$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/582c9230-96ab-3e98-b9e4-388350b12133.roa File: 582c9230-96ab-3e98-b9e4-388350b12133.roa (raw, json) Hash identifier: WTlgok/KumLGwx/OMs9ktTmo0uTPAbtCfAohx2Qj6c0= Subject key identifier: 3B:AB:99:BA:7F:4D:1D:C0:57:03:5A:3A:E5:C3:FD:45:42:FF:D3:54 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584AC2E120E064506505D472CB80 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/582c9230-96ab-3e98-b9e4-388350b12133.roa Signing time: Wed 06 Aug 2025 01:00:33 +0000 ROA not before: Wed 06 Aug 2025 01:00:33 +0000 ROA not after: Tue 04 Nov 2025 02:00:33 +0000 asID: 8069 IP address blocks: 20.153.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:c2:e1:20:e0:64:50:65:05:d4:72:cb:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Aug 6 01:00:33 2025 GMT Not After : Nov 4 02:00:33 2025 GMT Subject: CN=de433d31-d09c-4b91-b994-c9e4bc015a8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c4:e4:2c:b5:c2:a5:c6:db:69:3f:52:17:c7: f9:e0:7d:9b:2f:de:a3:00:4d:ab:a2:88:01:be:d5: 84:9b:09:db:55:36:da:21:d2:38:a3:19:73:5f:4a: ba:37:3b:c2:7c:ac:53:d5:c1:88:72:62:30:16:44: 36:ef:4f:5b:c0:87:f3:ac:bf:50:48:eb:45:c4:84: a4:45:06:d7:cc:d5:a5:3b:8e:1e:68:ae:12:33:db: c5:24:09:47:b3:06:00:b3:00:dc:bb:15:8d:b1:2f: d1:a8:5f:32:ad:25:d1:f3:96:71:13:f1:59:e0:3e: 91:fc:aa:20:e3:e3:5b:d2:2f:8c:be:fa:37:7e:11: ef:5e:57:5e:ad:64:7a:af:c4:ae:7d:12:97:89:e6: cb:dc:b0:21:8a:f2:bb:cd:7c:cf:77:42:6c:28:11: 3b:1a:8f:7d:25:7c:06:ff:88:06:82:76:cc:12:49: 11:f5:35:e0:77:20:97:30:65:e0:2f:c7:ab:5b:fd: 68:74:c2:3e:6c:31:1c:42:e7:08:cc:98:1f:a2:fc: 98:66:b9:cc:b2:c8:a9:0b:67:b7:5a:c8:ea:07:54: 47:f8:ff:03:97:32:55:0e:de:95:f2:6c:45:01:9c: 1d:1e:3a:e4:cd:57:cc:20:93:ba:b9:8d:38:c9:16: 45:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AB:99:BA:7F:4D:1D:C0:57:03:5A:3A:E5:C3:FD:45:42:FF:D3:54 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/582c9230-96ab-3e98-b9e4-388350b12133.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.204.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 5b:72:f0:7a:60:e8:0a:f5:b3:c4:b2:2e:4e:5c:02:36:68:65: f6:28:56:55:d2:dd:98:a8:cd:83:64:27:46:23:33:65:6e:1d: 99:30:a4:37:6b:b4:a7:18:c3:61:cd:24:43:87:6d:aa:c1:5c: b5:ed:88:df:80:b9:05:f2:9b:9e:2e:e8:d8:cb:46:ae:c6:3e: f8:86:c3:ac:37:db:9f:ba:28:92:14:1e:a8:71:8d:dc:8e:06: 06:3c:91:b8:82:41:86:2a:ae:cb:58:bd:63:a3:ed:17:73:9e: 2c:97:8c:37:76:33:22:81:82:91:22:9a:5d:94:95:88:14:eb: 68:4e:3b:ee:58:d8:b1:42:8f:f5:26:9f:92:0e:47:e3:6c:da: 63:20:54:7e:0f:e5:2f:4c:6e:97:06:a4:b1:8b:4c:77:6e:f6: 4e:37:ef:a3:13:61:86:76:08:c4:03:20:41:3e:60:19:1c:3a: 6b:83:b7:ac:b3:94:68:bd:3f:d2:e2:f5:64:93:73:ab:42:f3: c6:0b:6c:1e:4c:6e:11:6f:4d:73:d1:85:d2:7d:3b:c2:4a:6e: 07:30:3b:20:a2:b4:91:f1:08:6d:f0:7a:5a:68:cf:5c:3a:b5: 19:8c:16:ba:dc:a9:64:9e:85:c0:93:1d:24:0e:6f:83:b4:da: 17:50:95:1b -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWErC4SDgZFBlBdRyy4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDgwNjAxMDAzM1oXDTI1MTEwNDAyMDAzM1owLzEtMCsGA1UEAxMk ZGU0MzNkMzEtZDA5Yy00YjkxLWI5OTQtYzllNGJjMDE1YThkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA58TkLLXCpcbbaT9SF8f54H2bL96jAE2roogB vtWEmwnbVTbaIdI4oxlzX0q6NzvCfKxT1cGIcmIwFkQ2709bwIfzrL9QSOtFxISk RQbXzNWlO44eaK4SM9vFJAlHswYAswDcuxWNsS/RqF8yrSXR85ZxE/FZ4D6R/Kog 4+Nb0i+Mvvo3fhHvXlderWR6r8SufRKXiebL3LAhivK7zXzPd0JsKBE7Go99JXwG /4gGgnbMEkkR9TXgdyCXMGXgL8erW/1odMI+bDEcQucIzJgfovyYZrnMssipC2e3 WsjqB1RH+P8DlzJVDt6V8mxFAZwdHjrkzVfMIJO6uY04yRZFqQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDurmbp/TR3AVwNaOuXD/UVC/9NUMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvNTgyYzkyMzAtOTZhYi0z ZTk4LWI5ZTQtMzg4MzUwYjEyMTMzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBFJnMMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFty8Hpg6Ar1s8SyLk5cAjZoZfYoVlXS3ZiozYNkJ0YjM2VuHZkwpDdr tKcYw2HNJEOHbarBXLXtiN+AuQXym54u6NjLRq7GPviGw6w325+6KJIUHqhxjdyO BgY8kbiCQYYqrstYvWOj7RdzniyXjDd2MyKBgpEiml2UlYgU62hOO+5Y2LFCj/Um n5IOR+Ns2mMgVH4P5S9MbpcGpLGLTHdu9k4376MTYYZ2CMQDIEE+YBkcOmuDt6yz lGi9P9Li9WSTc6tC88YLbB5MbhFvTXPRhdJ9O8JKbgcwOyCitJHxCG3welpoz1w6 tRmMFrrcqWSehcCTHSQOb4O02hdQlRs= -----END CERTIFICATE-----Generated at Sun Aug 24 08:44:34 2025 by rpki-client