$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa File: 8548b407-be60-3815-ad3f-2a6c01accdd7.roa (raw, json) Hash identifier: M9JUSAEmyse+2mK2GX7WaKYJYycLeniLnhYPJ1ojahA= Subject key identifier: F5:F6:E6:09:08:EA:84:9C:69:90:8B:A8:B0:E5:74:44:D5:FF:6B:EF Certificate issuer: /CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Certificate serial: 010D0C9F4328584B9E07AC58A9B85046365D94C0 Authority key identifier: D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa Signing time: Thu 23 Oct 2025 13:00:38 +0000 ROA not before: Thu 23 Oct 2025 13:00:38 +0000 ROA not after: Wed 21 Jan 2026 14:00:38 +0000 asID: 198148 IP address blocks: 63.216.56.0/21 maxlen: 24 63.216.82.0/23 maxlen: 24 63.216.142.0/23 maxlen: 24 63.216.144.0/22 maxlen: 24 63.216.152.0/22 maxlen: 24 63.216.156.0/24 maxlen: 24 63.216.168.0/21 maxlen: 24 63.216.176.0/24 maxlen: 24 63.217.16.0/23 maxlen: 24 63.217.24.0/23 maxlen: 24 63.217.40.0/21 maxlen: 24 63.217.59.0/24 maxlen: 24 63.217.66.0/24 maxlen: 24 63.217.72.0/22 maxlen: 24 63.217.80.0/21 maxlen: 24 63.217.120.0/22 maxlen: 24 63.217.237.0/24 maxlen: 24 63.217.254.0/24 maxlen: 24 63.218.0.0/22 maxlen: 24 63.218.10.0/23 maxlen: 24 63.218.18.0/23 maxlen: 24 63.218.43.0/24 maxlen: 24 63.218.56.0/23 maxlen: 24 63.218.60.0/22 maxlen: 24 63.218.76.0/23 maxlen: 24 63.218.107.0/24 maxlen: 24 63.218.114.0/23 maxlen: 24 63.218.116.0/23 maxlen: 24 63.218.144.0/23 maxlen: 24 63.218.156.0/23 maxlen: 24 63.218.158.0/23 maxlen: 24 63.218.162.0/23 maxlen: 24 63.218.164.0/23 maxlen: 24 63.218.174.0/23 maxlen: 24 63.218.204.0/23 maxlen: 24 63.218.210.0/23 maxlen: 24 63.218.213.0/24 maxlen: 24 63.218.214.0/23 maxlen: 24 63.218.228.0/23 maxlen: 24 63.218.240.0/23 maxlen: 24 63.218.248.0/23 maxlen: 24 63.218.252.0/23 maxlen: 24 63.218.254.0/23 maxlen: 24 63.219.16.0/22 maxlen: 24 63.220.0.0/21 maxlen: 24 63.221.136.0/21 maxlen: 24 63.221.152.0/21 maxlen: 24 63.221.200.0/21 maxlen: 24 63.222.7.0/24 maxlen: 24 63.222.16.0/21 maxlen: 24 63.222.45.0/24 maxlen: 24 63.223.17.0/24 maxlen: 24 63.223.20.0/24 maxlen: 24 63.223.31.0/24 maxlen: 24 63.223.34.0/24 maxlen: 24 63.223.44.0/24 maxlen: 24 63.223.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 26 Oct 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:9e:07:ac:58:a9:b8:50:46:36:5d:94:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Validity Not Before: Oct 23 13:00:38 2025 GMT Not After : Jan 21 14:00:38 2026 GMT Subject: CN=d1127705-e1ea-407f-bef7-7711689c79db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:78:8e:92:a5:45:bf:e6:b2:a6:81:8f:9f:ae: 2f:f9:63:72:e5:d6:7c:8b:d5:41:7f:12:9a:02:57: 44:36:4e:3d:8a:33:be:2a:d6:17:9a:d2:93:4c:73: 90:21:6f:82:63:d3:92:79:a9:19:db:a8:f6:67:25: 93:79:c4:90:37:6a:ff:57:23:3e:8b:07:e1:cf:e7: ef:41:06:51:5d:21:81:c6:a9:9f:e8:3c:af:3f:33: ac:a3:08:4c:18:d9:15:3a:83:db:aa:41:a0:80:ca: 5c:89:3c:2f:85:ac:02:69:8a:e4:e5:74:05:a7:ec: e6:8e:bf:a2:b4:af:4d:1a:0d:41:c3:dd:04:78:7c: 74:6a:11:c9:60:35:50:24:47:b3:33:93:68:fd:dc: 3b:3b:25:56:23:9e:f9:34:58:37:7e:b7:9f:ae:b9: f4:5e:2b:97:95:3d:4b:0f:17:13:4b:23:24:62:e2: 44:73:99:12:a7:ac:1f:89:9e:68:4b:d9:ec:f5:b1: 95:99:2e:c5:3c:7c:04:ba:c0:56:0c:7f:da:3a:82: d1:5d:f9:ec:a0:85:57:ca:8b:ee:89:a1:33:0d:6d: ca:66:e2:1c:4c:8a:ec:3d:ea:9c:cc:14:eb:d8:3c: 02:7e:e5:75:2a:31:a7:1c:84:e0:99:6f:7d:b9:48: 25:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F6:E6:09:08:EA:84:9C:69:90:8B:A8:B0:E5:74:44:D5:FF:6B:EF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl X509v3 Authority Key Identifier: keyid:D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer sbgp-ipAddrBlock: critical IPv4: 63.216.56.0/21 63.216.82.0/23 63.216.142.0-63.216.147.255 63.216.152.0-63.216.156.255 63.216.168.0-63.216.176.255 63.217.16.0/23 63.217.24.0/23 63.217.40.0/21 63.217.59.0/24 63.217.66.0/24 63.217.72.0/22 63.217.80.0/21 63.217.120.0/22 63.217.237.0/24 63.217.254.0/24 63.218.0.0/22 63.218.10.0/23 63.218.18.0/23 63.218.43.0/24 63.218.56.0/23 63.218.60.0/22 63.218.76.0/23 63.218.107.0/24 63.218.114.0-63.218.117.255 63.218.144.0/23 63.218.156.0/22 63.218.162.0-63.218.165.255 63.218.174.0/23 63.218.204.0/23 63.218.210.0/23 63.218.213.0-63.218.215.255 63.218.228.0/23 63.218.240.0/23 63.218.248.0/23 63.218.252.0/22 63.219.16.0/22 63.220.0.0/21 63.221.136.0/21 63.221.152.0/21 63.221.200.0/21 63.222.7.0/24 63.222.16.0/21 63.222.45.0/24 63.223.17.0/24 63.223.20.0/24 63.223.31.0/24 63.223.34.0/24 63.223.44.0/24 63.223.192.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 71:f1:72:00:5f:78:02:80:0b:79:c4:78:8f:3c:68:0f:7c:a3: 5f:b1:4e:94:84:7b:cd:cb:2e:98:69:ce:b6:12:21:6b:f9:c9: 39:e8:74:43:f5:4e:61:99:28:be:4d:3f:da:24:d8:9e:28:25: c2:7d:1d:8f:a3:4f:b0:bd:58:06:2b:b8:8d:a4:e9:4b:da:d1: 0f:3a:8d:2b:cf:a7:80:8b:b3:2a:8b:c1:3c:db:5a:ea:5f:54: c4:92:68:0f:c2:45:71:40:9f:02:df:90:b0:51:d9:6e:d4:de: 8e:51:dc:5d:ed:50:79:6b:73:89:1a:4f:e5:c0:43:b7:a7:b4: 17:6e:d6:7c:4c:fd:32:d0:88:ec:87:e2:8b:77:76:8f:c4:c2: 15:b6:e8:05:c9:7c:5c:d1:af:fa:9a:4f:b9:1f:dc:db:43:ba: 26:ee:d7:d6:a9:54:ac:e3:b3:fc:74:a6:f5:3f:14:79:de:7a: a2:8e:75:28:1e:e8:2b:3d:77:3e:e5:fb:5c:78:47:3e:79:3d: 5f:da:f8:40:38:ce:d9:5f:bf:87:2b:f4:42:48:ed:1c:17:17: 9b:22:2d:6b:09:b9:1b:8c:f3:60:5a:ac:e0:80:5a:c3:bc:fd: 76:75:9e:d7:48:1c:66:d6:5c:f1:d6:0d:9d:df:4f:e7:1b:c3: c3:95:ee:3f -----BEGIN CERTIFICATE----- MIIHnTCCBoWgAwIBAgIUAQ0Mn0MoWEueB6xYqbhQRjZdlMAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMDUzOWU0OTAtZjYyYy00YmQzLThmMjgtYzg4ZWRhMjIw YzQ4MB4XDTI1MTAyMzEzMDAzOFoXDTI2MDEyMTE0MDAzOFowLzEtMCsGA1UEAxMk ZDExMjc3MDUtZTFlYS00MDdmLWJlZjctNzcxMTY4OWM3OWRiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXiOkqVFv+aypoGPn64v+WNy5dZ8i9VBfxKa AldENk49ijO+KtYXmtKTTHOQIW+CY9OSeakZ26j2ZyWTecSQN2r/VyM+iwfhz+fv QQZRXSGBxqmf6DyvPzOsowhMGNkVOoPbqkGggMpciTwvhawCaYrk5XQFp+zmjr+i tK9NGg1Bw90EeHx0ahHJYDVQJEezM5No/dw7OyVWI575NFg3frefrrn0XiuXlT1L DxcTSyMkYuJEc5kSp6wfiZ5oS9ns9bGVmS7FPHwEusBWDH/aOoLRXfnsoIVXyovu iaEzDW3KZuIcTIrsPeqczBTr2DwCfuV1KjGnHITgmW99uUglkQIDAQABo4IErzCC BKswHQYDVR0OBBYEFPX25gkI6oScaZCLqLDldETV/2vvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5 ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhlZGEyMjBjNDgvODU0OGI0MDctYmU2MC0z ODE1LWFkM2YtMmE2YzAxYWNjZGQ3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMDUzOWU0OTAtZjYyYy00YmQzLThm MjgtYzg4ZWRhMjIwYzQ4LzA1MzllNDkwLWY2MmMtNGJkMy04ZjI4LWM4OGVkYTIy MGM0OC5jcmwwHwYDVR0jBBgwFoAU0ToQMzWxBhO5Z5LsPpF3qYEVn+cwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhl ZGEyMjBjNDguY2VyMIIBdwYIKwYBBQUHAQcBAf8EggFmMIIBYjCCAV4EAgABMIIB VgMEAz/YOAMEAT/YUjAMAwQBP9iOAwQCP9iQMAwDBAM/2JgDBAA/2JwwDAMEAz/Y qAMEAD/YsAMEAT/ZEAMEAT/ZGAMEAz/ZKAMEAD/ZOwMEAD/ZQgMEAj/ZSAMEAz/Z UAMEAj/ZeAMEAD/Z7QMEAD/Z/gMEAj/aAAMEAT/aCgMEAT/aEgMEAD/aKwMEAT/a OAMEAj/aPAMEAT/aTAMEAD/aazAMAwQBP9pyAwQBP9p0AwQBP9qQAwQCP9qcMAwD BAE/2qIDBAE/2qQDBAE/2q4DBAE/2swDBAE/2tIwDAMEAD/a1QMEAz/a0AMEAT/a 5AMEAT/a8AMEAT/a+AMEAj/a/AMEAj/bEAMEAz/cAAMEAz/diAMEAz/dmAMEAz/d yAMEAD/eBwMEAz/eEAMEAD/eLQMEAD/fEQMEAD/fFAMEAD/fHwMEAD/fIgMEAD/f LAMEBD/fwDBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEW LGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0G CSqGSIb3DQEBCwUAA4IBAQBx8XIAX3gCgAt5xHiPPGgPfKNfsU6UhHvNyy6Yac62 EiFr+ck56HRD9U5hmSi+TT/aJNieKCXCfR2Po0+wvVgGK7iNpOlL2tEPOo0rz6eA i7Mqi8E821rqX1TEkmgPwkVxQJ8C35CwUdlu1N6OUdxd7VB5a3OJGk/lwEO3p7QX btZ8TP0y0Ijsh+KLd3aPxMIVtugFyXxc0a/6mk+5H9zbQ7om7tfWqVSs47P8dKb1 PxR53nqijnUoHugrPXc+5ftceEc+eT1f2vhAOM7ZX7+HK/RCSO0cFxebIi1rCbkb jPNgWqzggFrDvP12dZ7XSBxm1lzx1g2d30/nG8PDle4/ -----END CERTIFICATE-----Generated at Sat Oct 25 13:36:06 2025 by rpki-client