$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/969933aa-bc02-357d-875f-85af16f668ef.roa File: 969933aa-bc02-357d-875f-85af16f668ef.roa (raw, json) Hash identifier: wJGRN+W78SgfDUZYOFD1OOm71WXM/A85MHKgHt3snVw= Subject key identifier: E5:65:7A:53:27:AE:F2:98:02:CE:54:86:8D:2C:8B:68:47:28:A9:D9 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584CFC8237A91698152DED8FFB80 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/969933aa-bc02-357d-875f-85af16f668ef.roa Signing time: Thu 26 Feb 2026 02:00:32 +0000 ROA not before: Thu 26 Feb 2026 02:00:32 +0000 ROA not after: Wed 27 May 2026 01:00:32 +0000 asID: 8069 IP address blocks: 20.33.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:fc:82:37:a9:16:98:15:2d:ed:8f:fb:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Feb 26 02:00:32 2026 GMT Not After : May 27 01:00:32 2026 GMT Subject: CN=9b10fb41-451f-4009-a715-62b99b0adef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:f1:25:7a:66:b2:2f:f2:4f:48:d2:4a:86:c0: 81:bc:54:c1:57:e9:23:2d:ff:19:98:12:84:a2:f5: 58:ce:a4:e8:8a:59:d1:67:07:fb:d7:42:e8:64:ea: 6f:4e:96:46:07:10:71:49:05:f8:8a:c8:7e:86:e3: 90:41:5d:74:d6:23:ed:d8:f1:91:06:d4:11:dc:80: 77:66:8d:25:32:e5:dd:4c:66:56:c7:d4:70:a9:3e: 26:9b:52:15:e1:f6:ed:ca:4b:98:ee:3c:19:f4:1b: 90:31:ee:20:a5:07:8b:f5:bf:28:02:07:8e:d9:ea: 1b:77:23:55:35:17:4e:5e:97:0b:1f:35:73:73:b9: 6c:2d:fc:20:61:91:1c:66:d4:53:69:11:9a:5a:3e: 6d:4e:1d:9a:23:b2:02:aa:0e:98:65:cd:6b:db:df: 4a:7d:b5:70:9f:90:5c:03:b1:e0:b1:45:d9:72:9d: 04:31:2a:54:e9:b0:13:fe:84:5b:72:c5:4e:62:0d: b5:9c:88:3b:72:cb:8d:97:d3:84:9e:aa:27:57:9c: 03:70:b0:29:80:38:c2:64:5b:0b:6c:06:38:66:60: 8b:7d:1b:e4:55:c3:52:05:85:da:57:0c:3d:07:0d: 2c:fa:23:95:7f:09:bd:59:af:45:e5:0a:3d:21:32: c8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:65:7A:53:27:AE:F2:98:02:CE:54:86:8D:2C:8B:68:47:28:A9:D9 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/969933aa-bc02-357d-875f-85af16f668ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.91.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6e:4e:42:84:75:c8:b5:e2:d2:eb:40:15:0a:b4:de:83:15:a2: 38:93:11:68:7a:07:d6:ca:71:20:0b:3f:1a:8e:8c:c7:11:2e: 8e:9d:85:c8:d0:7e:e4:ea:85:c8:68:8e:d5:2a:b8:ad:53:24: 55:9f:4f:92:65:70:28:ed:09:ff:fa:d9:00:f5:8d:75:c8:fb: 63:27:22:ef:90:88:ac:5d:db:37:83:e4:c8:5d:b6:fd:ee:82: 6d:e7:36:da:c8:6c:f7:82:a4:f4:f5:be:c4:da:16:76:87:0a: a7:90:0c:a8:dc:0e:af:80:ed:9d:2a:50:4c:93:32:67:8b:4d: 31:af:bb:c3:f8:e9:05:12:c3:d4:24:99:7e:30:23:ac:22:02: 2f:8b:82:10:a1:16:ff:de:69:63:37:df:b3:9e:1f:b6:65:a5: 78:d2:84:2a:35:65:a0:97:cf:9e:a2:c0:99:3c:03:0b:2b:d9: e8:97:65:3b:af:fe:02:f4:4e:9e:d1:7b:b4:b6:04:91:4e:c1: 92:fa:9c:2e:70:61:69:1b:4b:e1:4a:ab:69:e2:dd:46:af:51: cf:25:bb:9c:2d:e2:9b:7e:09:68:9f:db:28:92:2d:b9:ae:73: e2:cd:e3:bb:c5:4b:d4:6d:a5:00:86:78:20:05:06:8a:22:4d: a1:dc:15:a1 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEz8gjepFpgVLe2P+4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI2MDIyNjAyMDAzMloXDTI2MDUyNzAxMDAzMlowLzEtMCsGA1UEAxMk OWIxMGZiNDEtNDUxZi00MDA5LWE3MTUtNjJiOTliMGFkZWY5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgPElemayL/JPSNJKhsCBvFTBV+kjLf8ZmBKE ovVYzqToilnRZwf710LoZOpvTpZGBxBxSQX4ish+huOQQV101iPt2PGRBtQR3IB3 Zo0lMuXdTGZWx9RwqT4mm1IV4fbtykuY7jwZ9BuQMe4gpQeL9b8oAgeO2eobdyNV NRdOXpcLHzVzc7lsLfwgYZEcZtRTaRGaWj5tTh2aI7ICqg6YZc1r299KfbVwn5Bc A7HgsUXZcp0EMSpU6bAT/oRbcsVOYg21nIg7csuNl9OEnqonV5wDcLApgDjCZFsL bAY4ZmCLfRvkVcNSBYXaVww9Bw0s+iOVfwm9Wa9F5Qo9ITLIEwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFOVlelMnrvKYAs5Uho0si2hHKKnZMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvOTY5OTMzYWEtYmMwMi0z NTdkLTg3NWYtODVhZjE2ZjY2OGVmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCFbMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAG5OQoR1yLXi0utAFQq03oMVojiTEWh6B9bKcSALPxqOjMcRLo6dhcjQ fuTqhchojtUquK1TJFWfT5JlcCjtCf/62QD1jXXI+2MnIu+QiKxd2zeD5Mhdtv3u gm3nNtrIbPeCpPT1vsTaFnaHCqeQDKjcDq+A7Z0qUEyTMmeLTTGvu8P46QUSw9Qk mX4wI6wiAi+LghChFv/eaWM337OeH7ZlpXjShCo1ZaCXz56iwJk8Awsr2eiXZTuv /gL0Tp7Re7S2BJFOwZL6nC5wYWkbS+FKq2ni3UavUc8lu5wt4pt+CWif2yiSLbmu c+LN47vFS9RtpQCGeCAFBooiTaHcFaE= -----END CERTIFICATE-----Generated at Mon Mar 2 16:29:13 2026 by rpki-client