$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa File: 3e233b44-911d-3c32-9600-9580640a3557.roa (raw, json) Hash identifier: G1CoJjhV/UlgYFwlvJGtnHRY/glo/Jq2FeLbyjcC+vo= Subject key identifier: 6E:1F:3E:B2:7F:32:14:1E:B6:36:AE:70:D6:C5:B2:82:6B:C2:55:82 Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F4328584CAA27200BDE97F3C4E765C480 Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa Signing time: Tue 27 Jan 2026 14:00:36 +0000 ROA not before: Tue 27 Jan 2026 14:00:36 +0000 ROA not after: Mon 27 Apr 2026 13:00:36 +0000 asID: 17378 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:aa:27:20:0b:de:97:f3:c4:e7:65:c4:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: Jan 27 14:00:36 2026 GMT Not After : Apr 27 13:00:36 2026 GMT Subject: CN=7d1b49ae-ae8d-4820-a5f3-9baa78e19340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:b0:2d:54:57:e8:19:77:59:ee:66:dd:8d:0e: dd:03:9c:73:fb:d8:5d:ec:6c:35:10:c5:e8:3e:f2: d3:f7:5f:69:90:48:10:73:d6:9e:46:0c:c9:1f:d2: d5:02:4f:d1:5f:98:a2:19:f0:2d:8f:10:69:02:ec: 62:d8:d0:b3:0b:5e:11:b5:1c:31:63:37:d5:23:a6: 01:4f:50:4b:2c:2e:87:5c:1c:0c:34:28:04:22:f0: 14:fb:47:ce:e8:e0:d1:6b:54:09:26:c6:fc:6b:07: 56:d8:ca:d4:10:dd:86:95:22:d2:b2:7e:d7:12:7d: 0a:fb:38:f6:74:d9:aa:e1:16:aa:5a:b9:2e:71:b2: 5e:a0:68:5e:71:bc:a3:1a:d9:2c:af:38:6f:d9:95: bd:6d:58:f8:d0:3d:9d:47:aa:e8:9c:a6:4e:af:d4: 31:25:88:ab:02:a3:04:a7:33:29:73:19:43:3e:75: 01:3c:6d:87:6e:93:99:59:38:4b:5f:d0:3a:b4:00: ce:7d:8c:47:74:ff:b4:82:75:a5:d7:00:4b:4f:40: 62:a5:bd:97:bd:9c:e7:e5:e0:d8:c2:10:31:64:bf: f9:3c:78:6f:4e:b5:c8:69:2e:09:6a:97:5e:f5:5d: 11:30:05:e8:42:02:ef:22:3b:3b:45:d2:91:9f:af: c2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1F:3E:B2:7F:32:14:1E:B6:36:AE:70:D6:C5:B2:82:6B:C2:55:82 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2c:8a:ff:d5:b8:52:59:63:98:9a:57:d6:95:76:88:fb:54:15: 83:5c:0e:2e:1d:2f:65:6c:84:ed:82:51:7e:c4:4a:d7:4b:6c: dc:45:b0:13:5e:94:34:c8:99:41:90:4f:35:5d:e7:b2:21:da: 3e:02:0d:f4:34:6d:70:17:8f:9e:cf:85:48:4d:0e:3f:79:b2: e4:e6:ba:1a:7b:5d:86:8f:16:54:52:23:48:45:e4:10:8c:25: 3a:51:d7:45:9c:72:fc:0d:59:02:4e:11:51:98:48:2e:e9:d2: ae:69:8d:0f:3d:73:88:88:fb:aa:e8:60:76:0c:d7:46:55:a5: fb:08:54:8f:99:49:1e:df:13:01:7c:5a:5a:c5:47:85:71:b1: e8:09:a8:89:12:30:b4:e2:4b:7d:f4:47:55:90:e0:3c:3f:fb: 8d:40:d0:98:53:03:58:e3:03:93:e9:a1:1f:a6:d1:d4:42:e2: 33:92:e1:33:df:3d:22:20:e3:a7:b5:fd:bb:12:f9:c9:cf:b3: e2:da:be:2e:29:08:07:bb:84:06:c7:d4:03:6e:3a:cc:76:9b: 07:23:33:e9:56:82:5b:76:96:c8:4e:2c:bf:d0:69:b9:7f:86: 42:1e:89:54:6e:de:48:4d:1f:d5:f8:9f:fb:8d:3c:a2:c7:51: f8:64:0d:6d -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWEyqJyAL3pfzxOdlxIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI2MDEyNzE0MDAzNloXDTI2MDQyNzEzMDAzNlowLzEtMCsGA1UEAxMk N2QxYjQ5YWUtYWU4ZC00ODIwLWE1ZjMtOWJhYTc4ZTE5MzQwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhbAtVFfoGXdZ7mbdjQ7dA5xz+9hd7Gw1EMXo PvLT919pkEgQc9aeRgzJH9LVAk/RX5iiGfAtjxBpAuxi2NCzC14RtRwxYzfVI6YB T1BLLC6HXBwMNCgEIvAU+0fO6ODRa1QJJsb8awdW2MrUEN2GlSLSsn7XEn0K+zj2 dNmq4RaqWrkucbJeoGhecbyjGtksrzhv2ZW9bVj40D2dR6ronKZOr9QxJYirAqME pzMpcxlDPnUBPG2HbpOZWThLX9A6tADOfYxHdP+0gnWl1wBLT0Bipb2XvZzn5eDY whAxZL/5PHhvTrXIaS4Japde9V0RMAXoQgLvIjs7RdKRn6/CLwIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFG4fPrJ/MhQetjaucNbFsoJrwlWCMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvM2UyMzNiNDQtOTExZC0z YzMyLTk2MDAtOTU4MDY0MGEzNTU3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEALIr/1bhSWWOYmlfWlXaI+1QV g1wOLh0vZWyE7YJRfsRK10ts3EWwE16UNMiZQZBPNV3nsiHaPgIN9DRtcBePns+F SE0OP3my5Oa6Gntdho8WVFIjSEXkEIwlOlHXRZxy/A1ZAk4RUZhILunSrmmNDz1z iIj7quhgdgzXRlWl+whUj5lJHt8TAXxaWsVHhXGx6AmoiRIwtOJLffRHVZDgPD/7 jUDQmFMDWOMDk+mhH6bR1ELiM5LhM989IiDjp7X9uxL5yc+z4tq+LikIB7uEBsfU A246zHabByMz6VaCW3aWyE4sv9BpuX+GQh6JVG7eSE0f1fif+408osdR+GQNbQ== -----END CERTIFICATE-----Generated at Mon Mar 2 04:16:01 2026 by rpki-client