$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/41138728-4b0a-33e7-a5bd-ea7cb42a601e.roa File: 41138728-4b0a-33e7-a5bd-ea7cb42a601e.roa (raw, json) Hash identifier: CYuF6kVAnzfl1Nd2lGeaT0RTIDI0OVk2yBtnlhJJpvk= Subject key identifier: D2:35:42:E7:0F:9A:24:B2:E9:A4:78:E6:64:1D:06:5B:35:B5:0A:FB Certificate issuer: /CN=70ddad33-55eb-4125-9221-0129168a645b Certificate serial: 010D0C9F4328584AD93659AC941D2A6326A61A00 Authority key identifier: 7F:4C:A4:22:A3:CB:BB:A5:D6:77:9C:25:01:F3:7F:E5:D9:0E:B4:BD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/41138728-4b0a-33e7-a5bd-ea7cb42a601e.roa Signing time: Thu 14 Aug 2025 01:00:33 +0000 ROA not before: Thu 14 Aug 2025 01:00:33 +0000 ROA not after: Wed 12 Nov 2025 02:00:33 +0000 asID: 400341 IP address blocks: 165.140.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/70ddad33-55eb-4125-9221-0129168a645b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/70ddad33-55eb-4125-9221-0129168a645b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:d9:36:59:ac:94:1d:2a:63:26:a6:1a:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70ddad33-55eb-4125-9221-0129168a645b Validity Not Before: Aug 14 01:00:33 2025 GMT Not After : Nov 12 02:00:33 2025 GMT Subject: CN=c9e4d811-7e96-454b-b015-f77f7e591725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:c0:63:ed:69:a6:08:9c:d4:1d:7f:0c:ac:45: c9:1d:fc:b2:63:d9:c0:1a:06:98:12:75:18:eb:e6: 18:ba:f9:64:c9:11:9c:13:1c:93:da:f0:75:b5:8a: b8:76:db:60:48:c3:d1:44:92:cf:e1:1c:85:21:62: ae:ee:89:dc:30:0d:44:70:fc:b4:0c:ba:9c:2b:8f: 14:b2:c8:af:26:91:d8:a0:b1:ba:4b:6a:f5:f6:29: 2c:90:a2:dc:88:ba:0c:e4:e1:49:1f:82:36:a8:6f: 46:1d:b8:ab:f1:44:64:ed:80:8d:84:65:11:74:57: 14:a1:80:05:b0:69:e4:fb:13:0d:10:c1:26:78:09: 34:18:78:2a:9e:b8:97:d1:f6:26:1b:b6:6e:68:c8: 14:3f:33:c3:a5:3a:10:bf:5d:4b:8c:b4:40:c8:a8: 10:5e:5e:9f:2b:b8:5a:67:f5:cc:04:67:3e:a3:5a: 2c:4c:05:ec:23:97:f1:2c:f2:5d:38:ba:38:ad:69: 64:db:7e:cf:02:b1:8c:6b:fd:7e:df:3a:01:24:b4: 8c:03:5b:26:e6:ef:16:d8:b7:1a:1f:48:1a:71:9e: e8:2b:85:87:4c:ba:c9:2b:ea:83:fe:cc:78:e2:4a: c0:7d:c7:2b:6d:50:91:a9:49:2f:23:17:b0:a4:51: 15:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:35:42:E7:0F:9A:24:B2:E9:A4:78:E6:64:1D:06:5B:35:B5:0A:FB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/41138728-4b0a-33e7-a5bd-ea7cb42a601e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/70ddad33-55eb-4125-9221-0129168a645b.crl X509v3 Authority Key Identifier: keyid:7F:4C:A4:22:A3:CB:BB:A5:D6:77:9C:25:01:F3:7F:E5:D9:0E:B4:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b.cer sbgp-ipAddrBlock: critical IPv4: 165.140.216.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 25:09:b4:16:ec:49:1b:4a:06:f1:f4:08:ab:21:92:02:81:12: 34:f9:41:66:38:d3:6a:e6:90:7a:c5:85:15:18:cc:15:95:3a: 9f:d4:28:20:f7:51:fa:11:b8:8e:75:6a:72:12:c4:35:36:2e: 81:c1:1d:78:eb:ba:af:73:b1:1c:ba:f2:cc:b5:a8:14:e3:10: 15:ca:65:cd:8b:97:26:84:b2:8e:ac:10:8c:3f:96:22:da:ae: e0:5b:01:66:57:b5:c7:df:0a:0a:47:c3:f3:8b:b5:2c:07:f8: 34:35:11:f2:1f:c1:88:ca:14:a3:e1:85:d8:4c:ed:b6:a7:25: cf:45:aa:e4:67:14:fa:71:87:1d:a3:8f:2e:b4:7d:58:32:b3: 96:1c:1a:5d:76:49:e9:78:23:58:9e:da:ac:c7:44:4e:65:7e: fe:64:1c:78:55:1a:5c:21:8a:67:5d:13:79:9e:42:ba:eb:d0: 1e:86:1c:b7:19:99:1c:8c:57:41:cd:e4:09:db:6c:16:af:95: 46:30:8e:28:04:a8:89:9a:1b:18:92:e5:9c:9f:82:4c:f3:a0: 9c:12:fa:ed:df:25:b3:82:dd:56:66:93:54:94:92:f2:5e:b3: 1f:56:84:6d:95:4c:c9:23:4c:0c:44:70:40:f5:9e:da:71:cd: 42:48:7c:55 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWErZNlmslB0qYyamGgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNzBkZGFkMzMtNTVlYi00MTI1LTkyMjEtMDEyOTE2OGE2 NDViMB4XDTI1MDgxNDAxMDAzM1oXDTI1MTExMjAyMDAzM1owLzEtMCsGA1UEAxMk YzllNGQ4MTEtN2U5Ni00NTRiLWIwMTUtZjc3ZjdlNTkxNzI1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8Bj7WmmCJzUHX8MrEXJHfyyY9nAGgaYEnUY 6+YYuvlkyRGcExyT2vB1tYq4dttgSMPRRJLP4RyFIWKu7oncMA1EcPy0DLqcK48U ssivJpHYoLG6S2r19ikskKLciLoM5OFJH4I2qG9GHbir8URk7YCNhGURdFcUoYAF sGnk+xMNEMEmeAk0GHgqnriX0fYmG7ZuaMgUPzPDpToQv11LjLRAyKgQXl6fK7ha Z/XMBGc+o1osTAXsI5fxLPJdOLo4rWlk237PArGMa/1+3zoBJLSMA1sm5u8W2Lca H0gacZ7oK4WHTLrJK+qD/sx44krAfccrbVCRqUkvIxewpFEVDwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNI1QucPmiSy6aR45mQdBls1tQr7MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS83MGRk YWQzMy01NWViLTQxMjUtOTIyMS0wMTI5MTY4YTY0NWIvNDExMzg3MjgtNGIwYS0z M2U3LWE1YmQtZWE3Y2I0MmE2MDFlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNzBkZGFkMzMtNTVlYi00MTI1LTky MjEtMDEyOTE2OGE2NDViLzcwZGRhZDMzLTU1ZWItNDEyNS05MjIxLTAxMjkxNjhh NjQ1Yi5jcmwwHwYDVR0jBBgwFoAUf0ykIqPLu6XWd5wlAfN/5dkOtL0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS83MGRkYWQzMy01NWViLTQxMjUtOTIyMS0wMTI5 MTY4YTY0NWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCpYzYMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACUJtBbsSRtKBvH0CKshkgKBEjT5QWY402rmkHrFhRUYzBWVOp/UKCD3 UfoRuI51anISxDU2LoHBHXjruq9zsRy68sy1qBTjEBXKZc2LlyaEso6sEIw/liLa ruBbAWZXtcffCgpHw/OLtSwH+DQ1EfIfwYjKFKPhhdhM7banJc9FquRnFPpxhx2j jy60fVgys5YcGl12Sel4I1ie2qzHRE5lfv5kHHhVGlwhimddE3meQrrr0B6GHLcZ mRyMV0HN5AnbbBavlUYwjigEqImaGxiS5ZyfgkzzoJwS+u3fJbOC3VZmk1SUkvJe sx9WhG2VTMkjTAxEcED1ntpxzUJIfFU= -----END CERTIFICATE-----Generated at Thu Aug 21 03:56:50 2025 by rpki-client