$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa File: d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa (raw, json) Hash identifier: PiOK7pc38oi0cjia0H9NVLtdfxNz6Tcg0FMS3ubs+q8= Subject key identifier: 61:F5:D7:1A:10:D0:6B:7C:CA:E2:87:9E:66:2D:4A:BC:A4:D9:73:21 Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F4328584B821CD83D85DDAC01232FBF00 Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa Signing time: Mon 13 Oct 2025 13:00:36 +0000 ROA not before: Mon 13 Oct 2025 13:00:36 +0000 ROA not after: Sun 11 Jan 2026 14:00:36 +0000 asID: 46687 IP address blocks: 173.44.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:82:1c:d8:3d:85:dd:ac:01:23:2f:bf:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: Oct 13 13:00:36 2025 GMT Not After : Jan 11 14:00:36 2026 GMT Subject: CN=f2c7e1a2-479e-4428-9098-18ec435dbce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ec:be:ce:db:40:15:61:ab:e9:fa:82:83:ec: f1:8b:8f:3d:96:b3:31:c2:69:6a:f2:82:89:5a:d0: 23:77:0b:98:d0:2c:c2:6f:30:94:88:09:49:11:d0: d1:98:6d:2c:66:7f:bb:37:78:b8:26:48:f5:e5:84: 16:3a:ba:89:35:72:b2:da:40:94:6c:5c:28:85:33: b6:de:80:80:f3:dd:02:2b:b8:e1:61:86:36:18:ab: d0:43:63:d5:67:10:df:57:eb:24:dd:9d:9a:ca:24: 38:a5:ec:9c:de:b9:e4:92:2a:20:66:a2:b6:87:d9: 11:5a:81:58:c7:3e:bf:56:99:7a:5f:83:d2:0b:ee: ec:f3:df:27:c9:e3:ec:9f:9e:51:aa:26:4f:cc:37: ae:93:d3:62:8a:09:19:45:9c:06:a4:64:03:a0:16: 46:03:87:09:fc:53:18:6f:c1:7f:8e:e5:4f:20:77: ff:20:e1:6a:e8:4b:7f:f0:ee:34:2b:83:42:27:ac: 6a:85:c4:19:c6:82:f0:91:fa:53:13:cd:fa:c0:e2: e8:a3:f3:53:f0:c8:42:3d:60:91:9a:0f:f4:19:12: 0e:04:9f:28:a5:5c:b6:59:cd:c4:e5:6f:a6:5f:0d: c3:28:87:7e:2e:12:cf:b2:ff:6c:90:58:b0:90:9a: 0f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F5:D7:1A:10:D0:6B:7C:CA:E2:87:9E:66:2D:4A:BC:A4:D9:73:21 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 173.44.116.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 70:b7:0a:d6:fc:da:60:3a:ea:d4:3c:81:d1:9e:90:af:ab:69: e1:80:dc:08:3d:fc:6c:9a:b7:59:0b:60:9e:20:85:b7:c9:9f: 30:0b:1a:80:3b:0f:76:5d:14:34:2c:1d:9d:5e:77:3a:bf:4d: 97:b5:a3:eb:62:88:48:ea:06:4f:81:22:b2:e5:03:c0:17:29: 13:84:e7:78:ae:b1:4c:a4:0f:55:06:1b:21:02:f8:34:bb:cd: 16:82:f6:9b:6f:81:cb:2b:b2:65:90:91:4c:25:60:ee:fc:09: 47:34:19:9b:1c:ef:53:9e:bb:13:c1:d4:e0:a4:fe:38:06:cf: 36:e4:50:a1:21:7f:84:c4:2d:ca:88:a8:f3:96:53:b2:cd:5b: c6:d4:53:c3:d3:94:d0:bb:fa:6b:b0:b9:d7:1c:d1:a4:b7:69: 50:94:f8:b5:e2:20:0e:e1:f9:df:9b:db:70:e6:57:82:b5:cc: 57:73:dd:6a:4c:0f:d1:2b:f0:5e:ee:1c:2a:66:8f:e7:fa:b4: 27:23:51:18:86:76:fa:87:dd:87:8d:34:01:a8:69:2a:fe:1e: 02:01:fd:46:45:93:5d:0a:fa:cf:d7:ed:ae:ed:da:b1:a0:30: a4:d9:df:77:aa:e0:08:88:ef:6e:fa:a5:72:2b:68:e9:19:6b: 5f:70:2c:c7 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEuCHNg9hd2sASMvvwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI1MTAxMzEzMDAzNloXDTI2MDExMTE0MDAzNlowLzEtMCsGA1UEAxMk ZjJjN2UxYTItNDc5ZS00NDI4LTkwOTgtMThlYzQzNWRiY2UwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOy+zttAFWGr6fqCg+zxi489lrMxwmlq8oKJ WtAjdwuY0CzCbzCUiAlJEdDRmG0sZn+7N3i4Jkj15YQWOrqJNXKy2kCUbFwohTO2 3oCA890CK7jhYYY2GKvQQ2PVZxDfV+sk3Z2ayiQ4peyc3rnkkiogZqK2h9kRWoFY xz6/Vpl6X4PSC+7s898nyePsn55RqiZPzDeuk9NiigkZRZwGpGQDoBZGA4cJ/FMY b8F/juVPIHf/IOFq6Et/8O40K4NCJ6xqhcQZxoLwkfpTE836wOLoo/NT8MhCPWCR mg/0GRIOBJ8opVy2Wc3E5W+mXw3DKId+LhLPsv9skFiwkJoP6QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFGH11xoQ0Gt8yuKHnmYtSryk2XMhMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvZDJjZGNkNzctYWUzMS0z NjliLTlmNjMtY2UyYTQ2Y2M4ZjYyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCrSx0MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHC3Ctb82mA66tQ8gdGekK+raeGA3Ag9/Gyat1kLYJ4ghbfJnzALGoA7 D3ZdFDQsHZ1edzq/TZe1o+tiiEjqBk+BIrLlA8AXKROE53iusUykD1UGGyEC+DS7 zRaC9ptvgcsrsmWQkUwlYO78CUc0GZsc71OeuxPB1OCk/jgGzzbkUKEhf4TELcqI qPOWU7LNW8bUU8PTlNC7+muwudcc0aS3aVCU+LXiIA7h+d+b23DmV4K1zFdz3WpM D9Er8F7uHCpmj+f6tCcjURiGdvqH3YeNNAGoaSr+HgIB/UZFk10K+s/X7a7t2rGg MKTZ33eq4AiI7276pXIraOkZa19wLMc= -----END CERTIFICATE-----Generated at Mon Oct 20 11:04:36 2025 by rpki-client