$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa File: df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa (raw, json) Hash identifier: ybJPx7qtBhbaqgXHdwn3Ls1v7EjmSPl/oLWF7KaoM5k= Subject key identifier: 44:CF:FD:39:2E:50:AA:CA:2E:A3:A9:98:5B:41:7A:A2:A4:23:A1:E9 Certificate issuer: /CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Certificate serial: 010D0C9F4328584D6C0FBEC99A0D25A9119423C0 Authority key identifier: 29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa Signing time: Tue 07 Apr 2026 01:00:23 +0000 ROA not before: Tue 07 Apr 2026 01:00:23 +0000 ROA not after: Mon 06 Jul 2026 01:00:23 +0000 asID: 701 IP address blocks: 72.89.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Apr 2026 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4d:6c:0f:be:c9:9a:0d:25:a9:11:94:23:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Validity Not Before: Apr 7 01:00:23 2026 GMT Not After : Jul 6 01:00:23 2026 GMT Subject: CN=dd251155-1136-4906-b6bc-742a0cfcf483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:41:80:52:ce:7f:6f:09:bd:d3:a3:05:b6:83: 14:88:cd:95:b0:eb:7f:80:60:ad:17:94:63:83:96: 26:78:c1:88:58:ed:27:6c:56:73:4e:63:a2:67:e6: 2e:53:6f:a3:b0:90:07:d5:d5:07:9c:56:44:f9:ac: 79:b0:fe:f2:dd:a8:06:8a:9b:dc:76:29:27:b3:4b: a0:3c:b4:0c:f9:94:49:d1:7a:80:f8:3b:6e:84:3b: 21:bf:09:c0:30:85:63:15:ad:07:94:87:ca:e6:5c: d7:23:3f:e0:0a:54:85:66:ae:13:0f:96:4f:9c:ac: e6:61:1c:ef:0a:c1:17:f4:50:32:6e:cb:09:fe:ed: 5a:28:72:56:a7:9f:bf:63:63:c4:2a:e6:b9:04:df: c9:fb:3d:49:15:89:92:b5:3e:d1:b2:06:22:c8:c7: 39:16:a7:64:17:c8:64:83:7b:76:2d:e4:2b:1b:8b: b1:f5:98:e4:2e:4b:67:f8:bc:60:12:e8:4b:f3:21: 65:ad:65:a3:1c:33:c8:73:50:b1:62:f1:5a:46:10: e0:ae:ec:af:c3:32:31:f0:06:d6:bf:22:ed:2e:ea: 6e:47:a1:ef:97:35:20:95:b8:77:62:fb:c0:38:61: b1:22:ec:b4:07:74:73:f9:f4:5d:2c:a8:a9:af:a7: d6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:CF:FD:39:2E:50:AA:CA:2E:A3:A9:98:5B:41:7A:A2:A4:23:A1:E9 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl X509v3 Authority Key Identifier: keyid:29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer sbgp-ipAddrBlock: critical IPv4: 72.89.0.0/17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 01:68:9d:82:37:61:53:41:91:e4:41:6a:f0:28:26:75:ad:97: e9:53:6c:4c:ff:cd:59:3f:ec:af:52:9c:72:98:1b:ef:85:35: 65:63:a3:41:27:d9:a8:c7:94:4f:9c:19:ee:ac:ec:9e:da:37: 9b:c0:88:7e:65:74:01:1a:7b:85:2a:97:94:80:67:94:3a:96: d1:23:91:4e:66:6b:42:da:ec:61:f0:3a:02:f2:6b:3b:7b:27: cd:83:67:b7:57:e2:2b:3e:4c:52:91:10:c9:07:a7:a6:3a:aa: c7:21:1e:59:d8:ba:f8:97:d1:7d:30:0d:ed:4d:07:ae:e0:a5: e4:dc:a6:10:b4:9b:8d:91:a5:c9:50:be:53:a0:53:7e:04:ef: ca:24:a6:05:a3:06:47:f0:99:bf:d1:c5:81:c3:59:72:7c:3a: 5f:30:c9:56:b8:61:b5:27:07:b6:a4:40:d4:3f:2d:45:5a:10: 47:5c:45:77:42:e2:b1:b9:97:41:2b:9e:1b:cd:9c:60:8b:c5: 7f:c4:46:64:e7:df:cd:42:78:7a:c9:ea:29:42:39:57:50:e8: 6f:cc:1c:b7:1e:4f:4f:45:ad:2b:0f:7b:34:96:04:44:4c:ee: 99:77:f6:2e:48:e8:5e:4d:81:8c:b5:30:80:a8:9f:9e:bf:fa: 59:b9:53:f6 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWE1sD77Jmg0lqRGUI8AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNzMyOTgwNjItYmQ4Yi00YjlmLTg2MTMtZGViNmU5YzIw ODc4MB4XDTI2MDQwNzAxMDAyM1oXDTI2MDcwNjAxMDAyM1owLzEtMCsGA1UEAxMk ZGQyNTExNTUtMTEzNi00OTA2LWI2YmMtNzQyYTBjZmNmNDgzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjkGAUs5/bwm906MFtoMUiM2VsOt/gGCtF5Rj g5YmeMGIWO0nbFZzTmOiZ+YuU2+jsJAH1dUHnFZE+ax5sP7y3agGipvcdikns0ug PLQM+ZRJ0XqA+DtuhDshvwnAMIVjFa0HlIfK5lzXIz/gClSFZq4TD5ZPnKzmYRzv CsEX9FAybssJ/u1aKHJWp5+/Y2PEKua5BN/J+z1JFYmStT7RsgYiyMc5FqdkF8hk g3t2LeQrG4ux9ZjkLktn+LxgEuhL8yFlrWWjHDPIc1CxYvFaRhDgruyvwzIx8AbW vyLtLupuR6HvlzUglbh3YvvAOGGxIuy0B3Rz+fRdLKipr6fWyQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFETP/TkuUKrKLqOpmFtBeqKkI6HpMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5 ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2ZTljMjA4NzgvZGY0ZGM5YjctNzQwNi0z YWQ4LWE5MjQtMGY4YTg2MDZhOWJjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNzMyOTgwNjItYmQ4Yi00YjlmLTg2 MTMtZGViNmU5YzIwODc4LzczMjk4MDYyLWJkOGItNGI5Zi04NjEzLWRlYjZlOWMy MDg3OC5jcmwwHwYDVR0jBBgwFoAUKZLCNbCJQL6NrTHKzxOku19Y6uYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2 ZTljMjA4NzguY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHSFkAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAFonYI3YVNBkeRBavAoJnWtl+lTbEz/zVk/7K9SnHKYG++FNWVjo0En 2ajHlE+cGe6s7J7aN5vAiH5ldAEae4Uql5SAZ5Q6ltEjkU5ma0La7GHwOgLyazt7 J82DZ7dX4is+TFKREMkHp6Y6qschHlnYuviX0X0wDe1NB67gpeTcphC0m42RpclQ vlOgU34E78okpgWjBkfwmb/RxYHDWXJ8Ol8wyVa4YbUnB7akQNQ/LUVaEEdcRXdC 4rG5l0ErnhvNnGCLxX/ERmTn381CeHrJ6ilCOVdQ6G/MHLceT09FrSsPezSWBERM 7pl39i5I6F5NgYy1MICon56/+lm5U/Y= -----END CERTIFICATE-----Generated at Fri Apr 17 23:37:27 2026 by rpki-client