$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa File: bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa (raw, json) Hash identifier: 75pqs3or9c0sJO/PwPPMJpd4m7GHud/G/PyTKXXepOQ= Subject key identifier: E4:28:78:23:6E:21:7B:25:DE:07:48:0C:22:98:0A:B9:BC:6D:05:A8 Certificate issuer: /CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Certificate serial: 010D0C9F4328584B5141C2CC8420626CBCEA1F80 Authority key identifier: AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa Signing time: Fri 26 Sep 2025 01:00:33 +0000 ROA not before: Fri 26 Sep 2025 01:00:33 +0000 ROA not after: Thu 25 Dec 2025 02:00:33 +0000 asID: 54994 IP address blocks: 157.185.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:51:41:c2:cc:84:20:62:6c:bc:ea:1f:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Validity Not Before: Sep 26 01:00:33 2025 GMT Not After : Dec 25 02:00:33 2025 GMT Subject: CN=98ef3d36-8337-4e3e-bfb1-736e3d9a8c09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f9:26:f2:b9:08:49:15:3a:71:4b:ea:c3:c3: 34:b7:da:a2:b9:bb:66:99:08:88:fd:74:cb:d8:08: 04:fd:cc:6d:2b:1f:5f:a1:83:5e:3e:64:57:20:af: 3f:0e:a3:ca:dd:d1:e8:bc:fd:51:28:ac:f5:c1:89: 7a:c8:c6:8a:a4:e8:0a:fc:06:92:74:34:e6:70:b0: 5b:9f:97:30:8a:56:93:df:1c:4c:1f:9e:a4:25:47: b6:2a:ee:4b:95:a7:7e:2e:65:d8:c9:72:7b:4e:d5: a6:9f:19:69:cd:8f:33:7b:03:1d:56:a6:29:68:45: 99:c1:61:55:f1:f4:22:cc:5d:5c:54:46:ea:e0:9f: e9:10:a0:4a:40:b3:b5:f1:bd:92:e5:ad:60:72:25: aa:84:e5:26:b4:f3:d4:a3:29:c4:88:60:a0:64:38: c2:3b:c4:11:c5:35:66:a2:d6:a0:46:ba:ec:25:06: f2:fe:ae:6f:32:50:39:3d:88:bd:f2:f2:36:ac:1c: 3d:58:11:33:3d:b2:e3:ab:c8:1e:62:fd:51:28:04: bf:50:a3:bf:e8:0b:9a:be:17:0c:7f:08:5a:3e:de: 9f:dd:6a:ad:fb:fa:fa:2d:44:d9:46:0c:3b:9d:66: 6d:0d:05:52:54:e1:0f:db:5c:f3:14:89:e5:9c:3b: 7c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:28:78:23:6E:21:7B:25:DE:07:48:0C:22:98:0A:B9:BC:6D:05:A8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl X509v3 Authority Key Identifier: keyid:AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer sbgp-ipAddrBlock: critical IPv4: 157.185.172.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 34:71:53:97:cb:fe:23:b9:ec:c9:1b:6a:56:d8:6b:54:67:13: f8:45:5f:87:6a:9e:52:d6:0a:f2:4f:ca:b5:ed:62:aa:22:01: f0:69:43:cd:d4:51:d4:b4:b7:37:53:a5:2d:ed:fd:4d:68:7b: f6:51:11:0b:76:b4:94:e8:7c:08:6d:0c:95:f1:b1:38:b5:ef: 83:65:38:9d:92:01:59:cb:7b:bc:27:e4:dd:6a:96:b2:20:2b: 30:e8:8d:bf:b9:c6:69:19:28:85:14:f4:c9:7e:9a:c1:17:86: c9:77:eb:51:56:40:58:0e:05:f0:f9:ee:88:56:55:2c:8c:29: 51:c5:3e:98:5a:31:9c:05:3c:1e:6a:54:de:8d:4e:ed:4f:75: 1a:d2:3a:98:03:01:57:eb:47:d1:3e:88:be:3c:d1:47:af:b3: af:13:e6:88:c4:7e:9b:7d:8c:da:50:1a:5e:6f:c0:8e:7d:c3: 51:33:ae:a8:15:cb:f9:f2:f5:78:c4:d3:02:9e:4e:33:5f:84: db:90:84:f5:9d:78:89:24:1a:9a:72:be:96:c5:f9:e6:5f:1e: a2:e2:dc:b9:65:d6:76:cc:10:fa:dc:f8:cc:88:47:d8:db:e0: ec:f2:ff:ac:c0:ef:f6:e4:36:4f:c0:ae:16:a6:d5:41:eb:da: bf:44:19:60 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEtRQcLMhCBibLzqH4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDFkYmMwZDctNGVjZi00YjliLTljN2ItOTIwMGFmOTAy ZDFiMB4XDTI1MDkyNjAxMDAzM1oXDTI1MTIyNTAyMDAzM1owLzEtMCsGA1UEAxMk OThlZjNkMzYtODMzNy00ZTNlLWJmYjEtNzM2ZTNkOWE4YzA5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfkm8rkISRU6cUvqw8M0t9qiubtmmQiI/XTL 2AgE/cxtKx9foYNePmRXIK8/DqPK3dHovP1RKKz1wYl6yMaKpOgK/AaSdDTmcLBb n5cwilaT3xxMH56kJUe2Ku5Llad+LmXYyXJ7TtWmnxlpzY8zewMdVqYpaEWZwWFV 8fQizF1cVEbq4J/pEKBKQLO18b2S5a1gciWqhOUmtPPUoynEiGCgZDjCO8QRxTVm otagRrrsJQby/q5vMlA5PYi98vI2rBw9WBEzPbLjq8geYv1RKAS/UKO/6AuavhcM fwhaPt6f3Wqt+/r6LUTZRgw7nWZtDQVSVOEP21zzFInlnDt8bQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFOQoeCNuIXsl3gdIDCKYCrm8bQWoMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS80MWRi YzBkNy00ZWNmLTRiOWItOWM3Yi05MjAwYWY5MDJkMWIvYmZhMGJhYjMtYTU2NC0z ZTdjLWFiZDgtOGEwMDlmMTA0N2Y2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNDFkYmMwZDctNGVjZi00YjliLTlj N2ItOTIwMGFmOTAyZDFiLzQxZGJjMGQ3LTRlY2YtNGI5Yi05YzdiLTkyMDBhZjkw MmQxYi5jcmwwHwYDVR0jBBgwFoAUr+2KlmaX9JrFjYUWRsptXpsJ0LcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS80MWRiYzBkNy00ZWNmLTRiOWItOWM3Yi05MjAw YWY5MDJkMWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnbmsMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADRxU5fL/iO57MkbalbYa1RnE/hFX4dqnlLWCvJPyrXtYqoiAfBpQ83U UdS0tzdTpS3t/U1oe/ZREQt2tJTofAhtDJXxsTi174NlOJ2SAVnLe7wn5N1qlrIg KzDojb+5xmkZKIUU9Ml+msEXhsl361FWQFgOBfD57ohWVSyMKVHFPphaMZwFPB5q VN6NTu1PdRrSOpgDAVfrR9E+iL480Uevs68T5ojEfpt9jNpQGl5vwI59w1EzrqgV y/ny9XjE0wKeTjNfhNuQhPWdeIkkGppyvpbF+eZfHqLi3Lll1nbMEPrc+MyIR9jb 4Ozy/6zA7/bkNk/Arham1UHr2r9EGWA= -----END CERTIFICATE-----Generated at Mon Oct 20 08:16:58 2025 by rpki-client