$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa File: ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa (raw, json) Hash identifier: MP5rsW9jXQ6oLufhlz62Zzslm9H3otNSNpwDPBIiYGM= Subject key identifier: 85:5C:63:15:58:CD:89:81:A5:7A:8C:F0:9A:B3:6D:71:B6:10:35:71 Certificate issuer: /CN=64da013d-8ba3-4af5-80ad-7674bd0cc403 Certificate serial: 010D0C9F4328584A49706E2E147662BAE7CFCC28 Authority key identifier: 2D:D1:01:C1:DB:B3:F5:6C:57:8C:83:E5:D4:15:B8:40:06:A9:9F:34 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa Signing time: Mon 23 Jun 2025 13:01:03 +0000 ROA not before: Mon 23 Jun 2025 13:01:03 +0000 ROA not after: Sun 21 Sep 2025 13:01:03 +0000 asID: 399916 IP address blocks: 66.118.0.0/22 maxlen: 22 66.118.0.0/24 maxlen: 24 66.118.1.0/24 maxlen: 24 66.118.2.0/24 maxlen: 24 66.118.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:49:70:6e:2e:14:76:62:ba:e7:cf:cc:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64da013d-8ba3-4af5-80ad-7674bd0cc403 Validity Not Before: Jun 23 13:01:03 2025 GMT Not After : Sep 21 13:01:03 2025 GMT Subject: CN=d68f8600-76c0-4531-a0cd-498e80f097ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4b:d6:b1:c6:2b:2b:04:64:0e:f5:90:ff:25: 38:92:1a:4a:45:35:2f:2e:fa:7c:b3:1e:8d:a3:c2: 69:59:3d:99:0f:4a:98:3d:6f:63:8c:12:58:56:f0: 5c:b0:0b:44:17:42:18:49:65:be:f8:db:63:79:05: 11:45:2c:f2:c4:17:e8:66:27:da:02:2a:4d:fd:64: 75:8b:bc:e5:4c:f8:87:ec:c2:56:f9:71:20:4e:f1: 3d:3b:52:35:07:bd:7e:f2:96:36:94:10:52:25:e9: 48:7a:e6:47:50:60:1f:e3:b6:c2:6e:54:c9:7d:2b: e1:25:af:a8:50:06:9d:68:30:42:60:d1:69:ac:d9: d5:13:9c:6c:ae:8e:e6:d6:ff:cf:e0:48:5f:43:0f: 25:11:5c:a7:85:4a:09:4e:64:89:1b:b2:0b:e4:5f: d2:0d:09:ad:5e:0c:3d:f7:2c:35:dc:31:3f:04:c4: 81:4c:60:16:50:f6:52:91:5d:f9:dc:ee:f0:94:05: 9b:00:1c:c7:6a:35:2e:1c:82:bc:20:11:62:38:40: 6b:b9:85:45:2d:d7:0c:3c:1e:6f:eb:05:7d:a5:dc: 2c:ab:c4:7e:1a:33:86:c7:ba:df:fe:69:7f:de:34: d5:b6:44:ff:3e:bd:81:8d:ed:6d:35:9d:ef:22:da: 64:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5C:63:15:58:CD:89:81:A5:7A:8C:F0:9A:B3:6D:71:B6:10:35:71 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/ba9af7c9-4188-3aec-83ca-0e60298a99d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403/64da013d-8ba3-4af5-80ad-7674bd0cc403.crl X509v3 Authority Key Identifier: keyid:2D:D1:01:C1:DB:B3:F5:6C:57:8C:83:E5:D4:15:B8:40:06:A9:9F:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/64da013d-8ba3-4af5-80ad-7674bd0cc403.cer sbgp-ipAddrBlock: critical IPv4: 66.118.0.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 40:f8:92:a7:e9:16:d4:81:dd:0b:44:6f:f0:4b:70:f2:87:30: 8e:8a:67:42:b7:93:40:77:19:b7:d1:c3:41:d1:d6:85:2b:54: 8f:8d:bb:f7:3f:aa:60:78:f4:0c:36:c9:68:f0:c0:24:8a:cd: 5c:a7:92:69:da:f8:28:42:c5:79:85:5c:10:c9:1e:51:f4:e5: db:77:4a:74:fa:83:04:a4:59:ab:dd:42:6f:ad:8c:3e:d0:17: 00:9c:f3:40:95:05:85:6c:5c:fe:4b:99:75:e6:5b:c9:80:3f: 19:82:45:9d:13:42:54:ef:f5:85:04:7e:de:f9:b4:35:5e:04: df:a1:60:76:7c:1a:d2:08:33:68:70:ef:f8:08:7a:64:ed:f6: eb:b6:68:11:dc:f4:6a:49:ba:2b:0c:5d:98:41:38:8c:a8:8c: 35:75:ea:65:3f:1e:88:a2:60:c7:f3:be:37:20:9d:70:da:13: 32:b0:17:51:1c:bb:73:55:91:c6:3d:4c:05:5f:b0:0e:eb:24: 3b:7f:b8:07:9a:1b:de:f0:b0:34:19:9d:07:18:f2:9a:67:35: 66:3e:d1:62:6d:b4:95:e1:0b:7f:dd:ed:25:35:40:54:0e:04: 47:c0:f1:4f:ad:d9:4a:2b:ac:d3:b9:5a:ff:1d:3a:46:c1:37: 79:c9:f2:f4 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEpJcG4uFHZiuufPzCgwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjRkYTAxM2QtOGJhMy00YWY1LTgwYWQtNzY3NGJkMGNj NDAzMB4XDTI1MDYyMzEzMDEwM1oXDTI1MDkyMTEzMDEwM1owLzEtMCsGA1UEAxMk ZDY4Zjg2MDAtNzZjMC00NTMxLWEwY2QtNDk4ZTgwZjA5N2VhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkvWscYrKwRkDvWQ/yU4khpKRTUvLvp8sx6N o8JpWT2ZD0qYPW9jjBJYVvBcsAtEF0IYSWW++NtjeQURRSzyxBfoZifaAipN/WR1 i7zlTPiH7MJW+XEgTvE9O1I1B71+8pY2lBBSJelIeuZHUGAf47bCblTJfSvhJa+o UAadaDBCYNFprNnVE5xsro7m1v/P4EhfQw8lEVynhUoJTmSJG7IL5F/SDQmtXgw9 9yw13DE/BMSBTGAWUPZSkV353O7wlAWbABzHajUuHIK8IBFiOEBruYVFLdcMPB5v 6wV9pdwsq8R+GjOGx7rf/ml/3jTVtkT/Pr2Bje1tNZ3vItpkXwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFIVcYxVYzYmBpXqM8JqzbXG2EDVxMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82NGRh MDEzZC04YmEzLTRhZjUtODBhZC03Njc0YmQwY2M0MDMvYmE5YWY3YzktNDE4OC0z YWVjLTgzY2EtMGU2MDI5OGE5OWQ0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNjRkYTAxM2QtOGJhMy00YWY1LTgw YWQtNzY3NGJkMGNjNDAzLzY0ZGEwMTNkLThiYTMtNGFmNS04MGFkLTc2NzRiZDBj YzQwMy5jcmwwHwYDVR0jBBgwFoAULdEBwduz9WxXjIPl1BW4QAapnzQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy82NGRhMDEzZC04YmEzLTRhZjUtODBhZC03Njc0 YmQwY2M0MDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQnYAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAED4kqfpFtSB3QtEb/BLcPKHMI6KZ0K3k0B3GbfRw0HR1oUrVI+Nu/c/ qmB49Aw2yWjwwCSKzVynkmna+ChCxXmFXBDJHlH05dt3SnT6gwSkWavdQm+tjD7Q FwCc80CVBYVsXP5LmXXmW8mAPxmCRZ0TQlTv9YUEft75tDVeBN+hYHZ8GtIIM2hw 7/gIemTt9uu2aBHc9GpJuisMXZhBOIyojDV16mU/HoiiYMfzvjcgnXDaEzKwF1Ec u3NVkcY9TAVfsA7rJDt/uAeaG97wsDQZnQcY8ppnNWY+0WJttJXhC3/d7SU1QFQO BEfA8U+t2UorrNO5Wv8dOkbBN3nJ8vQ= -----END CERTIFICATE-----Generated at Wed Jul 2 05:09:28 2025 by rpki-client