$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/825e23b1-28da-30ce-b522-aaa7afd0348c.roa File: 825e23b1-28da-30ce-b522-aaa7afd0348c.roa (raw, json) Hash identifier: tNvC7Qg5h7hlPH2mG+Vkc0qKeW1Rt4ayiA+DxjVP6is= Subject key identifier: 8E:23:12:6A:C0:BD:D4:DF:65:C3:3F:2D:FE:4B:76:36:45:CA:70:DA Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584CB6B724A7ACD182FEA49AD6E0 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/825e23b1-28da-30ce-b522-aaa7afd0348c.roa Signing time: Sun 01 Feb 2026 02:00:32 +0000 ROA not before: Sun 01 Feb 2026 02:00:32 +0000 ROA not after: Sat 02 May 2026 01:00:32 +0000 asID: 8069 IP address blocks: 20.153.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4c:b6:b7:24:a7:ac:d1:82:fe:a4:9a:d6:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Feb 1 02:00:32 2026 GMT Not After : May 2 01:00:32 2026 GMT Subject: CN=c84e38e4-7038-4395-a721-23f28ae7245d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:01:10:ef:6b:ba:3f:ef:e8:a8:56:8c:5f:18: 93:e1:4b:e0:33:f4:d1:33:40:33:13:1b:e3:7c:32: 2c:3a:f0:45:62:91:b5:10:47:b0:89:f1:45:6f:d5: 8c:fe:60:c0:8c:c0:bc:cc:78:20:06:04:bf:55:24: cd:ce:18:62:0a:e8:05:d1:5f:d9:62:c3:8d:a1:17: 21:28:02:2b:5e:2a:a2:c0:d3:03:f9:56:39:7a:90: f1:ed:bd:f4:bd:f1:ba:7b:5c:2a:4d:71:d4:b3:b9: 05:ed:3e:a9:de:e0:18:8f:2a:aa:80:fa:6f:76:2f: 51:ed:85:3c:15:5f:9b:d0:ab:cb:bd:a2:ca:8a:33: dc:11:23:ed:d9:66:08:be:6b:34:23:7e:78:26:7a: bf:b4:23:be:9e:b5:47:83:93:45:7c:88:ec:7f:0b: ef:8c:6f:93:74:98:9f:c1:ad:fe:3d:fd:1a:c5:18: 4a:30:c8:b4:40:34:c8:8b:63:73:7c:a9:2c:09:2b: 7f:81:57:b4:1c:c9:70:ff:19:04:bc:a3:2c:19:a9: 48:9a:b2:f9:a2:59:32:2f:bb:61:42:67:c5:33:78: 22:1b:2b:db:c0:24:ee:18:2c:7c:4b:f2:09:d2:0e: 1e:c4:ad:de:65:0d:4b:c5:4a:fe:a0:a1:94:02:50: 78:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:23:12:6A:C0:BD:D4:DF:65:C3:3F:2D:FE:4B:76:36:45:CA:70:DA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/825e23b1-28da-30ce-b522-aaa7afd0348c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.32.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7e:2e:5d:fc:9a:02:ad:80:82:b4:ff:f3:07:33:96:c1:b0:46: 1a:80:fa:1d:69:21:92:b4:60:60:06:34:f5:e1:9e:26:59:96: 34:c2:13:91:4f:7c:0e:94:04:83:c4:37:a0:38:c0:76:2d:5d: 15:d1:b3:4c:08:26:b1:90:60:a6:89:57:b0:28:19:00:6d:ce: c5:52:c4:f5:ed:63:58:a4:a7:52:81:28:57:48:46:a3:84:be: df:f7:e7:d4:28:42:81:8b:54:f0:70:c3:3d:d9:a8:46:95:26: f9:7c:27:d4:fc:31:56:e3:bf:58:2d:61:c3:26:a5:f8:31:f8: f4:6f:e1:24:a3:e3:d5:86:0b:4d:42:d1:5f:19:b7:66:75:78: ee:60:37:b9:61:b0:ab:e5:a8:11:06:73:77:af:14:3f:40:e4: ee:27:38:84:a7:8c:0c:a2:d7:15:8e:4d:bf:0b:85:94:25:2f: 59:79:23:7a:92:a1:fd:61:b2:58:f7:94:12:72:56:af:83:f7: 4a:ec:d9:92:88:5f:e4:ab:dd:6e:e2:76:52:c8:e4:a3:ad:a2: 7b:ca:80:7c:e0:a8:39:58:ea:86:40:5a:9d:83:61:3d:fb:cc: dd:24:c7:9a:d0:be:2c:1d:b6:79:f5:e6:6e:cb:05:d2:e7:60: 18:f4:77:5b -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEy2tySnrNGC/qSa1uAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI2MDIwMTAyMDAzMloXDTI2MDUwMjAxMDAzMlowLzEtMCsGA1UEAxMk Yzg0ZTM4ZTQtNzAzOC00Mzk1LWE3MjEtMjNmMjhhZTcyNDVkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQEQ72u6P+/oqFaMXxiT4UvgM/TRM0AzExvj fDIsOvBFYpG1EEewifFFb9WM/mDAjMC8zHggBgS/VSTNzhhiCugF0V/ZYsONoRch KAIrXiqiwNMD+VY5epDx7b30vfG6e1wqTXHUs7kF7T6p3uAYjyqqgPpvdi9R7YU8 FV+b0KvLvaLKijPcESPt2WYIvms0I354Jnq/tCO+nrVHg5NFfIjsfwvvjG+TdJif wa3+Pf0axRhKMMi0QDTIi2NzfKksCSt/gVe0HMlw/xkEvKMsGalImrL5olkyL7th QmfFM3giGyvbwCTuGCx8S/IJ0g4exK3eZQ1LxUr+oKGUAlB4hwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFI4jEmrAvdTfZcM/Lf5LdjZFynDaMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvODI1ZTIzYjEtMjhkYS0z MGNlLWI1MjItYWFhN2FmZDAzNDhjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJkgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAH4uXfyaAq2AgrT/8wczlsGwRhqA+h1pIZK0YGAGNPXhniZZljTCE5FP fA6UBIPEN6A4wHYtXRXRs0wIJrGQYKaJV7AoGQBtzsVSxPXtY1ikp1KBKFdIRqOE vt/359QoQoGLVPBwwz3ZqEaVJvl8J9T8MVbjv1gtYcMmpfgx+PRv4SSj49WGC01C 0V8Zt2Z1eO5gN7lhsKvlqBEGc3evFD9A5O4nOISnjAyi1xWOTb8LhZQlL1l5I3qS of1hslj3lBJyVq+D90rs2ZKIX+Sr3W7idlLI5KOtonvKgHzgqDlY6oZAWp2DYT37 zN0kx5rQviwdtnn15m7LBdLnYBj0d1s= -----END CERTIFICATE-----Generated at Mon Mar 2 16:29:20 2026 by rpki-client