$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/5339e6b4-20a4-3e12-b267-e7013b1ce0d7.roa File: 5339e6b4-20a4-3e12-b267-e7013b1ce0d7.roa (raw, json) Hash identifier: A4kblJ+ttNzqtJyLDAnoKZMx6J5D7RCVauSkh/e0Y4g= Subject key identifier: 94:28:9D:E0:2B:19:3A:42:1A:AC:AE:89:33:AC:FD:4B:DF:D4:9B:D7 Certificate issuer: /CN=8583e379-1578-4044-8426-ddcb4a4a8192 Certificate serial: 010D0C9F4328584B3C51AC7DA6F9305C05EBB400 Authority key identifier: 89:C7:5F:3F:CE:A7:5D:0D:C3:10:F9:23:2C:65:92:27:0C:63:1D:62 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/5339e6b4-20a4-3e12-b267-e7013b1ce0d7.roa Signing time: Thu 18 Sep 2025 13:00:41 +0000 ROA not before: Thu 18 Sep 2025 13:00:41 +0000 ROA not after: Wed 17 Dec 2025 14:00:41 +0000 asID: 64200 IP address blocks: 67.21.34.0/23 maxlen: 24 192.154.192.0/21 maxlen: 24 192.154.208.0/22 maxlen: 24 192.154.212.0/24 maxlen: 24 192.154.215.0/24 maxlen: 24 192.154.216.0/21 maxlen: 24 192.154.232.0/21 maxlen: 24 192.154.240.0/24 maxlen: 24 192.154.242.0/23 maxlen: 24 192.154.244.0/22 maxlen: 24 192.154.249.0/24 maxlen: 24 192.154.251.0/24 maxlen: 24 192.154.252.0/24 maxlen: 24 199.188.88.0/21 maxlen: 24 2604:8180::/31 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/8583e379-1578-4044-8426-ddcb4a4a8192.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/8583e379-1578-4044-8426-ddcb4a4a8192.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:3c:51:ac:7d:a6:f9:30:5c:05:eb:b4:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8583e379-1578-4044-8426-ddcb4a4a8192 Validity Not Before: Sep 18 13:00:41 2025 GMT Not After : Dec 17 14:00:41 2025 GMT Subject: CN=de7ff5d4-0db1-4076-a534-efeea6799270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:55:4c:0e:38:c4:f9:26:19:a3:db:43:75:af: f8:69:85:e5:0d:2b:35:c7:49:be:5e:57:dd:38:f3: 64:db:8b:a5:69:5e:ee:67:3a:35:c4:df:53:82:26: a3:46:7e:69:c8:0d:f0:66:cc:fa:65:ae:d0:ba:18: 3e:0d:3a:04:71:63:01:c7:60:f1:01:db:d7:0d:3e: 29:b4:64:a7:50:95:9c:63:1c:6a:6d:9d:0b:6a:42: 82:f8:37:9b:09:9a:ee:14:76:cd:03:09:53:cb:bb: ef:8c:40:ca:b2:54:da:fe:b1:8f:c4:cc:eb:f3:f7: 49:f2:6f:fb:c9:1a:9b:ee:66:95:88:72:d4:8a:8f: c8:fe:d9:b5:ce:5e:20:82:14:18:ca:3b:97:47:0f: d4:93:fe:a6:40:fb:2a:4d:0d:de:a1:07:0f:20:63: 00:1d:fb:86:cd:14:6f:e8:6a:a6:d4:8a:ec:19:77: 8e:43:ac:5a:c9:39:0b:92:f3:04:af:c4:0e:30:15: 0d:bb:6f:fc:35:d4:3f:24:80:82:6e:92:83:c9:6b: 51:24:85:f2:b6:3c:0f:a5:30:ea:cc:a2:cb:45:55: 55:eb:a0:58:cc:13:12:22:ca:95:c4:b4:e9:5e:62: f9:78:6a:a5:8e:7f:19:27:01:b7:31:13:79:8f:82: 52:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:28:9D:E0:2B:19:3A:42:1A:AC:AE:89:33:AC:FD:4B:DF:D4:9B:D7 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/5339e6b4-20a4-3e12-b267-e7013b1ce0d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/8583e379-1578-4044-8426-ddcb4a4a8192.crl X509v3 Authority Key Identifier: keyid:89:C7:5F:3F:CE:A7:5D:0D:C3:10:F9:23:2C:65:92:27:0C:63:1D:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192.cer sbgp-ipAddrBlock: critical IPv4: 67.21.34.0/23 192.154.192.0/21 192.154.208.0-192.154.212.255 192.154.215.0-192.154.223.255 192.154.232.0-192.154.240.255 192.154.242.0-192.154.247.255 192.154.249.0/24 192.154.251.0-192.154.252.255 199.188.88.0/21 IPv6: 2604:8180::/31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption b5:78:09:9c:35:4d:0e:34:69:7f:45:d4:ae:3e:79:e3:7e:8d: 59:eb:56:ea:56:54:a7:8b:a4:19:0b:f3:e0:ad:df:b0:e8:6f: 4f:84:aa:37:11:a7:b2:cd:cd:51:b9:de:63:c0:5a:af:dd:e4: 21:48:6b:68:cb:13:a8:97:f4:b9:f7:0f:63:22:d0:1e:28:64: c9:7a:8f:0a:c1:16:20:0e:7e:4c:05:7a:6b:be:17:83:05:a8: c1:01:94:5c:90:db:41:e9:5b:63:ff:a2:34:ef:14:7e:42:a8: 7e:0c:37:d4:dc:8a:c0:7f:49:89:05:b2:57:27:01:e5:42:da: 0a:4f:e6:93:63:10:4e:0c:a9:e3:9f:e8:c8:3c:af:ed:e9:f9: 88:e9:bb:0d:04:af:89:04:07:a8:0e:cb:dc:ad:d0:f7:34:a5: 8c:35:60:9b:a9:37:c7:ea:28:f1:ea:4d:da:92:e7:e9:14:d3: ac:13:ca:41:4d:d7:d2:94:62:3c:a0:2b:28:e6:e7:d5:5d:ae: 06:d1:06:42:96:ac:f6:4f:22:48:95:e8:a9:9d:be:8a:5f:55: 9a:d8:dd:62:41:4e:91:cc:f8:c4:1e:27:03:74:94:2d:02:6f: 95:08:95:84:5c:6d:45:08:00:09:25:b1:fc:49:e4:a5:26:7d: 63:ab:af:68 -----BEGIN CERTIFICATE----- MIIGqzCCBZOgAwIBAgIUAQ0Mn0MoWEs8Uax9pvkwXAXrtAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkODU4M2UzNzktMTU3OC00MDQ0LTg0MjYtZGRjYjRhNGE4 MTkyMB4XDTI1MDkxODEzMDA0MVoXDTI1MTIxNzE0MDA0MVowLzEtMCsGA1UEAxMk ZGU3ZmY1ZDQtMGRiMS00MDc2LWE1MzQtZWZlZWE2Nzk5MjcwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVVMDjjE+SYZo9tDda/4aYXlDSs1x0m+Xlfd OPNk24ulaV7uZzo1xN9TgiajRn5pyA3wZsz6Za7Quhg+DToEcWMBx2DxAdvXDT4p tGSnUJWcYxxqbZ0LakKC+DebCZruFHbNAwlTy7vvjEDKslTa/rGPxMzr8/dJ8m/7 yRqb7maViHLUio/I/tm1zl4gghQYyjuXRw/Uk/6mQPsqTQ3eoQcPIGMAHfuGzRRv 6Gqm1IrsGXeOQ6xayTkLkvMEr8QOMBUNu2/8NdQ/JICCbpKDyWtRJIXytjwPpTDq zKLLRVVV66BYzBMSIsqVxLTpXmL5eGqljn8ZJwG3MRN5j4JSbQIDAQABo4IDvTCC A7kwHQYDVR0OBBYEFJQoneArGTpCGqyuiTOs/Uvf1JvXMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS84NTgz ZTM3OS0xNTc4LTQwNDQtODQyNi1kZGNiNGE0YTgxOTIvNTMzOWU2YjQtMjBhNC0z ZTEyLWIyNjctZTcwMTNiMWNlMGQ3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvODU4M2UzNzktMTU3OC00MDQ0LTg0 MjYtZGRjYjRhNGE4MTkyLzg1ODNlMzc5LTE1NzgtNDA0NC04NDI2LWRkY2I0YTRh ODE5Mi5jcmwwHwYDVR0jBBgwFoAUicdfP86nXQ3DEPkjLGWSJwxjHWIwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS84NTgzZTM3OS0xNTc4LTQwNDQtODQyNi1kZGNi NGE0YTgxOTIuY2VyMIGGBggrBgEFBQcBBwEB/wR3MHUwZAQCAAEwXgMEAUMVIgME A8CawDAMAwQEwJrQAwQAwJrUMAwDBADAmtcDBAXAmsAwDAMEA8Ca6AMEAMCa8DAM AwQBwJryAwQDwJrwAwQAwJr5MAwDBADAmvsDBADAmvwDBAPHvFgwDQQCAAIwBwMF ASYEgYAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixo dHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkq hkiG9w0BAQsFAAOCAQEAtXgJnDVNDjRpf0XUrj55436NWetW6lZUp4ukGQvz4K3f sOhvT4SqNxGnss3NUbneY8Bar93kIUhraMsTqJf0ufcPYyLQHihkyXqPCsEWIA5+ TAV6a74XgwWowQGUXJDbQelbY/+iNO8UfkKofgw31NyKwH9JiQWyVycB5ULaCk/m k2MQTgyp45/oyDyv7en5iOm7DQSviQQHqA7L3K3Q9zSljDVgm6k3x+oo8epN2pLn 6RTTrBPKQU3X0pRiPKArKObn1V2uBtEGQpas9k8iSJXoqZ2+il9VmtjdYkFOkcz4 xB4nA3SULQJvlQiVhFxtRQgACSWx/EnkpSZ9Y6uvaA== -----END CERTIFICATE-----Generated at Mon Oct 20 15:06:23 2025 by rpki-client