$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa File: 40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa (raw, json) Hash identifier: X135nMEQHObsPgC0LDjawgsOchoLs9NHvUoMmsw5QLM= Subject key identifier: 74:63:8E:98:16:A9:C9:18:A7:99:7E:B6:C6:1B:3E:80:42:58:31:B2 Certificate issuer: /CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Certificate serial: 010D0C9F4328584B6BC76DD35939EC00EC239A00 Authority key identifier: 86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa Signing time: Sun 05 Oct 2025 13:00:40 +0000 ROA not before: Sun 05 Oct 2025 13:00:40 +0000 ROA not after: Sat 03 Jan 2026 14:00:40 +0000 asID: 20940 IP address blocks: 23.221.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:6b:c7:6d:d3:59:39:ec:00:ec:23:9a:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Validity Not Before: Oct 5 13:00:40 2025 GMT Not After : Jan 3 14:00:40 2026 GMT Subject: CN=128d155f-11d6-40cf-a648-b3504c25d294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:e2:f8:80:8f:6e:39:67:37:97:86:04:63:eb: 4e:11:3b:8b:c0:7a:97:1f:17:2f:99:5a:79:82:4b: 44:6a:8d:81:dd:54:7f:66:4d:5c:c7:36:46:2f:79: 9e:01:a4:5e:a4:44:86:bf:32:5e:99:20:75:e6:78: 4a:0b:5a:a6:93:b9:3a:d5:14:02:37:d9:36:06:33: 98:1b:80:83:88:f9:8e:22:b6:a5:0c:08:58:84:ff: 54:12:52:fa:41:7f:b0:79:ff:e9:b2:41:bb:5f:3a: 48:6e:9e:5d:1b:26:36:9b:34:ab:de:d0:c5:e1:76: 9f:85:de:58:18:3a:53:e9:9e:a9:cd:bf:0b:10:36: 19:54:e1:9d:d7:8b:fd:90:db:00:60:40:19:08:b7: 33:82:92:51:64:17:dd:46:46:ab:66:36:d8:07:85: 4f:b0:54:ab:07:d2:5d:aa:e6:50:45:1d:c8:ea:1e: 3f:32:e7:af:94:59:61:ea:27:f7:45:4e:f4:b3:e7: 5d:0c:94:f4:71:cf:d7:3e:33:cd:cf:f4:e4:b6:6b: db:9e:a3:57:36:b4:10:46:2a:19:c1:6e:dd:50:00: 40:0c:b0:ab:19:80:08:2f:a6:0f:da:ea:be:43:15: 0c:cb:c0:45:6e:4f:3f:ea:bf:9a:e4:81:b5:93:84: 6b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:63:8E:98:16:A9:C9:18:A7:99:7E:B6:C6:1B:3E:80:42:58:31:B2 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl X509v3 Authority Key Identifier: keyid:86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer sbgp-ipAddrBlock: critical IPv4: 23.221.25.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 29:e6:c0:f5:d2:d5:6e:a5:5f:46:ae:4a:6e:9b:ff:b5:e7:1c: 7d:6f:c8:59:cf:81:14:a3:87:9c:af:a7:99:56:74:fd:3c:bd: 9f:1a:52:c0:b7:29:06:1d:36:f0:01:5b:14:f8:0d:0d:c6:67: d2:80:5e:f4:1f:51:19:00:e8:03:d1:77:45:57:0f:b9:1e:d0: 1c:70:96:c3:14:a1:8c:35:81:79:b5:70:ec:d5:6b:e3:9b:02: 07:5d:72:71:54:83:ad:0c:ae:7f:5b:34:14:f9:17:b8:cd:00: 5c:35:b8:80:2a:84:42:c7:76:66:56:60:73:49:a6:9e:8b:51: 7f:be:2a:95:e8:58:9e:0f:d4:7a:dc:3d:a8:fd:ab:b4:bc:61: 4e:47:41:ee:4b:07:00:b6:c9:b4:9b:f4:b2:f5:3c:02:bb:85: e3:9c:6b:3a:72:6e:93:d6:ca:91:bc:01:61:ac:6c:88:a5:86: f4:d9:64:42:d2:6b:9b:b3:db:40:b4:11:1d:22:98:32:dd:1b: ec:3c:d8:df:c9:2f:27:fb:25:70:2d:dd:50:e4:73:ce:1b:83: 33:07:27:14:11:76:6b:80:44:5e:fe:41:b2:c1:83:71:36:fd: e4:7a:d0:ec:f2:66:42:f6:69:bf:b1:00:a3:08:8c:04:d1:01: bc:c2:f2:f0 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEtrx23TWTnsAOwjmgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWQ5YzllZjUtYjk2MC00MTJkLWFmNWUtMmRmMThjMjFm ODA5MB4XDTI1MTAwNTEzMDA0MFoXDTI2MDEwMzE0MDA0MFowLzEtMCsGA1UEAxMk MTI4ZDE1NWYtMTFkNi00MGNmLWE2NDgtYjM1MDRjMjVkMjk0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+L4gI9uOWc3l4YEY+tOETuLwHqXHxcvmVp5 gktEao2B3VR/Zk1cxzZGL3meAaRepESGvzJemSB15nhKC1qmk7k61RQCN9k2BjOY G4CDiPmOIralDAhYhP9UElL6QX+wef/pskG7XzpIbp5dGyY2mzSr3tDF4Xafhd5Y GDpT6Z6pzb8LEDYZVOGd14v9kNsAYEAZCLczgpJRZBfdRkarZjbYB4VPsFSrB9Jd quZQRR3I6h4/MuevlFlh6if3RU70s+ddDJT0cc/XPjPNz/TktmvbnqNXNrQQRioZ wW7dUABADLCrGYAIL6YP2uq+QxUMy8BFbk8/6r+a5IG1k4RroQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHRjjpgWqckYp5l+tsYbPoBCWDGyMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS81ZDlj OWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYxOGMyMWY4MDkvNDBhMzg5ZmYtYjMwMy0z ZGI5LThmZjctODAyNzZhNmNmNmViLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNWQ5YzllZjUtYjk2MC00MTJkLWFm NWUtMmRmMThjMjFmODA5LzVkOWM5ZWY1LWI5NjAtNDEyZC1hZjVlLTJkZjE4YzIx ZjgwOS5jcmwwHwYDVR0jBBgwFoAUhqQ31G26knrmjZ1q8zXGRprdF+0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS81ZDljOWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYx OGMyMWY4MDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF90ZMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACnmwPXS1W6lX0auSm6b/7XnHH1vyFnPgRSjh5yvp5lWdP08vZ8aUsC3 KQYdNvABWxT4DQ3GZ9KAXvQfURkA6APRd0VXD7ke0BxwlsMUoYw1gXm1cOzVa+Ob AgddcnFUg60Mrn9bNBT5F7jNAFw1uIAqhELHdmZWYHNJpp6LUX++KpXoWJ4P1Hrc Paj9q7S8YU5HQe5LBwC2ybSb9LL1PAK7heOcazpybpPWypG8AWGsbIilhvTZZELS a5uz20C0ER0imDLdG+w82N/JLyf7JXAt3VDkc84bgzMHJxQRdmuARF7+QbLBg3E2 /eR60OzyZkL2ab+xAKMIjATRAbzC8vA= -----END CERTIFICATE-----Generated at Mon Oct 20 00:27:19 2025 by rpki-client