$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/940cb506-c287-3123-b5cd-8640efc7de0a.roa File: 940cb506-c287-3123-b5cd-8640efc7de0a.roa (raw, json) Hash identifier: 3c4mqzKB+gkQTEHW+FxY7B0qJ5tFNlLiJAC88gdLooA= Subject key identifier: 63:54:62:94:16:D3:E5:49:B8:CA:75:4B:63:C0:3A:B4:8F:2F:F2:CC Certificate issuer: /CN=aafd6acf-1b90-42db-93ca-6a5c04007025 Certificate serial: 010D0C9F4328584BB1978D8028F413B0C918C080 Authority key identifier: 33:52:98:80:D6:83:C5:3F:14:72:92:EA:A0:84:99:4F:1A:2D:BB:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/940cb506-c287-3123-b5cd-8640efc7de0a.roa Signing time: Thu 30 Oct 2025 13:11:08 +0000 ROA not before: Thu 30 Oct 2025 13:11:08 +0000 ROA not after: Wed 28 Jan 2026 14:11:08 +0000 asID: 812 IP address blocks: 64.71.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/aafd6acf-1b90-42db-93ca-6a5c04007025.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/aafd6acf-1b90-42db-93ca-6a5c04007025.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/85e06eaf-37a7-4588-abea-e4909ef1b4e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:b1:97:8d:80:28:f4:13:b0:c9:18:c0:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aafd6acf-1b90-42db-93ca-6a5c04007025 Validity Not Before: Oct 30 13:11:08 2025 GMT Not After : Jan 28 14:11:08 2026 GMT Subject: CN=bbaffe86-54d4-48a4-b18e-eaa1a7adbd7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f9:26:ce:9f:67:8b:d4:1a:ef:8b:23:ba:35: fd:ef:b9:e3:8d:53:5e:55:fd:15:c1:dc:17:5f:f1: 22:4c:dc:b6:4f:ce:33:92:8a:b6:10:af:36:b1:46: 4f:46:16:20:be:ab:93:51:d1:95:0a:be:24:a2:49: 9f:33:7a:a7:a6:93:26:73:8e:ee:a3:88:3d:92:85: 80:65:b4:53:e7:85:5e:19:3c:6b:04:bc:7d:b6:b8: ce:59:76:4b:be:e1:01:9f:5d:38:ea:3e:95:54:81: 66:6b:32:98:bc:4c:aa:1c:63:83:31:5b:0a:35:ae: 16:d1:12:c7:13:2c:4c:be:16:ab:de:1e:5e:b6:d9: c0:2f:91:c3:67:84:04:3a:f2:7d:08:d4:fd:72:f9: d4:87:3c:1a:d2:28:01:be:db:98:64:ce:6d:e6:8b: 79:4b:3a:32:c3:e0:44:e4:df:d7:c8:d7:fb:b9:4a: c9:8c:f1:b6:2b:fe:cb:77:83:d4:25:47:08:ad:f6: 3f:59:75:76:f8:68:5a:17:47:cb:67:2f:49:80:9b: 3b:89:f4:fb:e7:d6:33:98:56:49:fa:83:6d:0a:4c: 2c:f6:b0:4b:9f:d9:23:71:c4:37:b1:87:34:4e:5b: 7c:7c:6c:86:22:09:b4:f0:07:d6:da:79:51:4f:52: 9a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:54:62:94:16:D3:E5:49:B8:CA:75:4B:63:C0:3A:B4:8F:2F:F2:CC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/940cb506-c287-3123-b5cd-8640efc7de0a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025/aafd6acf-1b90-42db-93ca-6a5c04007025.crl X509v3 Authority Key Identifier: keyid:33:52:98:80:D6:83:C5:3F:14:72:92:EA:A0:84:99:4F:1A:2D:BB:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/85e06eaf-37a7-4588-abea-e4909ef1b4e2/aafd6acf-1b90-42db-93ca-6a5c04007025.cer sbgp-ipAddrBlock: critical IPv4: 64.71.240.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2f:45:e2:d2:f7:59:8e:e9:e1:ea:8c:63:97:32:4e:fd:73:d8: 89:9d:b7:f5:93:cc:6e:37:7a:7c:8f:fe:cd:17:3c:63:1a:5d: 8d:30:8e:6c:9a:8c:91:65:8c:6d:bd:ea:33:f4:43:04:93:83: 9a:26:12:72:9e:6a:56:67:d1:a8:4e:ac:bc:14:c5:a3:4b:e7: ec:cb:f2:e9:6b:73:18:ac:73:fa:05:55:3e:98:25:74:a1:f9: 49:41:71:bb:83:42:74:b8:35:4d:21:20:75:01:90:7d:e9:f7: c7:8e:52:8c:e5:ea:f7:11:86:ee:f2:a1:de:f0:2f:4f:35:95: 39:10:ea:ab:62:40:71:22:a1:fd:51:c9:70:9e:81:79:93:b5: 0e:a3:1f:c7:d8:38:ef:8b:e6:b6:6f:cb:6b:46:69:40:a9:30: e8:f4:74:90:6c:b6:3e:c0:f8:61:54:8d:32:b1:59:2d:78:cf: 5c:48:a2:aa:10:46:df:57:ac:63:80:0f:3e:54:7d:c3:8b:ba: ea:4c:02:3b:94:60:3c:43:fe:cd:d6:0b:24:74:a5:86:da:ad: 60:a7:8b:6c:55:30:91:86:0c:4c:c5:39:de:91:aa:56:ea:14: 89:12:3a:79:37:b2:2c:c8:2c:9f:65:ee:1e:04:7d:b9:54:8a: 1a:91:13:17 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEuxl42AKPQTsMkYwIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWFmZDZhY2YtMWI5MC00MmRiLTkzY2EtNmE1YzA0MDA3 MDI1MB4XDTI1MTAzMDEzMTEwOFoXDTI2MDEyODE0MTEwOFowLzEtMCsGA1UEAxMk YmJhZmZlODYtNTRkNC00OGE0LWIxOGUtZWFhMWE3YWRiZDdlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/kmzp9ni9Qa74sjujX977njjVNeVf0VwdwX X/EiTNy2T84zkoq2EK82sUZPRhYgvquTUdGVCr4kokmfM3qnppMmc47uo4g9koWA ZbRT54VeGTxrBLx9trjOWXZLvuEBn1046j6VVIFmazKYvEyqHGODMVsKNa4W0RLH EyxMvhar3h5ettnAL5HDZ4QEOvJ9CNT9cvnUhzwa0igBvtuYZM5t5ot5Szoyw+BE 5N/XyNf7uUrJjPG2K/7Ld4PUJUcIrfY/WXV2+GhaF0fLZy9JgJs7ifT759YzmFZJ +oNtCkws9rBLn9kjccQ3sYc0Tlt8fGyGIgm08AfW2nlRT1KazQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFGNUYpQW0+VJuMp1S2PAOrSPL/LMMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzg1ZTA2ZWFmLTM3YTctNDU4OC1hYmVhLWU0OTA5ZWYxYjRlMi9hYWZk NmFjZi0xYjkwLTQyZGItOTNjYS02YTVjMDQwMDcwMjUvOTQwY2I1MDYtYzI4Ny0z MTIzLWI1Y2QtODY0MGVmYzdkZTBhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy84NWUwNmVhZi0z N2E3LTQ1ODgtYWJlYS1lNDkwOWVmMWI0ZTIvYWFmZDZhY2YtMWI5MC00MmRiLTkz Y2EtNmE1YzA0MDA3MDI1L2FhZmQ2YWNmLTFiOTAtNDJkYi05M2NhLTZhNWMwNDAw NzAyNS5jcmwwHwYDVR0jBBgwFoAUM1KYgNaDxT8UcpLqoISZTxotu+QwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg1ZTA2ZWFmLTM3YTctNDU4 OC1hYmVhLWU0OTA5ZWYxYjRlMi9hYWZkNmFjZi0xYjkwLTQyZGItOTNjYS02YTVj MDQwMDcwMjUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEQEfwMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAC9F4tL3WY7p4eqMY5cyTv1z2Imdt/WTzG43enyP/s0XPGMaXY0wjmya jJFljG296jP0QwSTg5omEnKealZn0ahOrLwUxaNL5+zL8ulrcxisc/oFVT6YJXSh +UlBcbuDQnS4NU0hIHUBkH3p98eOUozl6vcRhu7yod7wL081lTkQ6qtiQHEiof1R yXCegXmTtQ6jH8fYOO+L5rZvy2tGaUCpMOj0dJBstj7A+GFUjTKxWS14z1xIoqoQ Rt9XrGOADz5UfcOLuupMAjuUYDxD/s3WCyR0pYbarWCni2xVMJGGDEzFOd6Rqlbq FIkSOnk3sizILJ9l7h4EfblUihqRExc= -----END CERTIFICATE-----Generated at Wed Nov 5 12:29:12 2025 by rpki-client