$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/bcf45e9e-dc18-3d25-b5d1-bae729308233.roa File: bcf45e9e-dc18-3d25-b5d1-bae729308233.roa (raw, json) Hash identifier: O8ZuYzgQZJD8yo8qPuFcDQ7Co+aw4+DKHYKqGPA8l7c= Subject key identifier: FE:BB:2D:50:F5:18:47:B1:99:08:C7:68:EF:7A:DB:AB:47:85:D6:91 Certificate issuer: /CN=2bc601f7-daff-4d8b-8556-b61503268309 Certificate serial: 010D0C9F4328584A8410F9D8E3EDD6EBF8F39F80 Authority key identifier: DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/bcf45e9e-dc18-3d25-b5d1-bae729308233.roa Signing time: Mon 14 Jul 2025 13:01:04 +0000 ROA not before: Mon 14 Jul 2025 13:01:04 +0000 ROA not after: Sun 12 Oct 2025 13:01:04 +0000 asID: 40306 IP address blocks: 70.41.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:84:10:f9:d8:e3:ed:d6:eb:f8:f3:9f:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc601f7-daff-4d8b-8556-b61503268309 Validity Not Before: Jul 14 13:01:04 2025 GMT Not After : Oct 12 13:01:04 2025 GMT Subject: CN=6c35b372-4798-4da1-b053-8c511b2835f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e8:a7:a8:06:5f:47:f1:49:6e:9e:db:46:c4: c0:af:be:d0:4a:d3:3d:50:8c:7f:38:45:b7:d4:7a: b1:da:ff:9c:ac:f5:f3:30:e7:07:d9:82:e0:40:85: 87:95:cd:a0:f5:da:26:fd:cc:15:2e:c7:98:97:d2: c0:da:ce:ce:4a:52:43:d0:91:ed:c8:77:b2:98:c8: 75:82:7d:3a:42:11:83:c3:0a:f9:71:08:15:8e:b7: 83:72:a9:8a:e7:bb:c7:8f:a2:20:f8:04:d4:b6:9a: 0a:92:05:ca:20:c6:b1:e4:2e:be:f9:42:6c:f2:f9: ed:54:fc:f9:9f:37:92:f3:e2:9a:4e:c8:bf:31:b9: 4d:fd:cc:f3:04:6d:87:18:3f:35:9c:8e:16:05:2a: f6:56:ed:4c:4d:33:c0:05:db:c4:ce:43:88:15:aa: 29:67:4c:e1:c5:88:f8:7c:23:7f:c2:46:31:94:7f: 7f:c2:f3:63:4f:31:71:d2:17:de:fe:d5:6e:fc:48: aa:a1:0f:1b:83:6b:4c:9f:87:af:96:d4:8e:9c:b7: e7:79:3b:b1:75:50:e4:e8:e7:34:e0:ac:84:ea:d0: e8:9f:b7:47:cf:98:3e:cf:19:b3:9a:37:88:41:b9: ee:d0:bd:a9:b3:0b:b1:83:14:a6:12:e1:b1:fe:68: 4a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BB:2D:50:F5:18:47:B1:99:08:C7:68:EF:7A:DB:AB:47:85:D6:91 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/bcf45e9e-dc18-3d25-b5d1-bae729308233.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl X509v3 Authority Key Identifier: keyid:DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer sbgp-ipAddrBlock: critical IPv4: 70.41.109.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0f:57:85:4f:5c:8d:d4:d7:15:24:da:09:4d:24:76:37:46:a5: ce:17:e2:92:2b:21:0b:04:ff:b8:a0:bd:73:b4:fa:69:aa:25: cc:1e:68:de:3b:78:3d:98:de:d6:3f:f7:cd:00:ba:1c:74:7c: cb:13:b9:6f:a7:38:5e:7a:50:b5:99:3f:f0:b8:4f:4f:01:b6: 01:3d:a8:42:ca:2f:4f:fd:d5:60:e5:4b:01:3a:13:c1:9b:e5: 06:68:7a:78:5a:a5:57:54:bb:6a:24:d3:1e:6e:ef:70:fb:1d: 01:83:9f:58:94:23:46:23:42:6e:32:32:e6:f2:6a:4f:7b:1c: 63:0f:b0:b0:91:9f:15:2d:80:9e:37:64:1a:3c:1e:0e:53:78: a8:c9:8f:72:18:7e:04:34:d8:7a:87:52:af:03:4b:10:82:1f: 7b:77:85:94:ac:3a:7d:1b:c0:e8:50:15:0e:c8:b4:07:36:e6: 90:e3:bf:34:ec:38:68:5f:5c:4f:a7:b0:ee:2b:15:d9:53:08: 25:f1:31:31:c2:be:bc:e2:88:b6:6d:01:27:2d:60:6f:95:04: 0c:31:f8:90:2a:3a:4b:78:a7:94:07:5d:9c:5d:78:e0:65:13: 62:e3:18:76:b4:39:0a:f1:82:21:14:00:7c:53:78:5a:d6:97: 76:cd:1f:ec -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEqEEPnY4+3W6/jzn4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmJjNjAxZjctZGFmZi00ZDhiLTg1NTYtYjYxNTAzMjY4 MzA5MB4XDTI1MDcxNDEzMDEwNFoXDTI1MTAxMjEzMDEwNFowLzEtMCsGA1UEAxMk NmMzNWIzNzItNDc5OC00ZGExLWIwNTMtOGM1MTFiMjgzNWYyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+inqAZfR/FJbp7bRsTAr77QStM9UIx/OEW3 1Hqx2v+crPXzMOcH2YLgQIWHlc2g9dom/cwVLseYl9LA2s7OSlJD0JHtyHeymMh1 gn06QhGDwwr5cQgVjreDcqmK57vHj6Ig+ATUtpoKkgXKIMax5C6++UJs8vntVPz5 nzeS8+KaTsi/MblN/czzBG2HGD81nI4WBSr2Vu1MTTPABdvEzkOIFaopZ0zhxYj4 fCN/wkYxlH9/wvNjTzFx0hfe/tVu/EiqoQ8bg2tMn4evltSOnLfneTuxdVDk6Oc0 4KyE6tDon7dHz5g+zxmzmjeIQbnu0L2pswuxgxSmEuGx/mhKewIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFP67LVD1GEexmQjHaO9626tHhdaRMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2 MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1MDMyNjgzMDkvYmNmNDVlOWUtZGMxOC0z ZDI1LWI1ZDEtYmFlNzI5MzA4MjMzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvMmJjNjAxZjctZGFmZi00ZDhiLTg1 NTYtYjYxNTAzMjY4MzA5LzJiYzYwMWY3LWRhZmYtNGQ4Yi04NTU2LWI2MTUwMzI2 ODMwOS5jcmwwHwYDVR0jBBgwFoAU2sjvKarps5Jjg0Ir3yR6haVOgxcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1 MDMyNjgzMDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQARiltMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAA9XhU9cjdTXFSTaCU0kdjdGpc4X4pIrIQsE/7igvXO0+mmqJcweaN47 eD2Y3tY/980Auhx0fMsTuW+nOF56ULWZP/C4T08BtgE9qELKL0/91WDlSwE6E8Gb 5QZoenhapVdUu2ok0x5u73D7HQGDn1iUI0YjQm4yMubyak97HGMPsLCRnxUtgJ43 ZBo8Hg5TeKjJj3IYfgQ02HqHUq8DSxCCH3t3hZSsOn0bwOhQFQ7ItAc25pDjvzTs OGhfXE+nsO4rFdlTCCXxMTHCvrziiLZtASctYG+VBAwx+JAqOkt4p5QHXZxdeOBl E2LjGHa0OQrxgiEUAHxTeFrWl3bNH+w= -----END CERTIFICATE-----Generated at Wed Aug 6 16:03:33 2025 by rpki-client