$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2040fb79-7dc8-3434-ae0f-4850948ea219.roa File: 2040fb79-7dc8-3434-ae0f-4850948ea219.roa (raw, json) Hash identifier: pVt/Z6kky594KLh1QlFKqx/ZYMl8KY330k/Y9FdzZ2g= Subject key identifier: 50:3A:15:A6:9F:13:FC:7A:3F:1A:82:D3:AC:F5:24:CB:95:5C:B2:F8 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584B7F525C83E009658F5DF5EA20 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2040fb79-7dc8-3434-ae0f-4850948ea219.roa Signing time: Sun 12 Oct 2025 13:00:37 +0000 ROA not before: Sun 12 Oct 2025 13:00:37 +0000 ROA not after: Sat 10 Jan 2026 14:00:37 +0000 asID: 8069 IP address blocks: 20.153.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:7f:52:5c:83:e0:09:65:8f:5d:f5:ea:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Oct 12 13:00:37 2025 GMT Not After : Jan 10 14:00:37 2026 GMT Subject: CN=b20bc632-315d-4ef3-a5bf-3a0c8fc5773d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fe:e7:aa:ec:23:cc:48:d5:9f:53:14:c0:ec: 67:8f:ad:49:7a:ff:99:c4:b9:10:8e:8a:8a:d4:dc: 05:cf:26:29:a0:e0:35:ac:a5:89:b4:91:e8:4c:4f: f2:2b:23:39:62:c8:1e:48:1a:b5:81:10:1f:aa:75: 33:6f:9d:1b:5b:2b:99:7e:91:13:01:b3:6f:cc:0d: c6:09:95:dd:55:f9:11:23:20:03:5d:6c:33:47:eb: 5f:d1:98:a6:88:e9:e3:5e:8f:6d:5f:bf:ce:97:e7: cd:b6:db:ef:fb:23:3f:e7:dd:21:0f:ba:93:b6:6f: 8c:bf:81:62:15:81:3f:5e:ed:c7:3c:27:f3:ca:1a: 88:7b:6d:ed:85:d1:aa:d2:1d:30:1a:48:ee:ec:97: e0:18:37:3b:1a:fc:ff:8d:70:8d:d4:c7:5e:cb:60: 45:56:54:2e:01:d0:df:06:5d:80:ed:e4:c6:78:0c: 51:f6:0d:81:86:14:79:df:14:79:74:57:60:77:8a: 7c:c7:52:25:a5:12:35:e0:95:a5:08:1c:99:1e:cf: 09:a4:13:b8:9c:53:f7:4b:d3:5b:61:51:5b:9c:e7: cf:40:2d:74:4d:95:13:4b:99:4d:1b:e6:6a:b8:20: 30:f9:71:5e:cb:ba:56:5e:84:55:52:c7:00:2f:fe: 51:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3A:15:A6:9F:13:FC:7A:3F:1A:82:D3:AC:F5:24:CB:95:5C:B2:F8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2040fb79-7dc8-3434-ae0f-4850948ea219.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.12.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 91:30:a5:08:f0:7e:01:4d:84:83:9c:11:c6:1b:85:29:71:98: b8:3e:c3:85:62:6c:84:08:15:00:fa:6f:42:95:84:a2:8d:53: 90:0c:b4:db:ab:0c:90:63:c3:51:bf:a9:8b:c8:fa:3b:eb:e0: 8c:0a:fb:3f:1a:95:36:eb:a9:ff:57:58:e7:58:2e:61:7e:8a: da:08:13:01:54:b7:1a:11:6b:6a:ec:b4:25:b3:12:dd:3e:87: b0:a5:61:0d:9d:bc:1c:d3:40:cc:26:a8:70:56:1e:50:d9:9e: f9:2a:ff:2e:44:1e:cc:57:64:d2:44:e1:c8:c3:4b:fd:5f:9f: ae:e3:68:c2:d0:27:f9:3a:90:bd:42:31:f3:6b:0e:c8:e6:7b: 8d:ca:92:7c:e7:a1:1f:ca:7e:52:8b:0c:37:f9:6f:44:88:a4: d2:b7:7a:fe:97:63:8c:a8:23:d0:02:74:91:13:00:f0:46:33: 46:2d:ba:ba:65:b6:02:99:44:66:08:4a:fa:39:28:fd:c5:5d: 1a:f3:41:d0:e6:ba:97:9a:5a:78:d3:80:b3:48:12:1f:e0:a2: f4:08:ea:30:86:32:d4:be:0b:6d:9e:3f:68:e5:1f:1e:dc:5c: 55:42:4e:5f:72:b5:c7:10:3c:54:ae:0a:07:2e:0a:61:2a:eb: ac:01:f6:2a -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEt/UlyD4Allj1316iAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MTAxMjEzMDAzN1oXDTI2MDExMDE0MDAzN1owLzEtMCsGA1UEAxMk YjIwYmM2MzItMzE1ZC00ZWYzLWE1YmYtM2EwYzhmYzU3NzNkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3v7nquwjzEjVn1MUwOxnj61Jev+ZxLkQjoqK 1NwFzyYpoOA1rKWJtJHoTE/yKyM5YsgeSBq1gRAfqnUzb50bWyuZfpETAbNvzA3G CZXdVfkRIyADXWwzR+tf0ZimiOnjXo9tX7/Ol+fNttvv+yM/590hD7qTtm+Mv4Fi FYE/Xu3HPCfzyhqIe23thdGq0h0wGkju7JfgGDc7Gvz/jXCN1Mdey2BFVlQuAdDf Bl2A7eTGeAxR9g2BhhR53xR5dFdgd4p8x1IlpRI14JWlCByZHs8JpBO4nFP3S9Nb YVFbnOfPQC10TZUTS5lNG+ZquCAw+XFey7pWXoRVUscAL/5RlwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFA6FaafE/x6PxqC06z1JMuVXLL4MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMjA0MGZiNzktN2RjOC0z NDM0LWFlMGYtNDg1MDk0OGVhMjE5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJkMMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJEwpQjwfgFNhIOcEcYbhSlxmLg+w4VibIQIFQD6b0KVhKKNU5AMtNur DJBjw1G/qYvI+jvr4IwK+z8alTbrqf9XWOdYLmF+itoIEwFUtxoRa2rstCWzEt0+ h7ClYQ2dvBzTQMwmqHBWHlDZnvkq/y5EHsxXZNJE4cjDS/1fn67jaMLQJ/k6kL1C MfNrDsjme43KknznoR/KflKLDDf5b0SIpNK3ev6XY4yoI9ACdJETAPBGM0Yturpl tgKZRGYISvo5KP3FXRrzQdDmupeaWnjTgLNIEh/govQI6jCGMtS+C22eP2jlHx7c XFVCTl9ytccQPFSuCgcuCmEq66wB9io= -----END CERTIFICATE-----Generated at Wed Nov 5 07:00:00 2025 by rpki-client