$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa File: 828c35a4-d70a-329b-afc8-43f0c6744f3e.roa (raw, json) Hash identifier: PB3mndTgIuq9LGPDycgT+Kb5VUQgKi0b5Q9rpPLbsVc= Subject key identifier: 3A:CF:15:17:39:62:F6:71:31:E1:0A:79:50:5C:A2:9E:65:65:E2:95 Certificate issuer: /CN=3b72c968-d673-4a7a-bfec-4071a7be5317 Certificate serial: 010D0C9F4328584AC9DBA59D42A0298ED4D3FB80 Authority key identifier: D4:D0:6C:E1:8F:F9:73:1D:53:22:23:6D:36:3F:38:F6:81:03:B5:6F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa Signing time: Fri 08 Aug 2025 13:00:40 +0000 ROA not before: Fri 08 Aug 2025 13:00:40 +0000 ROA not after: Thu 06 Nov 2025 14:00:40 +0000 asID: 27589 IP address blocks: 64.59.64.0/18 maxlen: 24 66.244.144.0/20 maxlen: 24 74.206.160.0/19 maxlen: 24 99.192.128.0/17 maxlen: 24 104.193.120.0/22 maxlen: 24 162.250.76.0/22 maxlen: 24 184.94.144.0/20 maxlen: 24 199.19.200.0/21 maxlen: 24 199.59.88.0/21 maxlen: 24 199.182.104.0/21 maxlen: 24 199.241.96.0/21 maxlen: 24 208.74.148.0/22 maxlen: 24 208.122.192.0/19 maxlen: 24 2607:f5a8::/32 maxlen: 48 2607:ffb8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 16:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:c9:db:a5:9d:42:a0:29:8e:d4:d3:fb:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b72c968-d673-4a7a-bfec-4071a7be5317 Validity Not Before: Aug 8 13:00:40 2025 GMT Not After : Nov 6 14:00:40 2025 GMT Subject: CN=9ea10f8d-1c55-4b07-8f7c-e8c29ebb75cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:dc:bb:f0:b9:56:36:07:a3:80:6a:c3:55:ea: 8c:f0:76:f5:df:27:f0:ad:3c:27:eb:cc:89:13:7c: b5:30:3c:e3:38:8b:ae:63:1c:0f:06:81:72:13:1e: 56:29:a2:6f:6d:9e:73:5f:09:76:45:89:c6:bb:db: dc:4e:5e:f2:6e:24:59:d9:5d:e2:9b:d2:1a:08:1d: a4:33:be:87:71:8d:5d:ba:bd:fb:cf:a4:ff:be:37: f6:78:b8:59:5e:b4:93:e1:77:f9:73:6d:74:20:e5: 70:6e:c3:57:bd:5f:ba:4c:a9:86:ea:39:65:87:62: 4a:7f:e3:8b:99:57:32:d5:9e:33:4f:67:aa:54:f8: 3a:12:e7:fc:2a:27:8b:7d:69:49:e0:a7:bd:49:70: 69:ef:d2:fd:bf:75:1b:5e:0c:ab:2e:e9:b3:ae:d3: d9:56:39:03:b3:a9:46:18:e6:49:49:ef:95:50:d4: 8e:82:ed:63:80:43:68:25:35:97:a1:03:b4:1b:f8: ca:98:73:6d:50:c6:2d:71:4a:0b:f3:f8:ac:65:0e: 18:eb:90:ac:7e:72:72:18:a6:6c:09:2d:db:29:92: c7:e7:a3:db:8a:2c:3c:a2:d3:5f:ae:1e:42:b2:92: 82:dc:db:1b:42:6d:68:c9:cd:57:69:00:27:48:e1: e6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CF:15:17:39:62:F6:71:31:E1:0A:79:50:5C:A2:9E:65:65:E2:95 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.crl X509v3 Authority Key Identifier: keyid:D4:D0:6C:E1:8F:F9:73:1D:53:22:23:6D:36:3F:38:F6:81:03:B5:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer sbgp-ipAddrBlock: critical IPv4: 64.59.64.0/18 66.244.144.0/20 74.206.160.0/19 99.192.128.0/17 104.193.120.0/22 162.250.76.0/22 184.94.144.0/20 199.19.200.0/21 199.59.88.0/21 199.182.104.0/21 199.241.96.0/21 208.74.148.0/22 208.122.192.0/19 IPv6: 2607:f5a8::/32 2607:ffb8::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 4b:52:b8:eb:7d:81:e9:6c:4e:9f:a6:40:af:99:97:f6:e0:2a: 2a:5e:18:6a:c5:9a:aa:14:20:ce:6b:80:1f:7a:30:db:a7:2f: 8c:0e:bc:30:83:c3:a5:54:73:a1:c2:2f:2f:e8:df:f0:b8:45: a4:a9:0b:35:9c:d9:28:f3:01:66:df:12:37:51:7f:4d:a9:e6: a2:6a:15:e0:6b:46:54:65:01:a2:67:3e:9b:26:dd:48:d8:54: 4e:ca:ae:70:c2:60:0c:ba:ca:d7:ea:f0:5f:a1:f2:13:3d:4c: d3:f8:52:22:12:b4:a0:ef:ee:98:b9:ac:b3:69:4c:c4:67:93: e5:dc:b8:bb:71:da:85:1c:ab:0f:d5:32:25:ed:43:e2:49:22: 31:e1:d7:93:c8:7e:ea:a9:17:5a:e7:d3:2e:7d:76:4d:e9:e1: 2a:d0:60:c6:a6:3e:5e:83:6a:b7:5f:70:86:05:a6:02:51:aa: 78:d9:3a:f1:0d:9b:73:19:63:89:6b:2c:e2:08:77:cb:99:4a: 94:40:a4:f3:0c:04:ad:c3:4d:02:08:25:14:d6:f6:eb:e9:f1: 87:9d:0d:0e:a9:59:ed:da:97:76:81:48:9d:fb:d1:1d:c5:e4: 5b:73:8f:4a:9b:63:09:a5:dd:f6:de:81:4d:75:42:0e:91:43: 66:7a:73:54 -----BEGIN CERTIFICATE----- MIIGoTCCBYmgAwIBAgIUAQ0Mn0MoWErJ26WdQqApjtTT+4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkM2I3MmM5NjgtZDY3My00YTdhLWJmZWMtNDA3MWE3YmU1 MzE3MB4XDTI1MDgwODEzMDA0MFoXDTI1MTEwNjE0MDA0MFowLzEtMCsGA1UEAxMk OWVhMTBmOGQtMWM1NS00YjA3LThmN2MtZThjMjllYmI3NWNkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldy78LlWNgejgGrDVeqM8Hb13yfwrTwn68yJ E3y1MDzjOIuuYxwPBoFyEx5WKaJvbZ5zXwl2RYnGu9vcTl7ybiRZ2V3im9IaCB2k M76HcY1dur37z6T/vjf2eLhZXrST4Xf5c210IOVwbsNXvV+6TKmG6jllh2JKf+OL mVcy1Z4zT2eqVPg6Euf8KieLfWlJ4Ke9SXBp79L9v3UbXgyrLumzrtPZVjkDs6lG GOZJSe+VUNSOgu1jgENoJTWXoQO0G/jKmHNtUMYtcUoL8/isZQ4Y65CsfnJyGKZs CS3bKZLH56Pbiiw8otNfrh5CspKC3NsbQm1oyc1XaQAnSOHmMQIDAQABo4IDszCC A68wHQYDVR0OBBYEFDrPFRc5YvZxMeEKeVBcop5lZeKVMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8zYjcy Yzk2OC1kNjczLTRhN2EtYmZlYy00MDcxYTdiZTUzMTcvODI4YzM1YTQtZDcwYS0z MjliLWFmYzgtNDNmMGM2NzQ0ZjNlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvM2I3MmM5NjgtZDY3My00YTdhLWJm ZWMtNDA3MWE3YmU1MzE3LzNiNzJjOTY4LWQ2NzMtNGE3YS1iZmVjLTQwNzFhN2Jl NTMxNy5jcmwwHwYDVR0jBBgwFoAU1NBs4Y/5cx1TIiNtNj849oEDtW8wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8zYjcyYzk2OC1kNjczLTRhN2EtYmZlYy00MDcx YTdiZTUzMTcuY2VyMH0GCCsGAQUFBwEHAQH/BG4wbDBUBAIAATBOAwQGQDtAAwQE QvSQAwQFSs6gAwQHY8CAAwQCaMF4AwQCovpMAwQEuF6QAwQDxxPIAwQDxztYAwQD x7ZoAwQDx/FgAwQC0EqUAwQF0HrAMBQEAgACMA4DBQAmB/WoAwUAJgf/uDBUBgNV HSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3 LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUA A4IBAQBLUrjrfYHpbE6fpkCvmZf24CoqXhhqxZqqFCDOa4AfejDbpy+MDrwwg8Ol VHOhwi8v6N/wuEWkqQs1nNko8wFm3xI3UX9NqeaiahXga0ZUZQGiZz6bJt1I2FRO yq5wwmAMusrX6vBfofITPUzT+FIiErSg7+6YuayzaUzEZ5Pl3Li7cdqFHKsP1TIl 7UPiSSIx4deTyH7qqRda59MufXZN6eEq0GDGpj5eg2q3X3CGBaYCUap42TrxDZtz GWOJayziCHfLmUqUQKTzDAStw00CCCUU1vbr6fGHnQ0OqVnt2pd2gUid+9EdxeRb c49Km2MJpd323oFNdUIOkUNmenNU -----END CERTIFICATE-----Generated at Sat Aug 9 22:36:26 2025 by rpki-client