$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa File: 3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa (raw, json) Hash identifier: 3lKrqthj/IxbutJerOJqIq4AS5Fn2OWJCJuLwDXPhOc= Subject key identifier: D7:28:9D:8E:E6:D6:56:43:F9:A2:A6:38:47:56:35:7C:54:32:97:BC Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F4328584AB4EC98244122C343D71C7200 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa Signing time: Fri 01 Aug 2025 01:00:31 +0000 ROA not before: Fri 01 Aug 2025 01:00:31 +0000 ROA not after: Thu 30 Oct 2025 01:00:31 +0000 asID: 33668 IP address blocks: 68.36.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:b4:ec:98:24:41:22:c3:43:d7:1c:72:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Aug 1 01:00:31 2025 GMT Not After : Oct 30 01:00:31 2025 GMT Subject: CN=f56ca1ed-440d-4419-8101-0d1a7472ce66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:44:4e:fd:c2:6d:ac:70:b7:18:89:e1:3b:b2: 22:f8:f8:1f:44:6b:68:c8:17:23:b9:74:19:b7:43: 3e:a4:49:fe:57:86:22:92:64:bd:06:1f:2d:e6:02: 00:73:4b:0f:3e:95:44:c2:69:97:69:80:e3:57:6e: 1a:81:b7:d6:9b:5d:aa:52:2a:38:43:c0:3e:6b:08: 92:8d:b3:9a:4c:f3:4a:c9:ce:78:ee:67:3b:65:e3: 3c:27:2a:04:a7:bd:ee:b2:7a:d5:16:4b:e1:3c:fc: 05:ec:0b:b8:36:76:10:8d:39:48:34:fe:39:3c:40: 1d:53:ce:ea:80:f6:c7:f5:25:61:61:ad:da:10:b0: d5:9f:9c:5e:41:ed:fa:55:d7:b6:68:10:9c:b4:60: 99:5d:64:16:68:55:62:4c:c8:df:af:b0:36:d4:f1: 46:89:fe:7a:21:1f:83:5a:c7:4a:b4:21:aa:9e:ce: 96:26:44:64:c6:07:ac:6e:f3:b8:07:b4:ea:8a:8c: f1:dd:af:dd:41:fe:99:af:c6:3a:3d:55:49:2b:c7: 88:7f:81:87:79:41:b8:8e:9d:67:62:dd:6d:b6:ed: 68:62:89:61:39:69:59:5f:82:4f:7e:8b:8c:bd:70: 5f:b1:22:8f:95:d7:9b:b8:15:bf:c7:8b:ce:e4:83: a6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:28:9D:8E:E6:D6:56:43:F9:A2:A6:38:47:56:35:7C:54:32:97:BC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.36.220.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 92:11:84:5f:aa:45:08:95:27:cd:6d:d2:21:b8:76:dc:76:9c: 8c:66:4e:64:dc:3b:f6:f7:c2:64:f7:e5:97:51:24:c2:c3:36: e9:58:c2:47:77:82:36:87:a7:6d:74:c9:87:60:58:83:99:d3: 5d:5a:0e:0f:b1:98:61:b9:ee:50:47:32:59:3b:4e:fb:04:b3: 08:9e:b5:41:90:7d:36:ad:23:b6:cb:64:b2:d8:6e:d2:19:8c: 69:44:28:a6:87:fa:1e:46:86:83:a3:9a:5d:f0:4b:b2:ce:10: 29:29:08:ad:9c:68:66:61:d1:84:fc:97:07:95:ea:cb:cf:99: 04:6e:b4:66:06:df:b4:62:d4:c7:66:98:32:66:66:d3:e7:ae: 40:0b:58:dc:65:35:f7:d3:07:ef:90:36:bc:65:86:5e:bc:3f: 37:9d:2f:30:85:4c:e1:5f:cf:b6:1f:15:11:a7:0f:81:7e:80: e2:ff:2a:88:01:d1:6b:3f:52:f9:37:09:fb:bd:c5:75:c9:50: 89:4d:d9:fd:6c:4f:51:48:0d:aa:37:5a:2c:e2:40:05:39:80: bb:34:72:15:0e:29:f1:c1:ef:6b:9b:66:9f:ac:82:96:4f:49: dd:8f:91:08:90:28:7d:b1:e0:57:cf:8d:c0:8d:26:dd:82:8e: b5:13:6e:34 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEq07JgkQSLDQ9cccgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDgwMTAxMDAzMVoXDTI1MTAzMDAxMDAzMVowLzEtMCsGA1UEAxMk ZjU2Y2ExZWQtNDQwZC00NDE5LTgxMDEtMGQxYTc0NzJjZTY2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00RO/cJtrHC3GInhO7Ii+PgfRGtoyBcjuXQZ t0M+pEn+V4YikmS9Bh8t5gIAc0sPPpVEwmmXaYDjV24agbfWm12qUio4Q8A+awiS jbOaTPNKyc547mc7ZeM8JyoEp73usnrVFkvhPPwF7Au4NnYQjTlINP45PEAdU87q gPbH9SVhYa3aELDVn5xeQe36Vde2aBCctGCZXWQWaFViTMjfr7A21PFGif56IR+D WsdKtCGqns6WJkRkxgesbvO4B7Tqiozx3a/dQf6Zr8Y6PVVJK8eIf4GHeUG4jp1n Yt1ttu1oYolhOWlZX4JPfouMvXBfsSKPldebuBW/x4vO5IOm7QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNconY7m1lZD+aKmOEdWNXxUMpe8MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvMzg4OGMzYjYtYzQ4OC0z YWE4LWI4ZjAtODRkYTViNWM2YjhiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCRCTcMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJIRhF+qRQiVJ81t0iG4dtx2nIxmTmTcO/b3wmT35ZdRJMLDNulYwkd3 gjaHp210yYdgWIOZ011aDg+xmGG57lBHMlk7TvsEswietUGQfTatI7bLZLLYbtIZ jGlEKKaH+h5GhoOjml3wS7LOECkpCK2caGZh0YT8lweV6svPmQRutGYG37Ri1Mdm mDJmZtPnrkALWNxlNffTB++QNrxlhl68PzedLzCFTOFfz7YfFRGnD4F+gOL/KogB 0Ws/Uvk3Cfu9xXXJUIlN2f1sT1FIDao3WiziQAU5gLs0chUOKfHB72ubZp+sgpZP Sd2PkQiQKH2x4FfPjcCNJt2CjrUTbjQ= -----END CERTIFICATE-----Generated at Mon Oct 20 14:41:55 2025 by rpki-client