$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/3b65e538-7eac-399f-a285-565152afd8f6.roa File: 3b65e538-7eac-399f-a285-565152afd8f6.roa (raw, json) Hash identifier: 1OmtTqCGKFcY44tPXF5PDdHo8I7caReNCtpLHQQa/IM= Subject key identifier: 79:10:9E:04:10:27:8C:8D:83:12:5B:3E:1D:56:2B:8F:FA:48:44:86 Certificate issuer: /CN=8b7074c2-7c8f-41ac-8307-74ece44a460c Certificate serial: 010D0C9F4328584A7085F675D28A2B0733B038C0 Authority key identifier: C1:CC:88:BC:4A:C0:09:D7:61:48:C3:D1:C3:B2:52:40:69:D5:9F:01 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/3b65e538-7eac-399f-a285-565152afd8f6.roa Signing time: Mon 07 Jul 2025 13:01:05 +0000 ROA not before: Mon 07 Jul 2025 13:01:05 +0000 ROA not after: Sun 05 Oct 2025 13:01:05 +0000 asID: 33234 IP address blocks: 64.77.213.0/24 maxlen: 24 64.77.216.0/23 maxlen: 24 64.77.218.0/24 maxlen: 24 72.14.97.0/24 maxlen: 24 72.14.119.0/24 maxlen: 24 72.14.126.0/24 maxlen: 24 97.75.255.0/24 maxlen: 24 208.101.227.0/24 maxlen: 24 208.101.234.0/23 maxlen: 24 208.101.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/8b7074c2-7c8f-41ac-8307-74ece44a460c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/8b7074c2-7c8f-41ac-8307-74ece44a460c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 10 Jul 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:70:85:f6:75:d2:8a:2b:07:33:b0:38:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b7074c2-7c8f-41ac-8307-74ece44a460c Validity Not Before: Jul 7 13:01:05 2025 GMT Not After : Oct 5 13:01:05 2025 GMT Subject: CN=96e43327-9722-4988-88d9-c0144619a5b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:9b:14:64:94:e1:fe:d7:a7:83:7f:45:0a:b4: 6d:4c:40:24:30:cd:a6:44:aa:79:6e:ed:fe:a3:37: b8:04:a5:bb:22:24:77:7d:c8:6f:06:65:fc:a3:d9: 28:f7:91:3d:74:d3:87:47:86:7e:94:c3:fb:f5:d8: 38:0a:9c:75:b3:ba:fa:f3:c4:4a:f4:af:6e:f2:6b: d3:d0:ef:ae:8c:f2:06:ea:27:c2:cc:4e:b0:71:ca: 4f:50:79:12:8f:3c:7c:d5:ef:8b:22:ba:81:51:cc: 4b:1e:ca:3f:96:3f:88:22:64:20:d0:ad:79:96:98: f2:00:21:4e:9d:47:ac:a3:10:34:bf:90:4d:ce:18: 45:c7:00:de:92:a0:4c:4e:1c:8d:14:a9:bf:79:70: 7f:ea:66:93:f6:e3:c6:74:86:26:39:1b:97:43:f2: cb:ae:58:f6:11:24:ab:d7:bd:58:59:8a:db:b1:fc: 94:d2:8a:78:87:a2:5a:51:69:93:87:8b:d2:90:d7: d7:a8:e8:9e:49:ca:1a:1c:2b:8a:48:34:6c:1c:2f: 26:83:a3:6f:30:99:6c:f9:4d:12:a2:11:19:a4:be: 21:21:d2:cc:d2:84:af:eb:a2:85:6a:15:19:96:9d: 02:d9:0b:5a:b0:c4:21:ab:d5:5c:bb:14:6d:54:1c: 38:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:10:9E:04:10:27:8C:8D:83:12:5B:3E:1D:56:2B:8F:FA:48:44:86 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/3b65e538-7eac-399f-a285-565152afd8f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/8b7074c2-7c8f-41ac-8307-74ece44a460c.crl X509v3 Authority Key Identifier: keyid:C1:CC:88:BC:4A:C0:09:D7:61:48:C3:D1:C3:B2:52:40:69:D5:9F:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c.cer sbgp-ipAddrBlock: critical IPv4: 64.77.213.0/24 64.77.216.0-64.77.218.255 72.14.97.0/24 72.14.119.0/24 72.14.126.0/24 97.75.255.0/24 208.101.227.0/24 208.101.234.0-208.101.236.255 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 10:d2:81:78:23:b6:4b:1e:64:69:83:0f:93:30:a0:62:82:0e: 83:7e:b4:a2:7c:a5:95:c4:58:b8:53:60:84:62:89:6e:0d:1b: 53:a6:a7:44:0e:c4:9a:14:c3:73:f1:d5:54:d6:f0:c8:b4:f2: a9:f3:c9:c8:68:ad:0d:5c:b9:cc:f0:97:e8:79:cf:24:49:49: 2c:4e:9d:ae:99:51:8c:99:a0:f0:cf:b4:f4:51:c5:ff:13:2b: d9:8d:97:71:e4:45:62:7b:fc:ef:74:6d:d3:85:50:83:84:cf: 9f:b4:a7:0e:d3:f2:16:f4:2b:c2:ec:b1:14:1a:18:b8:9f:ed: de:69:08:3b:61:74:be:06:15:ec:59:4e:b2:b3:a3:5c:0b:d8: 5b:ed:0d:36:27:65:47:21:aa:02:ef:18:48:33:47:78:67:c7: 4d:08:0d:06:26:35:ec:6e:0c:99:40:72:50:41:08:92:43:c1: eb:76:a6:fc:dd:fa:8b:91:7b:ca:0c:42:67:e9:fb:d1:af:ba: 7a:81:19:8e:4c:b9:f3:e3:76:a1:eb:2a:ce:c9:72:85:6e:97: cd:6d:46:97:f4:26:17:d4:08:f2:f8:47:71:e6:dc:07:da:f8: 11:62:7e:9b:8b:61:a2:d3:d0:2a:62:e1:80:f0:1d:49:da:98: 7f:88:d2:13 -----BEGIN CERTIFICATE----- MIIGfTCCBWWgAwIBAgIUAQ0Mn0MoWEpwhfZ10oorBzOwOMAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkOGI3MDc0YzItN2M4Zi00MWFjLTgzMDctNzRlY2U0NGE0 NjBjMB4XDTI1MDcwNzEzMDEwNVoXDTI1MTAwNTEzMDEwNVowLzEtMCsGA1UEAxMk OTZlNDMzMjctOTcyMi00OTg4LTg4ZDktYzAxNDQ2MTlhNWI2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpsUZJTh/teng39FCrRtTEAkMM2mRKp5bu3+ oze4BKW7IiR3fchvBmX8o9ko95E9dNOHR4Z+lMP79dg4Cpx1s7r688RK9K9u8mvT 0O+ujPIG6ifCzE6wccpPUHkSjzx81e+LIrqBUcxLHso/lj+IImQg0K15lpjyACFO nUesoxA0v5BNzhhFxwDekqBMThyNFKm/eXB/6maT9uPGdIYmORuXQ/LLrlj2ESSr 171YWYrbsfyU0op4h6JaUWmTh4vSkNfXqOieScoaHCuKSDRsHC8mg6NvMJls+U0S ohEZpL4hIdLM0oSv66KFahUZlp0C2QtasMQhq9VcuxRtVBw4qQIDAQABo4IDjzCC A4swHQYDVR0OBBYEFHkQngQQJ4yNgxJbPh1WK4/6SESGMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS84Yjcw NzRjMi03YzhmLTQxYWMtODMwNy03NGVjZTQ0YTQ2MGMvM2I2NWU1MzgtN2VhYy0z OTlmLWEyODUtNTY1MTUyYWZkOGY2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NmZlMTFkNC1k MzUyLTQ5OTQtOGY2Yy1kNmM5MWIwYjg0MTUvOGI3MDc0YzItN2M4Zi00MWFjLTgz MDctNzRlY2U0NGE0NjBjLzhiNzA3NGMyLTdjOGYtNDFhYy04MzA3LTc0ZWNlNDRh NDYwYy5jcmwwHwYDVR0jBBgwFoAUwcyIvErACddhSMPRw7JSQGnVnwEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5 NC04ZjZjLWQ2YzkxYjBiODQxNS84YjcwNzRjMi03YzhmLTQxYWMtODMwNy03NGVj ZTQ0YTQ2MGMuY2VyMFkGCCsGAQUFBwEHAQH/BEowSDBGBAIAATBAAwQAQE3VMAwD BANATdgDBABATdoDBABIDmEDBABIDncDBABIDn4DBABhS/8DBADQZeMwDAMEAdBl 6gMEANBl7DBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEW LGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0G CSqGSIb3DQEBCwUAA4IBAQAQ0oF4I7ZLHmRpgw+TMKBigg6DfrSifKWVxFi4U2CE YoluDRtTpqdEDsSaFMNz8dVU1vDItPKp88nIaK0NXLnM8Jfoec8kSUksTp2umVGM maDwz7T0UcX/EyvZjZdx5EVie/zvdG3ThVCDhM+ftKcO0/IW9CvC7LEUGhi4n+3e aQg7YXS+BhXsWU6ys6NcC9hb7Q02J2VHIaoC7xhIM0d4Z8dNCA0GJjXsbgyZQHJQ QQiSQ8Hrdqb83fqLkXvKDEJn6fvRr7p6gRmOTLnz43ah6yrOyXKFbpfNbUaX9CYX 1Ajy+Edx5twH2vgRYn6bi2Gi09AqYuGA8B1J2ph/iNIT -----END CERTIFICATE-----Generated at Wed Jul 9 16:25:26 2025 by rpki-client