$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa File: 2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa (raw, json) Hash identifier: 3W6eX5ScD/A8jjDS0pJXaK2eT+hLpdQ1BbSlvPmWYqE= Subject key identifier: 02:77:06:11:46:78:67:70:4D:82:40:DC:57:75:4E:6E:4D:09:EF:80 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584AFAB687B18FBE1DB087FBC700 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa Signing time: Tue 26 Aug 2025 01:00:32 +0000 ROA not before: Tue 26 Aug 2025 01:00:32 +0000 ROA not after: Mon 24 Nov 2025 02:00:32 +0000 asID: 8069 IP address blocks: 20.153.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:fa:b6:87:b1:8f:be:1d:b0:87:fb:c7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Aug 26 01:00:32 2025 GMT Not After : Nov 24 02:00:32 2025 GMT Subject: CN=1334d802-6a29-4ad0-86c9-f4df9b49c0f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:04:61:48:a8:86:bf:c8:75:71:d6:c7:c4:bf: c6:f5:cd:06:bb:ec:32:b8:01:14:42:96:11:95:56: c8:d7:bf:eb:63:66:71:82:ce:83:9f:08:3c:32:65: 8b:c1:9a:d4:e2:50:42:80:27:dd:ae:9d:81:97:6b: c3:3d:c0:fb:3c:b6:39:bc:3b:d4:5f:c0:10:3d:7e: ff:2d:a7:15:91:52:01:16:0e:ee:c6:07:52:62:5b: 49:15:41:d1:4e:dc:c4:0e:59:0c:05:10:66:6a:89: c7:b0:51:00:4e:dc:20:0d:3d:d6:b1:7f:07:1a:ef: 74:76:08:68:a1:e4:09:25:d1:c6:e9:ca:ab:11:02: dd:3a:b7:64:4d:9a:ea:97:31:27:8e:2f:77:ee:a9: 7e:1b:2a:3f:75:fd:0b:8e:64:67:dd:fc:d5:c9:d0: 51:fb:ef:9f:06:3b:f8:ca:18:1f:11:cb:24:7c:24: 06:e4:59:16:aa:77:a5:26:2c:fd:c6:89:3b:12:b8: 4b:54:aa:a9:1e:43:1b:88:73:70:b8:d8:2b:89:e4: 07:86:30:1c:4c:cd:4d:a8:59:82:25:6c:90:9e:cd: 2d:21:7b:63:8e:28:cd:78:8e:91:2c:39:ec:eb:8a: 6d:00:69:ec:f3:b3:45:e8:dc:03:29:e5:c9:a5:f8: 4c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:77:06:11:46:78:67:70:4D:82:40:DC:57:75:4E:6E:4D:09:EF:80 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.18.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2f:72:21:70:b3:56:da:46:8c:aa:1d:42:c4:49:20:8a:07:e8: c7:5e:d0:ab:d7:7e:e6:d0:d1:da:7c:b4:aa:4f:9b:4a:f1:06: 67:77:d8:08:56:a5:c6:ce:07:ed:a6:c3:05:eb:80:c3:f8:3e: 3b:0e:6d:4b:07:01:81:25:4a:92:ee:03:87:36:77:21:62:59: 2d:dc:ec:9c:1d:00:d9:b3:72:c8:96:ca:8c:56:5d:f4:39:76: bd:80:84:0c:5e:c0:bc:54:fe:1c:51:78:80:16:8c:19:8c:67: 92:67:ed:05:ef:07:f1:36:a7:ff:e3:6f:ef:77:d5:f9:67:38: 1e:40:20:2b:c9:e0:dd:83:66:60:07:2f:17:e1:f4:4f:9d:d6: a7:4a:e5:11:17:43:c2:27:9a:c6:65:eb:66:87:6a:28:b2:e8: 25:65:db:c3:34:99:4b:71:90:3e:6e:8c:2d:57:5d:1a:4b:3b: f8:05:3f:2b:b6:a4:85:12:87:dc:16:4a:1b:2b:b2:a9:e1:97: 84:d8:ac:4a:1f:05:72:65:0f:a1:1d:10:8c:7a:3d:38:12:33: fd:48:94:64:d3:d3:6f:2f:e1:5f:42:51:1a:4d:f3:1e:ba:c5: 5a:fc:92:74:67:24:05:2a:c5:e8:6f:dc:32:c4:f7:7f:f7:db: aa:01:42:4b -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEr6toexj74dsIf7xwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDgyNjAxMDAzMloXDTI1MTEyNDAyMDAzMlowLzEtMCsGA1UEAxMk MTMzNGQ4MDItNmEyOS00YWQwLTg2YzktZjRkZjliNDljMGY3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhARhSKiGv8h1cdbHxL/G9c0Gu+wyuAEUQpYR lVbI17/rY2Zxgs6Dnwg8MmWLwZrU4lBCgCfdrp2Bl2vDPcD7PLY5vDvUX8AQPX7/ LacVkVIBFg7uxgdSYltJFUHRTtzEDlkMBRBmaonHsFEATtwgDT3WsX8HGu90dgho oeQJJdHG6cqrEQLdOrdkTZrqlzEnji937ql+Gyo/df0LjmRn3fzVydBR+++fBjv4 yhgfEcskfCQG5FkWqnelJiz9xok7ErhLVKqpHkMbiHNwuNgrieQHhjAcTM1NqFmC JWyQns0tIXtjjijNeI6RLDns64ptAGns87NF6NwDKeXJpfhMhQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFAJ3BhFGeGdwTYJA3Fd1Tm5NCe+AMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMmVlOTY4NTItM2Q2MC0z MThhLTljMmUtNDRjNGI5YTM3ZGU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJkSMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAC9yIXCzVtpGjKodQsRJIIoH6Mde0KvXfubQ0dp8tKpPm0rxBmd32AhW pcbOB+2mwwXrgMP4PjsObUsHAYElSpLuA4c2dyFiWS3c7JwdANmzcsiWyoxWXfQ5 dr2AhAxewLxU/hxReIAWjBmMZ5Jn7QXvB/E2p//jb+931flnOB5AICvJ4N2DZmAH Lxfh9E+d1qdK5REXQ8InmsZl62aHaiiy6CVl28M0mUtxkD5ujC1XXRpLO/gFPyu2 pIUSh9wWShsrsqnhl4TYrEofBXJlD6EdEIx6PTgSM/1IlGTT028v4V9CURpN8x66 xVr8knRnJAUqxehv3DLE93/326oBQks= -----END CERTIFICATE-----Generated at Tue Aug 26 06:46:15 2025 by rpki-client