$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa File: 2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa (raw, json) Hash identifier: WQiBpUOfuNPck+J6aQdHIxf24x2XbVQjKV2YfcuUd2A= Subject key identifier: A9:B9:CA:32:F7:D5:B3:19:F0:2B:69:83:4C:32:3F:4B:AE:4E:F2:CF Certificate issuer: /CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Certificate serial: 010D0C9F4328584B8BE22261D298E0A910D61900 Authority key identifier: 6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa Signing time: Fri 17 Oct 2025 01:00:30 +0000 ROA not before: Fri 17 Oct 2025 01:00:30 +0000 ROA not after: Thu 15 Jan 2026 02:00:30 +0000 asID: 20473 IP address blocks: 136.228.0.0/19 maxlen: 32 139.60.200.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 30 Oct 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4b:8b:e2:22:61:d2:98:e0:a9:10:d6:19:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Validity Not Before: Oct 17 01:00:30 2025 GMT Not After : Jan 15 02:00:30 2026 GMT Subject: CN=7f3b83eb-36e2-4116-a4a9-223c992c1711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:02:dd:0e:46:38:8c:76:69:ae:76:fa:ae:f5: 91:1e:a6:40:91:69:43:94:80:62:cd:88:7c:48:dc: b2:a4:d4:45:ab:c0:d4:0b:7c:a0:7b:10:ce:d0:34: 83:a6:62:77:fa:0d:e6:40:a7:cb:a7:ea:b9:76:aa: 9a:f3:96:a9:a9:a1:38:1c:4b:ec:aa:e9:fb:64:35: 34:20:c6:49:7c:d5:bc:47:61:e9:4b:e8:5a:5f:e5: ab:ae:f0:96:58:70:85:cb:ce:1a:5b:c1:de:06:af: a7:6c:f7:79:de:57:0a:cb:9b:bf:95:27:a1:58:2c: 69:35:9e:f5:15:90:08:80:e8:cd:a1:fb:11:87:21: 36:07:27:05:1f:47:8d:bf:46:03:ea:a3:bb:62:d7: 80:55:57:eb:59:c3:fd:ed:8b:79:fd:c4:75:e1:bd: c5:71:c8:32:06:87:e7:06:51:63:f0:9d:f0:3b:cc: ca:91:2a:67:ba:c0:35:92:3f:61:ca:8d:7c:eb:2c: 72:89:c8:d5:12:31:49:12:a3:f9:fb:b2:76:4c:40: 69:08:f3:3b:40:ed:8e:99:5b:36:4f:8a:be:85:2b: ae:31:b0:dc:64:0e:b5:60:bd:f6:40:b7:2e:c9:b1: db:2c:b9:75:34:6a:f9:3d:d4:15:7c:0b:a2:74:ce: 01:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B9:CA:32:F7:D5:B3:19:F0:2B:69:83:4C:32:3F:4B:AE:4E:F2:CF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl X509v3 Authority Key Identifier: keyid:6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer sbgp-ipAddrBlock: critical IPv4: 136.228.0.0/19 139.60.200.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 04:00:4a:b3:2f:18:de:4c:d6:90:cb:5a:57:ff:6b:23:46:c5: b7:c7:cc:73:68:89:ae:81:98:3a:7d:51:d3:a9:e6:99:7b:25: 6c:ed:fd:07:c3:b1:c2:f4:a8:ac:24:a9:55:7f:7e:06:90:4e: c0:14:e8:55:f9:6c:dc:59:e5:c9:08:45:c1:f5:0d:9c:37:40: 09:9a:f8:9f:89:3a:3a:39:26:cc:f2:62:69:7b:dc:63:c9:db: 26:43:92:af:06:ab:78:ea:8b:e3:7c:c8:4d:25:8f:ed:f6:66: 16:34:5b:2e:86:4e:42:d8:bc:c5:9b:f7:c0:d2:4f:40:93:92: 1a:58:54:df:9f:78:fe:4c:31:5c:4e:57:99:6b:fc:ef:80:11: 58:87:4f:bb:e7:93:09:72:87:3a:2d:ec:16:4c:5a:24:6c:69: 51:58:2c:05:13:94:65:54:a2:77:82:fa:ba:b1:bd:c6:3c:01: 3c:98:b4:45:e6:b0:fa:76:dd:c7:8d:f7:78:4a:3a:97:35:a1: 37:f9:c5:b8:53:cd:c8:b2:44:18:f7:2e:42:4b:ae:25:cd:29: f1:a9:10:8e:6c:64:5e:8a:40:b4:66:f1:e5:8f:29:dd:af:78: a1:47:58:04:91:42:ee:9f:43:4a:92:b3:ae:b4:f6:b8:55:1d: 94:9a:f6:30 -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWEuL4iJh0pjgqRDWGQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAyYTUyZTUtMmI3MS00MTI0LWJkMjktNjBlOTBlNTlm NDdkMB4XDTI1MTAxNzAxMDAzMFoXDTI2MDExNTAyMDAzMFowLzEtMCsGA1UEAxMk N2YzYjgzZWItMzZlMi00MTE2LWE0YTktMjIzYzk5MmMxNzExMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkALdDkY4jHZprnb6rvWRHqZAkWlDlIBizYh8 SNyypNRFq8DUC3ygexDO0DSDpmJ3+g3mQKfLp+q5dqqa85apqaE4HEvsqun7ZDU0 IMZJfNW8R2HpS+haX+WrrvCWWHCFy84aW8HeBq+nbPd53lcKy5u/lSehWCxpNZ71 FZAIgOjNofsRhyE2BycFH0eNv0YD6qO7YteAVVfrWcP97Yt5/cR14b3FccgyBofn BlFj8J3wO8zKkSpnusA1kj9hyo186yxyicjVEjFJEqP5+7J2TEBpCPM7QO2OmVs2 T4q+hSuuMbDcZA61YL32QLcuybHbLLl1NGr5PdQVfAuidM4B+QIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFKm5yjL31bMZ8Ctpg0wyP0uuTvLPMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJh NTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5MGU1OWY0N2QvMmIyNWM0ZWEtM2MzOS0z NzRkLWE4MjMtMmQ5MzYxZDc5ZmU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvZDAyYTUyZTUtMmI3MS00MTI0LWJk MjktNjBlOTBlNTlmNDdkL2QwMmE1MmU1LTJiNzEtNDEyNC1iZDI5LTYwZTkwZTU5 ZjQ3ZC5jcmwwHwYDVR0jBBgwFoAUauWbwwPnU/AIdM3iI5bDJH4557EwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJhNTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5 MGU1OWY0N2QuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFiOQAAwQD izzIMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBAAQASrMvGN5M1pDLWlf/ayNGxbfHzHNoia6BmDp9UdOp5pl7 JWzt/QfDscL0qKwkqVV/fgaQTsAU6FX5bNxZ5ckIRcH1DZw3QAma+J+JOjo5Jszy Yml73GPJ2yZDkq8Gq3jqi+N8yE0lj+32ZhY0Wy6GTkLYvMWb98DST0CTkhpYVN+f eP5MMVxOV5lr/O+AEViHT7vnkwlyhzot7BZMWiRsaVFYLAUTlGVUoneC+rqxvcY8 ATyYtEXmsPp23ceN93hKOpc1oTf5xbhTzciyRBj3LkJLriXNKfGpEI5sZF6KQLRm 8eWPKd2veKFHWASRQu6fQ0qSs6609rhVHZSa9jA= -----END CERTIFICATE-----Generated at Wed Oct 29 03:36:19 2025 by rpki-client