$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa File: ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa (raw, json) Hash identifier: eIpzatIRlYrzZQ3iBEMWfDK7gVuf4iHltml9Z58mdbA= Subject key identifier: A6:EC:3B:80:92:81:16:12:85:0E:BD:3A:FE:9F:26:DA:2A:DC:1A:97 Certificate issuer: /CN=64da013d-8ba3-4af5-80ad-7674bd0cc403 Certificate serial: 010D0C9F4328584B2A2C37BBEB5585BC0F979B00 Authority key identifier: 2D:D1:01:C1:DB:B3:F5:6C:57:8C:83:E5:D4:15:B8:40:06:A9:9F:34 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa Signing time: Fri 12 Sep 2025 01:00:32 +0000 ROA not before: Fri 12 Sep 2025 01:00:32 +0000 ROA not after: Thu 11 Dec 2025 02:00:32 +0000 asID: 399916 IP address blocks: 66.118.0.0/22 maxlen: 22 66.118.0.0/24 maxlen: 24 66.118.1.0/24 maxlen: 24 66.118.2.0/24 maxlen: 24 66.118.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:2a:2c:37:bb:eb:55:85:bc:0f:97:9b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64da013d-8ba3-4af5-80ad-7674bd0cc403 Validity Not Before: Sep 12 01:00:32 2025 GMT Not After : Dec 11 02:00:32 2025 GMT Subject: CN=b82f4c21-0a0b-4bd7-bb0b-a423ce40cc0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:bc:a5:2a:37:65:2b:2d:2a:5f:5b:9b:d0:e8: 18:ac:6f:c3:1b:7f:25:c0:e2:25:28:fe:e8:c9:da: 10:af:a9:69:94:73:e4:ab:fb:9e:54:8b:7f:60:54: 0c:59:51:6f:d0:a1:4c:d2:42:7b:71:14:6d:3c:3e: a2:e0:37:77:62:b0:2b:93:f5:c5:b4:65:41:07:f5: 91:0a:63:08:41:10:c9:b8:2a:8a:bc:70:bc:40:35: 02:02:21:bb:81:7b:0e:4e:d6:34:b4:a1:90:a6:79: a0:6c:e4:fc:ff:73:78:59:1f:e1:67:77:fe:b4:79: 85:67:d6:db:95:10:a9:cf:54:7f:2a:38:31:4e:88: 2f:72:64:a8:15:1c:cb:4a:b1:19:03:f5:ee:d8:c3: 06:b1:c3:e4:5e:b7:2f:08:61:5b:eb:64:e6:fa:2e: 89:51:97:8e:d1:b3:42:e6:08:de:82:50:4e:dc:aa: 59:10:f1:67:e3:b3:a3:8f:c8:6f:c6:1c:66:70:5e: 04:46:d3:74:a0:2b:99:9f:5a:fd:23:7b:02:23:d2: e7:58:61:53:5b:79:01:a5:f3:ea:96:49:b7:b7:1a: bc:09:73:7f:de:a2:ae:ab:ba:72:85:01:e0:68:bb: 1a:ec:ef:37:b3:41:d4:a9:6e:ae:20:ce:57:fc:5b: 01:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:EC:3B:80:92:81:16:12:85:0E:BD:3A:FE:9F:26:DA:2A:DC:1A:97 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.crl X509v3 Authority Key Identifier: keyid:2D:D1:01:C1:DB:B3:F5:6C:57:8C:83:E5:D4:15:B8:40:06:A9:9F:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer sbgp-ipAddrBlock: critical IPv4: 66.118.0.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7f:73:6e:f7:47:44:58:f2:60:2c:77:23:fe:fe:0a:17:10:b0: 85:36:f2:d7:2d:30:c3:52:19:83:49:84:3d:d8:95:d4:f6:ad: 76:6e:6a:da:b2:37:ca:54:6c:84:74:cf:b7:e8:ad:f1:d9:18: d5:61:22:78:05:67:fb:b4:f8:42:6e:ad:0e:34:e8:a4:63:d9: f1:08:fd:f0:87:a4:11:5e:29:c5:ee:2c:95:2a:30:76:d8:56: fb:2e:c0:4f:1f:a5:2f:5c:4f:a8:7e:55:38:7f:38:64:a8:96: 69:da:f3:66:54:0c:6b:a1:f0:c1:eb:47:3f:6c:5c:d4:b1:5e: f9:03:99:60:bf:90:b2:a2:8a:82:db:d2:c2:13:45:dc:d5:bc: 6e:22:22:bc:3b:3f:52:7c:bc:90:38:26:7f:a8:50:8e:69:25: 2f:3c:2c:53:4a:9c:2d:9f:e9:50:94:41:50:31:b0:d9:a6:ab: 27:f5:18:77:06:91:bd:64:f4:d0:32:8f:b3:57:e7:27:7a:a6: 1e:2a:39:1c:ed:a6:7f:38:96:71:e6:4c:f8:ca:3b:fb:06:8d: e6:0a:79:26:bc:74:f3:23:ad:b7:9a:90:21:3f:c9:a5:83:33: b7:85:9f:c9:ec:6c:8e:f0:71:18:43:a8:8d:74:b4:c2:1f:81: fc:c6:01:05 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEsqLDe761WFvA+XmwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjRkYTAxM2QtOGJhMy00YWY1LTgwYWQtNzY3NGJkMGNj NDAzMB4XDTI1MDkxMjAxMDAzMloXDTI1MTIxMTAyMDAzMlowLzEtMCsGA1UEAxMk YjgyZjRjMjEtMGEwYi00YmQ3LWJiMGItYTQyM2NlNDBjYzBjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhrylKjdlKy0qX1ub0OgYrG/DG38lwOIlKP7o ydoQr6lplHPkq/ueVIt/YFQMWVFv0KFM0kJ7cRRtPD6i4Dd3YrArk/XFtGVBB/WR CmMIQRDJuCqKvHC8QDUCAiG7gXsOTtY0tKGQpnmgbOT8/3N4WR/hZ3f+tHmFZ9bb lRCpz1R/KjgxTogvcmSoFRzLSrEZA/Xu2MMGscPkXrcvCGFb62Tm+i6JUZeO0bNC 5gjeglBO3KpZEPFn47Ojj8hvxhxmcF4ERtN0oCuZn1r9I3sCI9LnWGFTW3kBpfPq lkm3txq8CXN/3qKuq7pyhQHgaLsa7O83s0HUqW6uIM5X/FsBNQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFKbsO4CSgRYShQ69Ov6fJtoq3BqXMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82NGRh MDEzZC04YmEzLTRhZjUtODBhZC03Njc0YmQwY2M0MDMvYmE5YWY3YzktNDE4OC0z YWVjLTgzY2EtMGU2MDI5OGE5OWQ0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNjRkYTAxM2QtOGJhMy00YWY1LTgw YWQtNzY3NGJkMGNjNDAzLzY0ZGEwMTNkLThiYTMtNGFmNS04MGFkLTc2NzRiZDBj YzQwMy5jcmwwHwYDVR0jBBgwFoAULdEBwduz9WxXjIPl1BW4QAapnzQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy82NGRhMDEzZC04YmEzLTRhZjUtODBhZC03Njc0 YmQwY2M0MDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQnYAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAH9zbvdHRFjyYCx3I/7+ChcQsIU28tctMMNSGYNJhD3YldT2rXZuatqy N8pUbIR0z7forfHZGNVhIngFZ/u0+EJurQ406KRj2fEI/fCHpBFeKcXuLJUqMHbY VvsuwE8fpS9cT6h+VTh/OGSolmna82ZUDGuh8MHrRz9sXNSxXvkDmWC/kLKiioLb 0sITRdzVvG4iIrw7P1J8vJA4Jn+oUI5pJS88LFNKnC2f6VCUQVAxsNmmqyf1GHcG kb1k9NAyj7NX5yd6ph4qORztpn84lnHmTPjKO/sGjeYKeSa8dPMjrbeakCE/yaWD M7eFn8nsbI7wcRhDqI10tMIfgfzGAQU= -----END CERTIFICATE-----Generated at Mon Oct 20 19:04:19 2025 by rpki-client