$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa File: df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa (raw, json) Hash identifier: tK4ypzEGRUpaUohp2OeT1Rs3vvkZ/OEGJ7FYGqiJs38= Subject key identifier: 82:6D:80:DE:10:6B:1A:53:BE:8E:2D:70:91:B3:13:F2:7F:90:12:8F Certificate issuer: /CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Certificate serial: 010D0C9F4328584BABFD14B815FA49D4AC4249C0 Authority key identifier: 29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa Signing time: Tue 28 Oct 2025 13:00:38 +0000 ROA not before: Tue 28 Oct 2025 13:00:38 +0000 ROA not after: Mon 26 Jan 2026 14:00:38 +0000 asID: 701 IP address blocks: 72.89.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:ab:fd:14:b8:15:fa:49:d4:ac:42:49:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Validity Not Before: Oct 28 13:00:38 2025 GMT Not After : Jan 26 14:00:38 2026 GMT Subject: CN=6d877a3a-31e3-4331-88c2-8445bdaeb563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e8:e5:db:a2:d9:b4:9b:72:49:f9:4c:32:ed: 6b:0d:d4:0f:10:2b:ad:22:b3:08:93:55:5f:90:69: 3b:86:9f:99:fa:41:0c:6e:a3:a6:02:bf:11:e3:6c: 8e:5b:5b:a1:6f:2d:7e:b6:f0:cc:de:6f:68:90:40: 19:a7:41:22:6c:fb:c4:8a:bf:6a:ab:7a:74:06:d8: 00:52:d3:ff:18:19:76:96:12:b0:87:de:f2:88:bd: ce:f1:43:2f:64:9e:0b:6e:12:8c:79:ad:bd:25:45: 11:8f:69:32:a2:39:4b:d8:1f:00:47:51:fe:f0:4c: 7d:6f:36:28:9a:bb:9d:e4:e5:61:18:21:20:31:57: 79:c4:17:75:70:b0:82:f5:19:4d:78:4d:20:cc:5a: 7f:41:9c:ff:7f:7b:c1:84:3d:4d:da:a8:ce:46:e3: dc:72:0a:a8:9f:dc:2b:5f:49:0c:91:8a:86:ed:31: 44:66:76:02:f0:7f:6b:fb:8d:9d:b5:63:60:1c:94: a9:16:85:27:02:db:05:8a:a1:fa:69:5d:a0:0d:a9: 46:e0:8a:96:60:7e:0b:80:94:f5:0a:a3:d2:9b:ba: a6:67:64:a6:50:df:0b:e7:80:60:56:ba:ac:52:59: 7b:f6:5b:79:69:f3:b0:78:ce:ee:95:1b:61:70:80: 18:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6D:80:DE:10:6B:1A:53:BE:8E:2D:70:91:B3:13:F2:7F:90:12:8F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl X509v3 Authority Key Identifier: keyid:29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer sbgp-ipAddrBlock: critical IPv4: 72.89.0.0/17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 82:40:fd:2d:46:de:fd:8a:d6:25:dc:94:06:52:e8:74:04:5a: a1:48:26:48:54:57:62:27:7f:43:9f:f3:91:ec:e6:68:71:bb: 3d:bc:83:19:47:cc:9e:f9:8e:62:86:b3:4b:2f:31:b8:83:76: b0:33:9c:69:78:41:e4:b2:f2:99:68:b6:2a:76:75:ac:03:4c: f8:d8:d3:79:a4:c9:ae:e1:5a:31:eb:b5:91:6f:48:b4:32:c6: f6:93:67:1e:3c:6f:c7:6f:5a:ca:b8:c5:b6:c6:53:0b:3c:bd: ee:40:c6:e6:c5:97:a2:3d:63:6c:92:40:be:c3:c9:09:7e:3d: d0:bf:41:cb:70:10:20:9e:0a:55:0e:2e:85:7f:89:74:be:ac: 07:dc:78:ff:ac:45:fb:f9:8f:a5:99:c3:5f:e5:63:fe:9c:cc: 2d:f5:a0:e9:11:f0:80:d2:e8:82:ac:f2:6e:0c:e7:6c:df:9e: e8:1e:55:e2:6a:03:0d:7e:98:bd:c8:44:68:4c:5e:fa:33:e5: d4:85:44:0f:ca:81:bb:33:4c:d8:73:6a:b1:4f:06:3a:8a:80: 4c:f0:ae:46:cc:11:e3:d5:f6:13:f8:52:b7:01:75:55:a2:d7: 98:e0:98:b4:de:2c:61:42:e7:2b:c1:d3:2a:12:28:bf:b5:88: 64:f6:3d:a4 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEur/RS4FfpJ1KxCScAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNzMyOTgwNjItYmQ4Yi00YjlmLTg2MTMtZGViNmU5YzIw ODc4MB4XDTI1MTAyODEzMDAzOFoXDTI2MDEyNjE0MDAzOFowLzEtMCsGA1UEAxMk NmQ4NzdhM2EtMzFlMy00MzMxLTg4YzItODQ0NWJkYWViNTYzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqejl26LZtJtySflMMu1rDdQPECutIrMIk1Vf kGk7hp+Z+kEMbqOmAr8R42yOW1uhby1+tvDM3m9okEAZp0EibPvEir9qq3p0BtgA UtP/GBl2lhKwh97yiL3O8UMvZJ4LbhKMea29JUURj2kyojlL2B8AR1H+8Ex9bzYo mrud5OVhGCEgMVd5xBd1cLCC9RlNeE0gzFp/QZz/f3vBhD1N2qjORuPccgqon9wr X0kMkYqG7TFEZnYC8H9r+42dtWNgHJSpFoUnAtsFiqH6aV2gDalG4IqWYH4LgJT1 CqPSm7qmZ2SmUN8L54BgVrqsUll79lt5afOweM7ulRthcIAYrQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFIJtgN4QaxpTvo4tcJGzE/J/kBKPMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5 ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2ZTljMjA4NzgvZGY0ZGM5YjctNzQwNi0z YWQ4LWE5MjQtMGY4YTg2MDZhOWJjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNzMyOTgwNjItYmQ4Yi00YjlmLTg2 MTMtZGViNmU5YzIwODc4LzczMjk4MDYyLWJkOGItNGI5Zi04NjEzLWRlYjZlOWMy MDg3OC5jcmwwHwYDVR0jBBgwFoAUKZLCNbCJQL6NrTHKzxOku19Y6uYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2 ZTljMjA4NzguY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHSFkAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAIJA/S1G3v2K1iXclAZS6HQEWqFIJkhUV2Inf0Of85Hs5mhxuz28gxlH zJ75jmKGs0svMbiDdrAznGl4QeSy8plotip2dawDTPjY03mkya7hWjHrtZFvSLQy xvaTZx48b8dvWsq4xbbGUws8ve5AxubFl6I9Y2ySQL7DyQl+PdC/QctwECCeClUO LoV/iXS+rAfceP+sRfv5j6WZw1/lY/6czC31oOkR8IDS6IKs8m4M52zfnugeVeJq Aw1+mL3IRGhMXvoz5dSFRA/KgbszTNhzarFPBjqKgEzwrkbMEePV9hP4UrcBdVWi 15jgmLTeLGFC5yvB0yoSKL+1iGT2PaQ= -----END CERTIFICATE-----Generated at Wed Nov 5 02:20:31 2025 by rpki-client