$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/632ef3ad-4ab4-3cd5-ae6e-1c9aaa4e3555.roa File: 632ef3ad-4ab4-3cd5-ae6e-1c9aaa4e3555.roa (raw, json) Hash identifier: XAHtTrP1EBVSb1ZJeoiW7OP9wNABrqsHr0NQFLHvWhA= Subject key identifier: FD:D6:45:B0:6F:40:A6:8C:12:C5:06:44:11:93:56:F4:D1:7E:25:67 Certificate issuer: /CN=530ba529-ac94-44aa-8a24-334da5fccb1e Certificate serial: 010D0C9F4328584B05517E3EB65EA8C518A69F00 Authority key identifier: E2:70:AF:2A:32:F0:30:09:13:CF:91:AB:C2:55:00:27:FA:B8:C1:31 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/632ef3ad-4ab4-3cd5-ae6e-1c9aaa4e3555.roa Signing time: Thu 21 Aug 2025 13:00:41 +0000 ROA not before: Thu 21 Aug 2025 13:00:41 +0000 ROA not after: Wed 19 Nov 2025 14:00:41 +0000 asID: 19237 IP address blocks: 64.6.96.0/20 maxlen: 20 64.57.64.0/19 maxlen: 19 64.255.15.0/24 maxlen: 24 64.255.24.0/24 maxlen: 24 64.255.41.0/24 maxlen: 24 64.255.43.0/24 maxlen: 24 64.255.46.0/24 maxlen: 24 64.255.55.0/24 maxlen: 24 66.37.0.0/19 maxlen: 19 204.10.137.0/24 maxlen: 24 204.10.138.0/23 maxlen: 23 204.10.140.0/22 maxlen: 22 216.17.96.0/20 maxlen: 20 216.239.129.0/24 maxlen: 24 216.239.130.0/23 maxlen: 23 216.239.132.0/22 maxlen: 22 216.239.136.0/21 maxlen: 21 2607:fe90::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/530ba529-ac94-44aa-8a24-334da5fccb1e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/530ba529-ac94-44aa-8a24-334da5fccb1e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:05:51:7e:3e:b6:5e:a8:c5:18:a6:9f:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=530ba529-ac94-44aa-8a24-334da5fccb1e Validity Not Before: Aug 21 13:00:41 2025 GMT Not After : Nov 19 14:00:41 2025 GMT Subject: CN=b0342399-7657-4497-91a4-8cd1d640a234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:90:47:e0:c6:9d:53:2b:72:20:9c:c0:68:bd: 5e:a1:eb:82:d0:85:3c:50:2d:aa:7e:ad:a3:3d:1f: 7a:c2:10:e3:8b:8c:8b:9e:eb:bb:14:b1:77:2b:fb: b8:8c:44:9e:20:1b:7e:b6:a4:7c:2c:b6:06:41:63: c4:a1:20:93:08:19:53:4a:16:1d:56:f0:7f:7a:34: bb:02:d3:30:b5:f9:06:93:e2:35:0a:e6:4e:87:a0: 15:de:1e:76:c3:c2:69:18:d2:9e:6b:35:5a:67:41: 62:dd:f5:02:26:92:ab:8a:3e:51:13:31:76:1d:54: 56:7b:48:8c:a7:64:dd:d6:f4:cd:24:39:ef:50:e6: 77:fe:41:17:4a:6a:db:3a:ca:07:ef:56:01:1f:ed: e6:21:95:8a:f3:90:59:55:69:af:c0:4e:b2:a8:b6: 02:b9:fd:8e:bd:08:8c:55:5e:3c:71:16:5c:2b:6d: 6a:a0:10:44:e0:7e:84:7a:cc:26:a6:b4:36:86:84: 8f:18:2f:04:8c:4e:a5:5c:3c:2f:db:72:73:af:f1: 27:bf:06:ef:33:a4:7e:bc:25:c0:d4:e5:5d:ea:86: ff:15:46:00:9b:1f:ff:69:d3:34:fb:9a:ea:b3:06: ae:7c:42:89:ea:b5:99:a4:42:1b:74:76:5b:84:1c: 92:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D6:45:B0:6F:40:A6:8C:12:C5:06:44:11:93:56:F4:D1:7E:25:67 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/632ef3ad-4ab4-3cd5-ae6e-1c9aaa4e3555.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e/530ba529-ac94-44aa-8a24-334da5fccb1e.crl X509v3 Authority Key Identifier: keyid:E2:70:AF:2A:32:F0:30:09:13:CF:91:AB:C2:55:00:27:FA:B8:C1:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/530ba529-ac94-44aa-8a24-334da5fccb1e.cer sbgp-ipAddrBlock: critical IPv4: 64.6.96.0/20 64.57.64.0/19 64.255.15.0/24 64.255.24.0/24 64.255.41.0/24 64.255.43.0/24 64.255.46.0/24 64.255.55.0/24 66.37.0.0/19 204.10.137.0-204.10.143.255 216.17.96.0/20 216.239.129.0-216.239.143.255 IPv6: 2607:fe90::/33 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption b7:2e:6c:8c:4c:0b:d0:35:6f:bb:a7:6a:9b:e5:6e:d9:a5:42: 4b:8c:82:90:c2:07:3e:26:88:95:c3:5d:2f:61:72:8d:23:e0: aa:2a:b5:be:93:a1:03:cf:35:8e:d0:6e:2c:13:45:ab:6a:51: 41:a8:c9:37:04:43:10:1c:31:e3:20:b1:d1:26:0f:32:f4:16: 55:6d:b2:ff:90:8b:4f:4c:18:4a:f6:d4:66:c3:57:53:ee:89: d8:ce:53:5d:2f:5c:4b:b6:9f:ea:14:6a:d6:54:0f:5e:20:8e: 92:b4:6a:ab:bb:87:d3:8b:fe:a6:1c:5f:a3:49:56:d6:9f:d9: 7e:da:b8:71:96:a4:22:41:3f:c2:06:da:a7:33:37:6a:f6:59: f6:ab:5d:06:a8:55:c3:81:fd:d1:68:70:bc:20:b2:b1:d7:10: ec:0b:6d:ce:24:0f:79:3f:1d:7b:ee:c5:3c:7b:b5:9d:d1:7c: f3:64:1a:4a:50:04:04:4e:e9:89:6c:82:a8:53:5d:80:3b:a3: 48:2a:48:e9:21:7a:ae:be:61:48:6e:f1:f8:17:14:ee:5d:8a: c8:31:92:86:1e:02:6c:e8:6a:ef:ac:3a:58:44:43:de:dd:32: 74:9c:05:77:d6:db:3e:14:9a:fd:a1:e2:20:88:73:e4:a7:0f: 3e:a7:49:b7 -----BEGIN CERTIFICATE----- MIIGpjCCBY6gAwIBAgIUAQ0Mn0MoWEsFUX4+tl6oxRimnwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNTMwYmE1MjktYWM5NC00NGFhLThhMjQtMzM0ZGE1ZmNj YjFlMB4XDTI1MDgyMTEzMDA0MVoXDTI1MTExOTE0MDA0MVowLzEtMCsGA1UEAxMk YjAzNDIzOTktNzY1Ny00NDk3LTkxYTQtOGNkMWQ2NDBhMjM0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJBH4MadUytyIJzAaL1eoeuC0IU8UC2qfq2j PR96whDji4yLnuu7FLF3K/u4jESeIBt+tqR8LLYGQWPEoSCTCBlTShYdVvB/ejS7 AtMwtfkGk+I1CuZOh6AV3h52w8JpGNKeazVaZ0Fi3fUCJpKrij5REzF2HVRWe0iM p2Td1vTNJDnvUOZ3/kEXSmrbOsoH71YBH+3mIZWK85BZVWmvwE6yqLYCuf2OvQiM VV48cRZcK21qoBBE4H6EeswmprQ2hoSPGC8EjE6lXDwv23Jzr/EnvwbvM6R+vCXA 1OVd6ob/FUYAmx//adM0+5rqswaufEKJ6rWZpEIbdHZbhBySqQIDAQABo4IDuDCC A7QwHQYDVR0OBBYEFP3WRbBvQKaMEsUGRBGTVvTRfiVnMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy81MzBi YTUyOS1hYzk0LTQ0YWEtOGEyNC0zMzRkYTVmY2NiMWUvNjMyZWYzYWQtNGFiNC0z Y2Q1LWFlNmUtMWM5YWFhNGUzNTU1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNTMwYmE1MjktYWM5NC00NGFhLThh MjQtMzM0ZGE1ZmNjYjFlLzUzMGJhNTI5LWFjOTQtNDRhYS04YTI0LTMzNGRhNWZj Y2IxZS5jcmwwHwYDVR0jBBgwFoAU4nCvKjLwMAkTz5GrwlUAJ/q4wTEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy81MzBiYTUyOS1hYzk0LTQ0YWEtOGEyNC0zMzRk YTVmY2NiMWUuY2VyMIGBBggrBgEFBQcBBwEB/wRyMHAwXgQCAAEwWAMEBEAGYAME BUA5QAMEAED/DwMEAED/GAMEAED/KQMEAED/KwMEAED/LgMEAED/NwMEBUIlADAM AwQAzAqJAwQEzAqAAwQE2BFgMAwDBADY74EDBATY74AwDgQCAAIwCAMGByYH/pAA MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBALcubIxMC9A1b7unapvlbtmlQkuMgpDCBz4miJXDXS9hco0j4Koq tb6ToQPPNY7QbiwTRatqUUGoyTcEQxAcMeMgsdEmDzL0FlVtsv+Qi09MGEr21GbD V1PuidjOU10vXEu2n+oUatZUD14gjpK0aqu7h9OL/qYcX6NJVtaf2X7auHGWpCJB P8IG2qczN2r2WfarXQaoVcOB/dFocLwgsrHXEOwLbc4kD3k/HXvuxTx7tZ3RfPNk GkpQBARO6YlsgqhTXYA7o0gqSOkheq6+YUhu8fgXFO5disgxkoYeAmzoau+sOlhE Q97dMnScBXfW2z4Umv2h4iCIc+SnDz6nSbc= -----END CERTIFICATE-----Generated at Tue Oct 21 08:15:14 2025 by rpki-client