$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa File: d4727335-009c-3f32-ad27-800d7af9ce97.roa (raw, json) Hash identifier: ZzGET+ZzHESRxIGm80kuJQQAAgWv44oVVE3q0vZMBYM= Subject key identifier: 6D:12:7A:8F:CD:02:41:7E:34:BD:67:2D:75:55:31:3C:BA:A4:45:5D Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F4328584B3C51B0A17445F7AF89A6DB80 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa Signing time: Thu 18 Sep 2025 13:00:41 +0000 ROA not before: Thu 18 Sep 2025 13:00:41 +0000 ROA not after: Wed 17 Dec 2025 14:00:41 +0000 asID: 8069 IP address blocks: 20.33.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:3c:51:b0:a1:74:45:f7:af:89:a6:db:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Sep 18 13:00:41 2025 GMT Not After : Dec 17 14:00:41 2025 GMT Subject: CN=bd569eed-efcc-40bc-9fe7-28197b5130d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:fe:05:eb:61:2f:ee:a1:4b:35:56:86:4c:8d: d7:f5:3d:92:33:8e:40:a0:e0:d4:d2:a6:0f:e5:15: 2b:28:25:94:8d:77:29:82:ce:7f:ee:9f:98:98:07: 28:64:9f:27:97:00:87:31:5a:69:d0:ea:9d:26:67: d3:3a:d6:6a:6d:10:5a:c3:df:cc:4d:05:4f:45:e4: 22:b3:04:98:5d:28:bd:3b:1b:6c:49:f5:f9:e6:88: ca:c4:e9:1e:7e:12:45:cc:78:89:34:ba:ee:52:2c: 09:3b:4a:3f:b7:c7:42:7e:93:97:10:bd:ce:7f:f3: ad:ca:dc:4d:e8:fd:95:2e:80:f6:ea:7f:b9:92:75: e0:a0:a4:6c:ff:90:64:8d:d9:6b:fe:58:9a:1f:bf: c1:49:32:71:0b:44:1a:9b:f5:13:ee:c1:f5:a0:01: 76:96:16:f6:17:d5:45:b3:c3:79:98:52:03:d0:36: 0e:33:fa:8e:97:ad:22:1f:1d:9d:29:08:de:5a:53: dd:fb:76:9d:43:1a:8e:ea:55:81:aa:1e:9e:7d:37: c3:6d:23:26:df:c2:4b:ff:23:e7:4e:90:a9:14:55: 4e:46:f9:61:e4:06:51:cc:24:5c:0f:66:fe:a7:f1: e9:9b:ed:d5:b2:5a:d7:fa:83:e4:ff:55:f3:6a:bd: 89:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:12:7A:8F:CD:02:41:7E:34:BD:67:2D:75:55:31:3C:BA:A4:45:5D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.253.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3d:85:6e:41:4b:d1:80:63:88:05:dd:5c:dc:ea:be:a6:94:b1: 12:e6:02:52:f5:06:a3:dc:f5:66:30:0c:f1:6f:7a:54:b9:54: d6:69:bb:6b:86:86:6e:c0:1d:e2:ef:6d:00:e7:50:6c:04:25: a9:7a:25:5d:01:0c:05:1a:18:61:e6:25:9d:d6:da:c6:68:82: e3:0e:96:f0:27:9e:42:19:ee:9a:fd:a8:2d:3c:d5:d5:64:47: 2e:02:f2:68:df:16:54:13:d2:e9:b5:ff:8d:de:0c:84:47:b0: 9b:2b:62:0f:60:33:24:46:43:3e:8c:82:d6:5b:eb:56:29:d9: 6d:76:3f:e6:68:59:9a:21:fe:9f:0f:2a:56:49:25:dd:21:5e: 6f:ec:5e:f8:df:87:3a:64:f5:6d:e7:5e:63:f3:8c:88:02:be: 94:a5:8a:76:37:54:2f:24:2d:a8:fb:1b:3e:cd:af:9d:17:4e: 51:89:59:6b:52:ce:64:40:b0:80:31:2e:4f:2e:67:73:bb:e8: cf:7a:78:29:36:75:46:19:13:cf:8b:54:91:82:00:2a:49:25: 65:b6:16:ed:d1:f9:fa:bf:00:4b:be:0e:60:75:d3:59:79:6a: 3a:48:c3:d2:c9:6c:c4:2a:1d:c5:f3:5f:98:f3:5b:16:50:55: 70:19:4b:c1 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEs8UbChdEX3r4mm24AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDkxODEzMDA0MVoXDTI1MTIxNzE0MDA0MVowLzEtMCsGA1UEAxMk YmQ1NjllZWQtZWZjYy00MGJjLTlmZTctMjgxOTdiNTEzMGQ1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkv4F62Ev7qFLNVaGTI3X9T2SM45AoODU0qYP 5RUrKCWUjXcpgs5/7p+YmAcoZJ8nlwCHMVpp0OqdJmfTOtZqbRBaw9/MTQVPReQi swSYXSi9OxtsSfX55ojKxOkefhJFzHiJNLruUiwJO0o/t8dCfpOXEL3Of/OtytxN 6P2VLoD26n+5knXgoKRs/5Bkjdlr/liaH7/BSTJxC0Qam/UT7sH1oAF2lhb2F9VF s8N5mFID0DYOM/qOl60iHx2dKQjeWlPd+3adQxqO6lWBqh6efTfDbSMm38JL/yPn TpCpFFVORvlh5AZRzCRcD2b+p/Hpm+3VslrX+oPk/1Xzar2J2QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFG0Seo/NAkF+NL1nLXVVMTy6pEVdMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvZDQ3MjczMzUtMDA5Yy0z ZjMyLWFkMjctODAwZDdhZjljZTk3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCH9MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAD2FbkFL0YBjiAXdXNzqvqaUsRLmAlL1BqPc9WYwDPFvelS5VNZpu2uG hm7AHeLvbQDnUGwEJal6JV0BDAUaGGHmJZ3W2sZoguMOlvAnnkIZ7pr9qC081dVk Ry4C8mjfFlQT0um1/43eDIRHsJsrYg9gMyRGQz6MgtZb61Yp2W12P+ZoWZoh/p8P KlZJJd0hXm/sXvjfhzpk9W3nXmPzjIgCvpSlinY3VC8kLaj7Gz7Nr50XTlGJWWtS zmRAsIAxLk8uZ3O76M96eCk2dUYZE8+LVJGCACpJJWW2Fu3R+fq/AEu+DmB101l5 ajpIw9LJbMQqHcXzX5jzWxZQVXAZS8E= -----END CERTIFICATE-----Generated at Mon Oct 20 15:51:15 2025 by rpki-client