$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/70af8ef2-4e52-368a-a50c-aa4fc74ac17e.roa File: 70af8ef2-4e52-368a-a50c-aa4fc74ac17e.roa (raw, json) Hash identifier: b+KCoxJCh7JvbuxMG5EI9I8IPCND7mCxIo2iiuAiy8A= Subject key identifier: FF:B1:2E:57:91:91:8C:A0:D4:86:0E:00:03:BB:C0:82:00:B8:D8:0B Certificate issuer: /CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Certificate serial: 010D0C9F4328584B6BC76764695CFFE0D55476A0 Authority key identifier: 86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/70af8ef2-4e52-368a-a50c-aa4fc74ac17e.roa Signing time: Sun 05 Oct 2025 13:00:40 +0000 ROA not before: Sun 05 Oct 2025 13:00:40 +0000 ROA not after: Sat 03 Jan 2026 14:00:40 +0000 asID: 20940 IP address blocks: 23.223.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:6b:c7:67:64:69:5c:ff:e0:d5:54:76:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Validity Not Before: Oct 5 13:00:40 2025 GMT Not After : Jan 3 14:00:40 2026 GMT Subject: CN=1a8b33c2-4611-4f55-891d-fcbcf203242a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:db:7a:06:cf:c7:81:9c:cf:e8:57:bb:ab:fe: f6:26:ca:a5:a4:a5:cc:f6:43:b5:18:24:15:9b:35: de:21:8a:39:d0:10:26:f6:2c:35:6a:0b:99:c9:40: 67:81:0b:33:52:a0:46:1d:97:40:38:3e:19:dd:c9: e1:c2:93:0c:2d:f4:2e:63:40:a5:31:c1:58:22:b8: 20:1d:01:76:21:17:07:15:51:fd:41:d4:7c:05:4a: ee:90:3d:37:85:16:e2:6b:1f:c6:a0:a9:c6:0e:de: 7c:53:8f:67:80:a5:89:8d:2a:34:4e:23:5b:2d:9e: 43:10:37:ff:c2:89:d3:59:60:05:86:80:b7:4a:32: ff:1b:af:25:37:01:a2:a4:e2:28:56:b2:49:dd:b8: f8:a2:46:c9:b4:54:fa:de:5e:06:4e:2f:06:7c:46: b3:7a:17:68:69:d7:14:e9:ba:18:ae:41:cd:1a:2b: 0c:1c:6c:0e:71:22:5a:da:40:0d:a3:33:08:6d:78: e2:0a:bf:de:3b:21:10:3c:49:0d:31:73:86:66:ec: 99:e9:d0:fb:92:b2:3c:3f:d3:4b:9b:a7:36:d9:8b: bc:13:44:a8:2e:33:9a:f6:3e:41:8e:17:57:97:f1: 6c:db:e9:e1:57:d6:07:3b:8e:6f:be:19:d2:c4:b2: f9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B1:2E:57:91:91:8C:A0:D4:86:0E:00:03:BB:C0:82:00:B8:D8:0B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/70af8ef2-4e52-368a-a50c-aa4fc74ac17e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl X509v3 Authority Key Identifier: keyid:86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer sbgp-ipAddrBlock: critical IPv4: 23.223.28.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 53:a3:48:c4:6d:59:a1:3b:1c:f6:f1:0e:4b:f8:e9:aa:79:2c: 89:21:26:ea:e0:74:22:b4:5e:2d:29:fb:4c:07:14:9c:de:6f: de:49:86:da:34:7e:d7:43:01:ca:b6:14:69:9a:f8:03:88:d8: ab:92:33:bc:85:20:34:fe:f8:91:c9:98:2b:04:6d:04:22:81: 45:0f:c7:d9:06:94:b7:d8:89:62:e9:22:5b:d1:0c:9c:ed:84: 04:cf:46:7f:91:ed:73:c4:3a:4a:79:d3:8b:56:42:e0:f3:57: fd:c3:97:23:88:ec:cd:b3:88:dd:55:87:d2:a1:6d:2d:49:dd: 53:a0:d2:cd:48:0f:2c:ed:a7:a6:c6:55:c7:b0:1c:e5:d8:01: 23:95:f9:89:be:d5:ab:4f:97:5e:cb:61:8c:a2:bb:72:0a:92: 24:47:b4:81:cc:c7:6e:b6:fe:66:32:bb:65:ba:6d:91:b7:c3: 2f:36:4f:e4:7f:c8:08:dc:b4:bc:0b:04:13:c8:26:c3:36:9a: 2e:7b:62:5e:93:22:54:78:13:4c:cd:ef:0e:55:b7:b4:81:51: df:99:39:78:45:a4:1c:bb:85:bd:9a:79:e5:19:a8:03:cf:66: 22:6d:01:05:54:c9:cb:f0:db:13:51:ec:33:01:9b:9d:56:b4: 52:87:09:66 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEtrx2dkaVz/4NVUdqAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWQ5YzllZjUtYjk2MC00MTJkLWFmNWUtMmRmMThjMjFm ODA5MB4XDTI1MTAwNTEzMDA0MFoXDTI2MDEwMzE0MDA0MFowLzEtMCsGA1UEAxMk MWE4YjMzYzItNDYxMS00ZjU1LTg5MWQtZmNiY2YyMDMyNDJhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9t6Bs/HgZzP6Fe7q/72JsqlpKXM9kO1GCQV mzXeIYo50BAm9iw1aguZyUBngQszUqBGHZdAOD4Z3cnhwpMMLfQuY0ClMcFYIrgg HQF2IRcHFVH9QdR8BUrukD03hRbiax/GoKnGDt58U49ngKWJjSo0TiNbLZ5DEDf/ wonTWWAFhoC3SjL/G68lNwGipOIoVrJJ3bj4okbJtFT63l4GTi8GfEazehdoadcU 6boYrkHNGisMHGwOcSJa2kANozMIbXjiCr/eOyEQPEkNMXOGZuyZ6dD7krI8P9NL m6c22Yu8E0SoLjOa9j5BjhdXl/Fs2+nhV9YHO45vvhnSxLL53wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFP+xLleRkYyg1IYOAAO7wIIAuNgLMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS81ZDlj OWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYxOGMyMWY4MDkvNzBhZjhlZjItNGU1Mi0z NjhhLWE1MGMtYWE0ZmM3NGFjMTdlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNWQ5YzllZjUtYjk2MC00MTJkLWFm NWUtMmRmMThjMjFmODA5LzVkOWM5ZWY1LWI5NjAtNDEyZC1hZjVlLTJkZjE4YzIx ZjgwOS5jcmwwHwYDVR0jBBgwFoAUhqQ31G26knrmjZ1q8zXGRprdF+0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS81ZDljOWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYx OGMyMWY4MDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF98cMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFOjSMRtWaE7HPbxDkv46ap5LIkhJurgdCK0Xi0p+0wHFJzeb95Jhto0 ftdDAcq2FGma+AOI2KuSM7yFIDT++JHJmCsEbQQigUUPx9kGlLfYiWLpIlvRDJzt hATPRn+R7XPEOkp504tWQuDzV/3DlyOI7M2ziN1Vh9KhbS1J3VOg0s1IDyztp6bG VcewHOXYASOV+Ym+1atPl17LYYyiu3IKkiRHtIHMx262/mYyu2W6bZG3wy82T+R/ yAjctLwLBBPIJsM2mi57Yl6TIlR4E0zN7w5Vt7SBUd+ZOXhFpBy7hb2aeeUZqAPP ZiJtAQVUycvw2xNR7DMBm51WtFKHCWY= -----END CERTIFICATE-----Generated at Mon Oct 20 00:27:31 2025 by rpki-client