$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa File: a3af340a-151f-3e65-b202-a86ab76e7ddc.roa (raw, json) Hash identifier: VG2xEawX3m9yEoGkUQdWSVKLksVTGXWcPLz9OK9zD3I= Subject key identifier: 3A:4C:5C:F2:6A:AD:8B:9A:76:F3:44:8A:04:B4:6E:1D:FD:0C:63:30 Certificate issuer: /CN=2dbf604f-24b0-426e-809d-e65b08be5d50 Certificate serial: 010D0C9F4328584E0A6FEDB1A82CF33B974BAE00 Authority key identifier: 9F:0B:96:E4:B5:88:59:9E:EE:BA:41:79:91:C0:93:C9:D1:C3:F5:42 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa Signing time: Tue 02 Jun 2026 18:32:03 +0000 ROA not before: Tue 02 Jun 2026 18:32:03 +0000 ROA not after: Mon 31 Aug 2026 18:32:03 +0000 asID: 16433 IP address blocks: 170.176.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4e:0a:6f:ed:b1:a8:2c:f3:3b:97:4b:ae:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dbf604f-24b0-426e-809d-e65b08be5d50 Validity Not Before: Jun 2 18:32:03 2026 GMT Not After : Aug 31 18:32:03 2026 GMT Subject: CN=f862491f-801a-4a10-8448-da2b458366f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:74:7e:b0:a7:4a:d6:20:4e:6d:4d:fa:f6:f3: 13:0f:51:6a:39:ee:fb:c9:a6:df:25:da:5a:98:23: ed:8e:ba:21:76:fe:d6:d5:9d:76:14:6f:bf:f9:3f: 98:41:a5:47:ad:34:42:8f:9a:02:82:b8:e3:a2:4c: 61:70:ca:8d:48:96:54:9f:37:d2:5a:b4:a4:a9:90: d4:c4:ac:eb:f6:45:e1:3b:d1:a5:cc:92:d4:ef:cc: 6a:5d:06:65:9e:f6:11:8c:c2:bc:84:9f:12:ab:2a: 3a:71:39:4f:17:61:50:fe:e9:79:a0:ab:59:af:71: 34:fe:e8:1d:e1:14:0a:0a:e2:e2:a2:22:f9:40:a2: 93:c4:65:91:e6:9c:69:23:02:bc:b7:96:12:24:f1: 2b:eb:f7:ad:67:7c:f5:28:35:32:56:89:16:8b:d9: a4:75:63:3d:c4:1f:72:58:2f:4c:63:a6:24:45:7c: 66:ac:36:ac:4f:d9:bc:79:7c:ef:a8:87:86:fa:a8: e3:dd:64:ae:7d:30:8e:4f:b0:98:a3:f9:28:a1:f8: 3b:bc:90:0e:12:5b:2e:61:d8:8e:c4:5a:da:b9:df: 9a:df:5e:b3:e4:e5:ba:66:4c:b9:40:4f:81:2e:a8: b4:8c:e5:a0:d4:cd:51:ad:9b:5e:07:47:65:a3:1a: c4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4C:5C:F2:6A:AD:8B:9A:76:F3:44:8A:04:B4:6E:1D:FD:0C:63:30 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.crl X509v3 Authority Key Identifier: keyid:9F:0B:96:E4:B5:88:59:9E:EE:BA:41:79:91:C0:93:C9:D1:C3:F5:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer sbgp-ipAddrBlock: critical IPv4: 170.176.248.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3b:dc:28:ab:af:5e:a8:1c:21:a1:42:a5:34:23:2c:25:10:6b: 57:9d:28:1b:c4:62:d8:66:43:53:92:f6:bd:b7:f8:51:c9:67: bd:0f:a9:c5:8c:4a:bc:c3:39:7a:24:49:47:23:f9:e1:6c:7f: 52:22:c2:c3:f9:a8:15:fd:f6:1a:0b:74:38:1c:32:32:e6:ce: 0b:bf:f5:25:d2:51:2b:96:7a:2d:b1:b5:92:bc:46:25:c4:26: 1e:af:73:0d:9f:fb:78:d3:6e:ce:58:dd:cf:18:1c:c6:5c:3e: d0:c7:c5:b7:8d:56:97:c5:df:e7:17:6e:a4:4d:c6:fc:9b:8b: 86:29:6d:84:10:c2:5d:5d:64:14:08:6f:72:81:d8:cf:49:00: 75:7b:0b:e0:00:ab:19:b6:68:f0:3e:3c:c5:cd:20:07:e8:b6: 8a:ee:97:b0:e2:61:c2:60:5d:88:42:19:0d:b4:33:9d:84:e4: a9:b8:ac:35:5f:18:e6:eb:a4:47:10:90:b3:3f:b6:6a:fb:16: 71:b7:2e:ec:6e:44:60:8c:ac:91:90:c0:fc:5b:a2:e9:8a:44: bb:c6:6f:82:bf:ed:34:64:e4:9f:a6:50:a6:f8:04:22:2a:9a: ce:f8:8e:cc:d2:2f:d9:89:65:cf:99:bb:4d:99:c3:32:6d:1e: bc:eb:0d:34 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE4Kb+2xqCzzO5dLrgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmRiZjYwNGYtMjRiMC00MjZlLTgwOWQtZTY1YjA4YmU1 ZDUwMB4XDTI2MDYwMjE4MzIwM1oXDTI2MDgzMTE4MzIwM1owLzEtMCsGA1UEAxMk Zjg2MjQ5MWYtODAxYS00YTEwLTg0NDgtZGEyYjQ1ODM2NmY3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3R+sKdK1iBObU369vMTD1FqOe77yabfJdpa mCPtjrohdv7W1Z12FG+/+T+YQaVHrTRCj5oCgrjjokxhcMqNSJZUnzfSWrSkqZDU xKzr9kXhO9GlzJLU78xqXQZlnvYRjMK8hJ8Sqyo6cTlPF2FQ/ul5oKtZr3E0/ugd 4RQKCuLioiL5QKKTxGWR5pxpIwK8t5YSJPEr6/etZ3z1KDUyVokWi9mkdWM9xB9y WC9MY6YkRXxmrDasT9m8eXzvqIeG+qjj3WSufTCOT7CYo/koofg7vJAOElsuYdiO xFraud+a316z5OW6Zky5QE+BLqi0jOWg1M1RrZteB0dloxrE7wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDpMXPJqrYuadvNEigS0bh39DGMwMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8yZGJm NjA0Zi0yNGIwLTQyNmUtODA5ZC1lNjViMDhiZTVkNTAvYTNhZjM0MGEtMTUxZi0z ZTY1LWIyMDItYTg2YWI3NmU3ZGRjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMmRiZjYwNGYtMjRiMC00MjZlLTgw OWQtZTY1YjA4YmU1ZDUwLzJkYmY2MDRmLTI0YjAtNDI2ZS04MDlkLWU2NWIwOGJl NWQ1MC5jcmwwHwYDVR0jBBgwFoAUnwuW5LWIWZ7uukF5kcCTydHD9UIwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8yZGJmNjA0Zi0yNGIwLTQyNmUtODA5ZC1lNjVi MDhiZTVkNTAuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDqrD4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADvcKKuvXqgcIaFCpTQjLCUQa1edKBvEYthmQ1OS9r23+FHJZ70PqcWM SrzDOXokSUcj+eFsf1IiwsP5qBX99hoLdDgcMjLmzgu/9SXSUSuWei2xtZK8RiXE Jh6vcw2f+3jTbs5Y3c8YHMZcPtDHxbeNVpfF3+cXbqRNxvybi4YpbYQQwl1dZBQI b3KB2M9JAHV7C+AAqxm2aPA+PMXNIAfotorul7DiYcJgXYhCGQ20M52E5Km4rDVf GObrpEcQkLM/tmr7FnG3LuxuRGCMrJGQwPxboumKRLvGb4K/7TRk5J+mUKb4BCIq ms74jszSL9mJZc+Zu02ZwzJtHrzrDTQ= -----END CERTIFICATE-----Generated at Sat Jun 13 13:07:36 2026 by rpki-client