$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/9aa5a3a7-cdb0-30a9-93bc-a7385bd61034.roa File: 9aa5a3a7-cdb0-30a9-93bc-a7385bd61034.roa (raw, json) Hash identifier: 66nxDmPDQq38/Rv64bicAL/98lTN0QtAckZvklfHu8g= Subject key identifier: 55:0C:A3:E5:9D:27:C2:59:26:25:B2:04:6B:70:23:85:9D:0C:7A:AC Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584B153C256F47815C8E6ECE2180 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/9aa5a3a7-cdb0-30a9-93bc-a7385bd61034.roa Signing time: Thu 04 Sep 2025 13:00:41 +0000 ROA not before: Thu 04 Sep 2025 13:00:41 +0000 ROA not after: Wed 03 Dec 2025 14:00:41 +0000 asID: 8069 IP address blocks: 20.153.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:15:3c:25:6f:47:81:5c:8e:6e:ce:21:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Sep 4 13:00:41 2025 GMT Not After : Dec 3 14:00:41 2025 GMT Subject: CN=fc18f0f8-1b21-4f7f-a620-6093e49908f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:af:72:54:2f:87:39:13:df:4c:0d:6c:f1:fb: 26:21:8c:ed:fb:e2:25:09:93:03:3f:d2:f0:25:fb: cd:93:ee:c5:f1:09:7f:29:a0:5c:0f:11:3a:d4:d9: 87:ff:18:78:e5:46:0b:27:9b:1e:85:24:2a:68:0d: 48:7e:40:5b:a4:8b:e3:63:e5:73:81:72:17:e7:f4: 33:78:5a:fb:6f:bb:07:6d:ed:fd:03:82:ae:ac:33: ad:4a:f9:a0:48:8c:6a:cc:03:1a:1a:8e:75:93:9e: 97:09:10:9a:19:25:49:7a:f0:45:40:b5:6f:4c:c3: a6:3d:48:fb:ca:e7:2b:93:6a:d7:07:ee:bb:2a:d5: ef:df:3a:ea:44:fa:44:c2:f6:bd:c8:55:52:40:ad: 3e:d0:f7:8e:76:60:ee:34:e2:dc:5d:c2:88:32:b7: d3:21:61:9f:d0:8d:ef:27:ab:36:bc:32:3e:32:92: cd:ec:97:ea:77:f9:ca:0c:7b:5c:45:84:d6:14:df: 5e:a6:f1:a7:f3:5d:c0:10:17:fa:91:2c:44:87:8f: 79:ff:86:85:5a:21:fa:41:60:83:e0:f8:55:1d:7d: b8:cf:ec:5c:c4:dc:a6:7f:89:8c:07:79:cf:d9:bd: 16:86:7a:bd:1d:fb:d5:22:b3:97:73:3b:d6:32:72: f9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0C:A3:E5:9D:27:C2:59:26:25:B2:04:6B:70:23:85:9D:0C:7A:AC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/9aa5a3a7-cdb0-30a9-93bc-a7385bd61034.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.136.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 78:3e:86:58:3a:90:7d:c7:e2:78:8c:60:42:2f:ab:a4:72:b8: 29:20:f5:a8:40:ed:57:cc:eb:5a:a5:c0:68:6a:59:4a:67:d5: 13:7a:9c:b9:15:76:bb:87:6f:17:48:75:7a:99:aa:09:cf:8f: 7a:13:b7:79:71:b5:cb:f7:eb:e0:e0:cf:f9:d5:dd:ce:90:e4: 6b:ec:08:34:71:3d:6d:7f:35:d5:27:1e:24:18:28:8f:0a:d4: 70:e7:47:d2:a8:a0:be:07:67:cf:47:a0:af:f5:aa:77:86:ae: 7d:a7:73:f3:dd:85:2c:19:56:b8:50:a3:76:ad:97:6e:9a:35: 3a:d4:35:68:6b:c2:74:df:89:aa:88:07:9e:eb:9b:20:bf:39: c6:7c:09:c5:3e:d9:54:67:3d:8c:02:3e:3a:84:46:d5:dd:0f: 9e:f6:27:fc:99:bf:be:e8:72:71:a8:b0:b4:9d:74:0e:94:5f: 82:ca:7e:6c:01:86:32:b0:69:2d:5c:28:39:92:04:6a:63:1f: 3d:f7:33:5a:cb:16:1f:ad:3e:81:81:45:25:85:8a:90:eb:0e: 23:aa:d4:c2:ce:97:65:97:67:93:b6:bf:f5:39:6b:a8:3c:3b: c1:04:89:4d:c1:50:5a:a0:70:be:b8:6c:4d:db:a7:c6:8b:df: 23:4d:59:ba -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEsVPCVvR4Fcjm7OIYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDkwNDEzMDA0MVoXDTI1MTIwMzE0MDA0MVowLzEtMCsGA1UEAxMk ZmMxOGYwZjgtMWIyMS00ZjdmLWE2MjAtNjA5M2U0OTkwOGYwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuK9yVC+HORPfTA1s8fsmIYzt++IlCZMDP9Lw JfvNk+7F8Ql/KaBcDxE61NmH/xh45UYLJ5sehSQqaA1IfkBbpIvjY+VzgXIX5/Qz eFr7b7sHbe39A4KurDOtSvmgSIxqzAMaGo51k56XCRCaGSVJevBFQLVvTMOmPUj7 yucrk2rXB+67KtXv3zrqRPpEwva9yFVSQK0+0PeOdmDuNOLcXcKIMrfTIWGf0I3v J6s2vDI+MpLN7Jfqd/nKDHtcRYTWFN9epvGn813AEBf6kSxEh495/4aFWiH6QWCD 4PhVHX24z+xcxNymf4mMB3nP2b0Whnq9HfvVIrOXczvWMnL5qQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFUMo+WdJ8JZJiWyBGtwI4WdDHqsMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvOWFhNWEzYTctY2RiMC0z MGE5LTkzYmMtYTczODViZDYxMDM0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJmIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHg+hlg6kH3H4niMYEIvq6RyuCkg9ahA7VfM61qlwGhqWUpn1RN6nLkV druHbxdIdXqZqgnPj3oTt3lxtcv36+Dgz/nV3c6Q5GvsCDRxPW1/NdUnHiQYKI8K 1HDnR9KooL4HZ89HoK/1qneGrn2nc/PdhSwZVrhQo3atl26aNTrUNWhrwnTfiaqI B57rmyC/OcZ8CcU+2VRnPYwCPjqERtXdD572J/yZv77ocnGosLSddA6UX4LKfmwB hjKwaS1cKDmSBGpjHz33M1rLFh+tPoGBRSWFipDrDiOq1MLOl2WXZ5O2v/U5a6g8 O8EEiU3BUFqgcL64bE3bp8aL3yNNWbo= -----END CERTIFICATE-----Generated at Mon Oct 20 16:00:00 2025 by rpki-client