$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa File: e21aefd6-472c-3930-aa58-debd99be2072.roa (raw, json) Hash identifier: xcbGu36E/BIjArhNHbetZu5iyMBrQL/wFgmAD+s/hW8= Subject key identifier: 82:3E:EA:E3:88:D5:F2:0B:C7:4C:CD:23:CB:26:64:5D:86:E2:90:3B Certificate issuer: /CN=9970d52c-d3a1-4687-a712-212a44ee0fb2 Certificate serial: 010D0C9F4328584B2496CD7CE59443A4CE3F7480 Authority key identifier: 56:D1:3C:08:C7:F6:2C:0B:42:A3:CB:3A:17:E8:6B:D9:D8:77:E1:76 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa Signing time: Wed 10 Sep 2025 01:00:33 +0000 ROA not before: Wed 10 Sep 2025 01:00:33 +0000 ROA not after: Tue 09 Dec 2025 02:00:33 +0000 asID: 395035 IP address blocks: 216.150.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 25 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:24:96:cd:7c:e5:94:43:a4:ce:3f:74:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9970d52c-d3a1-4687-a712-212a44ee0fb2 Validity Not Before: Sep 10 01:00:33 2025 GMT Not After : Dec 9 02:00:33 2025 GMT Subject: CN=007f0bef-25b8-43d2-92e5-cea4bf4cae48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:66:56:74:ef:16:99:2c:95:c9:fc:67:02:c6: 3b:fd:25:e6:55:af:0b:4e:e3:dd:f4:a1:8e:71:9b: 76:64:08:d8:9b:d2:1a:ce:d7:d3:fa:93:81:21:78: f1:3d:3c:8d:19:a4:df:1d:f1:28:1a:8b:1f:51:24: ff:46:7f:6c:61:a5:40:2b:ae:2e:73:cc:64:75:3c: 15:c3:3a:b3:ef:0f:d9:31:fd:94:07:85:c4:c3:8a: 6e:70:9a:0b:c4:c3:ee:fc:2b:44:24:a8:e7:0b:1e: 96:b5:3c:96:e0:e2:fa:b1:d3:54:27:c1:1a:2d:0c: 69:4b:9f:da:85:e2:0b:cf:27:f0:fb:02:76:b9:32: 37:f7:b0:6f:3b:84:aa:62:8d:05:7b:8f:81:12:9d: 95:ee:cc:42:8b:f1:00:fd:5f:d0:90:90:c1:cc:4d: ea:de:f2:a9:f5:ef:72:ff:33:e9:69:b8:f4:f3:16: b6:fb:75:af:f0:82:87:7d:74:16:db:fc:f1:c1:1d: 13:dc:65:bd:50:ee:90:ee:ab:ec:f1:56:5e:79:29: 6f:b8:c3:ef:66:9f:76:d9:c4:5b:18:fc:b4:6b:c1: 1c:ef:50:6f:85:10:8d:7f:51:65:f8:d7:7d:a9:a2: bc:41:46:a8:8b:0b:b9:e4:8e:85:ea:95:37:c5:19: 84:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3E:EA:E3:88:D5:F2:0B:C7:4C:CD:23:CB:26:64:5D:86:E2:90:3B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.crl X509v3 Authority Key Identifier: keyid:56:D1:3C:08:C7:F6:2C:0B:42:A3:CB:3A:17:E8:6B:D9:D8:77:E1:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer sbgp-ipAddrBlock: critical IPv4: 216.150.8.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3b:11:85:75:50:33:22:cb:77:64:b5:40:3f:51:07:f9:4a:82: 7b:86:24:49:b9:5e:a4:82:89:19:16:ac:2e:60:8a:8f:b2:67: 97:58:b2:8a:e5:61:17:6a:e3:5b:48:00:d6:6c:fe:f1:38:4f: e9:09:30:50:75:cf:3b:d6:24:45:85:e6:8c:c9:06:a7:a4:65: fe:89:2a:04:e2:0e:90:6c:41:d2:6d:d4:f7:43:70:38:3b:4f: 11:30:7c:73:d0:ef:4c:15:2b:ce:83:0c:3c:5a:7f:f9:9c:85: 2d:da:26:a9:f1:af:69:0d:a7:0a:90:b0:d2:31:74:91:c2:64: 60:01:4a:c9:11:2c:0a:ab:0b:0d:40:5f:8d:de:6a:c7:1a:b6: 49:b4:b5:5f:50:3a:55:c8:0b:f7:eb:87:68:47:91:b4:ad:62: 8d:82:e2:6a:54:50:aa:ab:07:9b:c9:f0:f6:98:4e:3f:84:1d: ef:e2:3f:2c:f3:48:f9:96:2f:9a:b5:1c:f3:06:cd:71:52:1e: 8b:4c:54:53:66:e1:af:e3:bc:36:00:85:c2:87:48:6a:aa:62: ea:46:37:e9:eb:6c:47:33:d4:10:d0:ce:f6:1d:fc:0c:47:eb: 5c:a8:92:eb:c8:6c:26:3a:45:a7:18:45:02:dc:f8:cd:4e:d7: 44:74:1e:c3 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEskls185ZRDpM4/dIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkOTk3MGQ1MmMtZDNhMS00Njg3LWE3MTItMjEyYTQ0ZWUw ZmIyMB4XDTI1MDkxMDAxMDAzM1oXDTI1MTIwOTAyMDAzM1owLzEtMCsGA1UEAxMk MDA3ZjBiZWYtMjViOC00M2QyLTkyZTUtY2VhNGJmNGNhZTQ4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi2ZWdO8WmSyVyfxnAsY7/SXmVa8LTuPd9KGO cZt2ZAjYm9IaztfT+pOBIXjxPTyNGaTfHfEoGosfUST/Rn9sYaVAK64uc8xkdTwV wzqz7w/ZMf2UB4XEw4pucJoLxMPu/CtEJKjnCx6WtTyW4OL6sdNUJ8EaLQxpS5/a heILzyfw+wJ2uTI397BvO4SqYo0Fe4+BEp2V7sxCi/EA/V/QkJDBzE3q3vKp9e9y /zPpabj08xa2+3Wv8IKHfXQW2/zxwR0T3GW9UO6Q7qvs8VZeeSlvuMPvZp922cRb GPy0a8Ec71BvhRCNf1Fl+Nd9qaK8QUaoiwu55I6F6pU3xRmEtQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFII+6uOI1fILx0zNI8smZF2G4pA7MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS85OTcw ZDUyYy1kM2ExLTQ2ODctYTcxMi0yMTJhNDRlZTBmYjIvZTIxYWVmZDYtNDcyYy0z OTMwLWFhNTgtZGViZDk5YmUyMDcyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvOTk3MGQ1MmMtZDNhMS00Njg3LWE3 MTItMjEyYTQ0ZWUwZmIyLzk5NzBkNTJjLWQzYTEtNDY4Ny1hNzEyLTIxMmE0NGVl MGZiMi5jcmwwHwYDVR0jBBgwFoAUVtE8CMf2LAtCo8s6F+hr2dh34XYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS85OTcwZDUyYy1kM2ExLTQ2ODctYTcxMi0yMTJh NDRlZTBmYjIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD2JYIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADsRhXVQMyLLd2S1QD9RB/lKgnuGJEm5XqSCiRkWrC5gio+yZ5dYsorl YRdq41tIANZs/vE4T+kJMFB1zzvWJEWF5ozJBqekZf6JKgTiDpBsQdJt1PdDcDg7 TxEwfHPQ70wVK86DDDxaf/mchS3aJqnxr2kNpwqQsNIxdJHCZGABSskRLAqrCw1A X43eascatkm0tV9QOlXIC/frh2hHkbStYo2C4mpUUKqrB5vJ8PaYTj+EHe/iPyzz SPmWL5q1HPMGzXFSHotMVFNm4a/jvDYAhcKHSGqqYupGN+nrbEcz1BDQzvYd/AxH 61yokuvIbCY6RacYRQLc+M1O10R0HsM= -----END CERTIFICATE-----Generated at Fri Oct 24 08:27:06 2025 by rpki-client