$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa File: 7332e9a4-0787-3148-ac49-59abb3ffcd35.roa (raw, json) Hash identifier: fsOT4N7s/Hmzau1ZbQspDLVbXyVOV1QpJ/lzdei9FIs= Subject key identifier: E2:2F:0E:BA:69:4F:9C:F4:26:85:C2:4E:0A:40:5E:C6:E9:BD:84:93 Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584AF7EBD8BBD5D2ACFD9232F700 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa Signing time: Mon 25 Aug 2025 01:00:33 +0000 ROA not before: Mon 25 Aug 2025 01:00:33 +0000 ROA not after: Sun 23 Nov 2025 02:00:33 +0000 asID: 398210 IP address blocks: 168.220.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:f7:eb:d8:bb:d5:d2:ac:fd:92:32:f7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Aug 25 01:00:33 2025 GMT Not After : Nov 23 02:00:33 2025 GMT Subject: CN=b60ef650-0312-4a56-875b-0bdc87b2dacf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4c:42:69:9b:86:0d:76:f7:cf:31:8c:68:b4: ed:77:30:80:f3:4e:45:9e:25:f2:f8:7f:0b:e6:b8: 70:4f:30:02:09:b5:a1:66:cc:bb:03:ee:4c:89:41: 08:15:8e:b3:6f:b2:26:a0:1c:5f:29:b7:4c:cf:96: 92:6b:be:4a:c9:5a:64:3c:eb:1d:90:cb:e1:ad:f2: 3c:64:31:3a:2c:fc:06:45:15:ad:5b:61:59:db:63: ed:29:0b:5b:ee:ec:9c:45:fb:96:d8:69:6b:b4:8a: f9:59:6d:01:38:80:ed:8c:c2:8a:89:52:31:ac:d6: 6a:91:8a:70:aa:cf:bf:4a:13:0f:de:32:b4:83:72: 45:dc:5f:68:31:2a:b0:e4:df:32:a9:09:96:22:a6: e7:b6:35:b8:12:94:89:b6:a0:83:6c:08:13:51:ce: 03:b8:77:7a:6c:ed:dd:db:b0:a5:25:19:d1:d3:f1: 00:d5:c1:df:1c:cb:1b:21:6b:6c:cf:4c:48:2e:03: 42:38:08:13:a5:1e:49:23:49:f9:15:d1:f0:a4:ca: 2c:d5:25:7c:b6:78:fd:50:c2:c0:97:04:1d:66:92: 28:7a:2c:3f:b5:b2:c6:ce:1e:9c:39:5a:01:94:2d: 95:74:37:21:cb:24:da:cf:95:58:d9:63:be:80:fb: 3b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2F:0E:BA:69:4F:9C:F4:26:85:C2:4E:0A:40:5E:C6:E9:BD:84:93 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.168.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7e:ab:3a:2a:4c:2e:1b:c6:16:f6:bd:1c:a5:35:59:82:b9:62: 97:77:f8:0f:44:ad:19:86:95:48:a6:b7:f3:50:f9:f2:34:fb: df:cd:f7:7a:61:b5:e5:25:c2:00:06:6d:bd:12:a7:a7:e8:2c: 4b:6a:e2:f9:62:59:be:36:0e:97:0f:95:c7:95:45:0f:4e:8a: c9:cb:e4:5e:f4:28:83:9c:11:bd:1f:89:d1:95:8b:fb:ba:64: 5a:ed:ce:a7:4f:06:27:f7:80:67:1a:a3:4c:74:20:f9:df:1a: b4:f3:f5:2e:02:e2:8b:75:b8:77:4c:dd:05:fb:55:81:62:88: 3c:03:01:a6:98:90:42:57:5c:9b:30:bf:75:bf:0e:02:58:47: f7:60:f7:81:99:94:94:1d:88:96:6c:e6:46:c8:d9:b8:47:5a: c8:67:b4:65:0c:bf:33:1d:d0:70:80:5e:ff:b6:46:40:bc:d4: 6c:f0:3d:72:cc:33:71:c4:c0:69:5e:26:c3:58:f4:aa:4a:b5: 77:95:33:20:c0:05:0c:5d:a8:6d:89:87:07:c0:32:f7:92:ac: 05:d9:d0:30:f7:6b:0c:4c:7f:86:09:e2:63:48:4d:7b:f2:f1: 72:43:78:15:e6:ff:cb:ad:86:19:fe:ae:db:eb:f4:35:b4:0c: b9:8e:cb:a4 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEr369i71dKs/ZIy9wAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI1MDgyNTAxMDAzM1oXDTI1MTEyMzAyMDAzM1owLzEtMCsGA1UEAxMk YjYwZWY2NTAtMDMxMi00YTU2LTg3NWItMGJkYzg3YjJkYWNmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUxCaZuGDXb3zzGMaLTtdzCA805FniXy+H8L 5rhwTzACCbWhZsy7A+5MiUEIFY6zb7ImoBxfKbdMz5aSa75KyVpkPOsdkMvhrfI8 ZDE6LPwGRRWtW2FZ22PtKQtb7uycRfuW2GlrtIr5WW0BOIDtjMKKiVIxrNZqkYpw qs+/ShMP3jK0g3JF3F9oMSqw5N8yqQmWIqbntjW4EpSJtqCDbAgTUc4DuHd6bO3d 27ClJRnR0/EA1cHfHMsbIWtsz0xILgNCOAgTpR5JI0n5FdHwpMos1SV8tnj9UMLA lwQdZpIoeiw/tbLGzh6cOVoBlC2VdDchyyTaz5VY2WO+gPs7NwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFOIvDrppT5z0JoXCTgpAXsbpvYSTMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvNzMzMmU5YTQtMDc4Ny0z MTQ4LWFjNDktNTlhYmIzZmZjZDM1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNyoMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAH6rOipMLhvGFva9HKU1WYK5Ypd3+A9ErRmGlUimt/NQ+fI0+9/N93ph teUlwgAGbb0Sp6foLEtq4vliWb42DpcPlceVRQ9OisnL5F70KIOcEb0fidGVi/u6 ZFrtzqdPBif3gGcao0x0IPnfGrTz9S4C4ot1uHdM3QX7VYFiiDwDAaaYkEJXXJsw v3W/DgJYR/dg94GZlJQdiJZs5kbI2bhHWshntGUMvzMd0HCAXv+2RkC81GzwPXLM M3HEwGleJsNY9KpKtXeVMyDABQxdqG2JhwfAMveSrAXZ0DD3awxMf4YJ4mNITXvy 8XJDeBXm/8uthhn+rtvr9DW0DLmOy6Q= -----END CERTIFICATE-----Generated at Mon Oct 20 13:08:03 2025 by rpki-client