$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1c8cfd90-1e45-3ca8-865a-284e8261e043.roa File: 1c8cfd90-1e45-3ca8-865a-284e8261e043.roa (raw, json) Hash identifier: 0x/XCoLRXAAhkCfKtcDAJ8DTz+Ly6a+OPuQHtYV9jyg= Subject key identifier: 85:71:76:D7:98:1D:E1:56:11:97:5B:7D:10:FD:34:13:4A:B0:90:61 Certificate issuer: /CN=249140ca-277e-4871-a100-451d066d1c5b Certificate serial: 010D0C9F432858493C0939F93D84B7046388EE00 Authority key identifier: 70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1c8cfd90-1e45-3ca8-865a-284e8261e043.roa Signing time: Wed 19 Mar 2025 01:00:40 +0000 ROA not before: Wed 19 Mar 2025 01:00:40 +0000 ROA not after: Tue 17 Jun 2025 01:00:40 +0000 asID: 21949 IP address blocks: 199.68.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 10 Apr 2025 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:3c:09:39:f9:3d:84:b7:04:63:88:ee:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=249140ca-277e-4871-a100-451d066d1c5b Validity Not Before: Mar 19 01:00:40 2025 GMT Not After : Jun 17 01:00:40 2025 GMT Subject: CN=f0a4dba8-8009-47b0-b729-fc645e0ce9a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b2:4c:c2:5c:f5:3b:e7:3e:62:bd:17:a1:f3: 6c:c2:9e:c1:5a:4e:8d:51:f5:1f:ad:ce:1d:8d:26: 2e:7c:b4:d4:8b:c9:3a:46:aa:3b:30:71:6d:2c:8f: 77:fe:b3:f2:d4:2a:62:83:0b:0d:41:2d:fe:2d:23: f4:42:da:66:34:aa:6b:30:57:14:5a:51:b8:59:67: 21:73:35:7c:de:fc:32:d5:82:2d:c8:a8:8a:7c:01: 81:1b:01:64:18:e9:ee:02:77:ab:01:b7:ef:f4:19: 9e:6d:d7:8f:8b:c5:85:df:29:53:0a:42:79:47:18: df:8e:b7:8d:7f:6c:96:3f:fd:90:80:5b:e9:5e:84: f5:49:cc:19:38:bc:64:c1:50:16:63:0f:ec:06:f4: 86:6e:32:b7:ed:3b:bc:f8:53:2a:dc:ff:f9:21:f1: 87:ae:a9:6b:23:08:74:c0:28:32:53:02:f0:1b:0e: 55:e1:be:6d:a4:de:65:02:4c:cd:4b:db:8d:a7:79: 98:16:f1:26:5c:91:60:ee:35:78:1d:f7:79:c4:47: 41:34:b6:e5:ab:16:11:60:57:70:1f:c5:34:df:34: d3:fa:43:93:29:7d:a5:08:f5:ab:3e:b0:a2:59:56: a0:cf:9d:58:22:f6:e3:09:33:86:d2:14:7d:9f:71: 69:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:71:76:D7:98:1D:E1:56:11:97:5B:7D:10:FD:34:13:4A:B0:90:61 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1c8cfd90-1e45-3ca8-865a-284e8261e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl X509v3 Authority Key Identifier: keyid:70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer sbgp-ipAddrBlock: critical IPv4: 199.68.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8f:b3:e3:e2:a5:a0:81:d9:73:c9:b0:eb:3b:71:b9:f5:b2:c5: 88:ec:b4:2d:ba:9a:ea:90:51:e0:c1:9f:84:6f:c8:27:3b:ef: 57:71:f8:9d:15:3d:c7:b2:38:23:68:34:61:21:63:5d:6a:67: 32:47:7b:21:ab:58:c9:bc:01:ec:33:5c:29:72:c8:46:81:76: c4:ce:fc:4f:db:e6:7d:7f:89:6f:f4:d4:a0:51:16:d3:52:32: 69:f8:00:04:77:2e:b5:7d:0a:e2:10:8f:db:6a:f3:2a:ee:74: a0:e6:5d:37:80:a2:6b:26:58:09:aa:e2:8f:0f:49:f2:52:4c: eb:52:27:a9:ba:c8:58:30:ba:4d:83:ba:46:9a:a7:97:27:7e: ca:d7:90:17:b7:5b:9c:4d:1f:22:3c:78:95:5b:66:e0:af:e0: 76:73:7d:c3:79:95:87:74:1b:9a:96:94:a2:e4:ac:a7:97:00: 9a:38:45:82:fc:a1:52:11:7c:70:4f:ca:93:5e:df:f7:ff:93: 3e:4e:ee:84:aa:d0:b5:4c:43:4f:1e:7c:f7:3e:b3:db:d9:4d: 4e:d1:8f:16:15:97:0f:69:b3:fc:8b:38:07:db:73:d8:66:03: f8:be:67:f1:06:3a:e7:3c:ae:4e:c0:cb:69:9f:c1:51:e8:10: 09:c3:b8:31 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEk8CTn5PYS3BGOI7gAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjQ5MTQwY2EtMjc3ZS00ODcxLWExMDAtNDUxZDA2NmQx YzViMB4XDTI1MDMxOTAxMDA0MFoXDTI1MDYxNzAxMDA0MFowLzEtMCsGA1UEAxMk ZjBhNGRiYTgtODAwOS00N2IwLWI3MjktZmM2NDVlMGNlOWEyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoLJMwlz1O+c+Yr0XofNswp7BWk6NUfUfrc4d jSYufLTUi8k6Rqo7MHFtLI93/rPy1CpigwsNQS3+LSP0QtpmNKprMFcUWlG4WWch czV83vwy1YItyKiKfAGBGwFkGOnuAnerAbfv9BmebdePi8WF3ylTCkJ5RxjfjreN f2yWP/2QgFvpXoT1ScwZOLxkwVAWYw/sBvSGbjK37Tu8+FMq3P/5IfGHrqlrIwh0 wCgyUwLwGw5V4b5tpN5lAkzNS9uNp3mYFvEmXJFg7jV4Hfd5xEdBNLblqxYRYFdw H8U03zTT+kOTKX2lCPWrPrCiWVagz51YIvbjCTOG0hR9n3FpqQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFIVxdteYHeFWEZdbfRD9NBNKsJBhMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy8yNDkx NDBjYS0yNzdlLTQ4NzEtYTEwMC00NTFkMDY2ZDFjNWIvMWM4Y2ZkOTAtMWU0NS0z Y2E4LTg2NWEtMjg0ZTgyNjFlMDQzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvMjQ5MTQwY2EtMjc3ZS00ODcxLWEx MDAtNDUxZDA2NmQxYzViLzI0OTE0MGNhLTI3N2UtNDg3MS1hMTAwLTQ1MWQwNjZk MWM1Yi5jcmwwHwYDVR0jBBgwFoAUcCTs3b7y+uva+LVMugLAQ4E9SMkwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy8yNDkxNDBjYS0yNzdlLTQ4NzEtYTEwMC00NTFk MDY2ZDFjNWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDx0R4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAI+z4+KloIHZc8mw6ztxufWyxYjstC26muqQUeDBn4RvyCc771dx+J0V PceyOCNoNGEhY11qZzJHeyGrWMm8AewzXClyyEaBdsTO/E/b5n1/iW/01KBRFtNS Mmn4AAR3LrV9CuIQj9tq8yrudKDmXTeAomsmWAmq4o8PSfJSTOtSJ6m6yFgwuk2D ukaap5cnfsrXkBe3W5xNHyI8eJVbZuCv4HZzfcN5lYd0G5qWlKLkrKeXAJo4RYL8 oVIRfHBPypNe3/f/kz5O7oSq0LVMQ08efPc+s9vZTU7RjxYVlw9ps/yLOAfbc9hm A/i+Z/EGOuc8rk7Ay2mfwVHoEAnDuDE= -----END CERTIFICATE-----Generated at Tue Apr 8 10:01:13 2025 by rpki-client