$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/dad7d956-91ce-309d-a710-c9e480e1eb82.roa File: dad7d956-91ce-309d-a710-c9e480e1eb82.roa (raw, json) Hash identifier: FWXPEOUldSEPDKhyURTA/4OF30vE9S8CjOeU/Oy/DnU= Subject key identifier: D7:3C:DC:CF:02:E2:5A:05:86:88:2B:84:FD:4C:F8:99:BE:C7:53:50 Certificate issuer: /CN=5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca Certificate serial: 010D0C9F4328584B328C3642BE96183F1F8D1380 Authority key identifier: 02:5F:8E:3F:1A:33:F6:22:34:19:90:CE:F1:19:AB:2B:9B:5B:AF:79 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/dad7d956-91ce-309d-a710-c9e480e1eb82.roa Signing time: Mon 15 Sep 2025 01:00:33 +0000 ROA not before: Mon 15 Sep 2025 01:00:33 +0000 ROA not after: Sun 14 Dec 2025 02:00:33 +0000 asID: 400644 IP address blocks: 2620:aa:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:32:8c:36:42:be:96:18:3f:1f:8d:13:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca Validity Not Before: Sep 15 01:00:33 2025 GMT Not After : Dec 14 02:00:33 2025 GMT Subject: CN=fbdade3b-f8f4-4e18-8c19-ea07bfc08d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ac:3f:42:48:17:24:99:6e:9e:66:a3:27:af: e1:13:68:0b:50:57:d4:49:6e:d1:41:ca:fe:83:a3: 6c:bf:44:3d:dd:05:7f:43:86:c7:19:11:7e:14:95: 81:d9:5d:24:cd:6e:41:5a:81:7e:96:c1:cb:3e:a1: 7a:8d:bd:a2:98:93:56:26:40:2d:3c:f6:1e:a5:d7: a4:bb:8e:fd:c4:90:f4:a4:91:0e:64:79:23:56:16: 44:81:16:e3:2e:70:ee:5c:67:c9:2a:15:9f:16:d3: e7:7c:bc:f5:97:cb:c9:83:ef:c0:f1:ab:2f:0e:5e: 25:db:59:0c:5b:16:67:04:c3:dc:c1:66:10:94:b3: 81:14:f6:6f:9e:e5:86:77:8f:ed:92:7a:68:d2:8c: 94:8e:06:e0:ff:34:cd:ea:da:80:e2:7e:1b:7f:9a: 40:87:60:77:14:fb:b4:17:e5:c7:31:a9:46:0e:9c: 9d:73:51:0f:a8:bd:3a:89:d7:c0:6a:4c:f6:8f:6f: 42:46:db:45:c6:ab:07:68:c7:f8:65:ac:0f:e6:ec: 45:3a:d4:27:ba:c4:bd:c8:b2:5f:92:fe:c6:38:84: e1:67:22:d9:a6:fd:2a:a1:a1:f2:60:e8:4c:bc:d5: 8d:95:7c:f6:9a:a0:61:8e:24:73:b8:9d:2a:3b:0e: 23:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:3C:DC:CF:02:E2:5A:05:86:88:2B:84:FD:4C:F8:99:BE:C7:53:50 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/dad7d956-91ce-309d-a710-c9e480e1eb82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.crl X509v3 Authority Key Identifier: keyid:02:5F:8E:3F:1A:33:F6:22:34:19:90:CE:F1:19:AB:2B:9B:5B:AF:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.cer sbgp-ipAddrBlock: critical IPv6: 2620:aa:a000::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 79:20:9c:6a:c6:07:89:0a:e5:76:12:ac:aa:fa:2c:29:d2:4a: 05:24:06:d5:6b:7f:50:c2:b2:c7:83:b0:d9:a3:94:29:14:cb: 00:84:1e:4d:9b:4b:02:f7:92:9e:42:cb:fc:bd:87:01:2f:e9: a9:72:31:c5:4e:09:84:56:16:75:3f:c4:7d:44:e7:38:86:71: f4:d2:6e:0e:33:43:53:0d:ad:12:43:b5:ce:99:ce:2f:99:36: 3d:dd:03:07:dd:fc:ad:5c:bb:a7:f4:22:25:21:42:2b:03:da: 85:14:72:58:66:e6:8e:e3:e8:3b:db:c0:db:21:d3:29:14:68: 9c:d4:72:7a:97:b7:95:7a:d4:37:d2:6e:0f:a0:67:2b:48:5c: 76:e7:45:8b:55:cf:f3:2c:73:f6:ad:cc:3d:e7:5f:5d:26:b7: a4:3d:8c:4a:a8:25:0d:82:4c:cb:1c:a3:0c:70:5f:a7:f0:78: 61:ff:ba:a2:17:23:09:44:ef:4a:85:8d:6d:0a:cd:fb:d5:2c: 60:fa:72:1a:ba:8f:32:6d:2b:8d:85:2b:4d:50:b7:c4:99:da: b4:59:b2:4e:c1:31:43:52:6a:fa:c3:79:f5:1a:a4:e9:bf:4a: 76:1e:dc:fd:ae:e3:05:a7:2e:8d:fc:13:06:ee:e1:eb:2f:bd: 4b:50:8b:3e -----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgIUAQ0Mn0MoWEsyjDZCvpYYPx+NE4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWJhMWFhOGEtYmFkNi00ZTA5LWE0YzYtYWM0MjRmMDRm NWNhMB4XDTI1MDkxNTAxMDAzM1oXDTI1MTIxNDAyMDAzM1owLzEtMCsGA1UEAxMk ZmJkYWRlM2ItZjhmNC00ZTE4LThjMTktZWEwN2JmYzA4ZDMwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqw/QkgXJJlunmajJ6/hE2gLUFfUSW7RQcr+ g6Nsv0Q93QV/Q4bHGRF+FJWB2V0kzW5BWoF+lsHLPqF6jb2imJNWJkAtPPYepdek u479xJD0pJEOZHkjVhZEgRbjLnDuXGfJKhWfFtPnfLz1l8vJg+/A8asvDl4l21kM WxZnBMPcwWYQlLOBFPZvnuWGd4/tknpo0oyUjgbg/zTN6tqA4n4bf5pAh2B3FPu0 F+XHMalGDpydc1EPqL06idfAakz2j29CRttFxqsHaMf4ZawP5uxFOtQnusS9yLJf kv7GOIThZyLZpv0qoaHyYOhMvNWNlXz2mqBhjiRzuJ0qOw4jxwIDAQABo4IDWDCC A1QwHQYDVR0OBBYEFNc83M8C4loFhogrhP1M+Jm+x1NQMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS81YmEx YWE4YS1iYWQ2LTRlMDktYTRjNi1hYzQyNGYwNGY1Y2EvZGFkN2Q5NTYtOTFjZS0z MDlkLWE3MTAtYzllNDgwZTFlYjgyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNWJhMWFhOGEtYmFkNi00ZTA5LWE0 YzYtYWM0MjRmMDRmNWNhLzViYTFhYThhLWJhZDYtNGUwOS1hNGM2LWFjNDI0ZjA0 ZjVjYS5jcmwwHwYDVR0jBBgwFoAUAl+OPxoz9iI0GZDO8RmrK5tbr3kwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS81YmExYWE4YS1iYWQ2LTRlMDktYTRjNi1hYzQy NGYwNGY1Y2EuY2VyMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJiAAqqAA MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBAHkgnGrGB4kK5XYSrKr6LCnSSgUkBtVrf1DCsseDsNmjlCkUywCE Hk2bSwL3kp5Cy/y9hwEv6alyMcVOCYRWFnU/xH1E5ziGcfTSbg4zQ1MNrRJDtc6Z zi+ZNj3dAwfd/K1cu6f0IiUhQisD2oUUclhm5o7j6DvbwNsh0ykUaJzUcnqXt5V6 1DfSbg+gZytIXHbnRYtVz/Msc/atzD3nX10mt6Q9jEqoJQ2CTMscowxwX6fweGH/ uqIXIwlE70qFjW0KzfvVLGD6chq6jzJtK42FK01Qt8SZ2rRZsk7BMUNSavrDefUa pOm/SnYe3P2u4wWnLo38Ewbu4esvvUtQiz4= -----END CERTIFICATE-----Generated at Wed Sep 17 00:44:08 2025 by rpki-client