:0f:15:05:31:0f: 16:f5:75:ef:a8:57:23:e2:ef:c8:5c:0c:33:20:b3: a3:94:72:24:3b:8a:1f:3d:ae:b8:46:cd:ce:e0:8e: 7d:6f:55:22:22:9a:26:f5:f3:12:54:39:c8:fa:84: 64:d1:49:69:f5:df:db:80:01:f8:9c:de:f0:b6:3e: 04:43:81:39:cb:3c:78:fe:18:ef:34:a4:8c:bf:65: ad:98:1d:89:99:e7:22:e1:d8:4b:e7:18:42:93:2b: 7e:af:df:65:78:0f:c7:d6:c1:32:85:1c:38:ab:80: 51:11:ab:14:a1:4c:40:90:d1:56:56:25:c1:7b:1f: be:94:63:56:1e:03:42:9e:06:5b:67:d0:ee:0b:23: 0a:73:1d:93:52:72:8d:10:d8:02:6f:01:a3:3e:33: 81:ab:a0:5c:c3:00:c0:6b:60:33:7c:18:17:f4:63: 02:8d:3d:34:a9:6f:e1:ce:2c:f9:82:34:96:bb:f5: b2:58:a2:34:04:1f:ee:02:5e:00:9f:25:82:95:32: d8:15:96:2b:27:5b:47:b4:7d:43:2c:ee:74:cb:62: 55:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:52:77:94:9A:65:74:53:B2:7B:1F:5D:63:98:D4:21:F9:97:15:06 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.crl X509v3 Authority Key Identifier: keyid:76:CE:90:F2:9A:98:0C:BD:C1:58:74:E2:1C:58:59:B7:53:0A:4E:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer sbgp-ipAddrBlock: critical IPv4: 64.5.64.0/20 64.186.16.0/21 66.172.192.0/18 74.221.32.0/20 143.223.184.0/21 199.116.180.0/22 199.247.64.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 45:ad:d8:0b:2c:73:a4:83:5c:2e:d6:a6:02:bc:07:08:d9:24: 58:6b:ff:e2:d8:fc:bd:c7:f2:57:02:51:3d:a9:bf:ae:45:1c: 71:77:19:86:69:69:22:e7:18:ac:43:2b:f3:44:3a:b7:3c:7e: c7:97:bc:25:9f:98:02:f8:20:e0:08:4f:43:38:58:e5:3b:d0: a7:b9:78:24:b1:79:1f:d0:67:e8:a6:d0:35:2b:13:e3:87:2d: 16:93:61:4d:e6:32:47:52:9e:25:4d:b9:ae:ec:a9:33:c9:73: 90:c3:17:a9:77:8d:d5:1e:9b:4d:23:3a:ed:89:2e:ea:85:c9: 8e:5f:df:a5:0d:5e:72:63:a5:77:17:04:7f:56:3a:b2:dc:a4: 1f:ff:fd:2d:af:90:1f:21:1e:af:ea:f8:3e:8f:56:be:25:47: 26:9b:93:e5:be:18:30:7a:b5:19:2e:c5:7b:e7:f6:a7:c6:87: 57:dd:00:ba:67:f4:39:9b:bc:dc:42:a2:2f:d5:bd:23:79:c3: 34:45:fc:de:9a:78:ae:4c:ee:ae:7c:9f:19:db:76:b4:36:b8: 38:ba:a4:5d:ff:c3:fd:df:4e:e4:48:ed:a3:13:9b:14:80:2a: 8b:72:a5:46:1b:2b:77:ab:ce:1a:7f:b7:77:46:ff:ac:5e:10: c2:3e:48:10 -----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgIUAQ0Mn0MoWEzLp1NngPgunmxyjAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkY2EyYzBlNzMtZjdmNy00MDcwLTk4YWEtYzc4ZWYxNzUy ODQ5MB4XDTI2MDIwODE0MDA0MVoXDTI2MDUwOTEzMDA0MVowLzEtMCsGA1UEAxMk ZGY3YzRhZGQtM2U3YS00OTZkLThhY2YtMjM5ZDllNWE3M2NhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhiWoGOvo6p07cXAfVVqaHRFiiStK9+yXf6YJ 3fZT2xSXNaPNtUKiDxUFMQ8W9XXvqFcj4u/IXAwzILOjlHIkO4ofPa64Rs3O4I59 b1UiIpom9fMSVDnI+oRk0Ulp9d/bgAH4nN7wtj4EQ4E5yzx4/hjvNKSMv2WtmB2J meci4dhL5xhCkyt+r99leA/H1sEyhRw4q4BREasUoUxAkNFWViXBex++lGNWHgNC ngZbZ9DuCyMKcx2TUnKNENgCbwGjPjOBq6BcwwDAa2AzfBgX9GMCjT00qW/hziz5 gjSWu/WyWKI0BB/uAl4AnyWClTLYFZYrJ1tHtH1DLO50y2JVbQIDAQABo4IDeTCC A3UwHQYDVR0OBBYEFEpSd5SaZXRTsnsfXWOY1CH5lxUGMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9jYTJj MGU3My1mN2Y3LTQwNzAtOThhYS1jNzhlZjE3NTI4NDkvZGU1OGM1ODgtNDQ4OC0z NzI5LWE3ZTEtOTgxMzBmOTFjNjZjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvY2EyYzBlNzMtZjdmNy00MDcwLTk4 YWEtYzc4ZWYxNzUyODQ5L2NhMmMwZTczLWY3ZjctNDA3MC05OGFhLWM3OGVmMTc1 Mjg0OS5jcmwwHwYDVR0jBBgwFoAUds6Q8pqYDL3BWHTiHFhZt1MKTmowDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9jYTJjMGU3My1mN2Y3LTQwNzAtOThhYS1jNzhl ZjE3NTI4NDkuY2VyMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQEQAVAAwQD QLoQAwQGQqzAAwQESt0gAwQDj9+4AwQCx3S0AwQEx/dAMFQGA1UdIAEB/wRKMEgw RgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQv cmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBAEWt2Ass c6SDXC7WpgK8BwjZJFhr/+LY/L3H8lcCUT2pv65FHHF3GYZpaSLnGKxDK/NEOrc8 fseXvCWfmAL4IOAIT0M4WOU70Ke5eCSxeR/QZ+im0DUrE+OHLRaTYU3mMkdSniVN ua7sqTPJc5DDF6l3jdUem00jOu2JLuqFyY5f36UNXnJjpXcXBH9WOrLcpB///S2v kB8hHq/q+D6PVr4lRyabk+W+GDB6tRkuxXvn9qfGh1fdALpn9DmbvNxCoi/VvSN5 wzRF/N6aeK5M7q58nxnbdrQ2uDi6pF3/w/3fTuRI7aMTmxSAKotypUYbK3erzhp/ t3dG/6xeEMI+SBA= -----END CERTIFICATE-----Generated at Mon Mar 2 15:38:40 2026 by rpki-client