$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/825e23b1-28da-30ce-b522-aaa7afd0348c.roa File: 825e23b1-28da-30ce-b522-aaa7afd0348c.roa (raw, json) Hash identifier: MQW12BEQqZ6UhSFT0KVCOZIRxqMp2XvUtcMEqkvyNG4= Subject key identifier: DF:17:CE:63:0F:76:B4:B2:03:6A:91:86:E3:CE:65:A0:4A:75:48:20 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584A15CA94372CC75853A9936600 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/825e23b1-28da-30ce-b522-aaa7afd0348c.roa Signing time: Thu 05 Jun 2025 01:00:51 +0000 ROA not before: Thu 05 Jun 2025 01:00:51 +0000 ROA not after: Wed 03 Sep 2025 01:00:51 +0000 asID: 8069 IP address blocks: 20.153.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:15:ca:94:37:2c:c7:58:53:a9:93:66:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Jun 5 01:00:51 2025 GMT Not After : Sep 3 01:00:51 2025 GMT Subject: CN=8b484a29-20a1-4de3-83a5-733b7ae38f22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:a9:f5:33:83:c6:25:72:31:b8:eb:cd:4b:f6: 18:5a:e8:f4:b5:09:6b:10:2a:e8:94:ea:75:4d:3a: b1:b8:46:ed:7c:c2:c1:ec:bd:f9:25:f0:9d:2a:f0: 84:03:b9:db:40:6d:b5:59:72:94:c1:10:9c:d7:5e: 0b:7e:82:71:c8:4c:1f:32:1e:eb:b7:22:3b:ac:68: 27:8a:15:61:18:91:78:8a:3d:86:25:28:df:dd:1b: b2:65:e1:21:2d:e1:34:d0:97:cb:9e:d9:f5:b9:06: c9:c9:05:a3:37:7b:0a:fb:0c:40:55:ed:f1:66:0f: 33:9f:dd:9c:35:7d:e4:d6:b5:90:06:64:66:9c:4b: 39:fa:2d:f4:4d:8e:da:02:ca:c3:52:3a:4f:a5:a5: 61:e6:3a:47:28:e0:76:83:11:a7:67:f3:bd:a4:e3: e2:42:35:6a:32:48:f8:72:ac:3c:19:ec:ff:8e:70: 83:af:b2:ee:0c:e4:41:17:66:41:15:92:35:ce:11: 38:18:f9:2b:39:ac:eb:3c:42:30:12:56:e2:c1:62: 70:c6:ae:50:63:e1:c5:9f:28:a1:9f:37:07:12:8c: 49:2e:e4:b6:d8:4e:9e:2a:25:0b:e0:87:c7:32:56: 2b:ab:43:4a:f1:87:29:d6:5c:84:b7:0a:ee:83:5e: 06:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:17:CE:63:0F:76:B4:B2:03:6A:91:86:E3:CE:65:A0:4A:75:48:20 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/825e23b1-28da-30ce-b522-aaa7afd0348c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.32.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 31:d6:f6:62:09:52:0a:92:ec:8b:4b:bc:9c:4b:4f:75:51:36: e4:95:0c:a5:aa:70:c9:cc:f0:b7:bd:a9:bd:d8:52:e4:db:4c: cd:d9:a6:37:88:48:80:19:be:95:13:bf:62:aa:a9:79:a1:4b: dc:4b:c7:14:aa:f6:21:76:35:42:ad:c6:f0:97:89:80:9f:d9: 4e:3f:f8:87:68:d7:5c:21:d7:04:7e:9e:3c:62:dd:bf:12:05: d7:c0:52:9a:20:fa:d8:9b:13:18:e6:18:6e:f5:62:ef:c2:c8: 00:e3:32:e7:dc:0f:30:68:e5:a3:57:0e:92:ce:29:9d:09:af: b8:b5:d5:5e:31:79:13:18:83:a3:04:8a:a5:c8:0d:0c:d3:b2: da:85:95:ad:61:9a:d8:45:47:99:39:58:bd:22:94:3e:9e:dd: ee:0e:1e:30:94:5d:dc:89:06:64:0d:ef:f7:95:01:ba:b6:8d: f6:ad:b0:e0:1e:7c:37:07:b8:48:fa:82:ec:60:a5:32:c3:ba: 09:94:27:78:2d:3e:1c:78:dd:2f:bd:f9:ba:96:5b:c8:02:db: 25:9a:8c:ec:4a:b9:93:2d:62:0b:9c:9e:77:89:78:6a:dd:cf: 76:a2:b1:e7:15:c3:72:e7:a4:5d:54:fe:c9:55:31:a2:94:e7: 0c:ce:5a:e8 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEoVypQ3LMdYU6mTZgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDYwNTAxMDA1MVoXDTI1MDkwMzAxMDA1MVowLzEtMCsGA1UEAxMk OGI0ODRhMjktMjBhMS00ZGUzLTgzYTUtNzMzYjdhZTM4ZjIyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6n1M4PGJXIxuOvNS/YYWuj0tQlrECrolOp1 TTqxuEbtfMLB7L35JfCdKvCEA7nbQG21WXKUwRCc114LfoJxyEwfMh7rtyI7rGgn ihVhGJF4ij2GJSjf3RuyZeEhLeE00JfLntn1uQbJyQWjN3sK+wxAVe3xZg8zn92c NX3k1rWQBmRmnEs5+i30TY7aAsrDUjpPpaVh5jpHKOB2gxGnZ/O9pOPiQjVqMkj4 cqw8Gez/jnCDr7LuDORBF2ZBFZI1zhE4GPkrOazrPEIwElbiwWJwxq5QY+HFnyih nzcHEoxJLuS22E6eKiUL4IfHMlYrq0NK8Ycp1lyEtwrug14G9QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFN8XzmMPdrSyA2qRhuPOZaBKdUggMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvODI1ZTIzYjEtMjhkYS0z MGNlLWI1MjItYWFhN2FmZDAzNDhjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJkgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADHW9mIJUgqS7ItLvJxLT3VRNuSVDKWqcMnM8Le9qb3YUuTbTM3ZpjeI SIAZvpUTv2KqqXmhS9xLxxSq9iF2NUKtxvCXiYCf2U4/+Ido11wh1wR+njxi3b8S BdfAUpog+tibExjmGG71Yu/CyADjMufcDzBo5aNXDpLOKZ0Jr7i11V4xeRMYg6ME iqXIDQzTstqFla1hmthFR5k5WL0ilD6e3e4OHjCUXdyJBmQN7/eVAbq2jfatsOAe fDcHuEj6guxgpTLDugmUJ3gtPhx43S+9+bqWW8gC2yWajOxKuZMtYgucnneJeGrd z3aisecVw3LnpF1U/slVMaKU5wzOWug= -----END CERTIFICATE-----Generated at Sun Jun 15 15:31:25 2025 by rpki-client