$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa File: de58c588-4488-3729-a7e1-98130f91c66c.roa (raw, json) Hash identifier: mNCs3GYDKBjTEYJ30UYTPBSEJMTts+BtPiYTRqOAYKA= Subject key identifier: 63:E9:53:E8:42:F4:29:B6:81:C0:84:F1:BA:7F:56:F2:3A:63:26:0E Certificate issuer: /CN=ca2c0e73-f7f7-4070-98aa-c78ef1752849 Certificate serial: 010D0C9F4328584A2ABADB0EF68D2FCC5E395D60 Authority key identifier: 76:CE:90:F2:9A:98:0C:BD:C1:58:74:E2:1C:58:59:B7:53:0A:4E:6A Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa Signing time: Thu 12 Jun 2025 13:01:03 +0000 ROA not before: Thu 12 Jun 2025 13:01:03 +0000 ROA not after: Wed 10 Sep 2025 13:01:03 +0000 asID: 32867 IP address blocks: 64.5.64.0/20 maxlen: 20 64.186.16.0/21 maxlen: 21 66.172.192.0/18 maxlen: 18 74.221.32.0/20 maxlen: 20 199.116.180.0/22 maxlen: 22 199.247.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 21 Jun 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:2a:ba:db:0e:f6:8d:2f:cc:5e:39:5d:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca2c0e73-f7f7-4070-98aa-c78ef1752849 Validity Not Before: Jun 12 13:01:03 2025 GMT Not After : Sep 10 13:01:03 2025 GMT Subject: CN=b0400624-980f-4926-bd18-ef2b319dacf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1f:d7:36:49:73:60:83:1e:f3:b4:0e:de:f1: 5a:5d:a9:85:8b:06:52:71:15:82:21:c9:2b:e4:01: 95:2b:6a:ea:4c:cd:de:5c:79:02:ed:b7:0c:f2:17: fc:93:67:8b:d1:a7:64:af:36:f4:ee:f1:af:91:4c: ab:18:5a:d7:b8:d0:47:ac:34:f0:dd:e4:40:d9:5c: db:13:73:60:38:03:7d:0a:b4:2f:2d:08:4d:25:05: e1:5e:07:95:6c:c9:68:41:93:38:6c:53:0d:94:1b: 16:40:a2:96:f7:8d:87:ab:f0:00:82:84:8c:c7:e4: 9f:99:43:3c:b5:63:10:5f:fb:16:9d:ff:30:26:bd: 08:38:16:fa:d0:43:21:33:6e:b6:64:ad:d9:a7:87: a3:16:a7:8b:50:15:d2:4f:a9:b4:aa:d6:43:41:fb: ed:49:e3:8d:c3:d5:c3:62:b3:68:cc:ac:a4:5d:8d: 87:3d:82:e7:f3:f4:a1:d4:0f:47:27:32:00:c6:23: b7:8f:ad:04:7a:e0:fd:60:68:f6:40:94:7c:ea:35: 7f:9a:b0:f1:91:06:65:8c:e3:43:9a:be:10:6f:c1: b4:d4:0e:e8:92:8a:ec:d8:f8:b9:4a:e6:ab:19:56: 65:d9:2b:b6:95:ff:1d:c3:8f:e2:1f:55:89:7e:17: b8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E9:53:E8:42:F4:29:B6:81:C0:84:F1:BA:7F:56:F2:3A:63:26:0E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.crl X509v3 Authority Key Identifier: keyid:76:CE:90:F2:9A:98:0C:BD:C1:58:74:E2:1C:58:59:B7:53:0A:4E:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer sbgp-ipAddrBlock: critical IPv4: 64.5.64.0/20 64.186.16.0/21 66.172.192.0/18 74.221.32.0/20 199.116.180.0/22 199.247.64.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2a:0d:31:85:5b:47:b6:a2:46:68:eb:04:06:10:60:55:bd:6c: 5d:55:64:50:c8:e5:3b:16:ed:25:9b:d0:9d:4d:af:85:64:44: ba:d2:64:5e:42:5d:f1:b1:85:1a:98:1d:85:f2:a9:0c:28:50: 66:c9:bd:13:30:9e:2b:f1:a5:6c:72:3f:5a:c5:69:d4:ce:4c: 80:b3:dd:3d:b2:94:24:f8:30:00:0c:c6:55:3d:ad:d9:da:bf: 50:ad:8b:23:96:ca:98:a2:2b:db:8d:77:99:b5:83:47:00:22: 11:00:ca:cc:8c:22:26:f1:06:f4:95:c8:3c:05:80:52:43:58: fa:ff:be:86:24:dc:71:ac:16:d4:0e:e8:d7:f3:2c:91:03:99: 7f:c0:d1:b0:33:71:f0:ab:4f:49:4f:0a:13:b7:75:d7:be:01: 29:c9:dc:b8:7a:bf:b1:78:5a:40:59:d4:6a:3d:ee:bc:d1:e0: 5b:cb:bd:b6:3d:32:23:4d:32:a4:48:cd:44:34:16:8c:7e:17: 3c:88:34:1a:f5:d6:20:6e:99:4f:83:45:99:05:c6:80:a0:8d: 37:60:9a:0b:3f:c0:13:fd:7e:9f:0a:13:36:0d:2e:b1:12:0b: 5f:cf:df:dd:7b:9f:4a:7e:5b:28:a0:8a:d2:e0:f3:b3:86:af: 0d:a6:3d:05 -----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgIUAQ0Mn0MoWEoqutsO9o0vzF45XWAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkY2EyYzBlNzMtZjdmNy00MDcwLTk4YWEtYzc4ZWYxNzUy ODQ5MB4XDTI1MDYxMjEzMDEwM1oXDTI1MDkxMDEzMDEwM1owLzEtMCsGA1UEAxMk YjA0MDA2MjQtOTgwZi00OTI2LWJkMTgtZWYyYjMxOWRhY2YwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzh/XNklzYIMe87QO3vFaXamFiwZScRWCIckr 5AGVK2rqTM3eXHkC7bcM8hf8k2eL0adkrzb07vGvkUyrGFrXuNBHrDTw3eRA2Vzb E3NgOAN9CrQvLQhNJQXhXgeVbMloQZM4bFMNlBsWQKKW942Hq/AAgoSMx+SfmUM8 tWMQX/sWnf8wJr0IOBb60EMhM262ZK3Zp4ejFqeLUBXST6m0qtZDQfvtSeONw9XD YrNozKykXY2HPYLn8/Sh1A9HJzIAxiO3j60EeuD9YGj2QJR86jV/mrDxkQZljOND mr4Qb8G01A7okors2Pi5SuarGVZl2Su2lf8dw4/iH1WJfhe4iwIDAQABo4IDczCC A28wHQYDVR0OBBYEFGPpU+hC9Cm2gcCE8bp/VvI6YyYOMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9jYTJj MGU3My1mN2Y3LTQwNzAtOThhYS1jNzhlZjE3NTI4NDkvZGU1OGM1ODgtNDQ4OC0z NzI5LWE3ZTEtOTgxMzBmOTFjNjZjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvY2EyYzBlNzMtZjdmNy00MDcwLTk4 YWEtYzc4ZWYxNzUyODQ5L2NhMmMwZTczLWY3ZjctNDA3MC05OGFhLWM3OGVmMTc1 Mjg0OS5jcmwwHwYDVR0jBBgwFoAUds6Q8pqYDL3BWHTiHFhZt1MKTmowDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9jYTJjMGU3My1mN2Y3LTQwNzAtOThhYS1jNzhl ZjE3NTI4NDkuY2VyMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQEQAVAAwQD QLoQAwQGQqzAAwQESt0gAwQCx3S0AwQEx/dAMFQGA1UdIAEB/wRKMEgwRgYIKwYB BQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3Vy Y2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBACoNMYVbR7aiRmjr BAYQYFW9bF1VZFDI5TsW7SWb0J1Nr4VkRLrSZF5CXfGxhRqYHYXyqQwoUGbJvRMw nivxpWxyP1rFadTOTICz3T2ylCT4MAAMxlU9rdnav1CtiyOWypiiK9uNd5m1g0cA IhEAysyMIibxBvSVyDwFgFJDWPr/voYk3HGsFtQO6NfzLJEDmX/A0bAzcfCrT0lP ChO3dde+ASnJ3Lh6v7F4WkBZ1Go97rzR4FvLvbY9MiNNMqRIzUQ0Fox+FzyINBr1 1iBumU+DRZkFxoCgjTdgmgs/wBP9fp8KEzYNLrESC1/P3917n0p+WyigitLg87OG rw2mPQU= -----END CERTIFICATE-----Generated at Thu Jun 19 04:35:21 2025 by rpki-client