$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa File: d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa (raw, json) Hash identifier: 2/aPhiFQoMEvDqO3O9Ue3Fb9rsHpsYpN6Pky8nTDP/w= Subject key identifier: D7:F0:BD:29:E7:8B:7A:6A:D2:55:2E:C6:8B:E8:09:DF:64:07:14:35 Certificate issuer: /CN=d00749ed-70ef-447c-b17c-da6be8d7f312 Certificate serial: 010D0C9F4328584A612B1485DD0E7F318C820B80 Authority key identifier: F5:20:15:87:33:58:C5:12:78:64:66:F3:B0:E3:5D:8A:F4:78:79:74 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa Signing time: Wed 02 Jul 2025 01:00:49 +0000 ROA not before: Wed 02 Jul 2025 01:00:49 +0000 ROA not after: Tue 30 Sep 2025 01:00:49 +0000 asID: 396998 IP address blocks: 64.68.192.0/24 maxlen: 24 2620:49:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Jul 2025 08:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:61:2b:14:85:dd:0e:7f:31:8c:82:0b:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d00749ed-70ef-447c-b17c-da6be8d7f312 Validity Not Before: Jul 2 01:00:49 2025 GMT Not After : Sep 30 01:00:49 2025 GMT Subject: CN=f99c6736-3711-4c21-b67a-1dedc9dea14a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1c:f5:d8:88:cb:73:88:58:43:b1:79:42:9b: c0:b9:38:8d:38:17:4f:44:f1:34:67:de:7b:cc:3d: f3:b9:3a:be:2a:4a:c9:9d:c2:66:f7:1d:7a:13:b4: 6b:55:76:d4:01:03:73:34:f4:80:66:dc:d5:06:5d: 96:fc:8f:e2:e2:54:5b:6f:5b:62:bb:81:f7:7a:90: 3f:16:fa:d4:6e:bc:93:46:70:e2:57:b1:31:d3:ce: bd:f1:6d:c1:af:32:f0:30:66:bf:f4:6e:cc:8a:c7: c3:58:cf:dd:a4:a3:2d:bd:4e:bd:61:cc:37:89:e8: 5d:a9:2a:98:12:b1:19:e6:9d:dd:0b:03:47:98:34: be:75:13:03:b3:b7:91:4b:47:c7:03:97:18:bb:38: 3e:37:84:bb:ce:f0:96:c2:22:f7:af:50:de:29:dc: d4:43:d7:8c:0d:8a:71:2b:e5:a3:98:36:7d:38:30: 5a:6d:a5:6e:7a:6d:fa:11:c1:51:49:0e:80:6e:b0: d8:8d:7e:66:e6:b5:39:cd:38:32:87:a2:44:32:75: 9f:8e:cc:6b:f5:5f:aa:38:28:db:84:d7:4a:ee:96: a9:b8:8a:63:ec:c1:f6:0d:fa:89:b7:6d:aa:2c:8a: 28:02:19:ea:02:d3:ca:fd:ea:c9:3f:8d:c4:db:60: 71:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F0:BD:29:E7:8B:7A:6A:D2:55:2E:C6:8B:E8:09:DF:64:07:14:35 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.crl X509v3 Authority Key Identifier: keyid:F5:20:15:87:33:58:C5:12:78:64:66:F3:B0:E3:5D:8A:F4:78:79:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer sbgp-ipAddrBlock: critical IPv4: 64.68.192.0/24 IPv6: 2620:49:1::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 17:7c:41:1d:ff:dc:c4:75:97:2f:fd:f1:42:01:45:8f:8e:6c: bb:b0:ef:83:91:f1:b0:b4:ee:71:d7:b3:7e:4c:66:32:5b:03: 52:62:42:46:7d:e7:8e:d0:c8:24:8c:20:f4:2e:f7:63:48:a6: 63:0b:6e:3c:35:c6:72:90:e8:67:88:e3:7b:da:e1:4c:37:05: ba:df:11:80:a5:01:5f:8c:f8:41:f8:50:b9:f6:0e:91:59:4c: 42:07:0d:ad:38:09:d8:f3:a8:c7:be:1b:0b:8c:20:be:a4:62: f0:b6:b9:e2:04:28:ea:4a:3c:9a:4b:3d:32:5c:ba:57:83:0e: 56:83:0e:fd:09:1a:0a:5c:00:36:30:7d:b5:47:69:f6:fe:40: 2b:1e:60:fe:0a:f0:ec:74:69:92:a4:9c:ff:cb:90:b7:26:21: fe:8e:6b:6f:9c:b8:72:20:19:44:cf:0d:94:8c:9a:15:6b:68: d0:b7:af:87:cf:76:c2:70:b3:98:38:e4:97:b7:7d:00:d6:52: c8:b1:75:99:78:68:75:2b:28:6f:95:6e:14:e8:f1:63:b5:e0: 32:96:c7:62:ae:9d:9b:0a:1d:1f:7c:a3:7c:77:0c:8f:d7:76: 30:63:06:2c:6a:91:8e:31:19:cb:7a:56:67:a4:7d:3f:7d:95: d7:ac:ef:37 -----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgIUAQ0Mn0MoWEphKxSF3Q5/MYyCC4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAwNzQ5ZWQtNzBlZi00NDdjLWIxN2MtZGE2YmU4ZDdm MzEyMB4XDTI1MDcwMjAxMDA0OVoXDTI1MDkzMDAxMDA0OVowLzEtMCsGA1UEAxMk Zjk5YzY3MzYtMzcxMS00YzIxLWI2N2EtMWRlZGM5ZGVhMTRhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhz12IjLc4hYQ7F5QpvAuTiNOBdPRPE0Z957 zD3zuTq+KkrJncJm9x16E7RrVXbUAQNzNPSAZtzVBl2W/I/i4lRbb1tiu4H3epA/ FvrUbryTRnDiV7Ex08698W3BrzLwMGa/9G7MisfDWM/dpKMtvU69Ycw3iehdqSqY ErEZ5p3dCwNHmDS+dRMDs7eRS0fHA5cYuzg+N4S7zvCWwiL3r1DeKdzUQ9eMDYpx K+WjmDZ9ODBabaVuem36EcFRSQ6AbrDYjX5m5rU5zTgyh6JEMnWfjsxr9V+qOCjb hNdK7papuIpj7MH2DfqJt22qLIooAhnqAtPK/erJP43E22Bx3QIDAQABo4IDZjCC A2IwHQYDVR0OBBYEFNfwvSnni3pq0lUuxovoCd9kBxQ1MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kMDA3 NDllZC03MGVmLTQ0N2MtYjE3Yy1kYTZiZThkN2YzMTIvZDlmM2JmMjAtNGMwYi0z MGEzLTlkOTgtODNmZGEwMzQ2NjE0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZDAwNzQ5ZWQtNzBlZi00NDdjLWIx N2MtZGE2YmU4ZDdmMzEyL2QwMDc0OWVkLTcwZWYtNDQ3Yy1iMTdjLWRhNmJlOGQ3 ZjMxMi5jcmwwHwYDVR0jBBgwFoAU9SAVhzNYxRJ4ZGbzsONdivR4eXQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kMDA3NDllZC03MGVmLTQ0N2MtYjE3Yy1kYTZi ZThkN2YzMTIuY2VyMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAQETAMA8E AgACMAkDBwAmIABJAAEwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsG AQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMu aHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAF3xBHf/cxHWXL/3xQgFFj45su7Dvg5Hx sLTucdezfkxmMlsDUmJCRn3njtDIJIwg9C73Y0imYwtuPDXGcpDoZ4jje9rhTDcF ut8RgKUBX4z4QfhQufYOkVlMQgcNrTgJ2POox74bC4wgvqRi8La54gQo6ko8mks9 Mly6V4MOVoMO/QkaClwANjB9tUdp9v5AKx5g/grw7HRpkqSc/8uQtyYh/o5rb5y4 ciAZRM8NlIyaFWto0Levh892wnCzmDjkl7d9ANZSyLF1mXhodSsob5VuFOjxY7Xg MpbHYq6dmwodH3yjfHcMj9d2MGMGLGqRjjEZy3pWZ6R9P32V16zvNw== -----END CERTIFICATE-----Generated at Sat Jul 26 07:24:03 2025 by rpki-client