$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa File: 8aa0414c-8126-3e49-be44-eb2af2892430.roa (raw, json) Hash identifier: AyDw4r0ywiXO9hrQbO5ThzbdXeN0m0t/Glk8o9kmQJo= Subject key identifier: 32:22:50:1E:C9:DE:DF:39:87:AD:5B:AF:64:00:3E:76:34:E8:4F:7C Certificate issuer: /CN=2bc601f7-daff-4d8b-8556-b61503268309 Certificate serial: 010D0C9F4328584E059B67D5758D0DA60E052FC0 Authority key identifier: DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa Signing time: Mon 01 Jun 2026 01:00:10 +0000 ROA not before: Mon 01 Jun 2026 01:00:10 +0000 ROA not after: Sun 30 Aug 2026 01:00:10 +0000 asID: 7155 IP address blocks: 72.173.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 15 Jun 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4e:05:9b:67:d5:75:8d:0d:a6:0e:05:2f:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc601f7-daff-4d8b-8556-b61503268309 Validity Not Before: Jun 1 01:00:10 2026 GMT Not After : Aug 30 01:00:10 2026 GMT Subject: CN=857eb631-3243-47c7-bfbe-84a657134949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:95:40:b3:f0:2a:e1:82:6a:db:db:1e:f5:ac: fa:eb:f3:6b:d7:71:9e:c1:0b:59:10:85:c7:06:31: fc:5e:ad:b4:ec:7a:e6:27:48:08:34:62:d6:fe:66: 93:0f:bb:61:2c:ce:21:6c:cd:39:b2:0d:ae:6f:53: 58:20:2c:80:f6:ae:a7:d0:41:11:13:02:b2:d6:19: 31:27:41:cd:8e:d5:f3:d1:76:46:2e:b5:70:de:64: 40:d0:ee:1c:71:a3:f4:d9:c1:e3:dd:a9:d5:a7:c0: cd:e5:7f:b5:7b:0f:f3:64:bc:7c:6b:2a:2c:70:1b: 92:72:b0:5b:a4:f9:3b:41:bb:16:ed:6a:61:43:42: e2:6c:5f:74:90:ba:50:b2:53:78:34:02:06:0e:36: 09:31:7c:46:cd:18:c4:a9:30:96:6f:d9:30:bd:d5: e8:d6:df:bf:88:b6:f0:c5:14:5f:56:a0:eb:bf:28: 1a:e1:f0:d6:57:97:34:8e:ae:b8:b3:30:02:5f:bf: c1:ea:93:17:17:f1:11:0b:c1:57:74:cd:8c:97:b5: d9:da:e8:10:d9:2b:be:05:64:40:b3:88:4c:24:f7: 9e:58:dd:16:fa:ce:75:c4:36:00:1e:db:8d:c8:17: df:f9:c7:40:a2:f6:74:32:e6:c4:04:94:96:18:a2: 4a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:22:50:1E:C9:DE:DF:39:87:AD:5B:AF:64:00:3E:76:34:E8:4F:7C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl X509v3 Authority Key Identifier: keyid:DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer sbgp-ipAddrBlock: critical IPv4: 72.173.42.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 26:31:1e:ef:93:10:67:5d:b4:cc:05:e3:f6:ca:e2:80:14:7c: e5:02:51:79:47:f5:4e:2b:01:d2:56:d9:5a:9b:cd:83:ea:b4: cd:bf:8f:0b:62:a8:14:be:93:7b:19:20:10:eb:46:c2:6f:c1: 2f:21:15:da:09:00:1f:ac:ae:32:f6:85:54:d3:62:b6:14:43: d9:0d:fb:46:b0:d9:ef:d8:3c:f0:eb:38:cb:43:13:3c:97:a8: a3:97:1a:29:a0:76:d8:98:54:9b:84:41:4d:01:e2:7f:96:0d: 2f:0c:b0:e5:3c:9d:36:86:9d:eb:7e:25:87:21:c5:50:e7:08: 73:99:5a:03:79:1b:7e:5e:5e:19:d9:7a:31:88:d8:a9:b9:cc: d6:a0:34:7b:6d:37:67:d1:9d:08:fa:b5:a1:65:a5:e8:6c:b0: e8:2f:4e:47:e2:5c:61:45:c7:dc:3a:97:e5:b2:e7:4e:74:21: 94:5d:b2:73:94:a5:2d:3f:07:ee:d0:96:b1:e1:92:67:fe:bf: 57:22:3e:57:51:28:cb:dd:a9:9d:38:34:bc:54:3d:65:70:19: 2c:1c:5a:f6:a0:3f:ea:a3:0e:c5:51:8e:15:a3:5e:2c:b8:4c: b6:1c:54:e3:52:e0:79:42:be:31:d8:17:87:f9:52:8b:b0:1b: e5:21:45:de -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE4Fm2fVdY0Npg4FL8AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmJjNjAxZjctZGFmZi00ZDhiLTg1NTYtYjYxNTAzMjY4 MzA5MB4XDTI2MDYwMTAxMDAxMFoXDTI2MDgzMDAxMDAxMFowLzEtMCsGA1UEAxMk ODU3ZWI2MzEtMzI0My00N2M3LWJmYmUtODRhNjU3MTM0OTQ5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppVAs/Aq4YJq29se9az66/Nr13GewQtZEIXH BjH8Xq207HrmJ0gINGLW/maTD7thLM4hbM05sg2ub1NYICyA9q6n0EEREwKy1hkx J0HNjtXz0XZGLrVw3mRA0O4ccaP02cHj3anVp8DN5X+1ew/zZLx8ayoscBuScrBb pPk7QbsW7WphQ0LibF90kLpQslN4NAIGDjYJMXxGzRjEqTCWb9kwvdXo1t+/iLbw xRRfVqDrvyga4fDWV5c0jq64szACX7/B6pMXF/ERC8FXdM2Ml7XZ2ugQ2Su+BWRA s4hMJPeeWN0W+s51xDYAHtuNyBff+cdAovZ0MubEBJSWGKJKpwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDIiUB7J3t85h61br2QAPnY06E98MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2 MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1MDMyNjgzMDkvOGFhMDQxNGMtODEyNi0z ZTQ5LWJlNDQtZWIyYWYyODkyNDMwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvMmJjNjAxZjctZGFmZi00ZDhiLTg1 NTYtYjYxNTAzMjY4MzA5LzJiYzYwMWY3LWRhZmYtNGQ4Yi04NTU2LWI2MTUwMzI2 ODMwOS5jcmwwHwYDVR0jBBgwFoAU2sjvKarps5Jjg0Ir3yR6haVOgxcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1 MDMyNjgzMDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASK0qMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACYxHu+TEGddtMwF4/bK4oAUfOUCUXlH9U4rAdJW2VqbzYPqtM2/jwti qBS+k3sZIBDrRsJvwS8hFdoJAB+srjL2hVTTYrYUQ9kN+0aw2e/YPPDrOMtDEzyX qKOXGimgdtiYVJuEQU0B4n+WDS8MsOU8nTaGnet+JYchxVDnCHOZWgN5G35eXhnZ ejGI2Km5zNagNHttN2fRnQj6taFlpehssOgvTkfiXGFFx9w6l+Wy5050IZRdsnOU pS0/B+7QlrHhkmf+v1ciPldRKMvdqZ04NLxUPWVwGSwcWvagP+qjDsVRjhWjXiy4 TLYcVONS4HlCvjHYF4f5UouwG+UhRd4= -----END CERTIFICATE-----Generated at Sat Jun 13 23:50:18 2026 by rpki-client