$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/632ef3ad-4ab4-3cd5-ae6e-1c9aaa4e3555.roa File: 632ef3ad-4ab4-3cd5-ae6e-1c9aaa4e3555.roa (raw, json) Hash identifier: jcjVIvkukbEGhBMIy8vogAhO+2/e63Ovw2yaaxfFWdU= Subject key identifier: 5D:47:81:D5:7D:EA:C3:BB:D6:C0:04:CF:F7:41:17:58:F7:8D:2B:68 Certificate issuer: /CN=530ba529-ac94-44aa-8a24-334da5fccb1e Certificate serial: 010D0C9F4328584AEE2686C0189696C8F524EBE0 Authority key identifier: E2:70:AF:2A:32:F0:30:09:13:CF:91:AB:C2:55:00:27:FA:B8:C1:31 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/632ef3ad-4ab4-3cd5-ae6e-1c9aaa4e3555.roa Signing time: Thu 21 Aug 2025 13:00:41 +0000 ROA not before: Thu 21 Aug 2025 13:00:41 +0000 ROA not after: Wed 19 Nov 2025 14:00:41 +0000 asID: 19237 IP address blocks: 64.6.96.0/20 maxlen: 20 64.57.64.0/19 maxlen: 19 64.255.15.0/24 maxlen: 24 64.255.24.0/24 maxlen: 24 64.255.41.0/24 maxlen: 24 64.255.43.0/24 maxlen: 24 64.255.46.0/24 maxlen: 24 64.255.55.0/24 maxlen: 24 66.37.0.0/19 maxlen: 19 204.10.137.0/24 maxlen: 24 204.10.138.0/23 maxlen: 23 204.10.140.0/22 maxlen: 22 216.17.96.0/20 maxlen: 20 216.239.129.0/24 maxlen: 24 216.239.130.0/23 maxlen: 23 216.239.132.0/22 maxlen: 22 216.239.136.0/21 maxlen: 21 2607:fe90::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/530ba529-ac94-44aa-8a24-334da5fccb1e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/530ba529-ac94-44aa-8a24-334da5fccb1e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:ee:26:86:c0:18:96:96:c8:f5:24:eb:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=530ba529-ac94-44aa-8a24-334da5fccb1e Validity Not Before: Aug 21 13:00:41 2025 GMT Not After : Nov 19 14:00:41 2025 GMT Subject: CN=fe852ff4-7862-42af-9524-9a251e357761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d7:33:94:be:67:4d:6b:ad:df:81:a2:b8:ea: c1:87:49:52:a5:e2:f4:79:e9:16:c8:c5:e1:89:ff: 2c:23:86:b7:d3:33:3f:a6:55:38:3d:f0:ac:58:0d: 8c:f3:c0:65:df:31:32:b0:3f:8e:eb:eb:03:ff:e2: 6b:9a:8e:0b:99:e3:11:4e:d3:17:ed:f1:e4:33:f6: 1d:7e:a6:9f:ca:f0:c5:ce:bf:4c:9f:6b:9d:d6:19: bf:f4:61:51:59:e6:fb:11:b5:0c:24:46:e3:c8:ce: 9d:bc:de:6d:0f:17:99:67:d0:d3:a2:f3:1d:0f:82: 29:fc:7a:42:20:17:f0:b2:4b:43:75:f3:e2:ad:a5: 94:8a:b2:6d:2f:28:01:39:69:93:48:fa:7b:3e:19: 5e:19:60:20:83:d0:64:2c:db:11:fe:dd:42:cf:99: 01:aa:65:02:ef:e0:15:24:f7:45:7c:3e:a3:6e:94: 4b:02:4c:45:3a:8c:1b:6c:ed:85:d2:31:fb:cc:bf: 6e:a2:82:5e:c6:bb:f3:ec:3f:d9:9b:e8:9a:cd:8b: ab:4e:94:f8:2d:c7:ae:ea:78:8e:db:17:03:ec:4f: 7a:dd:ac:5d:44:2f:b9:86:fd:83:5b:f1:2c:15:38: 56:aa:1f:b0:05:5c:e0:4f:b5:37:77:cc:27:dc:3d: 3d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:47:81:D5:7D:EA:C3:BB:D6:C0:04:CF:F7:41:17:58:F7:8D:2B:68 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/632ef3ad-4ab4-3cd5-ae6e-1c9aaa4e3555.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/530ba529-ac94-44aa-8a24-334da5fccb1e.crl X509v3 Authority Key Identifier: keyid:E2:70:AF:2A:32:F0:30:09:13:CF:91:AB:C2:55:00:27:FA:B8:C1:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e.cer sbgp-ipAddrBlock: critical IPv4: 64.6.96.0/20 64.57.64.0/19 64.255.15.0/24 64.255.24.0/24 64.255.41.0/24 64.255.43.0/24 64.255.46.0/24 64.255.55.0/24 66.37.0.0/19 204.10.137.0-204.10.143.255 216.17.96.0/20 216.239.129.0-216.239.143.255 IPv6: 2607:fe90::/33 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption bc:c2:8a:77:5d:93:1e:1d:90:60:fd:fa:89:90:ee:35:ad:da: e0:b5:a9:02:e5:3f:b6:8c:18:63:8f:21:ff:f5:d1:8a:4a:17: f3:fd:e3:08:5e:2e:27:b3:0e:24:7b:f2:df:b0:1a:8a:5d:a0: 2b:46:cd:36:a2:b9:bb:fb:0d:29:1a:ac:16:0f:d6:ca:10:c5: 31:02:c9:c2:84:e1:47:17:49:97:1c:81:41:6d:c0:d0:38:3d: 2b:75:b5:e1:7e:21:85:f4:04:4f:b9:4e:ea:45:b9:88:b7:b1: 12:73:d4:64:c5:89:73:f6:39:31:50:53:43:21:34:17:d6:1c: bc:f2:26:d7:5c:9d:02:dc:ba:c8:64:4a:33:f0:f0:57:b8:77: d5:cf:27:c8:a0:9b:0d:e4:56:d4:7f:96:ef:d3:de:b9:bc:e9: 29:5b:5f:72:5c:60:71:45:64:19:2f:57:38:8b:3a:36:6f:b1: e3:62:8d:9a:50:54:d7:c8:70:38:d5:d8:74:6e:de:29:8b:d5: cf:f9:34:38:3c:c2:70:46:9c:ff:8e:36:f7:df:93:4e:9a:de: c3:52:fc:ca:2d:77:60:36:3b:e7:1b:d6:22:e8:64:f3:9b:71: 6f:1e:83:49:51:62:00:30:ed:16:9b:3d:21:6a:ef:c2:a7:f5: 78:46:72:71 -----BEGIN CERTIFICATE----- MIIGpjCCBY6gAwIBAgIUAQ0Mn0MoWEruJobAGJaWyPUk6+AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNTMwYmE1MjktYWM5NC00NGFhLThhMjQtMzM0ZGE1ZmNj YjFlMB4XDTI1MDgyMTEzMDA0MVoXDTI1MTExOTE0MDA0MVowLzEtMCsGA1UEAxMk ZmU4NTJmZjQtNzg2Mi00MmFmLTk1MjQtOWEyNTFlMzU3NzYxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotczlL5nTWut34GiuOrBh0lSpeL0eekWyMXh if8sI4a30zM/plU4PfCsWA2M88Bl3zEysD+O6+sD/+Jrmo4LmeMRTtMX7fHkM/Yd fqafyvDFzr9Mn2ud1hm/9GFRWeb7EbUMJEbjyM6dvN5tDxeZZ9DTovMdD4Ip/HpC IBfwsktDdfPiraWUirJtLygBOWmTSPp7PhleGWAgg9BkLNsR/t1Cz5kBqmUC7+AV JPdFfD6jbpRLAkxFOowbbO2F0jH7zL9uooJexrvz7D/Zm+iazYurTpT4Lceu6niO 2xcD7E963axdRC+5hv2DW/EsFThWqh+wBVzgT7U3d8wn3D09CQIDAQABo4IDuDCC A7QwHQYDVR0OBBYEFF1HgdV96sO71sAEz/dBF1j3jStoMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy81MzBi YTUyOS1hYzk0LTQ0YWEtOGEyNC0zMzRkYTVmY2NiMWUvNjMyZWYzYWQtNGFiNC0z Y2Q1LWFlNmUtMWM5YWFhNGUzNTU1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNTMwYmE1MjktYWM5NC00NGFhLThh MjQtMzM0ZGE1ZmNjYjFlLzUzMGJhNTI5LWFjOTQtNDRhYS04YTI0LTMzNGRhNWZj Y2IxZS5jcmwwHwYDVR0jBBgwFoAU4nCvKjLwMAkTz5GrwlUAJ/q4wTEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy81MzBiYTUyOS1hYzk0LTQ0YWEtOGEyNC0zMzRk YTVmY2NiMWUuY2VyMIGBBggrBgEFBQcBBwEB/wRyMHAwXgQCAAEwWAMEBEAGYAME BUA5QAMEAED/DwMEAED/GAMEAED/KQMEAED/KwMEAED/LgMEAED/NwMEBUIlADAM AwQAzAqJAwQEzAqAAwQE2BFgMAwDBADY74EDBATY74AwDgQCAAIwCAMGByYH/pAA MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBALzCinddkx4dkGD9+omQ7jWt2uC1qQLlP7aMGGOPIf/10YpKF/P9 4wheLiezDiR78t+wGopdoCtGzTaiubv7DSkarBYP1soQxTECycKE4UcXSZccgUFt wNA4PSt1teF+IYX0BE+5TupFuYi3sRJz1GTFiXP2OTFQU0MhNBfWHLzyJtdcnQLc ushkSjPw8Fe4d9XPJ8igmw3kVtR/lu/T3rm86SlbX3JcYHFFZBkvVziLOjZvseNi jZpQVNfIcDjV2HRu3imL1c/5NDg8wnBGnP+ONvffk06a3sNS/Motd2A2O+cb1iLo ZPObcW8eg0lRYgAw7RabPSFq78Kn9XhGcnE= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:05 2025 by rpki-client