$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa File: 3e233b44-911d-3c32-9600-9580640a3557.roa (raw, json) Hash identifier: jDfdPzutZLAhbo3TLNiMXKEkcK3ekdIodDgEd8FL9mA= Subject key identifier: CC:11:B7:BD:A7:49:FE:CA:F5:DA:FD:DC:BB:6A:67:29:D1:33:27:A8 Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F4328584AE89137498EAB87A54F63CFC0 Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa Signing time: Tue 19 Aug 2025 13:00:40 +0000 ROA not before: Tue 19 Aug 2025 13:00:40 +0000 ROA not after: Mon 17 Nov 2025 14:00:40 +0000 asID: 17378 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:e8:91:37:49:8e:ab:87:a5:4f:63:cf:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: Aug 19 13:00:40 2025 GMT Not After : Nov 17 14:00:40 2025 GMT Subject: CN=cd8f9afb-454f-40f5-9fd6-f972bd8ed977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:a9:74:ac:01:ee:f1:af:f4:2a:fb:94:2e:30: a8:27:db:0d:d0:24:66:6e:1e:72:aa:46:9b:00:30: 10:1e:4d:8b:84:ef:56:fb:1d:0e:5b:d7:e0:f6:8c: c6:1a:6c:3b:2b:3d:5c:15:9f:9b:02:60:03:92:09: da:ac:c2:07:9a:aa:b3:8a:22:ab:17:83:77:15:5e: 49:82:8f:ef:78:05:25:81:28:00:9f:c5:c6:33:5e: 92:26:05:b8:e2:6e:43:46:1a:0a:3a:d0:76:94:a1: 65:a1:b4:30:e7:36:20:36:90:1e:97:3f:43:9d:07: 02:8d:c8:5b:f5:23:8d:07:90:c4:5e:8d:90:9a:df: 95:8a:04:8e:92:74:46:7b:67:47:25:0e:f1:60:42: 23:93:c0:e7:5f:aa:85:28:f9:f9:4f:9f:8e:87:9b: a1:a4:40:99:39:a2:6d:53:1d:93:86:c7:d8:53:bf: 70:11:bd:29:75:5a:5f:2e:bd:77:40:f1:b6:a9:82: 9c:ec:3b:91:01:f2:f8:f4:b9:24:6b:25:2b:4a:34: 8d:38:5f:cf:a7:4c:1f:41:ca:8d:db:3d:4a:a8:37: 63:b2:e6:4a:5a:d6:45:74:3b:89:3b:c9:00:52:6b: 00:28:4e:01:8f:29:ae:2d:b8:2f:29:1d:2d:b9:9d: 8d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:11:B7:BD:A7:49:FE:CA:F5:DA:FD:DC:BB:6A:67:29:D1:33:27:A8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 18:7c:c3:e9:2a:d2:95:8d:2f:1c:cb:95:7f:5c:9a:82:ab:5f: 9c:e5:b5:99:0a:c4:08:82:7c:cb:dc:60:b8:2c:e4:c1:3e:f9: e2:91:30:ce:d1:04:62:45:d5:53:5d:56:aa:c4:a1:d5:0a:b3: 5c:4b:6d:b2:30:eb:2c:87:91:b6:51:d6:71:b2:09:56:ce:39: d7:f2:11:a1:b0:de:be:05:e8:b2:a1:f7:b5:ed:29:0c:02:3e: 50:de:3b:2d:60:af:f2:ff:fb:d4:bd:34:4a:ad:60:91:d9:66: a7:b4:4b:77:62:06:84:fd:54:1e:50:5a:93:7b:72:c0:e6:b1: a3:38:d2:5c:a1:f4:59:d7:59:e8:b3:0e:18:de:76:19:17:f7: ee:54:97:e3:de:94:74:e5:eb:31:df:e8:ab:1b:9a:dc:78:ee: 3b:6a:4d:f6:45:13:57:09:7c:0d:10:48:59:c2:1b:c4:0f:9a: 7a:fd:16:2a:e6:96:c1:42:13:e7:02:21:54:7b:5d:b2:f9:27: 1d:85:e6:49:43:ee:87:b8:66:0c:5a:11:83:56:51:b2:87:79: 0e:d3:3f:9b:b0:32:b1:b3:dd:4e:53:d3:3a:a3:ec:38:f4:5d: 45:6a:90:a9:4a:9f:52:be:f6:31:e5:7e:bc:be:5b:21:2c:ee: 3c:53:04:bc -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWErokTdJjquHpU9jz8AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI1MDgxOTEzMDA0MFoXDTI1MTExNzE0MDA0MFowLzEtMCsGA1UEAxMk Y2Q4ZjlhZmItNDU0Zi00MGY1LTlmZDYtZjk3MmJkOGVkOTc3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgql0rAHu8a/0KvuULjCoJ9sN0CRmbh5yqkab ADAQHk2LhO9W+x0OW9fg9ozGGmw7Kz1cFZ+bAmADkgnarMIHmqqziiKrF4N3FV5J go/veAUlgSgAn8XGM16SJgW44m5DRhoKOtB2lKFlobQw5zYgNpAelz9DnQcCjchb 9SONB5DEXo2Qmt+VigSOknRGe2dHJQ7xYEIjk8DnX6qFKPn5T5+Oh5uhpECZOaJt Ux2ThsfYU79wEb0pdVpfLr13QPG2qYKc7DuRAfL49LkkayUrSjSNOF/Pp0wfQcqN 2z1KqDdjsuZKWtZFdDuJO8kAUmsAKE4BjymuLbgvKR0tuZ2NEwIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFMwRt72nSf7K9dr93LtqZynRMyeoMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvM2UyMzNiNDQtOTExZC0z YzMyLTk2MDAtOTU4MDY0MGEzNTU3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAGHzD6SrSlY0vHMuVf1yagqtf nOW1mQrECIJ8y9xguCzkwT754pEwztEEYkXVU11WqsSh1QqzXEttsjDrLIeRtlHW cbIJVs451/IRobDevgXosqH3te0pDAI+UN47LWCv8v/71L00Sq1gkdlmp7RLd2IG hP1UHlBak3tywOaxozjSXKH0WddZ6LMOGN52GRf37lSX496UdOXrMd/oqxua3Hju O2pN9kUTVwl8DRBIWcIbxA+aev0WKuaWwUIT5wIhVHtdsvknHYXmSUPuh7hmDFoR g1ZRsod5DtM/m7AysbPdTlPTOqPsOPRdRWqQqUqfUr72MeV+vL5bISzuPFMEvA== -----END CERTIFICATE-----Generated at Wed Nov 5 03:49:45 2025 by rpki-client