$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa File: 3125937d-10bf-347b-bf28-785512b3e771.roa (raw, json) Hash identifier: 3CWd4Qw5fTcKv0jF8Zk3afAH59uWwa6PerAx4Pq4gyM= Subject key identifier: B3:C7:45:31:F6:40:B9:CD:66:EC:5C:CE:94:D3:46:64:DE:44:D4:61 Certificate issuer: /CN=a07401de-4b0a-4532-ac08-dba8b0588c48 Certificate serial: 010D0C9F4328584B0B76B4CD288E301C9016E500 Authority key identifier: 2E:F3:B1:0B:CE:E4:C3:34:88:54:17:22:AC:69:76:A5:51:34:03:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa Signing time: Mon 01 Sep 2025 01:00:33 +0000 ROA not before: Mon 01 Sep 2025 01:00:33 +0000 ROA not after: Sun 30 Nov 2025 02:00:33 +0000 asID: 17 IP address blocks: 128.10.0.0/16 maxlen: 24 128.46.0.0/16 maxlen: 24 128.210.0.0/16 maxlen: 24 128.211.0.0/16 maxlen: 24 192.5.40.0/24 maxlen: 24 192.5.48.0/24 maxlen: 24 192.5.91.0/24 maxlen: 24 192.5.101.0/24 maxlen: 24 192.5.102.0/24 maxlen: 24 192.12.63.0/24 maxlen: 24 192.31.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/a07401de-4b0a-4532-ac08-dba8b0588c48.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/a07401de-4b0a-4532-ac08-dba8b0588c48.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:0b:76:b4:cd:28:8e:30:1c:90:16:e5:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a07401de-4b0a-4532-ac08-dba8b0588c48 Validity Not Before: Sep 1 01:00:33 2025 GMT Not After : Nov 30 02:00:33 2025 GMT Subject: CN=90c15bc0-0faf-4f2b-b6cc-7953351c82c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fc:57:68:e6:01:c4:72:c5:9b:c0:cf:3f:93: 43:6a:2a:9e:7e:83:a9:f2:62:5c:a2:44:c7:2c:19: c9:b2:09:30:e6:64:eb:a1:9c:3e:56:8c:7d:f1:8c: 1d:73:cb:2e:c4:03:f7:0c:be:25:28:87:f4:4a:06: 96:9b:d8:47:a9:94:d4:ba:a4:de:0f:03:fb:b4:92: 19:7c:28:1e:fd:96:a7:bf:f8:a6:a5:3d:6c:2e:2e: 28:40:56:ea:5b:15:ef:11:c3:d2:aa:31:7d:6d:b6: 7b:44:8e:c4:23:80:30:f7:c3:9b:32:69:3d:37:58: 65:73:62:5b:58:2f:7f:d0:2d:0b:26:c8:db:9a:dd: 4d:06:9b:4a:da:48:ec:86:24:02:0e:58:ea:18:52: 4f:80:00:68:39:42:40:7c:96:ad:c9:0b:08:7e:b3: d9:27:fc:4d:c6:35:fe:0d:54:81:36:71:87:12:61: 32:4b:17:9a:e6:f3:a1:83:0e:3b:64:24:11:ca:bf: 42:3f:e2:2b:e3:f2:5c:ca:01:1c:a4:b0:cf:45:96: fe:11:15:03:69:46:21:58:ce:0e:da:2a:42:4c:78: 59:73:95:33:5f:14:d5:1d:37:57:d8:d6:1f:2f:e2: ee:2d:23:f2:e2:4c:86:ae:9f:6b:dd:3e:22:de:01: 2e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C7:45:31:F6:40:B9:CD:66:EC:5C:CE:94:D3:46:64:DE:44:D4:61 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/a07401de-4b0a-4532-ac08-dba8b0588c48.crl X509v3 Authority Key Identifier: keyid:2E:F3:B1:0B:CE:E4:C3:34:88:54:17:22:AC:69:76:A5:51:34:03:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48.cer sbgp-ipAddrBlock: critical IPv4: 128.10.0.0/16 128.46.0.0/16 128.210.0.0/15 192.5.40.0/24 192.5.48.0/24 192.5.91.0/24 192.5.101.0-192.5.102.255 192.12.63.0/24 192.31.0.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6f:4c:db:2d:5f:48:85:01:09:c5:68:bd:c4:e3:5b:c4:81:3a: f4:41:41:be:95:9f:c6:29:b6:32:59:54:b6:ea:ca:36:d6:54: 67:64:bc:d9:04:14:8a:8e:de:2d:1e:6e:25:d5:94:20:eb:11: 75:62:38:c7:ab:2a:f6:9b:49:9a:85:6b:9e:f0:ce:e0:ee:2c: 07:56:52:07:2d:13:2e:11:1f:3e:c8:86:82:9e:75:91:b7:6e: 77:64:c4:0f:51:20:ac:c7:0c:de:eb:46:ee:43:3f:88:07:d0: 92:da:85:c4:84:22:09:87:98:d3:23:5e:46:f7:a8:66:f8:b2: e8:06:aa:3a:f5:8d:74:3d:36:0e:27:6d:04:47:b6:f2:9d:ea: aa:dd:1a:cb:85:d4:20:46:ce:50:9e:ce:89:10:14:d8:86:85: 5b:66:b0:38:3f:a8:fa:56:08:37:82:35:e8:03:70:cb:a8:e0: a1:42:38:80:cd:8f:bb:00:8b:af:6d:6b:17:a8:59:49:54:fc: 7d:4b:2a:4e:38:dd:e2:fb:de:ba:c8:d2:04:d8:89:58:3e:01: c8:9f:98:dc:1d:12:f3:a2:8e:c7:d3:c9:b2:4f:d6:03:89:3b: ab:6f:e1:a3:8d:71:f6:cf:c0:01:26:46:73:bf:d5:9d:17:1c: d7:dc:8e:ec -----BEGIN CERTIFICATE----- MIIGeDCCBWCgAwIBAgIUAQ0Mn0MoWEsLdrTNKI4wHJAW5QAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYTA3NDAxZGUtNGIwYS00NTMyLWFjMDgtZGJhOGIwNTg4 YzQ4MB4XDTI1MDkwMTAxMDAzM1oXDTI1MTEzMDAyMDAzM1owLzEtMCsGA1UEAxMk OTBjMTViYzAtMGZhZi00ZjJiLWI2Y2MtNzk1MzM1MWM4MmMwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/xXaOYBxHLFm8DPP5NDaiqefoOp8mJcokTH LBnJsgkw5mTroZw+Vox98Ywdc8suxAP3DL4lKIf0SgaWm9hHqZTUuqTeDwP7tJIZ fCge/Zanv/impT1sLi4oQFbqWxXvEcPSqjF9bbZ7RI7EI4Aw98ObMmk9N1hlc2Jb WC9/0C0LJsjbmt1NBptK2kjshiQCDljqGFJPgABoOUJAfJatyQsIfrPZJ/xNxjX+ DVSBNnGHEmEySxea5vOhgw47ZCQRyr9CP+Ir4/JcygEcpLDPRZb+ERUDaUYhWM4O 2ipCTHhZc5UzXxTVHTdX2NYfL+LuLSPy4kyGrp9r3T4i3gEuXQIDAQABo4IDijCC A4YwHQYDVR0OBBYEFLPHRTH2QLnNZuxczpTTRmTeRNRhMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9hMDc0 MDFkZS00YjBhLTQ1MzItYWMwOC1kYmE4YjA1ODhjNDgvMzEyNTkzN2QtMTBiZi0z NDdiLWJmMjgtNzg1NTEyYjNlNzcxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYTA3NDAxZGUtNGIwYS00NTMyLWFj MDgtZGJhOGIwNTg4YzQ4L2EwNzQwMWRlLTRiMGEtNDUzMi1hYzA4LWRiYThiMDU4 OGM0OC5jcmwwHwYDVR0jBBgwFoAULvOxC87kwzSIVBcirGl2pVE0A4AwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9hMDc0MDFkZS00YjBhLTQ1MzItYWMwOC1kYmE4 YjA1ODhjNDguY2VyMFQGCCsGAQUFBwEHAQH/BEUwQzBBBAIAATA7AwMAgAoDAwCA LgMDAYDSAwQAwAUoAwQAwAUwAwQAwAVbMAwDBADABWUDBADABWYDBADADD8DBADA HwAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRw czovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG 9w0BAQsFAAOCAQEAb0zbLV9IhQEJxWi9xONbxIE69EFBvpWfxim2MllUturKNtZU Z2S82QQUio7eLR5uJdWUIOsRdWI4x6sq9ptJmoVrnvDO4O4sB1ZSBy0TLhEfPsiG gp51kbdud2TED1EgrMcM3utG7kM/iAfQktqFxIQiCYeY0yNeRveoZviy6AaqOvWN dD02DidtBEe28p3qqt0ay4XUIEbOUJ7OiRAU2IaFW2awOD+o+lYIN4I16ANwy6jg oUI4gM2PuwCLr21rF6hZSVT8fUsqTjjd4vveusjSBNiJWD4ByJ+Y3B0S86KOx9PJ sk/WA4k7q2/ho41x9s/AASZGc7/VnRcc19yO7A== -----END CERTIFICATE-----Generated at Tue Sep 16 22:35:47 2025 by rpki-client