$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa File: a3af340a-151f-3e65-b202-a86ab76e7ddc.roa (raw, json) Hash identifier: l3+nASZkvYBqFrNYGRBV9s2ESW3SwKfct3xOPPA0dOo= Subject key identifier: D0:35:22:A6:99:97:8E:33:95:D4:5D:30:AB:85:A3:92:67:2B:BC:0F Certificate issuer: /CN=2dbf604f-24b0-426e-809d-e65b08be5d50 Certificate serial: 010D0C9F4328584A89A6149498DC77E579051F80 Authority key identifier: 9F:0B:96:E4:B5:88:59:9E:EE:BA:41:79:91:C0:93:C9:D1:C3:F5:42 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa Signing time: Wed 16 Jul 2025 13:01:03 +0000 ROA not before: Wed 16 Jul 2025 13:01:03 +0000 ROA not after: Tue 14 Oct 2025 13:01:03 +0000 asID: 16433 IP address blocks: 170.176.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:89:a6:14:94:98:dc:77:e5:79:05:1f:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dbf604f-24b0-426e-809d-e65b08be5d50 Validity Not Before: Jul 16 13:01:03 2025 GMT Not After : Oct 14 13:01:03 2025 GMT Subject: CN=71238645-7d35-47fb-ad76-8c45c2d10746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:59:ed:75:77:b3:47:db:04:cb:94:d8:2f:c0: 04:98:8f:22:f8:86:bf:c8:ab:f4:4e:de:2c:2e:af: 3c:e4:4c:a7:33:30:fa:59:77:fe:bb:c7:e5:42:df: 37:86:77:90:a3:76:59:b8:29:89:1e:9e:84:ea:cb: 72:85:aa:97:40:e4:d6:34:e1:c6:d2:c3:39:27:76: eb:06:d3:27:ba:0d:79:93:01:f1:15:85:e9:dc:8f: d2:01:49:90:e0:90:5e:78:af:45:c9:78:da:5e:d3: 26:0b:1a:b3:5d:dc:83:71:d6:80:6c:21:d6:63:17: d9:8d:03:a8:4d:a4:25:cb:d8:eb:31:2b:6e:4b:e5: 0b:70:29:07:22:34:b0:4b:fd:47:97:0e:f6:4e:32: 81:42:78:9d:45:71:e1:56:73:c2:d6:a6:1d:70:f8: 64:9e:d7:85:4a:0c:40:07:f1:c4:aa:d6:3e:a1:b3: c5:41:13:ba:11:6a:4c:b2:b3:c9:a9:69:26:7a:28: 86:a7:db:89:69:b6:d6:ef:db:08:cd:fa:77:0e:31: da:53:2f:86:c8:fe:6d:a4:9a:13:10:11:0d:9f:ef: c0:88:3e:e6:8e:75:ab:ce:26:21:94:fb:e8:59:c4: 46:ca:cb:4a:b5:9e:11:45:c7:e0:ab:7b:f1:07:c1: b9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:35:22:A6:99:97:8E:33:95:D4:5D:30:AB:85:A3:92:67:2B:BC:0F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.crl X509v3 Authority Key Identifier: keyid:9F:0B:96:E4:B5:88:59:9E:EE:BA:41:79:91:C0:93:C9:D1:C3:F5:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer sbgp-ipAddrBlock: critical IPv4: 170.176.248.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 06:5b:ca:4a:f1:37:f1:85:ed:67:96:24:42:05:09:c1:d6:51: 75:c9:c0:87:18:48:86:6d:57:17:f2:d0:51:43:8e:87:59:c5: a7:fd:e4:15:0b:75:3f:73:7b:41:92:3a:d5:1c:c9:35:ca:e4: 34:93:8d:09:ad:28:72:04:38:1c:0e:95:d9:07:f8:22:18:3a: da:fe:8d:aa:b5:8e:fb:9f:57:00:9c:36:f9:c7:43:a7:25:a0: 26:8c:72:df:1b:f5:2d:22:60:64:b9:13:17:ea:0b:31:79:41: 88:f0:46:41:bb:5e:84:86:bb:9d:53:0f:97:1c:58:62:78:90: 88:60:cf:f6:45:86:d0:c2:64:c8:30:ed:fb:ba:1a:77:1c:3c: 9a:ad:a8:84:2d:29:83:30:d9:c7:86:e9:53:03:58:2e:10:14: 0c:85:65:6a:a3:49:51:2e:e8:ad:bf:d7:e7:7a:a0:6b:1a:41: e8:79:24:65:9c:84:a1:60:65:ce:29:89:44:e8:03:14:c0:77: 05:e6:c5:8f:87:d9:90:4e:46:49:d5:3a:da:28:19:03:d0:47: 69:a7:82:3e:16:09:db:a1:12:b2:9a:58:46:46:f5:0b:cc:93: 4b:67:7b:70:48:62:c9:ff:d5:15:00:a9:e2:b1:48:28:da:a8: dc:a9:58:10 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEqJphSUmNx35XkFH4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmRiZjYwNGYtMjRiMC00MjZlLTgwOWQtZTY1YjA4YmU1 ZDUwMB4XDTI1MDcxNjEzMDEwM1oXDTI1MTAxNDEzMDEwM1owLzEtMCsGA1UEAxMk NzEyMzg2NDUtN2QzNS00N2ZiLWFkNzYtOGM0NWMyZDEwNzQ2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1ntdXezR9sEy5TYL8AEmI8i+Ia/yKv0Tt4s Lq885EynMzD6WXf+u8flQt83hneQo3ZZuCmJHp6E6styhaqXQOTWNOHG0sM5J3br BtMnug15kwHxFYXp3I/SAUmQ4JBeeK9FyXjaXtMmCxqzXdyDcdaAbCHWYxfZjQOo TaQly9jrMStuS+ULcCkHIjSwS/1Hlw72TjKBQnidRXHhVnPC1qYdcPhknteFSgxA B/HEqtY+obPFQRO6EWpMsrPJqWkmeiiGp9uJabbW79sIzfp3DjHaUy+GyP5tpJoT EBENn+/AiD7mjnWrziYhlPvoWcRGystKtZ4RRcfgq3vxB8G5wQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNA1IqaZl44zldRdMKuFo5JnK7wPMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8yZGJm NjA0Zi0yNGIwLTQyNmUtODA5ZC1lNjViMDhiZTVkNTAvYTNhZjM0MGEtMTUxZi0z ZTY1LWIyMDItYTg2YWI3NmU3ZGRjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMmRiZjYwNGYtMjRiMC00MjZlLTgw OWQtZTY1YjA4YmU1ZDUwLzJkYmY2MDRmLTI0YjAtNDI2ZS04MDlkLWU2NWIwOGJl NWQ1MC5jcmwwHwYDVR0jBBgwFoAUnwuW5LWIWZ7uukF5kcCTydHD9UIwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8yZGJmNjA0Zi0yNGIwLTQyNmUtODA5ZC1lNjVi MDhiZTVkNTAuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDqrD4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAZbykrxN/GF7WeWJEIFCcHWUXXJwIcYSIZtVxfy0FFDjodZxaf95BUL dT9ze0GSOtUcyTXK5DSTjQmtKHIEOBwOldkH+CIYOtr+jaq1jvufVwCcNvnHQ6cl oCaMct8b9S0iYGS5ExfqCzF5QYjwRkG7XoSGu51TD5ccWGJ4kIhgz/ZFhtDCZMgw 7fu6GnccPJqtqIQtKYMw2ceG6VMDWC4QFAyFZWqjSVEu6K2/1+d6oGsaQeh5JGWc hKFgZc4piUToAxTAdwXmxY+H2ZBORknVOtooGQPQR2mngj4WCduhErKaWEZG9QvM k0tne3BIYsn/1RUAqeKxSCjaqNypWBA= -----END CERTIFICATE-----Generated at Mon Aug 4 14:20:36 2025 by rpki-client