$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f/833998ac-b1fb-3172-8bef-f1a4bb72b6f3.roa File: 833998ac-b1fb-3172-8bef-f1a4bb72b6f3.roa (raw, json) Hash identifier: e1PwLB6yP2BsFTEya6o7Zke/kzbbcIfYYXfX/NcYx1s= Subject key identifier: 81:D7:8E:E3:2E:39:B5:64:D6:8A:8E:88:09:CE:A3:43:E9:6A:B0:BD Certificate issuer: /CN=b433f23f-334b-4db9-9fe1-bef76714d97f Certificate serial: 010D0C9F4328584B1587B477A9E6295B631AD400 Authority key identifier: 8C:AB:5D:C7:32:C2:D8:F3:E5:93:61:6A:EE:B8:B5:20:B2:F9:13:BA Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f/833998ac-b1fb-3172-8bef-f1a4bb72b6f3.roa Signing time: Thu 04 Sep 2025 15:33:06 +0000 ROA not before: Thu 04 Sep 2025 15:33:06 +0000 ROA not after: Wed 03 Dec 2025 16:33:06 +0000 asID: 203020 IP address blocks: 128.121.128.0/17 maxlen: 24 128.241.48.0/20 maxlen: 24 128.241.64.0/20 maxlen: 24 128.241.96.0/19 maxlen: 24 128.242.64.0/20 maxlen: 24 128.242.160.0/20 maxlen: 24 130.94.160.0/20 maxlen: 24 130.94.224.0/20 maxlen: 24 131.103.32.0/19 maxlen: 24 131.103.64.0/19 maxlen: 24 131.103.144.0/20 maxlen: 24 140.174.112.0/20 maxlen: 24 157.238.96.0/19 maxlen: 24 168.143.80.0/20 maxlen: 24 168.143.192.0/19 maxlen: 24 192.204.112.0/20 maxlen: 24 192.204.128.0/20 maxlen: 24 192.204.160.0/19 maxlen: 24 198.64.96.0/19 maxlen: 24 198.64.128.0/18 maxlen: 24 198.64.224.0/20 maxlen: 24 204.0.32.0/20 maxlen: 24 204.1.144.0/20 maxlen: 24 204.1.224.0/20 maxlen: 24 204.3.0.0/19 maxlen: 24 204.3.64.0/18 maxlen: 24 204.141.64.0/20 maxlen: 24 209.139.0.0/17 maxlen: 24 209.207.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f/b433f23f-334b-4db9-9fe1-bef76714d97f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f/b433f23f-334b-4db9-9fe1-bef76714d97f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:15:87:b4:77:a9:e6:29:5b:63:1a:d4:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b433f23f-334b-4db9-9fe1-bef76714d97f Validity Not Before: Sep 4 15:33:06 2025 GMT Not After : Dec 3 16:33:06 2025 GMT Subject: CN=52502d63-3fc4-4f40-abbe-2131eb8cfc41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:64:c4:6a:80:42:66:b2:61:97:e4:55:9e:7b: ca:ca:5d:e8:99:6d:2e:61:43:07:61:be:67:b7:38: 7f:f1:87:76:57:b9:3a:41:eb:9d:8d:fc:7e:54:13: 6b:fe:94:d6:20:b3:3b:f2:c7:33:8b:cd:7b:f4:54: 19:d3:5f:9d:23:bd:6e:c2:54:5a:e8:52:dd:81:c6: f1:35:cd:10:1f:ed:07:80:eb:cb:25:4c:45:0b:89: cb:84:9f:82:99:b5:93:87:3a:8b:54:52:b3:3e:cd: 6a:01:98:70:fc:54:40:8b:0f:85:c7:82:42:d4:e1: 20:79:c3:3d:6f:d0:a8:45:6a:81:6d:2e:1d:5e:9a: cd:cc:05:c5:c9:c1:bd:63:65:93:1e:0a:f4:08:08: 95:07:04:17:39:47:5c:c9:5c:68:eb:d2:31:72:d0: b3:17:dd:4d:fa:d6:da:ee:48:13:2d:3d:f6:ae:f5: 92:f1:bf:0c:11:17:af:67:9e:84:de:34:41:73:a5: 8b:54:15:6b:98:bd:d8:d9:ca:27:9c:4c:d2:7d:1f: 7b:90:55:ef:ef:5d:77:a2:fe:f2:24:4b:df:16:cb: 15:6a:77:50:e6:1e:fe:10:c3:4f:40:70:2a:93:b4: 0b:89:45:c5:70:86:6d:75:32:3b:51:50:f4:f2:35: 9e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D7:8E:E3:2E:39:B5:64:D6:8A:8E:88:09:CE:A3:43:E9:6A:B0:BD Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f/833998ac-b1fb-3172-8bef-f1a4bb72b6f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f/b433f23f-334b-4db9-9fe1-bef76714d97f.crl X509v3 Authority Key Identifier: keyid:8C:AB:5D:C7:32:C2:D8:F3:E5:93:61:6A:EE:B8:B5:20:B2:F9:13:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/b433f23f-334b-4db9-9fe1-bef76714d97f.cer sbgp-ipAddrBlock: critical IPv4: 128.121.128.0/17 128.241.48.0-128.241.79.255 128.241.96.0/19 128.242.64.0/20 128.242.160.0/20 130.94.160.0/20 130.94.224.0/20 131.103.32.0-131.103.95.255 131.103.144.0/20 140.174.112.0/20 157.238.96.0/19 168.143.80.0/20 168.143.192.0/19 192.204.112.0-192.204.143.255 192.204.160.0/19 198.64.96.0-198.64.191.255 198.64.224.0/20 204.0.32.0/20 204.1.144.0/20 204.1.224.0/20 204.3.0.0/19 204.3.64.0/18 204.141.64.0/20 209.139.0.0/17 209.207.128.0/17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 53:9f:eb:30:6a:58:ab:71:ed:4f:93:e4:f7:d2:94:1a:63:f0: 42:7e:3b:f1:e9:89:95:01:e9:8c:47:b2:02:b0:ab:0c:e3:a8: 14:cf:36:3c:23:36:da:b2:5a:e3:f4:48:84:e6:58:ee:d6:4e: ca:98:09:62:b7:d4:fc:26:fb:00:9a:ac:97:26:a3:ff:45:23: e6:62:4b:5c:3d:e2:36:96:9e:08:c7:89:fd:5b:48:c3:05:6c: 91:e7:af:04:84:ec:eb:d5:d6:6c:c7:6d:1d:96:47:2e:4f:08: bc:33:26:9e:92:09:ab:a4:e6:9e:ba:bf:65:8c:ad:91:af:b5: 9a:7b:b0:31:54:c0:26:63:fc:68:69:b3:de:18:fc:59:ec:52: e0:35:fb:db:21:89:90:a9:31:2b:d8:50:a8:f1:58:2a:e0:2e: e3:2a:66:96:ea:2d:e9:2e:d3:5b:6b:83:d4:33:ed:45:5f:b4: 2d:17:13:21:44:8f:4c:4c:29:6b:4f:5b:6e:b3:12:c4:5a:67: 96:ef:d7:d2:84:20:78:5b:27:45:fa:48:1d:f8:f5:d1:8f:d2: e0:34:de:1e:dd:3e:7b:6b:b6:58:4d:4c:27:cd:9c:65:48:db: 6d:a3:7e:b2:20:07:bc:16:99:aa:de:56:95:e1:88:97:f6:e8: b7:12:12:1e -----BEGIN CERTIFICATE----- MIIG+DCCBeCgAwIBAgIUAQ0Mn0MoWEsVh7R3qeYpW2Ma1AAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYjQzM2YyM2YtMzM0Yi00ZGI5LTlmZTEtYmVmNzY3MTRk OTdmMB4XDTI1MDkwNDE1MzMwNloXDTI1MTIwMzE2MzMwNlowLzEtMCsGA1UEAxMk NTI1MDJkNjMtM2ZjNC00ZjQwLWFiYmUtMjEzMWViOGNmYzQxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhmTEaoBCZrJhl+RVnnvKyl3omW0uYUMHYb5n tzh/8Yd2V7k6Qeudjfx+VBNr/pTWILM78sczi8179FQZ01+dI71uwlRa6FLdgcbx Nc0QH+0HgOvLJUxFC4nLhJ+CmbWThzqLVFKzPs1qAZhw/FRAiw+Fx4JC1OEgecM9 b9CoRWqBbS4dXprNzAXFycG9Y2WTHgr0CAiVBwQXOUdcyVxo69IxctCzF91N+tba 7kgTLT32rvWS8b8MERevZ56E3jRBc6WLVBVrmL3Y2connEzSfR97kFXv7113ov7y JEvfFssVandQ5h7+EMNPQHAqk7QLiUXFcIZtdTI7UVD08jWecQIDAQABo4IECjCC BAYwHQYDVR0OBBYEFIHXjuMuObVk1oqOiAnOo0PparC9MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi9iNDMz ZjIzZi0zMzRiLTRkYjktOWZlMS1iZWY3NjcxNGQ5N2YvODMzOTk4YWMtYjFmYi0z MTcyLThiZWYtZjFhNGJiNzJiNmYzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvYjQzM2YyM2YtMzM0Yi00ZGI5LTlm ZTEtYmVmNzY3MTRkOTdmL2I0MzNmMjNmLTMzNGItNGRiOS05ZmUxLWJlZjc2NzE0 ZDk3Zi5jcmwwHwYDVR0jBBgwFoAUjKtdxzLC2PPlk2Fq7ri1ILL5E7owDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi9iNDMzZjIzZi0zMzRiLTRkYjktOWZlMS1iZWY3 NjcxNGQ5N2YuY2VyMIHTBggrBgEFBQcBBwEB/wSBwzCBwDCBvQQCAAEwgbYDBAeA eYAwDAMEBIDxMAMEBIDxQAMEBYDxYAMEBIDyQAMEBIDyoAMEBIJeoAMEBIJe4DAM AwQFg2cgAwQFg2dAAwQEg2eQAwQEjK5wAwQFne5gAwQEqI9QAwQFqI/AMAwDBATA zHADBATAzIADBAXAzKAwDAMEBcZAYAMEBsZAgAMEBMZA4AMEBMwAIAMEBMwBkAME BMwB4AMEBcwDAAMEBswDQAMEBMyNQAMEB9GLAAMEB9HPgDBUBgNVHSABAf8ESjBI MEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3LmFyaW4ubmV0 L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUAA4IBAQBTn+sw alirce1Pk+T30pQaY/BCfjvx6YmVAemMR7ICsKsM46gUzzY8Izbaslrj9EiE5lju 1k7KmAlit9T8JvsAmqyXJqP/RSPmYktcPeI2lp4Ix4n9W0jDBWyR568EhOzr1dZs x20dlkcuTwi8MyaekgmrpOaeur9ljK2Rr7Wae7AxVMAmY/xoabPeGPxZ7FLgNfvb IYmQqTEr2FCo8Vgq4C7jKmaW6i3pLtNba4PUM+1FX7QtFxMhRI9MTClrT1tusxLE WmeW79fShCB4WydF+kgd+PXRj9LgNN4e3T57a7ZYTUwnzZxlSNtto36yIAe8Fpmq 3laV4YiX9ui3EhIe -----END CERTIFICATE-----Generated at Thu Sep 18 23:55:19 2025 by rpki-client