$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2040fb79-7dc8-3434-ae0f-4850948ea219.roa File: 2040fb79-7dc8-3434-ae0f-4850948ea219.roa (raw, json) Hash identifier: gsnb/0T4eeVneVGCv5Vu4rkTxHClykGJRQJp3Icbh1Y= Subject key identifier: C0:71:26:2E:0B:FB:A7:C4:79:12:13:B0:3C:40:5A:9B:23:D8:07:50 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584E1E4491CC57174223E3E1CD80 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2040fb79-7dc8-3434-ae0f-4850948ea219.roa Signing time: Tue 09 Jun 2026 21:00:12 +0000 ROA not before: Tue 09 Jun 2026 21:00:12 +0000 ROA not after: Mon 07 Sep 2026 21:00:12 +0000 asID: 8069 IP address blocks: 20.153.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 15 Jun 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4e:1e:44:91:cc:57:17:42:23:e3:e1:cd:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Jun 9 21:00:12 2026 GMT Not After : Sep 7 21:00:12 2026 GMT Subject: CN=aa8616f4-0784-4723-b077-d1ba2da37da6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ab:6a:49:58:e6:e9:d4:85:3b:4b:b3:fe:59: 41:31:83:88:11:1a:9b:28:49:3d:87:17:65:48:da: e8:4b:59:73:b5:9a:0e:a7:4f:b4:8d:ae:da:99:4c: c1:de:86:c4:c7:79:bd:c9:ce:ac:80:5c:fc:03:a3: 22:6f:11:bb:9c:47:24:41:a3:da:e0:83:64:8b:77: c4:b8:c7:f2:eb:02:b7:69:a0:ff:2b:52:ae:64:91: be:ba:d9:cf:36:b1:3f:17:a6:11:b8:b4:80:bd:2a: ac:40:07:b1:ab:1f:cd:d2:1d:8e:3c:2f:d2:c6:43: 47:96:75:f7:d7:d6:40:c4:68:22:57:ac:c1:e5:5c: 2b:6f:28:d0:04:6f:20:ef:fe:a2:3e:53:cd:11:e3: ce:76:2f:1f:b3:5b:17:1c:5c:57:b4:1f:6e:7a:39: ab:f5:58:06:c7:be:4a:86:f2:13:09:dc:78:db:1e: 8b:9a:5b:82:33:4a:64:a2:9a:94:f5:7b:a8:b8:c9: 5b:5d:b4:52:fc:e3:12:b0:57:e9:bf:4c:0b:9a:e4: a5:70:2d:6b:21:b5:27:46:d4:f2:9e:81:ba:a1:d7: d0:9e:63:3e:5e:8e:4f:66:ad:bd:ef:9d:6f:3c:55: 52:a1:c1:f5:16:37:67:04:d7:2f:25:9d:eb:e9:55: 71:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:71:26:2E:0B:FB:A7:C4:79:12:13:B0:3C:40:5A:9B:23:D8:07:50 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2040fb79-7dc8-3434-ae0f-4850948ea219.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.12.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 51:99:15:c2:e0:17:1c:ee:cd:51:24:15:c4:44:33:4d:6e:af: f2:81:fd:b4:a3:1f:18:96:a9:12:4f:f4:41:2c:8b:0e:97:95: 17:73:6b:79:47:8d:2c:78:b7:20:ed:2e:ea:95:13:17:33:58: a7:fd:b0:61:62:05:c0:4a:57:80:1b:87:ae:e4:ee:4d:39:e0: c8:71:60:b7:ab:d3:b3:f6:27:bb:35:20:d0:59:b3:c1:69:59: 4d:df:2e:d8:de:8c:89:16:18:52:32:e5:fd:b6:26:62:6b:4a: ee:8e:22:d1:42:f9:78:60:00:df:d7:ce:88:7f:a8:38:4f:3c: 2b:73:19:5e:96:62:9f:93:1d:1f:e2:a3:e0:95:0a:d5:cb:48: ad:bf:6a:46:a5:d6:db:8a:6a:7c:b3:f3:66:75:fc:b8:c4:17: 74:c9:f0:2c:36:dc:2d:db:82:e2:c6:ee:ac:38:88:4b:78:f3: 5a:79:72:50:27:a2:a4:30:09:07:b4:20:89:16:eb:a3:20:52: f2:a0:1c:ff:04:f7:6e:ed:84:7e:35:60:87:24:4e:6c:c0:2c: 00:07:f7:b3:aa:3f:64:98:98:ca:b3:21:e8:a7:5f:78:64:fa: 55:eb:1f:72:ec:9d:b6:97:f8:ff:10:5b:a5:b5:65:43:f8:7a: 16:ec:4e:a7 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE4eRJHMVxdCI+PhzYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI2MDYwOTIxMDAxMloXDTI2MDkwNzIxMDAxMlowLzEtMCsGA1UEAxMk YWE4NjE2ZjQtMDc4NC00NzIzLWIwNzctZDFiYTJkYTM3ZGE2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKtqSVjm6dSFO0uz/llBMYOIERqbKEk9hxdl SNroS1lztZoOp0+0ja7amUzB3obEx3m9yc6sgFz8A6MibxG7nEckQaPa4INki3fE uMfy6wK3aaD/K1KuZJG+utnPNrE/F6YRuLSAvSqsQAexqx/N0h2OPC/SxkNHlnX3 19ZAxGgiV6zB5VwrbyjQBG8g7/6iPlPNEePOdi8fs1sXHFxXtB9uejmr9VgGx75K hvITCdx42x6LmluCM0pkopqU9XuouMlbXbRS/OMSsFfpv0wLmuSlcC1rIbUnRtTy noG6odfQnmM+Xo5PZq29751vPFVSocH1FjdnBNcvJZ3r6VVxTwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFMBxJi4L+6fEeRITsDxAWpsj2AdQMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMjA0MGZiNzktN2RjOC0z NDM0LWFlMGYtNDg1MDk0OGVhMjE5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJkMMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFGZFcLgFxzuzVEkFcREM01ur/KB/bSjHxiWqRJP9EEsiw6XlRdza3lH jSx4tyDtLuqVExczWKf9sGFiBcBKV4Abh67k7k054MhxYLer07P2J7s1INBZs8Fp WU3fLtjejIkWGFIy5f22JmJrSu6OItFC+XhgAN/Xzoh/qDhPPCtzGV6WYp+THR/i o+CVCtXLSK2/akal1tuKanyz82Z1/LjEF3TJ8Cw23C3bguLG7qw4iEt481p5clAn oqQwCQe0IIkW66MgUvKgHP8E927thH41YIckTmzALAAH97OqP2SYmMqzIeinX3hk +lXrH3LsnbaX+P8QW6W1ZUP4ehbsTqc= -----END CERTIFICATE-----Generated at Sat Jun 13 22:21:02 2026 by rpki-client