$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa File: d4727335-009c-3f32-ad27-800d7af9ce97.roa (raw, json) Hash identifier: VNc3j1BIVaCA1OMkt7OnlA0JwoP23U0rVAH+y4s9Jn0= Subject key identifier: E2:85:BE:A1:04:5E:54:C3:6E:D1:41:57:0B:11:EA:E7:BD:35:AF:EE Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584A5B95B5B2ED5A744CDA8E5480 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa Signing time: Mon 30 Jun 2025 01:00:50 +0000 ROA not before: Mon 30 Jun 2025 01:00:50 +0000 ROA not after: Sun 28 Sep 2025 01:00:50 +0000 asID: 8069 IP address blocks: 20.33.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 11 Jul 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:5b:95:b5:b2:ed:5a:74:4c:da:8e:54:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Jun 30 01:00:50 2025 GMT Not After : Sep 28 01:00:50 2025 GMT Subject: CN=cfd51333-0dd5-405d-9f12-2240e68d6981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:06:7b:fe:9b:d9:8e:c5:cc:ef:54:1a:d0:ae: bf:e8:7f:46:cf:b9:2c:d0:90:fa:2b:d8:5a:47:ac: 48:2f:2a:98:81:e0:39:60:26:81:41:f8:6a:f8:05: 74:d5:4d:42:d9:bf:55:b0:39:20:07:e4:f9:4d:c4: 3a:5d:5a:81:8c:75:71:2d:6f:e0:73:7e:e7:14:98: 8d:1a:8f:cd:af:8b:22:7c:d5:79:5e:fd:ce:6f:ec: 3b:f7:06:18:da:1f:e9:e7:64:c1:34:07:36:9b:7c: 07:ad:b4:16:89:7c:e7:bd:57:73:6e:1e:77:a9:ef: b6:7d:b4:a3:c7:c9:6f:12:23:c2:91:3a:bd:d7:4b: b9:7f:cc:a1:1e:50:36:4b:a0:1f:29:a3:60:b1:8f: 84:13:52:bd:a8:f7:80:f2:91:3a:90:46:12:d6:5e: 1a:7d:85:5f:c8:c0:b5:ba:90:d1:63:89:c8:eb:3e: 3f:ff:65:b0:dc:0e:1f:ba:8e:65:92:67:a2:53:26: e9:c7:84:be:2e:eb:49:9c:3a:45:29:2a:72:45:23: 2f:0a:bd:93:24:f2:54:14:58:7f:16:de:1b:8d:43: 03:22:08:aa:db:fe:e3:4a:fe:ca:78:6b:64:34:dd: 30:99:c9:ed:65:de:cb:ba:3a:25:10:56:3c:40:19: 2a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:85:BE:A1:04:5E:54:C3:6E:D1:41:57:0B:11:EA:E7:BD:35:AF:EE Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.253.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 59:fa:7f:d7:41:34:28:b5:49:b3:77:4c:b6:6e:ec:1f:39:bc: 3f:15:cd:51:2c:f4:ff:e8:3f:ef:27:be:97:f7:f3:9f:b9:5b: 45:fe:b8:fd:8b:58:1f:10:81:ac:ab:83:f6:f3:56:05:c9:01: 68:c2:02:6d:d8:43:da:15:b6:79:0e:23:5e:97:1c:ed:0a:f2: 11:19:0e:a8:7a:32:9f:09:ec:9b:f4:39:0d:05:f6:50:b3:14: d5:73:2e:73:4f:6b:71:1f:dc:62:5f:cb:cb:fe:e7:80:5e:73: 71:4d:64:98:59:87:ba:c5:2d:cc:ff:7b:89:d7:8e:2b:5c:2f: ca:36:42:95:0b:a5:08:cb:3d:6f:1b:1e:a1:44:08:cf:3b:ce: c2:c3:0a:aa:88:2e:38:cc:e5:f0:14:fd:28:6b:1e:dd:a6:10: 01:59:c6:f1:bf:56:6c:b9:34:d5:f0:0e:9f:af:de:3a:c5:5b: 43:05:21:84:f9:9e:84:3d:fa:ba:ce:a9:e6:00:16:22:9c:90: 49:5d:e2:36:1c:c8:11:fb:8c:5a:13:b3:e1:bb:7d:0a:c3:c0: 5a:9c:f0:6d:50:e0:5d:05:65:dd:75:f7:81:22:9f:bd:ba:81: 06:fe:fd:24:33:51:e4:4d:66:35:c4:48:9b:38:ad:cc:26:ba: 9c:00:30:f9 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEpblbWy7Vp0TNqOVIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDYzMDAxMDA1MFoXDTI1MDkyODAxMDA1MFowLzEtMCsGA1UEAxMk Y2ZkNTEzMzMtMGRkNS00MDVkLTlmMTItMjI0MGU2OGQ2OTgxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQZ7/pvZjsXM71Qa0K6/6H9Gz7ks0JD6K9ha R6xILyqYgeA5YCaBQfhq+AV01U1C2b9VsDkgB+T5TcQ6XVqBjHVxLW/gc37nFJiN Go/Nr4sifNV5Xv3Ob+w79wYY2h/p52TBNAc2m3wHrbQWiXznvVdzbh53qe+2fbSj x8lvEiPCkTq910u5f8yhHlA2S6AfKaNgsY+EE1K9qPeA8pE6kEYS1l4afYVfyMC1 upDRY4nI6z4//2Ww3A4fuo5lkmeiUybpx4S+LutJnDpFKSpyRSMvCr2TJPJUFFh/ Ft4bjUMDIgiq2/7jSv7KeGtkNN0wmcntZd7LujolEFY8QBkqewIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFOKFvqEEXlTDbtFBVwsR6ue9Na/uMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvZDQ3MjczMzUtMDA5Yy0z ZjMyLWFkMjctODAwZDdhZjljZTk3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCH9MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFn6f9dBNCi1SbN3TLZu7B85vD8VzVEs9P/oP+8nvpf385+5W0X+uP2L WB8Qgayrg/bzVgXJAWjCAm3YQ9oVtnkOI16XHO0K8hEZDqh6Mp8J7Jv0OQ0F9lCz FNVzLnNPa3Ef3GJfy8v+54Bec3FNZJhZh7rFLcz/e4nXjitcL8o2QpULpQjLPW8b HqFECM87zsLDCqqILjjM5fAU/ShrHt2mEAFZxvG/Vmy5NNXwDp+v3jrFW0MFIYT5 noQ9+rrOqeYAFiKckEld4jYcyBH7jFoTs+G7fQrDwFqc8G1Q4F0FZd1194Ein726 gQb+/SQzUeRNZjXESJs4rcwmupwAMPk= -----END CERTIFICATE-----Generated at Thu Jul 10 01:45:59 2025 by rpki-client