$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa File: 40be57dc-7156-3f97-b77b-4e30e5469063.roa (raw, json) Hash identifier: wmFwGMAO7yMOSNKbLtEpuiecOGP657cjrNoKym8w8zI= Subject key identifier: A8:F6:F7:B7:8B:1E:03:07:9E:9B:4F:0F:4D:7D:38:E7:F9:56:21:A6 Certificate issuer: /CN=5bb89f91-a9a1-4d88-b9d0-f7882ea134a9 Certificate serial: 010D0C9F4328584AEC18A34B2D8A70EF52028780 Authority key identifier: CE:3A:6A:1D:7B:CD:04:74:BB:B3:D6:43:72:CF:AE:22:23:D4:A8:74 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa Signing time: Wed 23 Jul 2025 13:01:02 +0000 ROA not before: Wed 23 Jul 2025 13:01:02 +0000 ROA not after: Tue 21 Oct 2025 13:01:02 +0000 asID: 54911 IP address blocks: 104.171.32.0/20 maxlen: 20 104.171.39.0/24 maxlen: 24 104.171.40.0/24 maxlen: 24 104.171.41.0/24 maxlen: 24 104.171.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:ec:18:a3:4b:2d:8a:70:ef:52:02:87:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bb89f91-a9a1-4d88-b9d0-f7882ea134a9 Validity Not Before: Jul 23 13:01:02 2025 GMT Not After : Oct 21 13:01:02 2025 GMT Subject: CN=9de44d3e-3923-477f-85d4-05a4cad87199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4f:71:81:fb:41:6d:b6:bf:d0:68:7d:d5:be: 68:af:01:31:11:dd:37:12:ae:3d:2b:5d:07:1a:bd: 0a:3f:c2:c5:07:fd:5e:48:81:e1:dc:21:a5:77:71: 8b:3e:16:f4:89:bd:a8:84:e0:95:c1:df:92:fd:0c: e0:6f:5b:78:c0:0e:08:04:0f:0d:02:bb:39:c3:97: e7:d1:cf:d6:50:b1:0d:1a:db:3a:a6:df:3b:c9:df: 45:87:87:39:8f:d7:56:97:28:fb:a0:be:40:84:2a: 4c:49:07:03:5e:5f:72:dd:55:24:a1:f5:7e:49:02: 6a:f6:ac:d5:78:20:7f:57:03:b8:51:7e:65:b4:71: 9d:f6:8b:c6:d9:31:e7:e9:94:65:65:0e:1b:37:98: 00:f5:95:da:61:c7:71:85:c2:e2:fd:2d:6d:5f:b7: 41:ac:b8:91:46:e8:a8:65:ea:40:8d:09:2a:ab:b6: 09:44:98:dd:db:f2:85:dd:4a:1c:e6:9e:6d:b7:c9: 25:34:38:74:54:ff:c4:05:41:c6:ff:4b:2a:b7:14: b8:6a:6a:f6:6c:2f:ca:f5:5a:a8:da:a9:8f:2e:2d: be:19:7f:86:01:7f:3b:31:d6:be:48:48:c2:df:e8: 10:8a:6a:e8:e0:ce:07:7a:00:98:7f:4c:b4:b1:40: bf:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F6:F7:B7:8B:1E:03:07:9E:9B:4F:0F:4D:7D:38:E7:F9:56:21:A6 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.crl X509v3 Authority Key Identifier: keyid:CE:3A:6A:1D:7B:CD:04:74:BB:B3:D6:43:72:CF:AE:22:23:D4:A8:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer sbgp-ipAddrBlock: critical IPv4: 104.171.32.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0f:08:eb:58:b7:36:73:5c:3d:9a:f9:0f:5e:9e:94:f6:08:11: 11:93:86:6d:cf:11:d3:38:cc:dc:0a:a5:cb:0e:93:b5:7b:40: 2e:0b:23:c6:3c:08:4a:9f:91:25:bf:e7:4a:ab:37:da:23:c1: 92:16:f6:d6:78:29:71:f3:04:2c:5c:17:64:0d:e3:dc:75:65: 33:34:bf:c2:64:fb:4f:5f:3d:0c:09:83:cf:00:72:4d:20:23: 99:95:bf:87:86:67:c4:03:b6:37:16:2d:a7:e7:2d:00:ba:a7: 16:13:a2:c8:d6:30:b4:0c:0f:c3:14:75:21:f2:58:f7:55:d4: 72:41:ca:35:0d:d2:76:6a:70:5d:59:45:0b:b8:0c:be:28:53: 66:82:26:73:eb:c8:07:f0:41:df:00:ea:6d:92:43:32:48:b3: 60:a9:d6:e5:15:8f:68:92:d8:6d:be:b1:75:ce:29:b6:2e:8a: aa:89:e2:8b:1c:17:cd:12:71:8e:9c:7f:4a:5e:8f:14:c9:a4: 10:59:9d:1e:0e:c0:a5:b2:66:1d:57:13:79:78:ea:49:a6:ce: 25:c2:d0:ca:b7:47:c4:5d:3b:88:e8:e9:50:f3:7d:6d:80:bf: 7d:9e:91:71:41:31:59:e4:42:1f:37:71:b1:dc:33:0f:fd:da: e9:a6:36:de -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWErsGKNLLYpw71ICh4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWJiODlmOTEtYTlhMS00ZDg4LWI5ZDAtZjc4ODJlYTEz NGE5MB4XDTI1MDcyMzEzMDEwMloXDTI1MTAyMTEzMDEwMlowLzEtMCsGA1UEAxMk OWRlNDRkM2UtMzkyMy00NzdmLTg1ZDQtMDVhNGNhZDg3MTk5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkk9xgftBbba/0Gh91b5orwExEd03Eq49K10H Gr0KP8LFB/1eSIHh3CGld3GLPhb0ib2ohOCVwd+S/Qzgb1t4wA4IBA8NArs5w5fn 0c/WULENGts6pt87yd9Fh4c5j9dWlyj7oL5AhCpMSQcDXl9y3VUkofV+SQJq9qzV eCB/VwO4UX5ltHGd9ovG2THn6ZRlZQ4bN5gA9ZXaYcdxhcLi/S1tX7dBrLiRRuio ZepAjQkqq7YJRJjd2/KF3Uoc5p5tt8klNDh0VP/EBUHG/0sqtxS4amr2bC/K9Vqo 2qmPLi2+GX+GAX87Mda+SEjC3+gQimro4M4HegCYf0y0sUC/4wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFKj297eLHgMHnptPD019OOf5ViGmMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi81YmI4 OWY5MS1hOWExLTRkODgtYjlkMC1mNzg4MmVhMTM0YTkvNDBiZTU3ZGMtNzE1Ni0z Zjk3LWI3N2ItNGUzMGU1NDY5MDYzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNWJiODlmOTEtYTlhMS00ZDg4LWI5 ZDAtZjc4ODJlYTEzNGE5LzViYjg5ZjkxLWE5YTEtNGQ4OC1iOWQwLWY3ODgyZWEx MzRhOS5jcmwwHwYDVR0jBBgwFoAUzjpqHXvNBHS7s9ZDcs+uIiPUqHQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi81YmI4OWY5MS1hOWExLTRkODgtYjlkMC1mNzg4 MmVhMTM0YTkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEaKsgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAA8I61i3NnNcPZr5D16elPYIERGThm3PEdM4zNwKpcsOk7V7QC4LI8Y8 CEqfkSW/50qrN9ojwZIW9tZ4KXHzBCxcF2QN49x1ZTM0v8Jk+09fPQwJg88Ack0g I5mVv4eGZ8QDtjcWLafnLQC6pxYTosjWMLQMD8MUdSHyWPdV1HJByjUN0nZqcF1Z RQu4DL4oU2aCJnPryAfwQd8A6m2SQzJIs2Cp1uUVj2iS2G2+sXXOKbYuiqqJ4osc F80ScY6cf0pejxTJpBBZnR4OwKWyZh1XE3l46kmmziXC0Mq3R8RdO4jo6VDzfW2A v32ekXFBMVnkQh83cbHcMw/92ummNt4= -----END CERTIFICATE-----Generated at Sun Aug 24 10:27:04 2025 by rpki-client