$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa File: 1d5b64a0-14ba-398c-be22-b579612157ce.roa (raw, json) Hash identifier: mkqHClt2NmJ6dhZITtpIW395prDGxg4OWOsXgrWiPac= Subject key identifier: 17:43:BC:58:94:45:02:D1:31:5B:A6:8D:52:28:E5:66:6E:BA:DF:8F Certificate issuer: /CN=249140ca-277e-4871-a100-451d066d1c5b Certificate serial: 010D0C9F4328584AFC1C02AEEE80A091912076C0 Authority key identifier: 70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa Signing time: Tue 26 Aug 2025 13:00:41 +0000 ROA not before: Tue 26 Aug 2025 13:00:41 +0000 ROA not after: Mon 24 Nov 2025 14:00:41 +0000 asID: 21949 IP address blocks: 199.167.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:fc:1c:02:ae:ee:80:a0:91:91:20:76:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=249140ca-277e-4871-a100-451d066d1c5b Validity Not Before: Aug 26 13:00:41 2025 GMT Not After : Nov 24 14:00:41 2025 GMT Subject: CN=4d9ab724-7a70-4c5a-ba6a-c0f46c46fed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a2:39:bd:f2:a4:0e:b4:ca:2d:87:2f:d1:75: f4:e3:e4:ef:67:cf:72:b5:ed:df:d9:92:e6:66:9b: 88:62:42:2a:a5:95:27:2c:01:51:27:25:b2:30:42: 56:6f:98:22:d7:36:c7:b6:f7:3d:a7:a9:11:b8:47: 83:85:c4:26:66:30:bc:16:66:c8:1a:a0:e0:33:82: 3a:71:0a:34:82:d5:25:8e:b3:0f:7c:c2:ae:b7:1b: 1c:78:f2:7a:6d:1d:28:e2:4d:35:dc:fa:98:73:0d: 5f:1f:58:8d:76:1c:7c:d5:6e:82:3a:21:4f:e8:b4: 44:bd:00:e8:f6:df:33:39:0b:4a:a6:df:c2:25:2e: 3b:9e:f8:4f:38:44:3f:8e:0e:13:b3:96:81:28:bb: 42:c7:fa:ca:ab:8f:61:03:84:da:54:7a:35:a0:4e: 2f:03:03:4b:63:52:8e:b9:9d:3e:f8:e8:c9:b4:3e: fe:10:9c:20:27:bd:1f:26:e7:e6:68:33:1d:60:57: 5a:6f:f8:2f:98:58:b2:98:7f:7b:1a:1d:55:b8:9d: 8d:8b:3a:29:c2:e3:ec:84:88:5a:a4:cd:e6:58:f7: 1b:66:a3:60:60:ed:78:49:67:75:cf:c3:a6:19:29: ab:32:70:5e:79:57:93:16:6f:0d:c1:29:07:28:2c: c5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:43:BC:58:94:45:02:D1:31:5B:A6:8D:52:28:E5:66:6E:BA:DF:8F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl X509v3 Authority Key Identifier: keyid:70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer sbgp-ipAddrBlock: critical IPv4: 199.167.152.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 63:19:38:9b:56:e1:e7:3e:12:d8:79:54:bd:65:34:48:3b:52: 48:a6:31:e1:65:ab:34:63:2e:c8:86:25:85:03:6f:9d:4f:88: 6a:da:4c:a0:a8:66:c1:d1:28:df:37:c8:47:68:79:40:cd:52: 41:62:c3:09:40:37:db:20:fa:ae:e7:f0:38:4a:29:7a:b4:20: cb:10:5d:1d:4d:3f:87:88:7b:f9:4a:48:61:4c:54:48:31:40: 3d:d8:2a:52:d4:07:14:b6:b3:cd:61:09:73:2b:76:31:8f:7f: 2f:19:ad:5e:4f:5d:ec:93:92:71:4f:fd:4f:e3:c2:8d:b1:d9: 1b:22:a4:16:d1:9f:5f:e9:41:f3:9a:26:38:48:b1:2a:3e:f9: b8:90:ae:ae:c5:10:28:e0:74:0c:02:25:aa:db:fe:d2:c7:0f: e5:0f:1d:b9:db:ca:9c:1f:a2:de:ea:df:d2:77:10:2c:f5:64: f8:23:5d:99:a3:18:4d:b1:36:e8:b4:b8:45:00:96:d1:e5:bf: 41:ac:b8:04:25:3f:58:0e:bf:76:81:99:02:e2:d3:ba:4e:b6: 80:e7:09:cc:37:b6:a0:21:23:73:08:1f:b8:52:99:d6:e0:3d: ed:ae:2a:eb:26:94:a2:f6:9a:72:85:23:d2:36:1a:f9:76:f2: 05:76:fb:57 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEr8HAKu7oCgkZEgdsAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjQ5MTQwY2EtMjc3ZS00ODcxLWExMDAtNDUxZDA2NmQx YzViMB4XDTI1MDgyNjEzMDA0MVoXDTI1MTEyNDE0MDA0MVowLzEtMCsGA1UEAxMk NGQ5YWI3MjQtN2E3MC00YzVhLWJhNmEtYzBmNDZjNDZmZWQwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKI5vfKkDrTKLYcv0XX04+TvZ89yte3f2ZLm ZpuIYkIqpZUnLAFRJyWyMEJWb5gi1zbHtvc9p6kRuEeDhcQmZjC8FmbIGqDgM4I6 cQo0gtUljrMPfMKutxscePJ6bR0o4k013PqYcw1fH1iNdhx81W6COiFP6LREvQDo 9t8zOQtKpt/CJS47nvhPOEQ/jg4Ts5aBKLtCx/rKq49hA4TaVHo1oE4vAwNLY1KO uZ0++OjJtD7+EJwgJ70fJufmaDMdYFdab/gvmFiymH97Gh1VuJ2NizopwuPshIha pM3mWPcbZqNgYO14SWd1z8OmGSmrMnBeeVeTFm8NwSkHKCzF8QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFBdDvFiURQLRMVumjVIo5WZuut+PMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy8yNDkx NDBjYS0yNzdlLTQ4NzEtYTEwMC00NTFkMDY2ZDFjNWIvMWQ1YjY0YTAtMTRiYS0z OThjLWJlMjItYjU3OTYxMjE1N2NlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvMjQ5MTQwY2EtMjc3ZS00ODcxLWEx MDAtNDUxZDA2NmQxYzViLzI0OTE0MGNhLTI3N2UtNDg3MS1hMTAwLTQ1MWQwNjZk MWM1Yi5jcmwwHwYDVR0jBBgwFoAUcCTs3b7y+uva+LVMugLAQ4E9SMkwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy8yNDkxNDBjYS0yNzdlLTQ4NzEtYTEwMC00NTFk MDY2ZDFjNWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDx6eYMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGMZOJtW4ec+Eth5VL1lNEg7UkimMeFlqzRjLsiGJYUDb51PiGraTKCo ZsHRKN83yEdoeUDNUkFiwwlAN9sg+q7n8DhKKXq0IMsQXR1NP4eIe/lKSGFMVEgx QD3YKlLUBxS2s81hCXMrdjGPfy8ZrV5PXeyTknFP/U/jwo2x2RsipBbRn1/pQfOa JjhIsSo++biQrq7FECjgdAwCJarb/tLHD+UPHbnbypwfot7q39J3ECz1ZPgjXZmj GE2xNui0uEUAltHlv0GsuAQlP1gOv3aBmQLi07pOtoDnCcw3tqAhI3MIH7hSmdbg Pe2uKusmlKL2mnKFI9I2Gvl28gV2+1c= -----END CERTIFICATE-----Generated at Mon Sep 15 17:10:53 2025 by rpki-client