$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa File: 686c395c-54ad-31c1-96df-b204d2205313.roa (raw, json) Hash identifier: puKmoend8mqok/nTVDoIou/LiU49vxph3C5PfgJcIpE= Subject key identifier: 6A:82:50:12:AC:0E:0C:28:E0:3A:74:34:4A:27:FC:5C:A9:EA:BA:5F Certificate issuer: /CN=dd3e6032-a6af-4662-8b07-848eeecc3995 Certificate serial: 010D0C9F4328584B583C8C23468354ABFC2CFB80 Authority key identifier: 67:05:BA:E6:0C:E6:EC:BA:69:B6:2B:17:EB:42:FF:2F:6F:4E:02:2D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa Signing time: Sun 28 Sep 2025 13:00:41 +0000 ROA not before: Sun 28 Sep 2025 13:00:41 +0000 ROA not after: Sat 27 Dec 2025 14:00:41 +0000 asID: 965 IP address blocks: 23.172.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:58:3c:8c:23:46:83:54:ab:fc:2c:fb:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd3e6032-a6af-4662-8b07-848eeecc3995 Validity Not Before: Sep 28 13:00:41 2025 GMT Not After : Dec 27 14:00:41 2025 GMT Subject: CN=feae47ef-a63f-4a0e-a4fe-62d575b95673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d9:8b:5d:69:73:e4:43:b6:62:be:1f:bc:01: 34:2d:26:fa:6a:8f:98:06:4d:a9:79:a8:27:da:18: 39:2b:43:54:31:d5:26:ee:bf:8c:27:d4:00:2e:d7: 48:55:74:9f:ea:74:27:ed:f4:69:d4:7d:27:13:a5: 5f:56:44:a4:92:15:36:bc:db:08:31:6d:1a:c9:e3: d3:a1:73:6a:97:e8:85:e3:92:96:d1:62:30:b6:4f: 39:03:bc:7d:45:ca:c1:03:dc:a5:3b:64:bf:53:ec: d8:51:bc:4e:32:1d:53:a8:3e:f4:98:07:0d:70:e2: c3:61:1a:b6:39:d7:e0:94:05:f2:4f:a6:16:5b:ce: 81:8c:73:05:37:2a:81:0e:17:74:65:6d:89:ad:88: 76:d9:5c:ce:f2:fd:02:54:43:8f:ce:df:59:c3:7b: d6:38:cd:d5:10:db:34:41:9c:28:8d:0d:94:0d:3f: 53:05:69:36:a6:4e:a0:62:6d:a1:ac:ed:23:e9:d4: 18:10:85:53:a7:48:fb:52:be:4f:a3:c7:e7:65:60: a6:50:35:63:3f:92:04:45:e8:69:21:6d:fc:0c:47: bc:74:d7:06:09:e5:8e:ee:5e:b1:71:8b:d0:b3:21: 42:19:b1:05:0d:13:1b:79:fe:b0:4b:3e:8a:48:69: 49:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:82:50:12:AC:0E:0C:28:E0:3A:74:34:4A:27:FC:5C:A9:EA:BA:5F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.crl X509v3 Authority Key Identifier: keyid:67:05:BA:E6:0C:E6:EC:BA:69:B6:2B:17:EB:42:FF:2F:6F:4E:02:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer sbgp-ipAddrBlock: critical IPv4: 23.172.136.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 76:43:1a:88:60:6f:63:61:58:91:5b:f1:55:53:37:e5:23:e2: 30:d0:29:fe:88:93:2b:a6:bf:2a:21:fe:08:e2:8e:04:43:8a: 0a:dc:9c:b1:32:6b:9a:6d:41:ae:a0:fe:75:c4:d8:8c:b5:40: a9:a4:95:ec:72:6a:cf:c4:c4:42:72:30:a2:7e:79:c5:a0:1a: d9:15:75:27:35:69:84:42:9f:9c:74:39:6d:5d:65:a3:b4:51: fd:1b:c7:8b:c3:cb:bf:69:36:5d:dc:d0:fd:5d:26:0e:10:a5: 99:30:e2:51:23:2d:93:73:3d:6b:14:c8:8c:96:6a:ce:6e:e6: 13:f3:45:28:23:12:b6:41:1b:68:7e:59:5d:c6:f9:e9:09:ac: 3c:44:64:1e:12:02:99:00:67:b5:1c:9b:c4:71:c3:3d:be:f1: 77:48:9d:ba:1a:05:54:b7:12:10:1c:28:02:39:0c:50:3b:2b: 5e:17:95:c5:df:dc:20:a2:d4:f7:d7:b2:0b:76:23:ba:8f:18: 1b:a1:d5:ea:11:04:5e:71:a6:a6:c4:0d:65:63:dc:0d:fa:41: 04:ac:e5:10:5d:06:08:61:24:5a:53:40:e9:97:0f:8b:e1:da: a0:83:dd:78:48:fa:70:99:d7:15:a0:1b:01:68:88:74:84:34: 85:e0:53:03 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEtYPIwjRoNUq/ws+4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGQzZTYwMzItYTZhZi00NjYyLThiMDctODQ4ZWVlY2Mz OTk1MB4XDTI1MDkyODEzMDA0MVoXDTI1MTIyNzE0MDA0MVowLzEtMCsGA1UEAxMk ZmVhZTQ3ZWYtYTYzZi00YTBlLWE0ZmUtNjJkNTc1Yjk1NjczMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk9mLXWlz5EO2Yr4fvAE0LSb6ao+YBk2peagn 2hg5K0NUMdUm7r+MJ9QALtdIVXSf6nQn7fRp1H0nE6VfVkSkkhU2vNsIMW0ayePT oXNql+iF45KW0WIwtk85A7x9RcrBA9ylO2S/U+zYUbxOMh1TqD70mAcNcOLDYRq2 OdfglAXyT6YWW86BjHMFNyqBDhd0ZW2JrYh22VzO8v0CVEOPzt9Zw3vWOM3VENs0 QZwojQ2UDT9TBWk2pk6gYm2hrO0j6dQYEIVTp0j7Ur5Po8fnZWCmUDVjP5IERehp IW38DEe8dNcGCeWO7l6xcYvQsyFCGbEFDRMbef6wSz6KSGlJ6wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFGqCUBKsDgwo4Dp0NEon/Fyp6rpfMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9kZDNl NjAzMi1hNmFmLTQ2NjItOGIwNy04NDhlZWVjYzM5OTUvNjg2YzM5NWMtNTRhZC0z MWMxLTk2ZGYtYjIwNGQyMjA1MzEzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvZGQzZTYwMzItYTZhZi00NjYyLThi MDctODQ4ZWVlY2MzOTk1L2RkM2U2MDMyLWE2YWYtNDY2Mi04YjA3LTg0OGVlZWNj Mzk5NS5jcmwwHwYDVR0jBBgwFoAUZwW65gzm7LpptisX60L/L29OAi0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9kZDNlNjAzMi1hNmFmLTQ2NjItOGIwNy04NDhl ZWVjYzM5OTUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF6yIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHZDGohgb2NhWJFb8VVTN+Uj4jDQKf6Ikyumvyoh/gjijgRDigrcnLEy a5ptQa6g/nXE2Iy1QKmklexyas/ExEJyMKJ+ecWgGtkVdSc1aYRCn5x0OW1dZaO0 Uf0bx4vDy79pNl3c0P1dJg4QpZkw4lEjLZNzPWsUyIyWas5u5hPzRSgjErZBG2h+ WV3G+ekJrDxEZB4SApkAZ7Ucm8Rxwz2+8XdInboaBVS3EhAcKAI5DFA7K14XlcXf 3CCi1PfXsgt2I7qPGBuh1eoRBF5xpqbEDWVj3A36QQSs5RBdBghhJFpTQOmXD4vh 2qCD3XhI+nCZ1xWgGwFoiHSENIXgUwM= -----END CERTIFICATE-----Generated at Mon Oct 20 16:54:09 2025 by rpki-client