$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa File: d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa (raw, json) Hash identifier: Gf4nxwA7073EMQnXCPVXkZlE1gDFyLo5aL1r9gziII0= Subject key identifier: 10:F9:1D:D2:26:A9:20:A4:C9:7D:12:9A:8C:45:E7:EF:43:02:15:AC Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F4328584B95A8CDBAFA3B620F67049A40 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa Signing time: Mon 20 Oct 2025 13:00:38 +0000 ROA not before: Mon 20 Oct 2025 13:00:38 +0000 ROA not after: Sun 18 Jan 2026 14:00:38 +0000 asID: 33668 IP address blocks: 68.56.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:95:a8:cd:ba:fa:3b:62:0f:67:04:9a:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Oct 20 13:00:38 2025 GMT Not After : Jan 18 14:00:38 2026 GMT Subject: CN=75f90396-7b26-4749-9ab1-a8eddeee65d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d5:89:b2:18:d1:12:df:21:a3:50:52:3b:71: d1:8a:e7:05:8c:82:5d:9c:8d:aa:c2:9b:34:28:4f: 3d:96:6f:75:b1:85:b5:5b:6e:6c:9e:9a:ba:9f:1a: 99:1d:44:f7:6e:67:e9:bb:7d:d9:42:20:81:db:27: 74:1b:28:41:e0:af:67:27:43:aa:ed:81:37:c2:19: 4a:b2:c0:ee:ca:9d:a3:39:df:0f:fb:b1:e1:ef:c2: 17:b5:d1:7b:44:16:28:9e:92:e5:61:57:9c:a4:09: 66:0c:58:dc:dd:3f:cb:eb:99:2a:1c:87:b8:a9:1c: c9:8c:3d:63:8d:84:e7:9c:29:35:12:b5:f0:23:a7: cc:3c:b2:39:08:76:20:41:ff:71:32:03:fd:0a:97: 3f:18:02:74:79:03:93:49:d7:1d:a5:06:66:a3:a9: c1:15:de:3d:d2:ae:65:d1:e0:13:55:9c:9e:90:16: 92:50:1a:41:75:45:6f:84:5f:1f:e1:27:0d:ed:82: 05:80:02:54:2c:d0:ba:b3:ef:76:be:a0:3a:06:5d: 18:19:50:53:0e:5f:e4:58:35:5e:a8:7b:e2:1c:01: 49:49:8b:ae:c1:b3:af:2f:19:5a:6b:27:ff:71:77: f8:0a:75:9a:f0:a5:1a:e9:62:85:b4:34:d1:fb:2b: 2c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F9:1D:D2:26:A9:20:A4:C9:7D:12:9A:8C:45:E7:EF:43:02:15:AC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.56.16.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 4f:8d:a7:05:7c:7d:87:34:84:f2:2e:d9:58:a9:2b:b6:7a:07: 42:77:76:5b:08:8d:f4:09:61:ec:db:93:f2:3a:ab:01:f4:92: 64:f5:bd:06:1a:34:ff:66:aa:ae:ba:0f:97:8b:5d:79:1b:8f: 3e:a0:ec:41:3a:8d:ea:44:ad:70:e9:b5:d7:5c:91:5a:b9:b9: da:bb:48:6a:e5:8d:06:a2:22:a8:9a:52:f0:53:3f:d4:1d:23: 73:fd:2d:88:ce:aa:d2:9f:5b:58:fc:dd:9d:f1:ad:1e:2e:a7: 97:2a:72:98:86:3e:22:42:37:cf:5a:d7:2e:f8:3e:75:d8:c6: 92:a7:7e:b6:42:db:63:04:ff:8b:ea:05:62:f2:cb:f9:4b:b2: e2:a4:d6:6e:fd:d8:92:47:17:2c:f2:2a:13:fc:67:40:73:cd: 53:50:f1:28:ce:d0:5d:46:65:d5:9c:6e:7f:b6:45:5e:9b:b6: 35:56:e4:ff:dc:67:8b:50:d6:be:ed:aa:0f:38:cd:1d:67:62: f3:af:37:ce:4f:28:79:a3:e3:27:d8:64:66:f7:4a:09:ec:93: ee:81:b8:9a:a0:a4:94:aa:f1:35:74:72:47:ee:d2:63:0d:84: 5c:d7:52:f9:c5:b3:99:80:63:20:49:35:fc:dc:7b:32:59:31: 2a:b2:1c:a6 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEuVqM26+jtiD2cEmkAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MTAyMDEzMDAzOFoXDTI2MDExODE0MDAzOFowLzEtMCsGA1UEAxMk NzVmOTAzOTYtN2IyNi00NzQ5LTlhYjEtYThlZGRlZWU2NWQ4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdWJshjREt8ho1BSO3HRiucFjIJdnI2qwps0 KE89lm91sYW1W25snpq6nxqZHUT3bmfpu33ZQiCB2yd0GyhB4K9nJ0Oq7YE3whlK ssDuyp2jOd8P+7Hh78IXtdF7RBYonpLlYVecpAlmDFjc3T/L65kqHIe4qRzJjD1j jYTnnCk1ErXwI6fMPLI5CHYgQf9xMgP9Cpc/GAJ0eQOTSdcdpQZmo6nBFd490q5l 0eATVZyekBaSUBpBdUVvhF8f4ScN7YIFgAJULNC6s+92vqA6Bl0YGVBTDl/kWDVe qHviHAFJSYuuwbOvLxlaayf/cXf4CnWa8KUa6WKFtDTR+yssAQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFBD5HdImqSCkyX0SmoxF5+9DAhWsMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvZDhjYjhmNDQtNjAyNC0z NGYxLWEyNGEtNWE0ZjVjNzdjMWQwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDRDgQMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAE+NpwV8fYc0hPIu2VipK7Z6B0J3dlsIjfQJYezbk/I6qwH0kmT1vQYa NP9mqq66D5eLXXkbjz6g7EE6jepErXDptddckVq5udq7SGrljQaiIqiaUvBTP9Qd I3P9LYjOqtKfW1j83Z3xrR4up5cqcpiGPiJCN89a1y74PnXYxpKnfrZC22ME/4vq BWLyy/lLsuKk1m792JJHFyzyKhP8Z0BzzVNQ8SjO0F1GZdWcbn+2RV6btjVW5P/c Z4tQ1r7tqg84zR1nYvOvN85PKHmj4yfYZGb3Sgnsk+6BuJqgpJSq8TV0ckfu0mMN hFzXUvnFs5mAYyBJNfzcezJZMSqyHKY= -----END CERTIFICATE-----Generated at Tue Oct 21 19:16:42 2025 by rpki-client