$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa File: bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa (raw, json) Hash identifier: jOQo6BrDPD1dPQ1SogUmiUdOo4NJ1cqXnPRGNUrZOtc= Subject key identifier: 9B:23:A6:46:4A:02:1D:82:69:76:8C:AF:A6:8B:6F:63:4C:E7:54:43 Certificate issuer: /CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Certificate serial: 010D0C9F4328584A7085F717EA99ADD81227EF00 Authority key identifier: AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa Signing time: Mon 07 Jul 2025 13:01:05 +0000 ROA not before: Mon 07 Jul 2025 13:01:05 +0000 ROA not after: Sun 05 Oct 2025 13:01:05 +0000 asID: 54994 IP address blocks: 157.185.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 12 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:70:85:f7:17:ea:99:ad:d8:12:27:ef:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Validity Not Before: Jul 7 13:01:05 2025 GMT Not After : Oct 5 13:01:05 2025 GMT Subject: CN=c7bb467d-a4c0-4e71-b6ad-2536c6c443b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:52:48:23:53:fe:3a:ae:1d:d0:bc:35:c5:25: 1b:89:e2:12:c1:18:ab:30:c1:84:6d:8d:df:c4:eb: fc:05:61:9a:3e:d9:05:6a:31:12:42:4f:d9:e3:16: 05:19:20:af:51:1a:44:60:c2:46:e4:ea:32:9d:9f: b1:f6:6b:74:1f:be:20:e6:f9:5e:1e:ef:8c:d5:3b: 49:66:9b:5b:2c:11:39:cd:c6:61:a7:b4:fd:e4:c9: ac:1a:6c:00:2e:e8:fc:be:bc:ee:9a:83:0e:17:93: 19:c3:48:87:43:9a:9f:c4:02:99:9e:c5:3e:a7:ee: 92:25:e3:78:06:46:b0:f0:9e:6a:98:0a:be:57:40: 01:47:89:63:b2:02:86:fd:b4:b1:79:1f:82:2f:fa: d6:ee:46:24:45:e6:1b:8c:3a:49:e3:d5:2b:1f:47: 12:f0:17:db:b5:16:52:7f:71:3b:91:43:b7:4c:01: a5:76:25:8f:70:be:6d:0d:b5:97:b8:e8:f9:dd:60: 9d:d2:01:91:e8:79:2b:1c:e0:49:6d:fa:e1:94:5d: 06:b6:09:ff:27:ae:52:42:f8:30:16:68:e5:d0:98: 68:71:45:4d:cd:a6:99:4d:da:e1:9d:aa:5a:99:09: 02:f7:c7:af:cc:eb:e5:7d:71:6d:f1:57:de:65:60: 09:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:23:A6:46:4A:02:1D:82:69:76:8C:AF:A6:8B:6F:63:4C:E7:54:43 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl X509v3 Authority Key Identifier: keyid:AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer sbgp-ipAddrBlock: critical IPv4: 157.185.172.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 4b:85:66:29:0d:d8:be:cf:2b:d8:45:59:c2:06:79:14:9d:92: 61:6d:e5:8a:06:75:89:01:8e:c4:09:5c:07:9f:c7:19:08:16: c3:cd:c8:00:2c:e3:90:74:d1:b0:ad:3d:c2:1a:fe:3c:e1:e8: 42:09:0b:44:8b:7c:d7:28:be:e5:c1:1f:fb:2e:3e:1f:10:cb: ba:db:11:39:5f:12:a4:fd:d3:8a:f0:1f:be:b4:d9:e0:51:24: 18:87:72:dd:3c:91:8f:bb:07:4f:2e:bd:95:74:b9:bd:7f:47: 0c:8c:b6:b0:1c:25:49:b9:90:68:9e:78:86:42:73:57:ec:5c: 27:51:2f:74:ab:e3:b2:c7:4b:4c:e5:79:35:cb:8f:bd:ca:c0: dc:39:ea:94:b4:a4:12:7a:83:f4:cb:fc:50:59:38:30:d1:73: 29:6a:42:76:7e:f3:47:b7:7c:dc:bf:ca:61:c7:5d:a2:ce:0b: 40:15:50:b8:6d:c6:f9:50:e0:ad:00:29:a1:4c:3d:a8:4a:5d: 9f:db:ed:ec:43:a6:d6:01:27:50:3d:2e:37:ec:e2:27:09:47: 27:c4:5a:c5:76:e1:7f:1f:e9:97:94:90:cb:1a:9c:ea:73:fd: ad:9e:d5:8c:ca:e9:cb:21:00:a9:a0:06:af:7c:b1:53:c2:3f: cb:35:a7:7d -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEpwhfcX6pmt2BIn7wAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDFkYmMwZDctNGVjZi00YjliLTljN2ItOTIwMGFmOTAy ZDFiMB4XDTI1MDcwNzEzMDEwNVoXDTI1MTAwNTEzMDEwNVowLzEtMCsGA1UEAxMk YzdiYjQ2N2QtYTRjMC00ZTcxLWI2YWQtMjUzNmM2YzQ0M2IyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA01JII1P+Oq4d0Lw1xSUbieISwRirMMGEbY3f xOv8BWGaPtkFajESQk/Z4xYFGSCvURpEYMJG5OoynZ+x9mt0H74g5vleHu+M1TtJ ZptbLBE5zcZhp7T95MmsGmwALuj8vrzumoMOF5MZw0iHQ5qfxAKZnsU+p+6SJeN4 Bkaw8J5qmAq+V0ABR4ljsgKG/bSxeR+CL/rW7kYkReYbjDpJ49UrH0cS8BfbtRZS f3E7kUO3TAGldiWPcL5tDbWXuOj53WCd0gGR6HkrHOBJbfrhlF0Gtgn/J65SQvgw Fmjl0JhocUVNzaaZTdrhnapamQkC98evzOvlfXFt8VfeZWAJHwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJsjpkZKAh2CaXaMr6aLb2NM51RDMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS80MWRi YzBkNy00ZWNmLTRiOWItOWM3Yi05MjAwYWY5MDJkMWIvYmZhMGJhYjMtYTU2NC0z ZTdjLWFiZDgtOGEwMDlmMTA0N2Y2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNDFkYmMwZDctNGVjZi00YjliLTlj N2ItOTIwMGFmOTAyZDFiLzQxZGJjMGQ3LTRlY2YtNGI5Yi05YzdiLTkyMDBhZjkw MmQxYi5jcmwwHwYDVR0jBBgwFoAUr+2KlmaX9JrFjYUWRsptXpsJ0LcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS80MWRiYzBkNy00ZWNmLTRiOWItOWM3Yi05MjAw YWY5MDJkMWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnbmsMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAEuFZikN2L7PK9hFWcIGeRSdkmFt5YoGdYkBjsQJXAefxxkIFsPNyAAs 45B00bCtPcIa/jzh6EIJC0SLfNcovuXBH/suPh8Qy7rbETlfEqT904rwH7602eBR JBiHct08kY+7B08uvZV0ub1/RwyMtrAcJUm5kGieeIZCc1fsXCdRL3Sr47LHS0zl eTXLj73KwNw56pS0pBJ6g/TL/FBZODDRcylqQnZ+80e3fNy/ymHHXaLOC0AVULht xvlQ4K0AKaFMPahKXZ/b7exDptYBJ1A9Ljfs4icJRyfEWsV24X8f6ZeUkMsanOpz /a2e1YzK6cshAKmgBq98sVPCP8s1p30= -----END CERTIFICATE-----Generated at Fri Jul 11 04:37:16 2025 by rpki-client