$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf/bf403b95-86fc-3c84-8e25-dc624a7dd03f.roa File: bf403b95-86fc-3c84-8e25-dc624a7dd03f.roa (raw, json) Hash identifier: Y01KqRJuZMCn6Rf6+rggc96lMo71MW/qDK5C1VNYpLM= Subject key identifier: CD:79:7B:F4:BC:40:E2:30:12:81:25:F0:6A:33:91:AA:04:2E:B5:22 Certificate issuer: /CN=a53680e8-0892-429a-8170-4361c21829bf Certificate serial: 010D0C9F4328584B56D72DCDA23C0BDB59670400 Authority key identifier: 22:68:3C:11:76:B3:1C:0C:73:CF:28:15:36:8F:25:D0:C2:74:AE:CD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf/bf403b95-86fc-3c84-8e25-dc624a7dd03f.roa Signing time: Sun 28 Sep 2025 01:00:33 +0000 ROA not before: Sun 28 Sep 2025 01:00:33 +0000 ROA not after: Sat 27 Dec 2025 02:00:33 +0000 asID: 16509 IP address blocks: 68.64.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf/a53680e8-0892-429a-8170-4361c21829bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf/a53680e8-0892-429a-8170-4361c21829bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:56:d7:2d:cd:a2:3c:0b:db:59:67:04:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a53680e8-0892-429a-8170-4361c21829bf Validity Not Before: Sep 28 01:00:33 2025 GMT Not After : Dec 27 02:00:33 2025 GMT Subject: CN=b12bb3ee-6c5f-4191-a415-4bf16a4942c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:17:47:c5:4d:21:f5:02:8d:c3:3f:88:5f:81: ed:ba:ac:d8:6e:e7:f1:3e:1c:32:ec:1b:31:24:bf: d2:c7:13:85:63:84:1d:5d:84:ad:0a:2c:ea:22:87: 57:68:58:0d:bf:0e:0f:c4:1e:66:d2:fa:16:e6:d7: b2:ce:3b:f6:42:df:95:92:3b:9a:0c:13:83:fb:f4: 4f:52:f2:69:5c:4f:fb:ac:09:d6:17:78:5e:e0:33: d3:49:6a:2c:ee:b5:41:b6:50:18:7a:57:9b:d6:56: 8e:a4:19:c8:33:36:63:c3:82:5a:64:ba:db:bc:ad: 41:9d:6b:48:01:cf:41:c1:90:63:95:5d:55:e8:0e: a7:64:9e:61:05:44:83:a2:22:d3:87:41:0f:6a:88: ec:cf:5b:df:2e:c0:e1:d1:d5:50:81:da:c9:d1:9b: 40:9a:80:23:e8:8a:d7:b9:c2:e2:a6:6a:94:a1:62: f3:d4:63:a1:28:aa:c8:b1:22:33:48:d1:bb:cd:5c: fd:27:b1:8a:60:90:d0:6b:27:e9:ce:2d:54:0d:fe: c8:60:fc:71:c2:79:91:ad:fa:ec:f4:70:26:09:35: 6f:7b:7c:fd:7a:60:85:ae:51:ec:94:87:11:07:b3: 40:25:cf:05:40:7a:bb:84:48:b4:18:b0:0d:b2:68: db:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:79:7B:F4:BC:40:E2:30:12:81:25:F0:6A:33:91:AA:04:2E:B5:22 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf/bf403b95-86fc-3c84-8e25-dc624a7dd03f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf/a53680e8-0892-429a-8170-4361c21829bf.crl X509v3 Authority Key Identifier: keyid:22:68:3C:11:76:B3:1C:0C:73:CF:28:15:36:8F:25:D0:C2:74:AE:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a53680e8-0892-429a-8170-4361c21829bf.cer sbgp-ipAddrBlock: critical IPv4: 68.64.11.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption bd:86:ec:10:cb:81:65:1b:fd:54:df:ba:a7:1f:7d:0d:10:a4: 29:69:8e:1d:2a:40:07:6b:b5:7e:da:b5:4c:1f:b9:77:55:de: 88:4b:57:37:db:45:54:c9:de:34:9c:b2:38:c9:65:e1:06:a0: 45:c2:6a:c7:f9:9c:d8:ea:b2:d8:08:95:ee:5d:65:d7:de:0d: 87:ef:8d:fc:f9:a3:b0:31:93:1c:5e:a4:1d:2c:64:19:cd:a5: ab:6a:06:05:c5:50:df:cd:35:0f:e3:01:a3:19:2c:4e:4f:0a: f9:28:95:dd:7c:58:54:a1:54:5e:cf:00:d6:84:a7:11:3f:dc: 45:ef:ba:a2:83:54:ef:22:10:64:d0:91:d7:14:48:aa:73:9e: 20:1b:ed:d1:f6:30:f6:0c:40:2f:79:5a:73:ae:aa:ed:5a:32: f0:a4:2a:7a:fa:c9:cc:28:7a:04:7d:2e:50:63:c6:82:12:f1: 0c:a1:fb:33:f4:51:49:30:a3:50:93:8d:4e:28:78:23:a4:af: ac:b6:f5:d6:fb:04:f4:ad:40:50:bd:87:0a:af:be:da:5b:9d: 1a:96:50:a7:6c:d8:23:66:fa:37:5e:23:a7:b9:69:2b:c2:5f: 93:ee:2e:d0:bf:9c:31:25:50:90:9c:67:cd:f1:84:f4:4b:76: cd:d5:79:7d -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEtW1y3NojwL21lnBAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYTUzNjgwZTgtMDg5Mi00MjlhLTgxNzAtNDM2MWMyMTgy OWJmMB4XDTI1MDkyODAxMDAzM1oXDTI1MTIyNzAyMDAzM1owLzEtMCsGA1UEAxMk YjEyYmIzZWUtNmM1Zi00MTkxLWE0MTUtNGJmMTZhNDk0MmMyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hdHxU0h9QKNwz+IX4HtuqzYbufxPhwy7Bsx JL/SxxOFY4QdXYStCizqIodXaFgNvw4PxB5m0voW5teyzjv2Qt+VkjuaDBOD+/RP UvJpXE/7rAnWF3he4DPTSWos7rVBtlAYeleb1laOpBnIMzZjw4JaZLrbvK1BnWtI Ac9BwZBjlV1V6A6nZJ5hBUSDoiLTh0EPaojsz1vfLsDh0dVQgdrJ0ZtAmoAj6IrX ucLipmqUoWLz1GOhKKrIsSIzSNG7zVz9J7GKYJDQayfpzi1UDf7IYPxxwnmRrfrs 9HAmCTVve3z9emCFrlHslIcRB7NAJc8FQHq7hEi0GLANsmjbKwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFM15e/S8QOIwEoEl8GozkaoELrUiMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9hNTM2 ODBlOC0wODkyLTQyOWEtODE3MC00MzYxYzIxODI5YmYvYmY0MDNiOTUtODZmYy0z Yzg0LThlMjUtZGM2MjRhN2RkMDNmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvYTUzNjgwZTgtMDg5Mi00MjlhLTgx NzAtNDM2MWMyMTgyOWJmL2E1MzY4MGU4LTA4OTItNDI5YS04MTcwLTQzNjFjMjE4 MjliZi5jcmwwHwYDVR0jBBgwFoAUImg8EXazHAxzzygVNo8l0MJ0rs0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS9hNTM2ODBlOC0wODkyLTQyOWEtODE3MC00MzYx YzIxODI5YmYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAREALMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAL2G7BDLgWUb/VTfuqcffQ0QpClpjh0qQAdrtX7atUwfuXdV3ohLVzfb RVTJ3jScsjjJZeEGoEXCasf5nNjqstgIle5dZdfeDYfvjfz5o7AxkxxepB0sZBnN patqBgXFUN/NNQ/jAaMZLE5PCvkold18WFShVF7PANaEpxE/3EXvuqKDVO8iEGTQ kdcUSKpzniAb7dH2MPYMQC95WnOuqu1aMvCkKnr6ycwoegR9LlBjxoIS8Qyh+zP0 UUkwo1CTjU4oeCOkr6y29db7BPStQFC9hwqvvtpbnRqWUKds2CNm+jdeI6e5aSvC X5PuLtC/nDElUJCcZ83xhPRLds3VeX0= -----END CERTIFICATE-----Generated at Mon Oct 20 10:04:19 2025 by rpki-client