$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa File: d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa (raw, json) Hash identifier: Cbtlh5Pe9Z2P9BnX8GT/kG0sMguIliTjn1jW5Zr1JQE= Subject key identifier: 8E:BC:CC:23:23:8F:E5:53:59:7B:2E:16:16:AC:4D:63:48:31:E0:05 Certificate issuer: /CN=bf7c43e7-0571-4d08-b71a-8b930dda9aad Certificate serial: 010D0C9F4328584AFC1C0DD40491D8B0724BB800 Authority key identifier: 79:9A:9F:EA:8D:05:18:92:60:86:70:C3:43:10:E3:27:21:E0:14:A8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa Signing time: Tue 26 Aug 2025 13:00:41 +0000 ROA not before: Tue 26 Aug 2025 13:00:41 +0000 ROA not after: Mon 24 Nov 2025 14:00:41 +0000 asID: 35908 IP address blocks: 209.11.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 11 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:fc:1c:0d:d4:04:91:d8:b0:72:4b:b8:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf7c43e7-0571-4d08-b71a-8b930dda9aad Validity Not Before: Aug 26 13:00:41 2025 GMT Not After : Nov 24 14:00:41 2025 GMT Subject: CN=898f4408-fba6-431e-9226-9d88fa8041b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a7:30:4a:04:08:7f:4e:47:dc:39:3d:57:c9: 67:ba:90:38:6e:ad:09:4c:70:2b:29:37:1e:da:a7: 8d:ea:65:d4:5d:ba:38:e6:de:0d:1e:34:71:3c:ff: 52:6a:d7:d6:71:25:66:f7:ba:a0:31:90:0c:3d:11: 0b:82:94:60:1a:85:94:15:41:44:97:45:e7:e6:ad: 7d:65:bc:fb:32:6f:08:14:b6:91:92:97:3c:f5:6e: 89:c6:e7:15:dc:2d:11:27:62:c5:05:83:10:6f:df: 45:cb:17:9d:6b:98:3e:17:20:64:90:62:fa:79:9e: 31:79:af:7a:2c:f4:39:59:da:2f:3b:9b:ae:d8:e4: d3:32:ea:15:82:81:83:89:d9:b0:cb:a4:73:55:72: 10:cf:fb:da:87:8e:78:5d:9a:92:0b:6d:9b:8b:87: 05:cc:43:a7:79:b0:f0:84:e7:63:17:d6:00:32:2d: 97:1b:d8:7a:fe:47:cd:ff:f4:a5:50:35:97:17:e6: 86:f7:9f:ff:11:d8:15:45:75:5d:c4:58:c0:b8:94: 1c:af:c3:7a:e8:72:86:31:6e:14:52:15:3a:6a:29: b1:41:d0:ed:a7:21:94:c3:f6:03:6e:eb:b5:04:f7: f8:78:71:9c:03:e1:60:bc:6b:4f:59:9e:90:46:dd: 8c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:BC:CC:23:23:8F:E5:53:59:7B:2E:16:16:AC:4D:63:48:31:E0:05 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.crl X509v3 Authority Key Identifier: keyid:79:9A:9F:EA:8D:05:18:92:60:86:70:C3:43:10:E3:27:21:E0:14:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer sbgp-ipAddrBlock: critical IPv4: 209.11.240.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption d4:d4:34:e0:98:8e:da:d2:8d:d7:cb:58:c1:d9:1a:2d:d8:aa: 5b:2b:01:0f:9f:f0:02:66:99:6e:b5:fc:71:fd:7b:60:d7:fb: 6e:26:a5:9f:e4:67:a9:ec:89:3e:6c:6e:29:40:ee:e8:85:2f: 0b:eb:fa:18:1a:b6:b7:44:cb:0c:da:d8:96:aa:b2:a7:af:b2: 95:ea:f0:4a:e5:9a:ae:98:31:c7:2f:22:09:bf:44:b2:63:ab: 31:13:cc:b8:93:a7:78:86:33:af:f2:38:eb:a6:17:46:16:28: 90:71:0a:f7:d3:81:6a:fc:70:29:41:4f:44:35:65:66:7a:7d: 69:69:8e:7f:33:58:b7:0f:ad:ed:7c:2b:fe:5d:00:76:cb:39: d7:d0:cd:bf:e3:56:aa:1f:7a:ef:20:ff:ce:08:84:64:ff:22: cc:85:1d:9d:7c:ab:3e:2a:ef:c1:7c:7b:da:bd:4c:b4:fc:fc: 64:1d:0d:cf:03:e2:37:57:ac:f9:e6:a4:80:fa:2b:48:77:18: 2e:76:63:6d:38:2b:82:2e:ae:f4:80:91:3c:f1:97:e9:ea:60: 45:54:9c:a9:39:1c:9b:12:59:1b:c8:5b:79:cd:cc:4c:0a:8b: 5f:f5:9b:42:18:75:2f:74:6b:04:43:51:d2:c4:7c:32:6f:23: a5:6f:9a:f3 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEr8HA3UBJHYsHJLuAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmY3YzQzZTctMDU3MS00ZDA4LWI3MWEtOGI5MzBkZGE5 YWFkMB4XDTI1MDgyNjEzMDA0MVoXDTI1MTEyNDE0MDA0MVowLzEtMCsGA1UEAxMk ODk4ZjQ0MDgtZmJhNi00MzFlLTkyMjYtOWQ4OGZhODA0MWI0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6cwSgQIf05H3Dk9V8lnupA4bq0JTHArKTce 2qeN6mXUXbo45t4NHjRxPP9SatfWcSVm97qgMZAMPRELgpRgGoWUFUFEl0Xn5q19 Zbz7Mm8IFLaRkpc89W6JxucV3C0RJ2LFBYMQb99Fyxeda5g+FyBkkGL6eZ4xea96 LPQ5WdovO5uu2OTTMuoVgoGDidmwy6RzVXIQz/vah454XZqSC22bi4cFzEOnebDw hOdjF9YAMi2XG9h6/kfN//SlUDWXF+aG95//EdgVRXVdxFjAuJQcr8N66HKGMW4U UhU6aimxQdDtpyGUw/YDbuu1BPf4eHGcA+FgvGtPWZ6QRt2MzQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFI68zCMjj+VTWXsuFhasTWNIMeAFMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iZjdj NDNlNy0wNTcxLTRkMDgtYjcxYS04YjkzMGRkYTlhYWQvZDZiNTBkYTEtZjAwYy0z OGUxLTkyYzQtYjk3YTRhODBmMDQzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy80YWI3YWU0ZC1i ZDdiLTRiMzMtOWE4OC01YjIyZDJhODMzN2QvYmY3YzQzZTctMDU3MS00ZDA4LWI3 MWEtOGI5MzBkZGE5YWFkL2JmN2M0M2U3LTA1NzEtNGQwOC1iNzFhLThiOTMwZGRh OWFhZC5jcmwwHwYDVR0jBBgwFoAUeZqf6o0FGJJghnDDQxDjJyHgFKgwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIz My05YTg4LTViMjJkMmE4MzM3ZC9iZjdjNDNlNy0wNTcxLTRkMDgtYjcxYS04Yjkz MGRkYTlhYWQuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0QvwMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBANTUNOCYjtrSjdfLWMHZGi3YqlsrAQ+f8AJmmW61/HH9e2DX+24mpZ/k Z6nsiT5sbilA7uiFLwvr+hgatrdEywza2JaqsqevspXq8Erlmq6YMccvIgm/RLJj qzETzLiTp3iGM6/yOOumF0YWKJBxCvfTgWr8cClBT0Q1ZWZ6fWlpjn8zWLcPre18 K/5dAHbLOdfQzb/jVqofeu8g/84IhGT/IsyFHZ18qz4q78F8e9q9TLT8/GQdDc8D 4jdXrPnmpID6K0h3GC52Y204K4IurvSAkTzxl+nqYEVUnKk5HJsSWRvIW3nNzEwK i1/1m0IYdS90awRDUdLEfDJvI6VvmvM= -----END CERTIFICATE-----Generated at Wed Sep 10 04:35:20 2025 by rpki-client