$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/940cb506-c287-3123-b5cd-8640efc7de0a.roa File: 940cb506-c287-3123-b5cd-8640efc7de0a.roa (raw, json) Hash identifier: YJ7yQMEbYPkXPhtkgToD/mos1pXfBXvnZW5zoexiJnA= Subject key identifier: 6D:70:61:73:8E:45:F7:7C:15:14:BD:0E:9E:A7:DA:31:CB:E2:FB:B8 Certificate issuer: /CN=aafd6acf-1b90-42db-93ca-6a5c04007025 Certificate serial: 010D0C9F4328584D730A6B3D04E3964D1215A580 Authority key identifier: 33:52:98:80:D6:83:C5:3F:14:72:92:EA:A0:84:99:4F:1A:2D:BB:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/940cb506-c287-3123-b5cd-8640efc7de0a.roa Signing time: Thu 09 Apr 2026 13:00:30 +0000 ROA not before: Thu 09 Apr 2026 13:00:30 +0000 ROA not after: Wed 08 Jul 2026 13:00:30 +0000 asID: 812 IP address blocks: 64.71.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/aafd6acf-1b90-42db-93ca-6a5c04007025.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/aafd6acf-1b90-42db-93ca-6a5c04007025.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Apr 2026 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:73:0a:6b:3d:04:e3:96:4d:12:15:a5:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aafd6acf-1b90-42db-93ca-6a5c04007025 Validity Not Before: Apr 9 13:00:30 2026 GMT Not After : Jul 8 13:00:30 2026 GMT Subject: CN=21f5505c-4930-40ba-a122-35acb683f5c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bc:f3:9d:12:a3:43:19:c7:a0:1b:5a:27:3f: a3:5c:a7:04:2c:d3:db:0e:71:8c:dc:3f:e1:1d:e4: aa:0c:a3:c2:73:89:7d:89:58:d6:48:76:23:19:65: 68:0b:32:88:25:f7:06:65:6e:ac:da:a3:9c:4b:41: 0c:1d:91:ec:de:57:37:54:7f:32:5a:80:b2:3e:b7: cb:88:dc:9d:ef:d3:9f:58:2b:aa:81:65:2a:3b:f6: 96:20:4f:e2:00:5f:90:86:14:e3:df:08:48:7e:22: fb:ee:a3:21:d1:2e:e3:a4:80:58:ef:9e:67:a6:8f: 3f:1c:35:bc:c9:ff:e8:dc:fa:ff:59:43:47:e0:04: db:8f:05:f0:52:d5:78:3c:1e:4c:ea:8b:2d:bd:b8: f3:8d:37:3e:15:f1:cd:41:e5:49:ff:76:2a:e8:db: c1:63:08:70:23:b7:b0:ba:d7:18:50:ee:cb:4a:6f: 7c:1d:c3:a1:0d:2f:5b:d1:c2:db:50:0f:06:7e:10: c1:89:09:de:27:12:63:5f:49:59:8b:cc:72:7d:37: b7:80:7a:e0:e5:7e:3d:26:d4:4b:22:cd:30:b3:c2: e0:94:db:01:d7:1d:73:b2:14:fe:db:e2:9c:ab:0f: f8:0d:c2:8e:d9:a9:cd:9a:38:7c:7a:ec:8a:68:3a: 82:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:70:61:73:8E:45:F7:7C:15:14:BD:0E:9E:A7:DA:31:CB:E2:FB:B8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/940cb506-c287-3123-b5cd-8640efc7de0a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/aafd6acf-1b90-42db-93ca-6a5c04007025.crl X509v3 Authority Key Identifier: keyid:33:52:98:80:D6:83:C5:3F:14:72:92:EA:A0:84:99:4F:1A:2D:BB:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025.cer sbgp-ipAddrBlock: critical IPv4: 64.71.240.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6f:76:97:4c:2a:18:be:36:e4:76:03:6d:a6:af:c7:51:7d:64: 2d:e5:0d:94:2a:5c:b8:45:5a:97:b2:26:de:80:80:3b:b1:73: 79:2d:98:ed:e8:0a:58:8d:56:a9:38:65:4e:8b:3d:55:a3:05: d9:83:e8:9d:06:f3:0b:80:6a:c1:c1:e5:a7:a4:d9:ba:1a:25: 3b:fc:9f:d2:f4:57:52:85:16:99:1c:b4:07:e7:48:1d:26:d0: b9:e3:e4:c9:a1:1a:5b:2a:58:94:76:e5:4b:ab:5b:13:46:32: 80:13:15:fd:26:49:c3:f5:15:ac:da:c1:9f:5c:b3:c0:16:be: 5d:a8:0c:e6:43:e7:ef:18:55:b2:d7:62:82:cf:79:cf:7b:5f: c3:24:df:e1:ac:43:3d:3b:82:38:56:09:13:3f:ba:e3:b2:d8: d9:a2:f8:79:df:ab:1d:96:b3:5a:98:8a:53:08:b6:23:98:e0: 02:fa:1c:fb:ca:25:94:76:36:4b:ce:f6:47:b0:f1:97:4d:d8: df:55:ed:7f:38:ab:64:29:af:e9:f4:fa:5d:2a:a1:e0:00:46: da:e6:c9:16:87:06:e7:bd:14:40:2d:2e:b3:9e:d8:a9:79:79: ff:bb:4d:34:19:c2:8b:d3:25:dd:9c:e8:20:5a:a7:9e:ff:f6: dc:c0:12:b5 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE1zCms9BOOWTRIVpYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWFmZDZhY2YtMWI5MC00MmRiLTkzY2EtNmE1YzA0MDA3 MDI1MB4XDTI2MDQwOTEzMDAzMFoXDTI2MDcwODEzMDAzMFowLzEtMCsGA1UEAxMk MjFmNTUwNWMtNDkzMC00MGJhLWExMjItMzVhY2I2ODNmNWM0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbzznRKjQxnHoBtaJz+jXKcELNPbDnGM3D/h HeSqDKPCc4l9iVjWSHYjGWVoCzKIJfcGZW6s2qOcS0EMHZHs3lc3VH8yWoCyPrfL iNyd79OfWCuqgWUqO/aWIE/iAF+QhhTj3whIfiL77qMh0S7jpIBY755npo8/HDW8 yf/o3Pr/WUNH4ATbjwXwUtV4PB5M6ostvbjzjTc+FfHNQeVJ/3Yq6NvBYwhwI7ew utcYUO7LSm98HcOhDS9b0cLbUA8GfhDBiQneJxJjX0lZi8xyfTe3gHrg5X49JtRL Is0ws8LglNsB1x1zshT+2+Kcqw/4DcKO2anNmjh8euyKaDqCKQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFG1wYXOORfd8FRS9Dp6n2jHL4vu4MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzg1ZTA2ZWFmLTM3YTctNDU4OC1hYmVhLWU0OTA5ZWYxYjRlMi9hYWZk NmFjZi0xYjkwLTQyZGItOTNjYS02YTVjMDQwMDcwMjUvOTQwY2I1MDYtYzI4Ny0z MTIzLWI1Y2QtODY0MGVmYzdkZTBhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy84NWUwNmVhZi0z N2E3LTQ1ODgtYWJlYS1lNDkwOWVmMWI0ZTIvYWFmZDZhY2YtMWI5MC00MmRiLTkz Y2EtNmE1YzA0MDA3MDI1L2FhZmQ2YWNmLTFiOTAtNDJkYi05M2NhLTZhNWMwNDAw NzAyNS5jcmwwHwYDVR0jBBgwFoAUM1KYgNaDxT8UcpLqoISZTxotu+QwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg1ZTA2ZWFmLTM3YTctNDU4 OC1hYmVhLWU0OTA5ZWYxYjRlMi9hYWZkNmFjZi0xYjkwLTQyZGItOTNjYS02YTVj MDQwMDcwMjUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEQEfwMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAG92l0wqGL425HYDbaavx1F9ZC3lDZQqXLhFWpeyJt6AgDuxc3ktmO3o CliNVqk4ZU6LPVWjBdmD6J0G8wuAasHB5aek2boaJTv8n9L0V1KFFpkctAfnSB0m 0Lnj5MmhGlsqWJR25UurWxNGMoATFf0mScP1FazawZ9cs8AWvl2oDOZD5+8YVbLX YoLPec97X8Mk3+GsQz07gjhWCRM/uuOy2Nmi+Hnfqx2Ws1qYilMItiOY4AL6HPvK JZR2NkvO9kew8ZdN2N9V7X84q2Qpr+n0+l0qoeAARtrmyRaHBue9FEAtLrOe2Kl5 ef+7TTQZwovTJd2c6CBap57/9tzAErU= -----END CERTIFICATE-----Generated at Fri Apr 17 09:52:27 2026 by rpki-client