$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa File: 828c35a4-d70a-329b-afc8-43f0c6744f3e.roa (raw, json) Hash identifier: OepYGEtECbUMlvpxf1/TPaGicf+iqBq/yPgWG2kCSms= Subject key identifier: 42:FD:65:6A:A5:E9:3F:01:E4:C0:E6:E8:5A:D0:F2:2C:7B:E1:5B:78 Certificate issuer: /CN=3b72c968-d673-4a7a-bfec-4071a7be5317 Certificate serial: 010D0C9F4328584D6AAA8D48C73A1081CFE4ED00 Authority key identifier: D4:D0:6C:E1:8F:F9:73:1D:53:22:23:6D:36:3F:38:F6:81:03:B5:6F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa Signing time: Mon 06 Apr 2026 13:00:30 +0000 ROA not before: Mon 06 Apr 2026 13:00:30 +0000 ROA not after: Sun 05 Jul 2026 13:00:30 +0000 asID: 27589 IP address blocks: 64.59.64.0/18 maxlen: 24 66.244.144.0/20 maxlen: 24 74.206.160.0/19 maxlen: 24 99.192.128.0/17 maxlen: 24 104.193.120.0/22 maxlen: 24 162.250.76.0/22 maxlen: 24 184.94.144.0/20 maxlen: 24 199.19.200.0/21 maxlen: 24 199.59.88.0/21 maxlen: 24 199.182.104.0/21 maxlen: 24 199.241.96.0/21 maxlen: 24 208.74.148.0/22 maxlen: 24 208.122.192.0/19 maxlen: 24 2607:f5a8::/32 maxlen: 48 2607:ffb8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Apr 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:6a:aa:8d:48:c7:3a:10:81:cf:e4:ed:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b72c968-d673-4a7a-bfec-4071a7be5317 Validity Not Before: Apr 6 13:00:30 2026 GMT Not After : Jul 5 13:00:30 2026 GMT Subject: CN=65209374-afa8-40d5-83da-952d429212b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9e:bd:1b:39:e9:b9:47:d6:41:21:ca:23:ac: 91:1b:dc:f9:ea:64:26:f4:ec:07:96:1c:96:52:c4: 54:2d:b6:b0:df:dd:24:15:a5:8c:62:5f:68:64:93: 7c:53:c3:90:55:cc:a6:ca:26:53:98:7b:f3:e1:2a: d6:e5:c5:0d:44:c0:59:3a:a0:08:ad:fd:a3:e5:df: de:f2:ed:62:75:fe:37:89:fb:f1:2d:98:32:d1:03: 67:ce:ae:f8:8f:c8:fe:e3:1f:70:2c:11:ae:a8:10: 4f:5f:b0:dc:c4:54:a4:9c:0c:b0:c1:36:cb:a2:6a: 5b:21:0e:27:7b:ea:67:a1:85:bc:06:c1:dc:cd:b0: 1a:bc:28:dd:a9:7b:ed:1a:83:0a:f4:e7:90:28:89: 52:ff:d3:1c:9e:41:2b:97:7a:ab:b4:3e:98:26:14: 46:c2:b0:4e:25:83:70:e5:2c:06:1c:1b:71:e9:0c: 42:8f:3f:d2:71:ab:8d:1f:e5:3a:93:32:af:05:b1: bc:28:db:ee:87:43:ed:1d:23:3f:9c:4f:f7:c4:d0: 87:12:b6:f5:81:bf:c1:47:aa:97:3f:cb:6e:fd:d0: 02:22:1f:ed:e2:d1:37:e2:3d:54:93:30:5c:4a:0b: f4:34:d5:e1:bf:35:2e:92:af:96:19:90:82:13:b0: cd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FD:65:6A:A5:E9:3F:01:E4:C0:E6:E8:5A:D0:F2:2C:7B:E1:5B:78 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.crl X509v3 Authority Key Identifier: keyid:D4:D0:6C:E1:8F:F9:73:1D:53:22:23:6D:36:3F:38:F6:81:03:B5:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer sbgp-ipAddrBlock: critical IPv4: 64.59.64.0/18 66.244.144.0/20 74.206.160.0/19 99.192.128.0/17 104.193.120.0/22 162.250.76.0/22 184.94.144.0/20 199.19.200.0/21 199.59.88.0/21 199.182.104.0/21 199.241.96.0/21 208.74.148.0/22 208.122.192.0/19 IPv6: 2607:f5a8::/32 2607:ffb8::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 03:06:2a:75:e2:21:67:44:22:1e:9f:57:9a:67:47:83:fe:4f: 9f:57:05:ae:fd:d6:ac:f8:1e:ad:ff:9a:11:ac:87:a0:53:48: 90:a7:6f:69:e5:74:54:f4:e1:dc:3a:12:c9:1e:8f:cb:14:a5: a6:c5:62:74:f2:48:ec:ac:cc:99:57:21:44:be:76:38:36:c7: 69:3c:fc:78:e7:8c:e6:69:72:94:e9:56:fe:1c:5f:55:6d:a7: e1:63:0a:c8:ef:b8:cf:1e:87:58:cd:be:b9:f2:fb:f9:ea:0d: a2:92:0f:03:d3:d0:a6:98:27:34:08:5f:2e:0a:41:51:2c:c4: 01:75:8a:ba:a3:04:80:56:09:d6:f3:d0:2d:78:3d:f5:3d:9a: 3a:d1:dc:f1:2b:2b:3d:6c:b4:da:e3:1b:ea:00:1f:be:2d:dd: 85:28:33:12:fe:73:01:7a:c2:9a:43:1f:e8:bf:ae:61:e4:5c: 24:d7:4c:09:e0:c8:a0:4c:f5:9f:98:8a:ae:a4:ec:fd:00:97: c4:05:6e:d7:fa:d5:86:18:f6:13:06:cd:55:f4:55:56:0c:cc: ad:fc:62:30:8a:40:3d:09:e8:4a:04:88:85:3d:36:fa:11:96: d3:56:e2:da:4f:c1:98:10:f7:59:11:0c:2e:4c:0e:52:eb:2b: 77:2f:55:e4 -----BEGIN CERTIFICATE----- MIIGoTCCBYmgAwIBAgIUAQ0Mn0MoWE1qqo1IxzoQgc/k7QAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkM2I3MmM5NjgtZDY3My00YTdhLWJmZWMtNDA3MWE3YmU1 MzE3MB4XDTI2MDQwNjEzMDAzMFoXDTI2MDcwNTEzMDAzMFowLzEtMCsGA1UEAxMk NjUyMDkzNzQtYWZhOC00MGQ1LTgzZGEtOTUyZDQyOTIxMmIwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZ69GznpuUfWQSHKI6yRG9z56mQm9OwHlhyW UsRULbaw390kFaWMYl9oZJN8U8OQVcymyiZTmHvz4SrW5cUNRMBZOqAIrf2j5d/e 8u1idf43ifvxLZgy0QNnzq74j8j+4x9wLBGuqBBPX7DcxFSknAywwTbLompbIQ4n e+pnoYW8BsHczbAavCjdqXvtGoMK9OeQKIlS/9McnkErl3qrtD6YJhRGwrBOJYNw 5SwGHBtx6QxCjz/ScauNH+U6kzKvBbG8KNvuh0PtHSM/nE/3xNCHErb1gb/BR6qX P8tu/dACIh/t4tE34j1UkzBcSgv0NNXhvzUukq+WGZCCE7DN1wIDAQABo4IDszCC A68wHQYDVR0OBBYEFEL9ZWql6T8B5MDm6FrQ8ix74Vt4MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8zYjcy Yzk2OC1kNjczLTRhN2EtYmZlYy00MDcxYTdiZTUzMTcvODI4YzM1YTQtZDcwYS0z MjliLWFmYzgtNDNmMGM2NzQ0ZjNlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvM2I3MmM5NjgtZDY3My00YTdhLWJm ZWMtNDA3MWE3YmU1MzE3LzNiNzJjOTY4LWQ2NzMtNGE3YS1iZmVjLTQwNzFhN2Jl NTMxNy5jcmwwHwYDVR0jBBgwFoAU1NBs4Y/5cx1TIiNtNj849oEDtW8wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8zYjcyYzk2OC1kNjczLTRhN2EtYmZlYy00MDcx YTdiZTUzMTcuY2VyMH0GCCsGAQUFBwEHAQH/BG4wbDBUBAIAATBOAwQGQDtAAwQE QvSQAwQFSs6gAwQHY8CAAwQCaMF4AwQCovpMAwQEuF6QAwQDxxPIAwQDxztYAwQD x7ZoAwQDx/FgAwQC0EqUAwQF0HrAMBQEAgACMA4DBQAmB/WoAwUAJgf/uDBUBgNV HSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3 LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUA A4IBAQADBip14iFnRCIen1eaZ0eD/k+fVwWu/das+B6t/5oRrIegU0iQp29p5XRU 9OHcOhLJHo/LFKWmxWJ08kjsrMyZVyFEvnY4NsdpPPx454zmaXKU6Vb+HF9Vbafh YwrI77jPHodYzb658vv56g2ikg8D09CmmCc0CF8uCkFRLMQBdYq6owSAVgnW89At eD31PZo60dzxKys9bLTa4xvqAB++Ld2FKDMS/nMBesKaQx/ov65h5Fwk10wJ4Mig TPWfmIqupOz9AJfEBW7X+tWGGPYTBs1V9FVWDMyt/GIwikA9CehKBIiFPTb6EZbT VuLaT8GYEPdZEQwuTA5S6yt3L1Xk -----END CERTIFICATE-----Generated at Fri Apr 17 18:03:15 2026 by rpki-client