$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa File: 8548b407-be60-3815-ad3f-2a6c01accdd7.roa (raw, json) Hash identifier: LC9AAGs+t658x3QXSo1dnGHT5Bgzv65wbeMhJwnLoeQ= Subject key identifier: 86:4D:33:E9:28:56:CA:52:63:72:A6:09:75:BD:9B:F4:0E:0A:64:E2 Certificate issuer: /CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Certificate serial: 010D0C9F43285849DC8FBA1BAA397205F1BD6EC0 Authority key identifier: D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa Signing time: Thu 15 May 2025 13:01:00 +0000 ROA not before: Thu 15 May 2025 13:01:00 +0000 ROA not after: Wed 13 Aug 2025 13:01:00 +0000 asID: 198148 IP address blocks: 63.216.56.0/21 maxlen: 24 63.216.82.0/23 maxlen: 24 63.216.142.0/23 maxlen: 24 63.216.144.0/22 maxlen: 24 63.216.152.0/22 maxlen: 24 63.216.156.0/24 maxlen: 24 63.216.168.0/21 maxlen: 24 63.216.176.0/24 maxlen: 24 63.217.16.0/23 maxlen: 24 63.217.24.0/23 maxlen: 24 63.217.40.0/21 maxlen: 24 63.217.59.0/24 maxlen: 24 63.217.66.0/24 maxlen: 24 63.217.72.0/22 maxlen: 24 63.217.80.0/21 maxlen: 24 63.217.120.0/22 maxlen: 24 63.217.237.0/24 maxlen: 24 63.217.254.0/24 maxlen: 24 63.218.0.0/22 maxlen: 24 63.218.10.0/23 maxlen: 24 63.218.18.0/23 maxlen: 24 63.218.43.0/24 maxlen: 24 63.218.56.0/23 maxlen: 24 63.218.60.0/22 maxlen: 24 63.218.76.0/23 maxlen: 24 63.218.107.0/24 maxlen: 24 63.218.114.0/23 maxlen: 24 63.218.116.0/23 maxlen: 24 63.218.144.0/23 maxlen: 24 63.218.156.0/23 maxlen: 24 63.218.158.0/23 maxlen: 24 63.218.162.0/23 maxlen: 24 63.218.164.0/23 maxlen: 24 63.218.174.0/23 maxlen: 24 63.218.204.0/23 maxlen: 24 63.218.210.0/23 maxlen: 24 63.218.213.0/24 maxlen: 24 63.218.214.0/23 maxlen: 24 63.218.228.0/23 maxlen: 24 63.218.240.0/23 maxlen: 24 63.218.248.0/23 maxlen: 24 63.218.252.0/23 maxlen: 24 63.218.254.0/23 maxlen: 24 63.219.16.0/22 maxlen: 24 63.220.0.0/21 maxlen: 24 63.221.136.0/21 maxlen: 24 63.221.152.0/21 maxlen: 24 63.221.200.0/21 maxlen: 24 63.222.7.0/24 maxlen: 24 63.222.16.0/21 maxlen: 24 63.222.45.0/24 maxlen: 24 63.223.17.0/24 maxlen: 24 63.223.20.0/24 maxlen: 24 63.223.31.0/24 maxlen: 24 63.223.34.0/24 maxlen: 24 63.223.44.0/24 maxlen: 24 63.223.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:dc:8f:ba:1b:aa:39:72:05:f1:bd:6e:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Validity Not Before: May 15 13:01:00 2025 GMT Not After : Aug 13 13:01:00 2025 GMT Subject: CN=c24f0de6-7f54-405e-92b5-882369d5f789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:d2:56:e3:35:02:10:30:77:03:73:21:40:35: c2:66:f0:2c:60:c3:62:e0:4f:74:70:64:30:48:42: 5f:63:96:fa:67:1f:f2:89:90:a7:24:32:42:7b:14: e7:2a:da:07:63:d3:56:0d:72:b1:f0:bf:a6:60:25: 23:ca:fa:fa:fd:75:85:4c:cb:74:6b:c2:9a:9a:01: de:a6:65:7e:da:74:74:b4:5c:01:68:36:25:15:d3: 17:c9:95:89:bc:e8:2d:b7:dd:0a:f5:b4:28:ed:ae: a5:76:2f:a2:43:ea:6f:83:e1:55:c4:61:ae:6a:3e: 61:5c:70:c7:52:1d:de:a0:68:8a:75:89:cb:18:47: e5:ec:4d:9f:7e:8a:eb:4d:58:2c:7e:38:41:c8:33: 03:2d:a4:a8:c5:9e:77:87:f8:f3:71:ce:7b:70:4b: dd:c0:0b:d4:68:4c:b9:b9:e8:98:1c:87:cd:d2:3d: ea:e8:e8:17:87:4e:4b:2b:e1:09:99:f7:44:db:4d: 22:03:7a:ee:55:a9:3b:6b:c1:2a:51:cd:17:6b:3a: 8e:7c:e5:21:f8:83:a0:3a:5e:54:cf:7c:ce:86:8c: 4f:e7:c9:d0:77:88:81:2e:c0:e9:77:2b:48:1a:7d: 91:49:cf:a2:e4:69:6e:4f:1e:8a:0d:5a:ea:d3:ad: 70:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4D:33:E9:28:56:CA:52:63:72:A6:09:75:BD:9B:F4:0E:0A:64:E2 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl X509v3 Authority Key Identifier: keyid:D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer sbgp-ipAddrBlock: critical IPv4: 63.216.56.0/21 63.216.82.0/23 63.216.142.0-63.216.147.255 63.216.152.0-63.216.156.255 63.216.168.0-63.216.176.255 63.217.16.0/23 63.217.24.0/23 63.217.40.0/21 63.217.59.0/24 63.217.66.0/24 63.217.72.0/22 63.217.80.0/21 63.217.120.0/22 63.217.237.0/24 63.217.254.0/24 63.218.0.0/22 63.218.10.0/23 63.218.18.0/23 63.218.43.0/24 63.218.56.0/23 63.218.60.0/22 63.218.76.0/23 63.218.107.0/24 63.218.114.0-63.218.117.255 63.218.144.0/23 63.218.156.0/22 63.218.162.0-63.218.165.255 63.218.174.0/23 63.218.204.0/23 63.218.210.0/23 63.218.213.0-63.218.215.255 63.218.228.0/23 63.218.240.0/23 63.218.248.0/23 63.218.252.0/22 63.219.16.0/22 63.220.0.0/21 63.221.136.0/21 63.221.152.0/21 63.221.200.0/21 63.222.7.0/24 63.222.16.0/21 63.222.45.0/24 63.223.17.0/24 63.223.20.0/24 63.223.31.0/24 63.223.34.0/24 63.223.44.0/24 63.223.192.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption a7:16:3f:71:c0:84:69:b3:29:0a:57:94:f3:25:8f:12:1b:24: ed:96:6e:c4:17:7f:85:c7:5a:a3:10:be:77:23:ac:94:41:97: 53:17:a6:31:e2:66:01:15:84:df:4a:61:90:bb:c0:d0:aa:02: e1:25:92:62:4e:df:39:98:e1:2c:94:f7:bc:70:78:19:55:0b: b2:bd:0c:fe:b2:65:98:3e:f7:c3:67:6f:5f:c4:e4:3e:a0:f3: c6:b8:61:cc:87:c3:5e:46:f5:a8:12:c2:d0:4b:6f:9d:5a:b2: 49:5e:0c:53:f9:d3:ea:99:d9:37:e4:58:4e:1b:b6:2b:f1:86: 75:5c:97:84:d1:68:8a:16:f8:2e:f1:ef:46:9d:8a:72:cc:c2: 41:ae:b0:63:66:5d:83:9f:f5:4c:6f:1f:23:90:88:7b:9b:74: bd:c8:26:42:d7:b5:a3:34:b8:05:35:fe:f0:cd:3b:1a:54:69: 86:b0:4f:3b:bf:78:d7:0a:3e:34:f8:9f:64:c0:95:10:15:96: f3:7f:b0:71:51:54:5d:81:af:6f:c4:41:b9:84:16:ae:eb:ba: 63:62:c3:90:77:b9:13:d4:96:4d:26:56:db:5e:54:1e:44:74: ef:bd:e7:4b:27:6e:c8:78:c0:4c:c2:e9:63:5e:8d:4b:47:f8: 0b:0a:e9:be -----BEGIN CERTIFICATE----- MIIHnTCCBoWgAwIBAgIUAQ0Mn0MoWEncj7obqjlyBfG9bsAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMDUzOWU0OTAtZjYyYy00YmQzLThmMjgtYzg4ZWRhMjIw YzQ4MB4XDTI1MDUxNTEzMDEwMFoXDTI1MDgxMzEzMDEwMFowLzEtMCsGA1UEAxMk YzI0ZjBkZTYtN2Y1NC00MDVlLTkyYjUtODgyMzY5ZDVmNzg5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhdJW4zUCEDB3A3MhQDXCZvAsYMNi4E90cGQw SEJfY5b6Zx/yiZCnJDJCexTnKtoHY9NWDXKx8L+mYCUjyvr6/XWFTMt0a8KamgHe pmV+2nR0tFwBaDYlFdMXyZWJvOgtt90K9bQo7a6ldi+iQ+pvg+FVxGGuaj5hXHDH Uh3eoGiKdYnLGEfl7E2fforrTVgsfjhByDMDLaSoxZ53h/jzcc57cEvdwAvUaEy5 ueiYHIfN0j3q6OgXh05LK+EJmfdE200iA3ruVak7a8EqUc0XazqOfOUh+IOgOl5U z3zOhoxP58nQd4iBLsDpdytIGn2RSc+i5GluTx6KDVrq061wIQIDAQABo4IErzCC BKswHQYDVR0OBBYEFIZNM+koVspSY3KmCXW9m/QOCmTiMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5 ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhlZGEyMjBjNDgvODU0OGI0MDctYmU2MC0z ODE1LWFkM2YtMmE2YzAxYWNjZGQ3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMDUzOWU0OTAtZjYyYy00YmQzLThm MjgtYzg4ZWRhMjIwYzQ4LzA1MzllNDkwLWY2MmMtNGJkMy04ZjI4LWM4OGVkYTIy MGM0OC5jcmwwHwYDVR0jBBgwFoAU0ToQMzWxBhO5Z5LsPpF3qYEVn+cwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhl ZGEyMjBjNDguY2VyMIIBdwYIKwYBBQUHAQcBAf8EggFmMIIBYjCCAV4EAgABMIIB VgMEAz/YOAMEAT/YUjAMAwQBP9iOAwQCP9iQMAwDBAM/2JgDBAA/2JwwDAMEAz/Y qAMEAD/YsAMEAT/ZEAMEAT/ZGAMEAz/ZKAMEAD/ZOwMEAD/ZQgMEAj/ZSAMEAz/Z UAMEAj/ZeAMEAD/Z7QMEAD/Z/gMEAj/aAAMEAT/aCgMEAT/aEgMEAD/aKwMEAT/a OAMEAj/aPAMEAT/aTAMEAD/aazAMAwQBP9pyAwQBP9p0AwQBP9qQAwQCP9qcMAwD BAE/2qIDBAE/2qQDBAE/2q4DBAE/2swDBAE/2tIwDAMEAD/a1QMEAz/a0AMEAT/a 5AMEAT/a8AMEAT/a+AMEAj/a/AMEAj/bEAMEAz/cAAMEAz/diAMEAz/dmAMEAz/d yAMEAD/eBwMEAz/eEAMEAD/eLQMEAD/fEQMEAD/fFAMEAD/fHwMEAD/fIgMEAD/f LAMEBD/fwDBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEW LGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0G CSqGSIb3DQEBCwUAA4IBAQCnFj9xwIRpsykKV5TzJY8SGyTtlm7EF3+Fx1qjEL53 I6yUQZdTF6Yx4mYBFYTfSmGQu8DQqgLhJZJiTt85mOEslPe8cHgZVQuyvQz+smWY PvfDZ29fxOQ+oPPGuGHMh8NeRvWoEsLQS2+dWrJJXgxT+dPqmdk35FhOG7Yr8YZ1 XJeE0WiKFvgu8e9GnYpyzMJBrrBjZl2Dn/VMbx8jkIh7m3S9yCZC17WjNLgFNf7w zTsaVGmGsE87v3jXCj40+J9kwJUQFZbzf7BxUVRdga9vxEG5hBau67pjYsOQd7kT 1JZNJlbbXlQeRHTvvedLJ27IeMBMwuljXo1LR/gLCum+ -----END CERTIFICATE-----Generated at Sat Jun 7 04:09:24 2025 by rpki-client