$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/63d7507e-771b-31b7-9ea9-6f50c64d9d2f.roa File: 63d7507e-771b-31b7-9ea9-6f50c64d9d2f.roa (raw, json) Hash identifier: qVlyMYX4x6PN21RsdiCZdJjQrhnv3K+O0C6L5RgtPZE= Subject key identifier: B3:99:C1:8C:2C:63:02:95:4B:66:B1:17:29:F5:87:76:10:18:ED:52 Certificate issuer: /CN=bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8 Certificate serial: 010D0C9F4328584A5765C847C2F0B74BAA95BC20 Authority key identifier: 47:99:F5:27:E4:1F:04:74:5A:3F:3B:D7:81:C9:80:18:59:E9:75:66 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/63d7507e-771b-31b7-9ea9-6f50c64d9d2f.roa Signing time: Sat 28 Jun 2025 13:01:02 +0000 ROA not before: Sat 28 Jun 2025 13:01:02 +0000 ROA not after: Fri 26 Sep 2025 13:01:02 +0000 asID: 19935 IP address blocks: 159.112.233.0/24 maxlen: 24 173.224.240.0/20 maxlen: 20 173.224.240.0/24 maxlen: 24 173.224.241.0/24 maxlen: 24 173.224.242.0/24 maxlen: 24 173.224.243.0/24 maxlen: 24 173.224.244.0/24 maxlen: 24 173.224.245.0/24 maxlen: 24 173.224.246.0/24 maxlen: 24 173.224.247.0/24 maxlen: 24 173.224.248.0/24 maxlen: 24 173.224.249.0/24 maxlen: 24 173.224.250.0/24 maxlen: 24 173.224.251.0/24 maxlen: 24 173.224.252.0/24 maxlen: 24 173.224.253.0/24 maxlen: 24 173.224.254.0/24 maxlen: 24 173.224.255.0/24 maxlen: 24 205.178.191.0/24 maxlen: 24 208.52.144.0/24 maxlen: 24 208.103.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:57:65:c8:47:c2:f0:b7:4b:aa:95:bc:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8 Validity Not Before: Jun 28 13:01:02 2025 GMT Not After : Sep 26 13:01:02 2025 GMT Subject: CN=855a0e38-846a-42d8-9867-990acb1cc985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:80:cd:52:7e:7c:0e:f6:d9:52:47:61:d2: 84:0c:b0:8d:37:92:77:ad:e5:23:7a:29:53:e1:aa: d4:ef:13:24:a0:fd:5b:be:1f:3a:0f:74:59:b4:2d: d1:ce:de:99:37:80:9a:09:a4:27:66:9e:9b:46:93: e5:6a:d3:86:c7:7e:a9:f7:6a:95:cf:fd:3f:79:5d: ed:cb:d7:d0:a8:4e:2d:5f:be:91:15:9d:03:a8:26: 7f:a3:74:f8:69:73:5f:26:06:4c:1f:9d:45:28:ab: e0:26:c2:6e:5c:94:cd:88:c5:55:f7:1b:dc:ee:1a: bf:80:07:93:5d:52:9c:51:20:6f:ae:8d:2e:26:57: 35:02:a0:82:4c:12:13:55:e1:05:a0:80:65:ee:a0: 0f:5c:b8:29:a9:3c:0b:11:4f:30:22:5d:cd:00:3a: 44:fa:d3:5f:bf:f1:43:9a:dd:15:51:b0:2d:78:e4: 91:bd:50:3c:78:4f:ac:06:4a:1d:cd:d6:ca:f5:2d: af:4e:ae:f4:53:80:4b:e9:fe:69:d5:09:a7:82:06: 8b:7a:ca:0c:22:3a:ca:58:8e:47:cf:49:ea:8e:69: 06:60:f4:90:af:a6:db:f1:26:60:b8:2e:96:20:3f: 16:8f:f3:4e:27:20:21:40:51:ec:4e:1a:d0:ee:89: 13:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:99:C1:8C:2C:63:02:95:4B:66:B1:17:29:F5:87:76:10:18:ED:52 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/63d7507e-771b-31b7-9ea9-6f50c64d9d2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.crl X509v3 Authority Key Identifier: keyid:47:99:F5:27:E4:1F:04:74:5A:3F:3B:D7:81:C9:80:18:59:E9:75:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.cer sbgp-ipAddrBlock: critical IPv4: 159.112.233.0/24 173.224.240.0/20 205.178.191.0/24 208.52.144.0/24 208.103.184.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0f:c9:02:47:86:fe:25:2f:08:0a:13:59:c9:a6:9a:dd:30:5a: eb:a8:8e:19:4d:d1:c8:e7:15:51:57:88:c2:08:bb:27:b8:d5: 63:4a:ae:c6:9f:60:a6:24:2a:78:51:6b:aa:08:94:71:e9:78: 92:ed:ae:29:16:b9:8a:d3:5f:1a:b3:43:98:46:18:05:88:b0: b3:a5:52:8d:fc:75:32:86:a1:9e:a4:25:a2:42:d8:4a:95:56: b0:09:ee:1b:b7:5c:e5:ee:f1:2b:f1:c5:33:40:39:d7:a2:72: 32:32:b3:37:2f:69:a1:1e:53:f4:04:fc:5a:5e:ee:8a:67:ce: d1:b4:8c:61:be:e4:9b:f2:f1:90:08:ef:83:fe:1f:41:30:fc: be:6b:4f:e1:08:3f:ad:0d:3f:5c:e5:97:34:c4:74:fd:07:c5: 06:f1:48:0c:bd:4c:db:1f:56:c5:79:d1:7d:89:ee:82:87:ab: ce:21:c1:69:a2:94:f4:34:0e:e9:77:5d:88:26:9f:4d:d8:3f: c3:cd:3a:92:e3:0d:3e:fb:7c:9a:1c:ca:83:af:16:97:96:37: f4:5d:75:33:eb:8f:78:27:36:02:0a:a4:e9:a5:db:fd:c5:25: 15:23:f1:36:b4:3a:a2:72:1a:c0:dc:94:87:20:2e:f5:6e:cf: 0d:f9:b5:d7 -----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgIUAQ0Mn0MoWEpXZchHwvC3S6qVvCAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmQ4YjY4NjMtZWY4MS00ZGU0LWJjOWUtYWU5ZDFkMmUx MWU4MB4XDTI1MDYyODEzMDEwMloXDTI1MDkyNjEzMDEwMlowLzEtMCsGA1UEAxMk ODU1YTBlMzgtODQ2YS00MmQ4LTk4NjctOTkwYWNiMWNjOTg1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9iAzVJ+fA722VJHYdKEDLCNN5J3reUjeilT 4arU7xMkoP1bvh86D3RZtC3Rzt6ZN4CaCaQnZp6bRpPlatOGx36p92qVz/0/eV3t y9fQqE4tX76RFZ0DqCZ/o3T4aXNfJgZMH51FKKvgJsJuXJTNiMVV9xvc7hq/gAeT XVKcUSBvro0uJlc1AqCCTBITVeEFoIBl7qAPXLgpqTwLEU8wIl3NADpE+tNfv/FD mt0VUbAteOSRvVA8eE+sBkodzdbK9S2vTq70U4BL6f5p1QmnggaLesoMIjrKWI5H z0nqjmkGYPSQr6bb8SZguC6WID8Wj/NOJyAhQFHsThrQ7okT2wIDAQABo4IDbTCC A2kwHQYDVR0OBBYEFLOZwYwsYwKVS2axFyn1h3YQGO1SMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iZDhi Njg2My1lZjgxLTRkZTQtYmM5ZS1hZTlkMWQyZTExZTgvNjNkNzUwN2UtNzcxYi0z MWI3LTllYTktNmY1MGM2NGQ5ZDJmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYmQ4YjY4NjMtZWY4MS00ZGU0LWJj OWUtYWU5ZDFkMmUxMWU4L2JkOGI2ODYzLWVmODEtNGRlNC1iYzllLWFlOWQxZDJl MTFlOC5jcmwwHwYDVR0jBBgwFoAUR5n1J+QfBHRaPzvXgcmAGFnpdWYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9iZDhiNjg2My1lZjgxLTRkZTQtYmM5ZS1hZTlk MWQyZTExZTguY2VyMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAn3DpAwQE reDwAwQAzbK/AwQA0DSQAwQA0Ge4MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIw OjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jw a2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBAA/JAkeG/iUvCAoTWcmmmt0w WuuojhlN0cjnFVFXiMIIuye41WNKrsafYKYkKnhRa6oIlHHpeJLtrikWuYrTXxqz Q5hGGAWIsLOlUo38dTKGoZ6kJaJC2EqVVrAJ7hu3XOXu8SvxxTNAOdeicjIyszcv aaEeU/QE/Fpe7opnztG0jGG+5Jvy8ZAI74P+H0Ew/L5rT+EIP60NP1zllzTEdP0H xQbxSAy9TNsfVsV50X2J7oKHq84hwWmilPQ0Dul3XYgmn03YP8PNOpLjDT77fJoc yoOvFpeWN/RddTPrj3gnNgIKpOml2/3FJRUj8Ta0OqJyGsDclIcgLvVuzw35tdc= -----END CERTIFICATE-----Generated at Mon Jun 30 10:41:12 2025 by rpki-client