$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa File: df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa (raw, json) Hash identifier: eSdYC+VPsXz4Jqm9rcyvUFlhDizyN6K5GP2PBEsZloY= Subject key identifier: 45:86:1C:94:A7:98:A7:91:9E:60:AF:48:D0:11:00:B9:49:02:5B:A6 Certificate issuer: /CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Certificate serial: 010D0C9F4328584ACB40F74F1AF086029125E900 Authority key identifier: 29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa Signing time: Sat 09 Aug 2025 01:00:33 +0000 ROA not before: Sat 09 Aug 2025 01:00:33 +0000 ROA not after: Fri 07 Nov 2025 02:00:33 +0000 asID: 701 IP address blocks: 72.89.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:cb:40:f7:4f:1a:f0:86:02:91:25:e9:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Validity Not Before: Aug 9 01:00:33 2025 GMT Not After : Nov 7 02:00:33 2025 GMT Subject: CN=1bcaf362-1968-4eb7-beb3-8b55bd1959d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:9e:cd:4b:82:81:ae:0f:8d:5a:69:bb:bf:3a: a2:23:e4:d3:ac:a4:24:c1:d0:a1:c8:50:50:d8:63: bd:db:5d:63:71:e5:04:f2:28:c3:f3:c3:a4:7e:a9: eb:50:73:f0:45:ac:cd:59:14:d7:15:f8:a3:7c:26: 28:16:e2:05:97:16:de:2d:26:6d:57:7d:dd:bc:ec: fd:30:b2:6c:b3:bb:6b:d2:64:b8:1b:be:8d:72:fd: ec:f1:33:45:a5:30:df:01:92:1e:a4:17:7b:c2:71: e8:21:3f:6f:04:72:4b:93:a5:66:44:f3:36:35:83: 0b:ac:d6:17:31:36:f2:eb:80:6c:f0:d1:91:c4:35: 93:20:37:e6:71:b0:d9:69:74:86:5e:71:92:c0:86: 27:f7:a8:16:b1:ec:55:4d:0d:ab:c2:ad:65:c8:32: f6:9c:bb:cf:d8:cb:0a:a3:4f:5f:7e:f3:16:e4:4a: b4:fd:71:4a:61:7e:43:2d:70:fe:dd:96:bd:0c:d6: f1:e6:bc:b2:1b:58:3a:1f:a7:cc:84:89:6a:92:ad: 8e:d2:00:71:b7:7a:69:8f:05:1d:85:7d:8f:1f:c5: 42:52:49:36:82:c0:20:f5:35:40:bc:f5:89:2c:5b: f7:98:89:cf:f4:d8:fc:df:74:01:f4:e8:b0:f8:0d: b8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:86:1C:94:A7:98:A7:91:9E:60:AF:48:D0:11:00:B9:49:02:5B:A6 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl X509v3 Authority Key Identifier: keyid:29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer sbgp-ipAddrBlock: critical IPv4: 72.89.0.0/17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8f:6c:47:dd:00:87:58:f5:8d:3a:17:a8:d6:06:57:63:30:b7: 07:ba:4a:fd:84:2d:9e:d8:d5:78:a5:3e:60:75:e5:4c:9b:66: ae:fe:ec:df:bf:93:bc:78:83:f9:12:36:55:31:7d:61:cc:3e: 24:18:42:16:29:35:19:df:3b:b8:94:ee:fc:f5:89:b2:8d:0d: 22:65:99:3e:00:c6:0e:aa:e3:29:20:10:ca:fd:09:e7:cb:7c: ba:50:e9:af:74:49:cc:a9:b5:26:65:be:eb:8f:7e:25:16:67: 37:5a:e3:f8:a2:67:7f:c7:fd:29:fe:02:4a:5a:f7:b3:a8:70: 03:5a:19:03:49:89:70:68:1d:40:d8:a3:11:e1:90:b0:2a:9c: d6:ed:bf:1a:3e:2e:a4:c6:f8:a4:4e:79:e2:3e:ea:b5:2e:32: 5e:34:12:32:81:86:72:1f:97:62:0b:a3:ff:f0:1f:02:a6:b1: 68:eb:be:a2:6c:11:94:62:ca:a2:af:e4:f2:cd:b2:0d:05:80: 7f:6e:fd:5d:f6:cd:ae:2e:f6:50:d5:b4:b5:58:89:90:c9:c2: 8f:d9:e1:29:2f:80:a1:e1:f4:3e:dc:3a:dd:e0:b0:6d:a6:c3: 37:48:b3:ba:ee:a2:c5:4d:b6:d2:e7:f5:56:6f:13:1d:0f:72: dc:51:4f:72 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWErLQPdPGvCGApEl6QAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNzMyOTgwNjItYmQ4Yi00YjlmLTg2MTMtZGViNmU5YzIw ODc4MB4XDTI1MDgwOTAxMDAzM1oXDTI1MTEwNzAyMDAzM1owLzEtMCsGA1UEAxMk MWJjYWYzNjItMTk2OC00ZWI3LWJlYjMtOGI1NWJkMTk1OWQxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjp7NS4KBrg+NWmm7vzqiI+TTrKQkwdChyFBQ 2GO9211jceUE8ijD88OkfqnrUHPwRazNWRTXFfijfCYoFuIFlxbeLSZtV33dvOz9 MLJss7tr0mS4G76Ncv3s8TNFpTDfAZIepBd7wnHoIT9vBHJLk6VmRPM2NYMLrNYX MTby64Bs8NGRxDWTIDfmcbDZaXSGXnGSwIYn96gWsexVTQ2rwq1lyDL2nLvP2MsK o09ffvMW5Eq0/XFKYX5DLXD+3Za9DNbx5ryyG1g6H6fMhIlqkq2O0gBxt3ppjwUd hX2PH8VCUkk2gsAg9TVAvPWJLFv3mInP9Nj833QB9Oiw+A24XQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFEWGHJSnmKeRnmCvSNARALlJAlumMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5 ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2ZTljMjA4NzgvZGY0ZGM5YjctNzQwNi0z YWQ4LWE5MjQtMGY4YTg2MDZhOWJjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNzMyOTgwNjItYmQ4Yi00YjlmLTg2 MTMtZGViNmU5YzIwODc4LzczMjk4MDYyLWJkOGItNGI5Zi04NjEzLWRlYjZlOWMy MDg3OC5jcmwwHwYDVR0jBBgwFoAUKZLCNbCJQL6NrTHKzxOku19Y6uYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2 ZTljMjA4NzguY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHSFkAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAI9sR90Ah1j1jToXqNYGV2Mwtwe6Sv2ELZ7Y1XilPmB15UybZq7+7N+/ k7x4g/kSNlUxfWHMPiQYQhYpNRnfO7iU7vz1ibKNDSJlmT4Axg6q4ykgEMr9CefL fLpQ6a90ScyptSZlvuuPfiUWZzda4/iiZ3/H/Sn+Akpa97OocANaGQNJiXBoHUDY oxHhkLAqnNbtvxo+LqTG+KROeeI+6rUuMl40EjKBhnIfl2ILo//wHwKmsWjrvqJs EZRiyqKv5PLNsg0FgH9u/V32za4u9lDVtLVYiZDJwo/Z4SkvgKHh9D7cOt3gsG2m wzdIs7ruosVNttLn9VZvEx0PctxRT3I= -----END CERTIFICATE-----Generated at Sat Aug 9 10:31:21 2025 by rpki-client