$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa File: 3311aef9-8ac3-3227-ae15-f68204bedd03.roa (raw, json) Hash identifier: oFpipXNWpsIMjA3Tu98aII6T4U3FPlXVK0Xo6oZ6BoM= Subject key identifier: 25:04:DE:09:AB:48:02:58:9E:C1:F2:26:BB:4B:4B:33:A1:EF:3A:25 Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F4328584B95AA67BDADB178FBA7800980 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa Signing time: Mon 20 Oct 2025 13:00:38 +0000 ROA not before: Mon 20 Oct 2025 13:00:38 +0000 ROA not after: Sun 18 Jan 2026 14:00:38 +0000 asID: 33668 IP address blocks: 68.49.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:95:aa:67:bd:ad:b1:78:fb:a7:80:09:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Oct 20 13:00:38 2025 GMT Not After : Jan 18 14:00:38 2026 GMT Subject: CN=0fbbffc4-bdf3-40b7-b2e5-c33523c39b30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:90:7e:50:be:1e:1d:8e:f1:c5:af:59:60:77: 88:1e:ed:42:5d:4b:5a:33:13:1b:c8:56:3c:f9:f2: c7:3e:5e:6d:5b:30:75:a0:a0:c9:5d:be:b3:dc:d7: ae:34:6f:0f:88:6f:05:d5:5c:7f:bb:06:0d:a7:8e: 6b:47:2b:46:06:88:4c:82:ef:12:d9:e9:11:63:f4: 05:19:da:73:da:4b:7d:45:c0:51:92:a1:d6:8b:d2: e8:2d:2b:3a:d1:04:5f:87:5c:db:fa:a0:03:f1:f1: 9f:a4:ad:89:3e:53:3f:c4:79:a0:9e:e6:da:e7:d6: 23:fe:5f:3d:71:48:7e:82:a3:f4:e1:17:9b:dc:d7: c3:47:23:04:44:63:e2:79:65:74:5b:10:a0:92:7d: 1c:ba:4e:2a:71:c8:9d:49:ff:08:7e:8b:5f:f2:4c: 25:db:10:65:40:6f:fa:cb:7f:5c:a1:3c:04:53:f6: 98:46:1e:ab:53:0f:37:6a:e7:ee:d7:71:8a:b9:4f: 78:d6:8e:53:b0:74:71:d7:4b:4e:f8:d7:d1:74:df: 1e:1a:88:93:88:17:22:25:ac:48:92:b3:73:2c:2b: 12:27:ad:9a:87:fb:77:4d:2d:3e:12:b4:eb:d5:76: 6b:9e:12:da:00:6b:da:0d:cd:29:3d:fc:9a:6a:c7: 9b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:04:DE:09:AB:48:02:58:9E:C1:F2:26:BB:4B:4B:33:A1:EF:3A:25 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.49.12.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 03:8b:95:60:69:55:6f:04:54:e7:17:28:49:a4:7d:40:be:d1: 9d:c6:72:b1:1e:aa:85:18:1c:fb:57:d9:30:29:9f:51:4c:a0: 68:cd:4e:f1:16:be:5e:1e:b0:88:d3:eb:23:87:a0:2d:d4:3b: 6d:e3:47:ce:28:f5:a3:f7:fd:51:c6:0e:2b:4b:78:59:3b:e2: 8c:7d:28:77:c3:83:1c:30:2f:3b:07:95:56:68:04:59:30:77: 94:10:a7:76:c5:3c:d4:3a:e3:2f:9a:c6:68:c5:8a:c5:c2:76: eb:bb:af:a4:0d:17:38:17:61:5a:c5:b3:e9:14:b8:64:c0:a2: 28:fc:e5:e2:5b:72:97:a3:2e:ef:7d:9b:a8:b6:ec:8b:47:ff: eb:61:86:6c:58:e9:25:95:7e:5a:de:9c:ee:5d:08:18:92:fa: fe:09:70:57:df:16:5e:fa:0a:ce:2c:20:b6:92:2f:56:b7:43: 68:c4:db:3d:4a:a4:0d:70:d2:ee:0a:67:fb:fa:4f:87:fc:da: 95:4a:26:29:86:78:fe:85:b0:e4:d6:9d:f5:92:ad:2d:71:75: 5b:ce:d2:80:40:70:2a:0d:fa:e5:41:08:f4:d3:32:39:98:bd: 71:a5:64:e0:96:2f:0b:a0:f2:07:43:9f:a5:3e:03:db:71:9f: c5:0f:ef:58 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEuVqme9rbF4+6eACYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MTAyMDEzMDAzOFoXDTI2MDExODE0MDAzOFowLzEtMCsGA1UEAxMk MGZiYmZmYzQtYmRmMy00MGI3LWIyZTUtYzMzNTIzYzM5YjMwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJB+UL4eHY7xxa9ZYHeIHu1CXUtaMxMbyFY8 +fLHPl5tWzB1oKDJXb6z3NeuNG8PiG8F1Vx/uwYNp45rRytGBohMgu8S2ekRY/QF Gdpz2kt9RcBRkqHWi9LoLSs60QRfh1zb+qAD8fGfpK2JPlM/xHmgnuba59Yj/l89 cUh+gqP04Reb3NfDRyMERGPieWV0WxCgkn0cuk4qccidSf8Ifotf8kwl2xBlQG/6 y39coTwEU/aYRh6rUw83aufu13GKuU941o5TsHRx10tO+NfRdN8eGoiTiBciJaxI krNzLCsSJ62ah/t3TS0+ErTr1XZrnhLaAGvaDc0pPfyaasebtwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCUE3gmrSAJYnsHyJrtLSzOh7zolMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvMzMxMWFlZjktOGFjMy0z MjI3LWFlMTUtZjY4MjA0YmVkZDAzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCRDEMMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAOLlWBpVW8EVOcXKEmkfUC+0Z3GcrEeqoUYHPtX2TApn1FMoGjNTvEW vl4esIjT6yOHoC3UO23jR84o9aP3/VHGDitLeFk74ox9KHfDgxwwLzsHlVZoBFkw d5QQp3bFPNQ64y+axmjFisXCduu7r6QNFzgXYVrFs+kUuGTAoij85eJbcpejLu99 m6i27ItH/+thhmxY6SWVflrenO5dCBiS+v4JcFffFl76Cs4sILaSL1a3Q2jE2z1K pA1w0u4KZ/v6T4f82pVKJimGeP6FsOTWnfWSrS1xdVvO0oBAcCoN+uVBCPTTMjmY vXGlZOCWLwug8gdDn6U+A9txn8UP71g= -----END CERTIFICATE-----Generated at Tue Oct 21 19:33:13 2025 by rpki-client