$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/433f671a-d520-39bf-bbc0-7a9f1b087044.roa File: 433f671a-d520-39bf-bbc0-7a9f1b087044.roa (raw, json) Hash identifier: p8xMHnucbX3fdrjBbIz4iQ3BQTO7vC5ghf7cHDd1z3c= Subject key identifier: CB:0E:C9:FC:60:B0:66:1F:3E:7F:A1:8A:DB:3E:3C:B2:A2:42:85:47 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F43285849E054ECFBE36ACB336977A600 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/433f671a-d520-39bf-bbc0-7a9f1b087044.roa Signing time: Fri 16 May 2025 21:26:01 +0000 ROA not before: Fri 16 May 2025 21:26:01 +0000 ROA not after: Thu 14 Aug 2025 21:26:01 +0000 asID: 8069 IP address blocks: 20.153.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:e0:54:ec:fb:e3:6a:cb:33:69:77:a6:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: May 16 21:26:01 2025 GMT Not After : Aug 14 21:26:01 2025 GMT Subject: CN=ab61a43e-5256-4901-a19b-a016104cb010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:b4:ec:48:0a:98:d5:4e:17:a9:e7:20:99:bf: ee:73:5a:4c:e1:8a:24:36:ff:5e:5b:c4:ac:73:23: 6b:d4:a9:1d:3d:3d:99:04:af:18:09:1d:42:8a:78: 51:d7:1b:d4:b9:3d:9f:74:77:f9:a2:11:28:7b:c0: aa:8e:52:54:57:f7:94:1e:5d:3d:4a:fb:5a:6f:29: 39:68:99:c7:6f:6f:3f:07:34:0a:39:72:70:15:90: 49:7d:55:46:ab:4a:ba:c7:db:3f:e8:a0:79:00:e1: 99:29:60:5f:0b:fa:b3:42:de:46:54:e9:40:aa:e9: cf:da:cc:2d:dd:4c:02:e1:5a:9f:bf:35:64:17:e3: b4:af:53:58:47:5a:70:85:92:2b:4f:53:e8:b9:cb: 2e:cf:43:d7:b2:89:6d:95:22:79:a3:24:be:57:58: e8:e7:50:e5:c5:31:fe:c9:b1:04:51:f3:01:ee:07: f8:2b:12:46:f3:ae:ed:9f:b2:ca:b1:03:09:f4:6f: 83:e9:75:0b:da:7f:19:d6:96:8f:97:c1:62:b8:04: f0:25:b6:2d:53:1a:69:c9:da:d7:ff:e7:b7:5b:ea: 0c:f6:10:d3:9a:41:81:ce:58:f0:08:7f:ec:65:c7: 59:a2:6b:35:bb:0c:5a:4e:07:35:8b:36:b2:93:d3: f7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:0E:C9:FC:60:B0:66:1F:3E:7F:A1:8A:DB:3E:3C:B2:A2:42:85:47 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/433f671a-d520-39bf-bbc0-7a9f1b087044.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.220.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2b:ac:b4:c3:59:8e:f3:6a:b9:c0:87:13:82:12:c7:ee:c3:8b: c4:0e:28:a4:32:c2:cc:0b:0e:5b:a1:54:76:84:7e:da:d8:85: 1f:9b:b8:eb:0d:f7:4e:2a:c6:53:4c:ae:ff:07:cd:21:15:33: a9:46:69:9d:d0:b2:4c:01:a9:04:6b:77:9f:89:0a:c7:8a:a2: 2d:97:dd:4c:fd:99:9b:15:f9:e5:85:98:9d:98:59:21:89:42: e5:98:cf:2c:22:b0:52:37:c7:54:00:9a:b5:8a:f2:21:1d:7d: 22:03:95:35:ff:c7:88:69:56:5b:fa:56:66:4c:bd:76:ff:90: 8d:bc:6a:00:82:74:30:4b:43:bc:83:2f:72:4e:10:35:a6:7e: 98:17:f4:bb:12:37:f1:01:f6:f5:f2:40:2d:b1:46:ad:e8:2f: 16:ea:16:2e:54:8a:29:2e:97:5f:fb:45:c9:72:5b:2b:7a:13: 9e:c9:7d:f1:9b:9b:a8:fd:92:3b:0b:6a:9e:33:72:e1:f1:df: 3b:3a:0c:1b:39:57:89:c1:6e:81:cb:67:65:da:5c:39:60:58: 95:a0:d0:57:d7:3a:c0:bf:68:20:a1:3c:72:4e:c3:a1:17:1f: 6e:86:87:e6:bc:b8:ff:14:ac:a7:74:9c:c1:7f:88:f8:f2:83: 7e:9f:36:af -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEngVOz742rLM2l3pgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDUxNjIxMjYwMVoXDTI1MDgxNDIxMjYwMVowLzEtMCsGA1UEAxMk YWI2MWE0M2UtNTI1Ni00OTAxLWExOWItYTAxNjEwNGNiMDEwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkLTsSAqY1U4Xqecgmb/uc1pM4YokNv9eW8Ss cyNr1KkdPT2ZBK8YCR1CinhR1xvUuT2fdHf5ohEoe8CqjlJUV/eUHl09Svtabyk5 aJnHb28/BzQKOXJwFZBJfVVGq0q6x9s/6KB5AOGZKWBfC/qzQt5GVOlAqunP2swt 3UwC4VqfvzVkF+O0r1NYR1pwhZIrT1Poucsuz0PXsoltlSJ5oyS+V1jo51DlxTH+ ybEEUfMB7gf4KxJG867tn7LKsQMJ9G+D6XUL2n8Z1paPl8FiuATwJbYtUxppydrX /+e3W+oM9hDTmkGBzljwCH/sZcdZoms1uwxaTgc1izayk9P3eQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFMsOyfxgsGYfPn+hits+PLKiQoVHMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvNDMzZjY3MWEtZDUyMC0z OWJmLWJiYzAtN2E5ZjFiMDg3MDQ0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBFJncMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACustMNZjvNqucCHE4ISx+7Di8QOKKQywswLDluhVHaEftrYhR+buOsN 904qxlNMrv8HzSEVM6lGaZ3QskwBqQRrd5+JCseKoi2X3Uz9mZsV+eWFmJ2YWSGJ QuWYzywisFI3x1QAmrWK8iEdfSIDlTX/x4hpVlv6VmZMvXb/kI28agCCdDBLQ7yD L3JOEDWmfpgX9LsSN/EB9vXyQC2xRq3oLxbqFi5Uiikul1/7RclyWyt6E57JffGb m6j9kjsLap4zcuHx3zs6DBs5V4nBboHLZ2XaXDlgWJWg0FfXOsC/aCChPHJOw6EX H26Gh+a8uP8UrKd0nMF/iPjyg36fNq8= -----END CERTIFICATE-----Generated at Mon Jun 30 23:40:17 2025 by rpki-client