$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa File: d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa (raw, json) Hash identifier: WLxQZyv5aVaMFymqfPnoNdVatrcdFIbik4+zF4BX22s= Subject key identifier: 32:A8:A1:4B:24:6C:18:EB:C7:DA:AF:AE:BA:E2:60:F7:5E:A6:42:70 Certificate issuer: /CN=d00749ed-70ef-447c-b17c-da6be8d7f312 Certificate serial: 010D0C9F4328584B41E7150DB821FFBBC1BAC700 Authority key identifier: F5:20:15:87:33:58:C5:12:78:64:66:F3:B0:E3:5D:8A:F4:78:79:74 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa Signing time: Sat 20 Sep 2025 13:00:41 +0000 ROA not before: Sat 20 Sep 2025 13:00:41 +0000 ROA not after: Fri 19 Dec 2025 14:00:41 +0000 asID: 396998 IP address blocks: 64.68.192.0/24 maxlen: 24 2620:49:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 29 Oct 2025 08:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:41:e7:15:0d:b8:21:ff:bb:c1:ba:c7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d00749ed-70ef-447c-b17c-da6be8d7f312 Validity Not Before: Sep 20 13:00:41 2025 GMT Not After : Dec 19 14:00:41 2025 GMT Subject: CN=c70cd7db-d9c0-4452-974e-0b4a6c794c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7b:cb:76:28:90:c6:d0:a3:be:2e:2f:04:db: d7:57:98:be:66:ec:18:7a:3f:5d:53:bb:fb:c5:5e: be:c0:85:1c:bf:7b:69:07:05:46:a0:04:20:fd:0b: ee:a1:4f:3e:26:6d:83:47:bf:e5:14:23:2c:e8:8e: 0d:ab:99:64:cb:76:ee:a0:b9:39:bd:c0:b4:ad:64: 2f:e9:1a:34:ee:2c:35:34:8c:36:26:df:83:73:24: 6e:2d:48:c1:85:64:0c:a1:01:ef:82:f7:a1:8b:ce: ff:37:2d:dc:4b:e9:46:13:68:53:f9:36:69:2e:10: bc:06:ab:53:7c:7b:ac:31:33:1a:f2:90:92:11:74: 9b:ff:8f:a4:a3:d0:e2:47:ad:b9:61:57:48:59:c9: 3b:a8:03:39:dd:ae:a9:b2:33:32:2a:5d:87:5e:97: 3d:e3:84:b7:65:50:2c:c5:c0:a7:b0:d3:97:a5:63: 91:be:7f:30:c7:1a:fc:0a:67:6e:b5:96:4e:fe:54: 98:0c:9e:b1:1e:46:98:5c:ff:b5:21:f3:a3:48:91: cb:9a:e5:24:50:91:7c:7b:a0:85:17:b5:b0:0f:68: 87:58:be:88:fa:77:7d:14:4a:32:0a:a6:47:8b:53: 10:fc:37:4c:0d:4d:27:d1:dc:34:31:e6:08:54:fa: a2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A8:A1:4B:24:6C:18:EB:C7:DA:AF:AE:BA:E2:60:F7:5E:A6:42:70 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.crl X509v3 Authority Key Identifier: keyid:F5:20:15:87:33:58:C5:12:78:64:66:F3:B0:E3:5D:8A:F4:78:79:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer sbgp-ipAddrBlock: critical IPv4: 64.68.192.0/24 IPv6: 2620:49:1::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 84:2d:dc:74:12:7a:b5:33:b9:40:f7:fb:fc:02:c7:19:b7:6d: fb:83:93:fe:7d:6f:4e:59:a3:3e:43:b7:55:b3:82:37:8c:61: b7:35:7b:21:37:59:b7:4a:2c:2c:8e:e5:e6:95:d9:df:c0:39: d8:72:fc:f1:a7:dd:fd:09:3c:7f:45:33:8c:37:59:1e:13:e9: db:de:0e:95:0e:c9:d0:4f:58:8b:f2:b6:a2:58:01:56:86:27: 3a:48:30:ff:fb:ed:44:34:bd:cf:56:2a:ce:24:64:fc:fa:79: 6c:f4:8f:db:89:ba:59:41:ac:15:5c:28:e9:11:2e:43:8d:e8: 97:0c:dd:c7:98:30:2f:c0:3a:68:d9:79:3c:49:3c:a9:b4:d3: ff:db:99:e7:9d:3b:e6:90:d5:8c:62:f2:28:e4:c3:2e:10:b8: 3a:8e:b1:88:ac:6c:53:45:10:5f:49:2e:bc:ca:5e:a0:0d:c1: 8d:6e:d2:bb:5f:d2:df:66:ff:75:58:b4:85:78:fc:d1:95:dc: 7e:b8:29:6a:0b:2c:5b:7b:1f:b1:62:11:46:58:f9:a0:be:e0: 31:5c:5b:0e:ed:c0:8f:f0:a9:ac:8c:9b:92:af:ce:be:13:5d: 78:b5:e5:57:70:58:2e:aa:47:8d:7f:79:2d:35:2e:b7:1c:6a: 8b:c8:84:a0 -----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgIUAQ0Mn0MoWEtB5xUNuCH/u8G6xwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAwNzQ5ZWQtNzBlZi00NDdjLWIxN2MtZGE2YmU4ZDdm MzEyMB4XDTI1MDkyMDEzMDA0MVoXDTI1MTIxOTE0MDA0MVowLzEtMCsGA1UEAxMk YzcwY2Q3ZGItZDljMC00NDUyLTk3NGUtMGI0YTZjNzk0YzFkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHvLdiiQxtCjvi4vBNvXV5i+ZuwYej9dU7v7 xV6+wIUcv3tpBwVGoAQg/QvuoU8+Jm2DR7/lFCMs6I4Nq5lky3buoLk5vcC0rWQv 6Ro07iw1NIw2Jt+DcyRuLUjBhWQMoQHvgvehi87/Ny3cS+lGE2hT+TZpLhC8BqtT fHusMTMa8pCSEXSb/4+ko9DiR625YVdIWck7qAM53a6psjMyKl2HXpc944S3ZVAs xcCnsNOXpWORvn8wxxr8CmdutZZO/lSYDJ6xHkaYXP+1IfOjSJHLmuUkUJF8e6CF F7WwD2iHWL6I+nd9FEoyCqZHi1MQ/DdMDU0n0dw0MeYIVPqiRwIDAQABo4IDZjCC A2IwHQYDVR0OBBYEFDKooUskbBjrx9qvrrriYPdepkJwMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kMDA3 NDllZC03MGVmLTQ0N2MtYjE3Yy1kYTZiZThkN2YzMTIvZDlmM2JmMjAtNGMwYi0z MGEzLTlkOTgtODNmZGEwMzQ2NjE0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZDAwNzQ5ZWQtNzBlZi00NDdjLWIx N2MtZGE2YmU4ZDdmMzEyL2QwMDc0OWVkLTcwZWYtNDQ3Yy1iMTdjLWRhNmJlOGQ3 ZjMxMi5jcmwwHwYDVR0jBBgwFoAU9SAVhzNYxRJ4ZGbzsONdivR4eXQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kMDA3NDllZC03MGVmLTQ0N2MtYjE3Yy1kYTZi ZThkN2YzMTIuY2VyMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAQETAMA8E AgACMAkDBwAmIABJAAEwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsG AQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMu aHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAhC3cdBJ6tTO5QPf7/ALHGbdt+4OT/n1v TlmjPkO3VbOCN4xhtzV7ITdZt0osLI7l5pXZ38A52HL88afd/Qk8f0UzjDdZHhPp 294OlQ7J0E9Yi/K2olgBVoYnOkgw//vtRDS9z1YqziRk/Pp5bPSP24m6WUGsFVwo 6REuQ43olwzdx5gwL8A6aNl5PEk8qbTT/9uZ55075pDVjGLyKOTDLhC4Oo6xiKxs U0UQX0kuvMpeoA3BjW7Su1/S32b/dVi0hXj80ZXcfrgpagssW3sfsWIRRlj5oL7g MVxbDu3Aj/CprIybkq/OvhNdeLXlV3BYLqpHjX95LTUutxxqi8iEoA== -----END CERTIFICATE-----Generated at Mon Oct 27 21:32:54 2025 by rpki-client