$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2/d97f986e-cea3-3138-8288-1c3a31bda324.roa File: d97f986e-cea3-3138-8288-1c3a31bda324.roa (raw, json) Hash identifier: l6KSYEF9boBUPsGm9tWF2GrpQ7kejkiumwl/6NbdTtw= Subject key identifier: 70:2F:F0:75:34:72:FA:CC:C9:8D:4D:33:89:4C:B3:8E:59:D8:E7:2A Certificate issuer: /CN=3d318897-eed6-4fd9-a18c-91026968b3e2 Certificate serial: 010D0C9F4328584B1AD17C8F1CC0CB044F3D3B00 Authority key identifier: 73:C4:D0:2C:36:91:A3:EA:9F:CC:FE:D5:AA:C0:E0:22:88:C3:3C:A5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2/d97f986e-cea3-3138-8288-1c3a31bda324.roa Signing time: Sat 06 Sep 2025 13:00:41 +0000 ROA not before: Sat 06 Sep 2025 13:00:41 +0000 ROA not after: Fri 05 Dec 2025 14:00:41 +0000 asID: 800 IP address blocks: 162.120.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2/3d318897-eed6-4fd9-a18c-91026968b3e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2/3d318897-eed6-4fd9-a18c-91026968b3e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:1a:d1:7c:8f:1c:c0:cb:04:4f:3d:3b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d318897-eed6-4fd9-a18c-91026968b3e2 Validity Not Before: Sep 6 13:00:41 2025 GMT Not After : Dec 5 14:00:41 2025 GMT Subject: CN=7db788c2-89fb-47b6-889b-22a0d69d4bd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ea:91:20:0d:00:d4:7b:40:5f:e6:95:74:85: 47:a9:18:18:fa:ba:7b:a5:72:40:32:3d:dd:0d:83: 74:fa:09:b5:1b:9d:e7:3e:2b:de:4f:b1:d5:b9:6b: 69:d6:a6:9c:9f:2b:07:7b:05:ed:e0:fb:a7:e2:3d: d0:af:a6:9e:31:b9:35:fb:eb:61:2f:4d:1a:1a:a6: f4:19:82:08:ba:f8:94:72:00:44:8e:ea:b6:05:8a: 67:d6:b3:0e:09:fc:54:d6:8d:74:6d:8c:b7:2a:90: 36:f6:e2:c9:5c:e2:21:52:e4:d6:2d:6a:42:fc:5e: f0:98:33:3f:41:8b:4f:e0:89:31:59:34:1f:24:c5: d0:00:11:03:8c:d1:dd:8e:76:16:8d:f8:ec:2e:93: f6:6e:89:b9:1b:71:28:33:96:1c:98:30:48:b0:6d: d4:87:25:a9:6c:57:3f:88:42:24:c3:d1:58:73:3b: 55:9a:c6:d7:f6:d9:83:da:90:55:51:2c:e1:7d:26: 4d:13:df:f7:a3:f8:df:70:89:a6:e1:55:77:01:e1: 2d:16:23:88:68:36:c1:4d:57:19:c0:ad:d2:07:2e: 89:44:cb:67:1e:b9:06:80:2e:ce:42:f9:4e:aa:97: 7d:c8:69:c9:ca:95:a4:79:a9:7c:76:13:e9:6a:79: f4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2F:F0:75:34:72:FA:CC:C9:8D:4D:33:89:4C:B3:8E:59:D8:E7:2A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2/d97f986e-cea3-3138-8288-1c3a31bda324.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2/3d318897-eed6-4fd9-a18c-91026968b3e2.crl X509v3 Authority Key Identifier: keyid:73:C4:D0:2C:36:91:A3:EA:9F:CC:FE:D5:AA:C0:E0:22:88:C3:3C:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/3d318897-eed6-4fd9-a18c-91026968b3e2.cer sbgp-ipAddrBlock: critical IPv4: 162.120.72.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 9c:93:9c:22:42:59:6f:b4:8d:ef:32:52:ec:36:78:b6:1a:59: a8:1e:03:69:03:3a:b4:6b:99:3b:02:1c:6d:cc:a8:15:c3:b2: ea:db:70:db:71:2c:15:54:ab:e9:b3:84:95:b5:ba:a4:a8:ce: 3c:50:ef:e1:38:f4:a7:17:12:ce:1c:d6:2b:c9:f5:d8:47:b9: a6:3d:74:ad:35:eb:79:c5:2e:e8:fb:40:92:b2:54:0a:a1:2b: 8a:77:5a:3b:fa:ae:45:f9:a8:62:38:a6:e3:7d:26:24:1c:d2: ae:e6:f5:5b:27:ea:5e:99:91:0b:cb:84:6d:96:02:ea:50:9e: 2c:14:c2:49:e6:ac:26:66:e2:4b:a4:3c:de:77:c3:cf:10:d6: 9f:37:06:9d:67:cd:de:3f:0f:9e:09:bd:08:95:63:53:76:01: 49:56:28:eb:e0:0e:04:85:d2:68:36:14:40:a5:38:c3:83:4f: ca:4d:5a:34:22:3f:98:f9:7e:36:e3:7c:ed:b5:6d:f1:4c:3c: d5:44:ed:f1:e8:0b:fb:99:ec:2a:cc:b4:98:07:38:42:c3:1e: aa:31:51:e8:2f:92:e4:8a:3a:27:a8:59:ef:ba:d6:98:71:36: fd:00:df:1c:98:7d:b1:a6:cc:4e:51:45:ae:49:ae:9d:73:a2: 42:90:7c:7f -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEsa0XyPHMDLBE89OwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkM2QzMTg4OTctZWVkNi00ZmQ5LWExOGMtOTEwMjY5Njhi M2UyMB4XDTI1MDkwNjEzMDA0MVoXDTI1MTIwNTE0MDA0MVowLzEtMCsGA1UEAxMk N2RiNzg4YzItODlmYi00N2I2LTg4OWItMjJhMGQ2OWQ0YmQ1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzeqRIA0A1HtAX+aVdIVHqRgY+rp7pXJAMj3d DYN0+gm1G53nPiveT7HVuWtp1qacnysHewXt4Pun4j3Qr6aeMbk1++thL00aGqb0 GYIIuviUcgBEjuq2BYpn1rMOCfxU1o10bYy3KpA29uLJXOIhUuTWLWpC/F7wmDM/ QYtP4IkxWTQfJMXQABEDjNHdjnYWjfjsLpP2bom5G3EoM5YcmDBIsG3UhyWpbFc/ iEIkw9FYcztVmsbX9tmD2pBVUSzhfSZNE9/3o/jfcImm4VV3AeEtFiOIaDbBTVcZ wK3SBy6JRMtnHrkGgC7OQvlOqpd9yGnJypWkeal8dhPpann00QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHAv8HU0cvrMyY1NM4lMs45Z2OcqMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8zZDMx ODg5Ny1lZWQ2LTRmZDktYTE4Yy05MTAyNjk2OGIzZTIvZDk3Zjk4NmUtY2VhMy0z MTM4LTgyODgtMWMzYTMxYmRhMzI0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvM2QzMTg4OTctZWVkNi00ZmQ5LWEx OGMtOTEwMjY5NjhiM2UyLzNkMzE4ODk3LWVlZDYtNGZkOS1hMThjLTkxMDI2OTY4 YjNlMi5jcmwwHwYDVR0jBBgwFoAUc8TQLDaRo+qfzP7VqsDgIojDPKUwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8zZDMxODg5Ny1lZWQ2LTRmZDktYTE4Yy05MTAy Njk2OGIzZTIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBonhIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJyTnCJCWW+0je8yUuw2eLYaWageA2kDOrRrmTsCHG3MqBXDsurbcNtx LBVUq+mzhJW1uqSozjxQ7+E49KcXEs4c1ivJ9dhHuaY9dK0163nFLuj7QJKyVAqh K4p3Wjv6rkX5qGI4puN9JiQc0q7m9Vsn6l6ZkQvLhG2WAupQniwUwknmrCZm4kuk PN53w88Q1p83Bp1nzd4/D54JvQiVY1N2AUlWKOvgDgSF0mg2FEClOMODT8pNWjQi P5j5fjbjfO21bfFMPNVE7fHoC/uZ7CrMtJgHOELDHqoxUegvkuSKOieoWe+61phx Nv0A3xyYfbGmzE5RRa5Jrp1zokKQfH8= -----END CERTIFICATE-----Generated at Tue Oct 21 03:54:27 2025 by rpki-client