$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7/f157d5a8-1f48-3fa1-a5c4-fd3f8b8206a4.roa File: f157d5a8-1f48-3fa1-a5c4-fd3f8b8206a4.roa (raw, json) Hash identifier: urPQs6bt4pkzVlsgObEdsqmyyLOzqGmF8CSsWDoMRvo= Subject key identifier: 6A:F7:07:5C:1C:C1:CB:0A:0C:93:6B:97:82:FC:31:29:75:0C:13:6C Certificate issuer: /CN=b8fa95ca-aa42-4b86-891b-7be12d533da7 Certificate serial: 010D0C9F4328584B004BF367BC0E2D9BCB76D180 Authority key identifier: EE:C3:A3:27:2D:C4:BD:B3:60:BD:9A:79:33:99:80:FD:CD:91:D7:FD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7/f157d5a8-1f48-3fa1-a5c4-fd3f8b8206a4.roa Signing time: Thu 28 Aug 2025 01:00:33 +0000 ROA not before: Thu 28 Aug 2025 01:00:33 +0000 ROA not after: Wed 26 Nov 2025 02:00:33 +0000 asID: 16509 IP address blocks: 198.160.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7/b8fa95ca-aa42-4b86-891b-7be12d533da7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7/b8fa95ca-aa42-4b86-891b-7be12d533da7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:00:4b:f3:67:bc:0e:2d:9b:cb:76:d1:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8fa95ca-aa42-4b86-891b-7be12d533da7 Validity Not Before: Aug 28 01:00:33 2025 GMT Not After : Nov 26 02:00:33 2025 GMT Subject: CN=6276c391-9b85-4142-808c-164e15dc4460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d9:7f:5e:a1:f5:77:f6:4f:6c:e6:4c:1c:87: 6f:36:a2:99:3b:bf:83:3b:32:71:ca:67:74:7c:67: 2a:f1:44:75:95:71:23:c5:dd:75:16:8d:7e:d6:79: 9a:f7:7c:cc:5d:a9:86:d2:5e:d3:37:d6:e0:8a:9e: 64:e2:88:f3:aa:db:85:98:cd:92:c1:44:21:79:b1: 2f:f6:26:f2:09:61:c1:38:38:6b:2d:e9:66:00:86: 4d:dd:fe:a9:32:b2:c7:6d:42:99:2a:46:9e:18:a5: 86:6c:20:96:cf:f9:e9:2a:c8:ed:de:8b:fb:bc:84: 96:e5:9a:4d:08:06:06:20:ff:46:9a:4f:c9:d0:f0: 97:ca:6b:2f:4f:fb:21:4d:8c:05:67:b2:f9:5e:1d: be:bb:f3:1c:66:fe:d5:10:af:3a:98:3f:1d:7d:a6: a1:dc:6f:3d:e1:ae:ed:cc:f5:18:b6:0a:2f:4d:a9: 79:99:0f:60:05:52:37:3c:27:0f:17:af:80:d6:d2: 1c:90:d0:75:1b:08:f6:b9:53:d6:71:8c:a1:dc:2a: 43:6c:1d:df:bc:7c:cc:b2:2d:e9:2a:eb:d5:17:a9: 0b:8b:e5:1e:8f:7e:e1:df:61:de:0f:0b:df:dc:b5: 3e:6b:13:88:9e:7c:16:73:57:8f:8d:b4:e7:6f:95: 3d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F7:07:5C:1C:C1:CB:0A:0C:93:6B:97:82:FC:31:29:75:0C:13:6C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7/f157d5a8-1f48-3fa1-a5c4-fd3f8b8206a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7/b8fa95ca-aa42-4b86-891b-7be12d533da7.crl X509v3 Authority Key Identifier: keyid:EE:C3:A3:27:2D:C4:BD:B3:60:BD:9A:79:33:99:80:FD:CD:91:D7:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b8fa95ca-aa42-4b86-891b-7be12d533da7.cer sbgp-ipAddrBlock: critical IPv4: 198.160.143.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2d:ad:f8:35:48:f0:c7:e2:34:74:26:6a:b1:de:c3:fe:a7:f4: c9:2e:0f:c1:98:90:72:21:b3:59:18:5f:27:07:d1:80:41:b2: 7f:db:30:f5:41:6a:9d:9a:79:e5:46:3c:52:89:f9:b4:3c:04: 38:23:8f:17:17:8a:18:d3:59:fc:f1:3d:cb:ca:1a:a5:2f:18: 22:3b:ba:66:30:45:12:d9:df:71:ee:18:d9:d8:c1:dd:c8:08: 4a:c5:62:91:7b:2e:08:63:44:8d:e5:16:2a:c2:c4:b5:e4:62: 93:78:cf:0c:52:7c:7c:ee:87:00:ec:7d:89:55:b0:67:77:87: 15:a5:aa:ce:dd:61:ac:4b:f6:39:90:d4:78:ee:13:a2:44:07: ff:02:0f:43:c5:3d:ab:0e:2f:19:b7:96:fe:aa:1d:7e:4e:b2: f8:0d:cf:fd:8d:00:b3:15:7b:f5:87:04:e5:a0:b3:e7:3d:61: f2:92:0e:ad:d7:60:5f:fd:28:7e:cf:cb:85:dc:56:f5:52:b4: 01:49:aa:f2:26:d3:2a:3b:fe:fd:a5:98:f3:93:b4:4d:7b:6a: f2:ce:db:cb:11:3e:15:c1:6f:4d:1b:76:83:fe:c8:4d:65:da: 1c:19:db:c7:03:80:98:49:bc:b7:7e:18:ae:84:85:67:6e:d6: 18:0c:a1:2e -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEsAS/NnvA4tm8t20YAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYjhmYTk1Y2EtYWE0Mi00Yjg2LTg5MWItN2JlMTJkNTMz ZGE3MB4XDTI1MDgyODAxMDAzM1oXDTI1MTEyNjAyMDAzM1owLzEtMCsGA1UEAxMk NjI3NmMzOTEtOWI4NS00MTQyLTgwOGMtMTY0ZTE1ZGM0NDYwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNl/XqH1d/ZPbOZMHIdvNqKZO7+DOzJxymd0 fGcq8UR1lXEjxd11Fo1+1nma93zMXamG0l7TN9bgip5k4ojzqtuFmM2SwUQhebEv 9ibyCWHBODhrLelmAIZN3f6pMrLHbUKZKkaeGKWGbCCWz/npKsjt3ov7vISW5ZpN CAYGIP9Gmk/J0PCXymsvT/shTYwFZ7L5Xh2+u/McZv7VEK86mD8dfaah3G894a7t zPUYtgovTal5mQ9gBVI3PCcPF6+A1tIckNB1Gwj2uVPWcYyh3CpDbB3fvHzMsi3p KuvVF6kLi+Uej37h32HeDwvf3LU+axOInnwWc1ePjbTnb5U9+wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFGr3B1wcwcsKDJNrl4L8MSl1DBNsMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9iOGZh OTVjYS1hYTQyLTRiODYtODkxYi03YmUxMmQ1MzNkYTcvZjE1N2Q1YTgtMWY0OC0z ZmExLWE1YzQtZmQzZjhiODIwNmE0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvYjhmYTk1Y2EtYWE0Mi00Yjg2LTg5 MWItN2JlMTJkNTMzZGE3L2I4ZmE5NWNhLWFhNDItNGI4Ni04OTFiLTdiZTEyZDUz M2RhNy5jcmwwHwYDVR0jBBgwFoAU7sOjJy3EvbNgvZp5M5mA/c2R1/0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9iOGZhOTVjYS1hYTQyLTRiODYtODkxYi03YmUx MmQ1MzNkYTcuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAxqCPMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAC2t+DVI8MfiNHQmarHew/6n9MkuD8GYkHIhs1kYXycH0YBBsn/bMPVB ap2aeeVGPFKJ+bQ8BDgjjxcXihjTWfzxPcvKGqUvGCI7umYwRRLZ33HuGNnYwd3I CErFYpF7LghjRI3lFirCxLXkYpN4zwxSfHzuhwDsfYlVsGd3hxWlqs7dYaxL9jmQ 1HjuE6JEB/8CD0PFPasOLxm3lv6qHX5OsvgNz/2NALMVe/WHBOWgs+c9YfKSDq3X YF/9KH7Py4XcVvVStAFJqvIm0yo7/v2lmPOTtE17avLO28sRPhXBb00bdoP+yE1l 2hwZ28cDgJhJvLd+GK6EhWdu1hgMoS4= -----END CERTIFICATE-----Generated at Wed Nov 5 02:20:07 2025 by rpki-client