$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa File: 74043b36-4da5-3e84-b21c-ebd4075cbecb.roa (raw, json) Hash identifier: kSvcTNa/5wLz9wsftGvnECzvQjGbJxrcf5R6dQ+gyoY= Subject key identifier: E0:9C:6A:B1:00:FC:6D:41:2A:EE:1E:EA:1A:C7:7F:07:B7:E9:AD:8A Certificate issuer: /CN=86fea470-b380-45c0-9f6b-033b7d884388 Certificate serial: 010D0C9F4328584B89177F637BF45DC0718C3940 Authority key identifier: 08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa Signing time: Thu 16 Oct 2025 01:00:30 +0000 ROA not before: Thu 16 Oct 2025 01:00:30 +0000 ROA not after: Wed 14 Jan 2026 02:00:30 +0000 asID: 33333 IP address blocks: 67.220.64.0/19 maxlen: 24 68.168.16.0/20 maxlen: 24 69.42.208.0/20 maxlen: 24 186.190.208.0/20 maxlen: 24 2607:3b40::/32 maxlen: 48 2607:f5a0::/32 maxlen: 48 2607:ffd8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:89:17:7f:63:7b:f4:5d:c0:71:8c:39:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86fea470-b380-45c0-9f6b-033b7d884388 Validity Not Before: Oct 16 01:00:30 2025 GMT Not After : Jan 14 02:00:30 2026 GMT Subject: CN=15ff1423-38b7-4061-b5ed-e6dc50cfdef2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b5:d1:05:7b:4e:f3:51:bd:90:d1:a0:28:68: 6f:b2:82:78:11:59:91:17:7e:4b:ee:4f:6d:f7:92: 2e:3b:61:5c:2f:6a:bd:a5:90:8e:06:3f:83:65:c3: 0d:be:af:59:4f:55:10:61:32:80:aa:7e:e0:62:61: f3:55:b3:c6:0a:d6:dd:60:b4:f1:1f:07:30:61:ac: c2:9e:d3:fb:a9:bd:a7:14:56:ad:d1:79:c7:02:a1: 76:7a:ed:ad:42:d2:98:d6:0f:a2:93:54:0d:d1:d3: fa:cc:4f:db:8a:f0:c6:dc:4d:6e:cd:74:aa:6a:aa: d3:1e:cb:bf:9d:5e:3a:17:7c:85:97:01:57:83:e4: 69:23:5a:d3:02:de:54:17:4b:be:f9:db:46:b3:bb: a4:14:96:53:94:f1:19:10:c9:8d:60:79:c4:41:43: 34:a1:9e:95:11:26:5c:85:31:23:89:c7:aa:ec:1e: 0f:78:a6:a5:e7:72:22:8a:b6:98:0d:1b:7d:a7:c8: dd:dd:8b:7e:af:4d:f2:0c:ee:60:6a:2d:81:11:4e: d1:f6:9e:96:cb:b0:87:b4:b4:98:a4:0f:dc:a6:e6: 57:ad:73:c6:db:ba:0c:3a:28:77:fd:3d:b9:4b:91: 6b:23:91:fb:37:d1:8c:d3:45:6f:9f:1a:72:f4:7b: d8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9C:6A:B1:00:FC:6D:41:2A:EE:1E:EA:1A:C7:7F:07:B7:E9:AD:8A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl X509v3 Authority Key Identifier: keyid:08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer sbgp-ipAddrBlock: critical IPv4: 67.220.64.0/19 68.168.16.0/20 69.42.208.0/20 186.190.208.0/20 IPv6: 2607:3b40::/32 2607:f5a0::/32 2607:ffd8::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 34:d0:ab:03:1a:de:1e:58:d6:d5:fb:42:42:d6:0c:07:85:b5: 5e:8a:b8:e8:89:43:bb:3c:fe:74:76:ec:4c:d3:b4:ca:ab:bd: d7:ce:41:65:07:25:ff:4f:a6:52:5a:47:e8:bb:e9:75:4d:4d: 82:39:c3:81:43:05:23:d4:3e:78:ec:ef:be:c8:a4:db:1a:02: c4:13:18:ce:68:8f:65:31:0d:5f:f9:98:b2:57:2f:e0:11:d5: 0d:c7:d5:5d:14:07:0a:a6:49:d0:e4:7a:13:80:76:06:e1:af: 31:4d:7c:7c:f0:87:9a:c0:62:29:22:d1:c8:6e:ff:82:06:38: 08:06:d5:ee:e1:c0:46:ed:89:d8:b5:7b:b2:a6:e3:8b:f2:15: c9:ac:ea:99:2b:84:a6:04:b5:c7:d0:23:4c:b5:77:70:23:57: 67:aa:94:4f:fd:19:32:78:a0:af:1d:32:aa:82:40:f1:23:0c: 5d:b2:88:8c:81:14:33:b9:00:43:5e:3f:88:1d:41:ab:2d:2a: 48:8e:a1:75:42:1a:70:22:1d:91:95:69:6b:a8:bb:aa:27:3d: 06:f5:61:29:29:ef:e4:3a:8d:ee:47:e2:26:b3:8b:06:18:3e: 48:76:38:64:eb:97:98:1e:a5:22:3e:22:fb:5a:d3:3c:73:83: fa:bd:28:14 -----BEGIN CERTIFICATE----- MIIGcjCCBVqgAwIBAgIUAQ0Mn0MoWEuJF39je/RdwHGMOUAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkODZmZWE0NzAtYjM4MC00NWMwLTlmNmItMDMzYjdkODg0 Mzg4MB4XDTI1MTAxNjAxMDAzMFoXDTI2MDExNDAyMDAzMFowLzEtMCsGA1UEAxMk MTVmZjE0MjMtMzhiNy00MDYxLWI1ZWQtZTZkYzUwY2ZkZWYyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbXRBXtO81G9kNGgKGhvsoJ4EVmRF35L7k9t 95IuO2FcL2q9pZCOBj+DZcMNvq9ZT1UQYTKAqn7gYmHzVbPGCtbdYLTxHwcwYazC ntP7qb2nFFat0XnHAqF2eu2tQtKY1g+ik1QN0dP6zE/bivDG3E1uzXSqaqrTHsu/ nV46F3yFlwFXg+RpI1rTAt5UF0u++dtGs7ukFJZTlPEZEMmNYHnEQUM0oZ6VESZc hTEjiceq7B4PeKal53IiiraYDRt9p8jd3Yt+r03yDO5gai2BEU7R9p6Wy7CHtLSY pA/cpuZXrXPG27oMOih3/T25S5FrI5H7N9GM00Vvnxpy9HvYZwIDAQABo4IDhDCC A4AwHQYDVR0OBBYEFOCcarEA/G1BKu4e6hrHfwe36a2KMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS84NmZl YTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNiN2Q4ODQzODgvNzQwNDNiMzYtNGRhNS0z ZTg0LWIyMWMtZWJkNDA3NWNiZWNiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy82OWZkMDE1Ni1i YjFmLTQ4YjYtYmYzMi1jOTQ5MjI4NmYxOTUvODZmZWE0NzAtYjM4MC00NWMwLTlm NmItMDMzYjdkODg0Mzg4Lzg2ZmVhNDcwLWIzODAtNDVjMC05ZjZiLTAzM2I3ZDg4 NDM4OC5jcmwwHwYDVR0jBBgwFoAUCHSKMQk8LElEoS6K1lyekgQBzxYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhi Ni1iZjMyLWM5NDkyMjg2ZjE5NS84NmZlYTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNi N2Q4ODQzODguY2VyME4GCCsGAQUFBwEHAQH/BD8wPTAeBAIAATAYAwQFQ9xAAwQE RKgQAwQERSrQAwQEur7QMBsEAgACMBUDBQAmBztAAwUAJgf1oAMFACYH/9gwVAYD VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3 dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF AAOCAQEANNCrAxreHljW1ftCQtYMB4W1Xoq46IlDuzz+dHbsTNO0yqu9185BZQcl /0+mUlpH6LvpdU1NgjnDgUMFI9Q+eOzvvsik2xoCxBMYzmiPZTENX/mYslcv4BHV DcfVXRQHCqZJ0OR6E4B2BuGvMU18fPCHmsBiKSLRyG7/ggY4CAbV7uHARu2J2LV7 sqbji/IVyazqmSuEpgS1x9AjTLV3cCNXZ6qUT/0ZMnigrx0yqoJA8SMMXbKIjIEU M7kAQ14/iB1Bqy0qSI6hdUIacCIdkZVpa6i7qic9BvVhKSnv5DqN7kfiJrOLBhg+ SHY4ZOuXmB6lIj4i+1rTPHOD+r0oFA== -----END CERTIFICATE-----Generated at Mon Oct 20 15:10:40 2025 by rpki-client