$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa File: 40be57dc-7156-3f97-b77b-4e30e5469063.roa (raw, json) Hash identifier: +M7g+d++Pdop/EoVQ/mrwv8yXCvoXjaZTe4IH2Vx0cY= Subject key identifier: A0:63:65:06:4C:D7:39:C5:D0:06:EA:BF:63:DC:73:4C:A9:AB:C0:E9 Certificate issuer: /CN=5bb89f91-a9a1-4d88-b9d0-f7882ea134a9 Certificate serial: 010D0C9F4328584B7DECA94DC3962AC93131A280 Authority key identifier: CE:3A:6A:1D:7B:CD:04:74:BB:B3:D6:43:72:CF:AE:22:23:D4:A8:74 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa Signing time: Sun 12 Oct 2025 01:00:30 +0000 ROA not before: Sun 12 Oct 2025 01:00:30 +0000 ROA not after: Sat 10 Jan 2026 02:00:30 +0000 asID: 54911 IP address blocks: 104.171.32.0/20 maxlen: 20 104.171.36.0/22 maxlen: 22 104.171.39.0/24 maxlen: 24 104.171.40.0/22 maxlen: 22 104.171.40.0/24 maxlen: 24 104.171.41.0/24 maxlen: 24 104.171.43.0/24 maxlen: 24 104.171.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:7d:ec:a9:4d:c3:96:2a:c9:31:31:a2:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bb89f91-a9a1-4d88-b9d0-f7882ea134a9 Validity Not Before: Oct 12 01:00:30 2025 GMT Not After : Jan 10 02:00:30 2026 GMT Subject: CN=50e53bcd-ecd2-4311-a7be-d965db34fc39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6a:50:73:d0:b9:69:17:c4:18:5b:70:44:f9: 65:35:45:f2:93:5c:a7:c3:47:9a:e2:30:c9:59:7e: 7b:ae:8e:b6:19:c9:07:98:36:a7:a3:6a:bf:2e:44: 86:ad:fe:1e:da:af:72:ca:b4:f1:2c:e5:d6:a5:72: b8:cf:b9:eb:2a:80:6b:f2:bc:87:bf:36:0b:8c:0a: f7:37:32:39:7d:23:66:2e:05:7d:12:b4:09:2c:fb: 9f:da:15:07:c1:ac:cd:50:e8:f0:3a:68:a0:9a:bd: 45:1b:bf:f1:98:80:17:11:65:44:0c:9c:a7:d3:33: 4c:e6:97:8e:a3:b8:b9:11:47:f1:f4:32:44:a6:1e: 37:66:a7:ef:dc:fb:7d:6b:3c:0d:c9:bd:e9:fd:a9: 96:b3:cb:3e:6f:cc:e5:f5:43:a0:3c:e5:26:f7:ea: 66:68:0e:3c:01:89:cb:32:88:db:c7:b6:08:e7:aa: c7:c0:b2:ec:ea:81:62:45:1e:af:15:83:7d:a9:18: 39:8b:45:d4:cf:f7:0c:ab:43:c2:ed:4b:1a:5a:ca: 71:30:84:15:14:fb:4f:00:e8:11:71:90:29:40:10: 56:69:ed:40:a5:45:c4:45:01:de:80:4d:dd:06:6a: 47:0b:21:23:dd:6e:e7:3e:cc:d1:d9:38:06:8d:5a: 09:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:63:65:06:4C:D7:39:C5:D0:06:EA:BF:63:DC:73:4C:A9:AB:C0:E9 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.crl X509v3 Authority Key Identifier: keyid:CE:3A:6A:1D:7B:CD:04:74:BB:B3:D6:43:72:CF:AE:22:23:D4:A8:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer sbgp-ipAddrBlock: critical IPv4: 104.171.32.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption b9:1c:0a:62:27:7d:38:5c:20:c4:64:55:bc:7f:12:8f:62:d7: 07:f4:d7:89:a2:d7:b9:11:2d:71:62:e0:ba:f5:5c:9d:f5:85: e1:f4:5c:72:7b:53:17:55:ff:89:c8:2b:c6:b7:69:93:00:ea: 47:f9:e8:e5:a3:1a:99:b1:f8:a2:a2:bf:8d:9a:c4:71:5e:0b: d2:d1:f2:52:5b:b6:c7:40:ed:22:5d:f2:71:cb:79:6d:0d:65: 8c:e0:c8:31:68:d8:16:75:89:f9:7a:70:0c:bf:3e:a9:a6:81: f6:13:56:1b:4b:5b:55:1f:cd:e7:4b:4d:b4:f8:db:cd:19:41: b7:48:a2:99:61:8f:fb:c7:ab:74:de:75:b8:97:69:c3:fb:7b: 15:65:74:83:83:ad:6b:26:86:da:c5:b7:3c:0d:f4:7d:15:09: e4:9d:c6:c0:db:0a:58:22:63:b9:db:b8:cd:97:0e:90:50:82: 92:5e:2f:e3:db:77:a3:9e:07:78:56:7c:70:4d:97:fb:39:95: 03:b5:38:15:7d:11:00:2c:83:35:7f:26:27:a0:c5:90:31:f5: 01:7e:24:31:e9:e6:79:2b:84:1a:0e:3f:3c:0a:42:82:42:62: 26:a8:4c:6f:85:88:c7:43:68:fd:7f:85:26:b4:8f:c5:16:1f: 02:32:a3:c2 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEt97KlNw5YqyTExooAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWJiODlmOTEtYTlhMS00ZDg4LWI5ZDAtZjc4ODJlYTEz NGE5MB4XDTI1MTAxMjAxMDAzMFoXDTI2MDExMDAyMDAzMFowLzEtMCsGA1UEAxMk NTBlNTNiY2QtZWNkMi00MzExLWE3YmUtZDk2NWRiMzRmYzM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2pQc9C5aRfEGFtwRPllNUXyk1ynw0ea4jDJ WX57ro62GckHmDano2q/LkSGrf4e2q9yyrTxLOXWpXK4z7nrKoBr8ryHvzYLjAr3 NzI5fSNmLgV9ErQJLPuf2hUHwazNUOjwOmigmr1FG7/xmIAXEWVEDJyn0zNM5peO o7i5EUfx9DJEph43Zqfv3Pt9azwNyb3p/amWs8s+b8zl9UOgPOUm9+pmaA48AYnL Mojbx7YI56rHwLLs6oFiRR6vFYN9qRg5i0XUz/cMq0PC7UsaWspxMIQVFPtPAOgR cZApQBBWae1ApUXERQHegE3dBmpHCyEj3W7nPszR2TgGjVoJSQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFKBjZQZM1znF0Abqv2Pcc0ypq8DpMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi81YmI4 OWY5MS1hOWExLTRkODgtYjlkMC1mNzg4MmVhMTM0YTkvNDBiZTU3ZGMtNzE1Ni0z Zjk3LWI3N2ItNGUzMGU1NDY5MDYzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNWJiODlmOTEtYTlhMS00ZDg4LWI5 ZDAtZjc4ODJlYTEzNGE5LzViYjg5ZjkxLWE5YTEtNGQ4OC1iOWQwLWY3ODgyZWEx MzRhOS5jcmwwHwYDVR0jBBgwFoAUzjpqHXvNBHS7s9ZDcs+uIiPUqHQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi81YmI4OWY5MS1hOWExLTRkODgtYjlkMC1mNzg4 MmVhMTM0YTkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEaKsgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBALkcCmInfThcIMRkVbx/Eo9i1wf014mi17kRLXFi4Lr1XJ31heH0XHJ7 UxdV/4nIK8a3aZMA6kf56OWjGpmx+KKiv42axHFeC9LR8lJbtsdA7SJd8nHLeW0N ZYzgyDFo2BZ1ifl6cAy/PqmmgfYTVhtLW1UfzedLTbT4280ZQbdIoplhj/vHq3Te dbiXacP7exVldIODrWsmhtrFtzwN9H0VCeSdxsDbClgiY7nbuM2XDpBQgpJeL+Pb d6OeB3hWfHBNl/s5lQO1OBV9EQAsgzV/JiegxZAx9QF+JDHp5nkrhBoOPzwKQoJC YiaoTG+FiMdDaP1/hSa0j8UWHwIyo8I= -----END CERTIFICATE-----Generated at Mon Oct 20 19:01:33 2025 by rpki-client