$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/afceef4f-d98a-3a55-87af-6d0e1ed3d7c7.roa File: afceef4f-d98a-3a55-87af-6d0e1ed3d7c7.roa (raw, json) Hash identifier: OLEiBp/bxHYFt+0Zw6OYiqpekKwbtbIBbcLqKDEsbWM= Subject key identifier: DB:DF:CC:41:B7:8E:9F:DD:30:69:4F:12:8E:BC:0A:5F:89:17:8B:37 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584B48E1C7ECC76D3FF22FB60240 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/afceef4f-d98a-3a55-87af-6d0e1ed3d7c7.roa Signing time: Tue 23 Sep 2025 01:00:33 +0000 ROA not before: Tue 23 Sep 2025 01:00:33 +0000 ROA not after: Mon 22 Dec 2025 02:00:33 +0000 asID: 8069 IP address blocks: 20.33.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:48:e1:c7:ec:c7:6d:3f:f2:2f:b6:02:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Sep 23 01:00:33 2025 GMT Not After : Dec 22 02:00:33 2025 GMT Subject: CN=3967d4f2-0cb9-4874-af72-026f39bbcc35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:e7:11:01:84:e6:46:82:2f:3d:1c:ae:e7:25: 1b:02:52:f4:09:89:02:bf:f1:35:f1:16:c1:a5:63: b4:f7:c2:95:9f:16:1f:24:f2:e5:fe:b0:4e:58:8b: c8:c5:8b:ff:b5:10:df:7d:fe:4f:a3:b3:9a:0d:89: f5:21:8e:66:93:bf:ae:fb:83:6d:2d:09:85:20:29: 3e:07:f9:21:93:23:ea:b2:ce:ea:db:92:1d:6e:cd: af:97:26:21:60:cf:ee:35:40:f3:78:01:e4:02:91: 61:90:f7:04:e0:e2:27:16:af:ab:e2:3c:24:ba:22: fe:c4:0b:2b:39:3e:d5:da:b4:8f:3d:2a:a5:65:7c: b3:01:39:ec:8b:1b:5b:89:5a:c0:0f:22:ae:a5:3d: cf:fd:02:4f:a6:27:71:3f:a0:ab:12:33:b3:fc:de: 21:7a:dd:0d:c9:46:4a:fe:01:0a:50:8e:1d:19:a4: c2:37:a0:36:ba:5d:12:d7:f9:92:1a:d6:a5:9b:b2: ab:06:c5:7b:70:bf:f4:d7:e8:88:c6:2c:64:40:bc: 0e:8d:5a:d2:f5:bc:ca:26:c7:d5:14:d5:78:5a:47: 91:8b:44:42:7a:87:d5:4a:e4:e5:c3:ce:6f:ac:1f: df:70:54:e5:10:7e:96:84:25:6e:79:dc:9e:35:d6: d3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DF:CC:41:B7:8E:9F:DD:30:69:4F:12:8E:BC:0A:5F:89:17:8B:37 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/afceef4f-d98a-3a55-87af-6d0e1ed3d7c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.173.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 71:3d:64:31:cd:92:3e:1b:56:75:ad:4d:3e:19:d4:66:a9:16: 15:48:7b:88:fe:e9:91:92:5d:f4:49:a3:2a:5d:97:78:60:eb: 2d:d7:72:10:46:66:8a:25:cf:28:48:57:85:6c:1e:c8:f9:9f: 79:a0:11:84:83:1a:f9:a0:df:89:9c:4e:56:54:76:ce:33:33: 7f:22:e2:af:13:d9:4a:81:01:db:a6:7b:f9:b2:16:a1:4e:d8: 75:da:9d:11:c1:52:9c:00:d0:e0:c9:cd:c1:e8:7e:39:83:3a: d0:94:c9:34:a8:b9:5a:72:ed:4b:e5:0a:30:c6:6f:02:2a:8c: 6d:83:5a:eb:6e:ed:22:6e:b7:3e:43:55:67:ea:c0:3f:88:3a: 09:24:8e:72:ee:19:1a:b2:12:12:9f:d7:a8:d8:b0:68:a5:be: e3:d8:ac:8b:6f:11:80:f6:b3:1e:38:b7:d2:ba:d1:fc:a2:06: f1:ce:59:0e:cd:4e:f1:a9:88:32:e3:f4:a3:fc:bc:33:75:0e: 27:2a:2c:d2:48:fc:2c:c6:dd:8c:ce:82:47:78:2d:65:3a:3f: 7f:ef:d8:90:8c:7b:e6:e2:ed:f9:ee:49:ba:4d:35:6b:92:fb: 55:a6:6c:df:3f:bc:bc:6d:68:7b:d6:13:b3:75:82:46:b6:35: 72:a9:34:8d -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEtI4cfsx20/8i+2AkAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDkyMzAxMDAzM1oXDTI1MTIyMjAyMDAzM1owLzEtMCsGA1UEAxMk Mzk2N2Q0ZjItMGNiOS00ODc0LWFmNzItMDI2ZjM5YmJjYzM1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjecRAYTmRoIvPRyu5yUbAlL0CYkCv/E18RbB pWO098KVnxYfJPLl/rBOWIvIxYv/tRDfff5Po7OaDYn1IY5mk7+u+4NtLQmFICk+ B/khkyPqss7q25Idbs2vlyYhYM/uNUDzeAHkApFhkPcE4OInFq+r4jwkuiL+xAsr OT7V2rSPPSqlZXyzATnsixtbiVrADyKupT3P/QJPpidxP6CrEjOz/N4het0NyUZK /gEKUI4dGaTCN6A2ul0S1/mSGtalm7KrBsV7cL/01+iIxixkQLwOjVrS9bzKJsfV FNV4WkeRi0RCeofVSuTlw85vrB/fcFTlEH6WhCVuedyeNdbTNQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNvfzEG3jp/dMGlPEo68Cl+JF4s3MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvYWZjZWVmNGYtZDk4YS0z YTU1LTg3YWYtNmQwZTFlZDNkN2M3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCGtMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHE9ZDHNkj4bVnWtTT4Z1GapFhVIe4j+6ZGSXfRJoypdl3hg6y3XchBG ZoolzyhIV4VsHsj5n3mgEYSDGvmg34mcTlZUds4zM38i4q8T2UqBAdume/myFqFO 2HXanRHBUpwA0ODJzcHofjmDOtCUyTSouVpy7UvlCjDGbwIqjG2DWutu7SJutz5D VWfqwD+IOgkkjnLuGRqyEhKf16jYsGilvuPYrItvEYD2sx44t9K60fyiBvHOWQ7N TvGpiDLj9KP8vDN1DicqLNJI/CzG3YzOgkd4LWU6P3/v2JCMe+bi7fnuSbpNNWuS +1WmbN8/vLxtaHvWE7N1gka2NXKpNI0= -----END CERTIFICATE-----Generated at Mon Oct 20 22:42:12 2025 by rpki-client