$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/2ac3f1e9-5fa1-3480-be7e-6093481625b3.roa File: 2ac3f1e9-5fa1-3480-be7e-6093481625b3.roa (raw, json) Hash identifier: IFayGY8aGr+uhDAcYOob9UREW7gdsQEH3xDgrcuspNs= Subject key identifier: 1E:68:27:35:21:6B:5A:48:B0:AD:06:20:3B:77:F7:B5:8D:2F:C7:92 Certificate issuer: /CN=b02b5a1e-c575-48d8-ad0e-3a3e1d032110 Certificate serial: 010D0C9F432858494B640C3014DA0BDC2886BA80 Authority key identifier: 2B:8B:68:E9:63:83:9C:CE:62:11:46:CC:6B:97:61:91:F7:0D:EB:B2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/2ac3f1e9-5fa1-3480-be7e-6093481625b3.roa Signing time: Mon 24 Mar 2025 13:00:53 +0000 ROA not before: Mon 24 Mar 2025 13:00:53 +0000 ROA not after: Sun 22 Jun 2025 13:00:53 +0000 asID: 31830 IP address blocks: 192.40.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:4b:64:0c:30:14:da:0b:dc:28:86:ba:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b02b5a1e-c575-48d8-ad0e-3a3e1d032110 Validity Not Before: Mar 24 13:00:53 2025 GMT Not After : Jun 22 13:00:53 2025 GMT Subject: CN=87a20a1a-7ceb-4ee5-bada-906b3fbf4d70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:18:6c:37:34:66:a8:b5:7c:fe:8d:41:17:e5: cd:85:15:81:6c:68:a4:f7:13:01:54:ec:3c:51:1c: 50:48:8c:19:40:f5:97:1d:9c:86:a1:28:ad:36:c0: 04:b9:66:17:be:31:b5:bb:ae:1a:26:26:53:7d:3a: 22:08:af:80:e5:67:b6:30:bd:8a:0c:48:91:39:ec: c4:54:76:de:6f:43:83:cc:47:f6:5b:26:34:c6:52: 6e:03:fb:f4:a5:3e:30:cf:c3:7e:1a:b4:d4:40:e2: 55:70:44:09:f3:1c:ac:fc:56:0c:1b:ba:fe:0f:09: 58:05:7f:db:7c:b7:b0:04:53:50:69:8a:f0:7c:e3: 54:cf:4e:19:90:4c:39:81:e0:8a:4d:d8:b5:42:a1: b5:25:d0:b6:73:8d:53:a8:b4:fe:51:f4:4c:c8:a1: e3:67:ff:3b:25:93:5e:97:b7:02:71:9f:e3:44:61: 2a:b6:fd:3e:95:1e:6e:83:6c:68:b2:ed:a9:3a:31: b0:cc:e3:16:9b:90:3c:0e:5a:93:2b:18:c2:c6:88: 35:44:e2:1d:83:80:b4:42:13:11:b0:86:f5:ef:0d: d2:88:a3:8f:c0:18:5e:74:0d:0a:d7:0b:3f:bc:a4: af:af:52:3c:39:de:87:9f:6c:ba:f4:ff:46:76:23: 00:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:68:27:35:21:6B:5A:48:B0:AD:06:20:3B:77:F7:B5:8D:2F:C7:92 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/2ac3f1e9-5fa1-3480-be7e-6093481625b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.crl X509v3 Authority Key Identifier: keyid:2B:8B:68:E9:63:83:9C:CE:62:11:46:CC:6B:97:61:91:F7:0D:EB:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.cer sbgp-ipAddrBlock: critical IPv4: 192.40.157.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0c:a2:0b:74:93:df:31:96:cd:79:57:19:27:a3:99:07:84:be: f8:ee:86:bc:1b:7c:bd:b1:14:52:6f:aa:da:45:d1:56:60:6a: 4e:bd:91:bb:36:2d:d2:e5:68:99:1b:d0:70:51:d6:55:7c:4c: a0:0a:82:e3:1c:72:15:77:c4:91:13:4d:5b:cf:b8:45:bb:c2: 18:50:29:c5:44:94:23:4f:38:f5:f2:f5:4f:93:f4:f9:e5:57: 15:c1:ce:b8:52:4e:80:ca:e3:b5:ab:3e:1f:b9:50:19:6d:64: 5f:d6:2f:44:6f:bc:21:75:e9:66:c4:77:d3:5b:69:6c:fe:81: 59:97:17:aa:a5:d1:63:30:8b:14:cf:a6:44:f6:c7:30:d2:69: 4d:e6:cc:cf:f1:0e:aa:58:28:9d:a1:59:38:b2:28:4d:48:64: f8:e2:7a:57:e6:8d:f1:5b:97:c3:71:65:bd:8c:60:1b:2e:6d: db:26:a7:fc:66:51:1d:4c:1e:eb:39:9b:7d:b0:da:a8:0e:02: 8b:3a:93:96:bb:74:2c:57:3a:10:cf:21:b0:7e:06:b1:fc:64: 56:47:f5:23:04:35:d6:3d:0c:e5:3d:e2:fb:69:f8:7f:c0:da: 03:31:e0:ad:85:19:98:85:20:5c:07:bb:6a:ce:b7:54:b5:74: 7c:b9:14:4b -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWElLZAwwFNoL3CiGuoAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYjAyYjVhMWUtYzU3NS00OGQ4LWFkMGUtM2EzZTFkMDMy MTEwMB4XDTI1MDMyNDEzMDA1M1oXDTI1MDYyMjEzMDA1M1owLzEtMCsGA1UEAxMk ODdhMjBhMWEtN2NlYi00ZWU1LWJhZGEtOTA2YjNmYmY0ZDcwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxhsNzRmqLV8/o1BF+XNhRWBbGik9xMBVOw8 URxQSIwZQPWXHZyGoSitNsAEuWYXvjG1u64aJiZTfToiCK+A5We2ML2KDEiROezE VHbeb0ODzEf2WyY0xlJuA/v0pT4wz8N+GrTUQOJVcEQJ8xys/FYMG7r+DwlYBX/b fLewBFNQaYrwfONUz04ZkEw5geCKTdi1QqG1JdC2c41TqLT+UfRMyKHjZ/87JZNe l7cCcZ/jRGEqtv0+lR5ug2xosu2pOjGwzOMWm5A8DlqTKxjCxog1ROIdg4C0QhMR sIb17w3SiKOPwBhedA0K1ws/vKSvr1I8Od6Hn2y69P9GdiMACQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFB5oJzUha1pIsK0GIDt397WNL8eSMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9iMDJi NWExZS1jNTc1LTQ4ZDgtYWQwZS0zYTNlMWQwMzIxMTAvMmFjM2YxZTktNWZhMS0z NDgwLWJlN2UtNjA5MzQ4MTYyNWIzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvYjAyYjVhMWUtYzU3NS00OGQ4LWFk MGUtM2EzZTFkMDMyMTEwL2IwMmI1YTFlLWM1NzUtNDhkOC1hZDBlLTNhM2UxZDAz MjExMC5jcmwwHwYDVR0jBBgwFoAUK4to6WODnM5iEUbMa5dhkfcN67IwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9iMDJiNWExZS1jNTc1LTQ4ZDgtYWQwZS0zYTNl MWQwMzIxMTAuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwCidMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAyiC3ST3zGWzXlXGSejmQeEvvjuhrwbfL2xFFJvqtpF0VZgak69kbs2 LdLlaJkb0HBR1lV8TKAKguMcchV3xJETTVvPuEW7whhQKcVElCNPOPXy9U+T9Pnl VxXBzrhSToDK47WrPh+5UBltZF/WL0RvvCF16WbEd9NbaWz+gVmXF6ql0WMwixTP pkT2xzDSaU3mzM/xDqpYKJ2hWTiyKE1IZPjielfmjfFbl8NxZb2MYBsubdsmp/xm UR1MHus5m32w2qgOAos6k5a7dCxXOhDPIbB+BrH8ZFZH9SMENdY9DOU94vtp+H/A 2gMx4K2FGZiFIFwHu2rOt1S1dHy5FEs= -----END CERTIFICATE-----Generated at Fri Apr 11 21:38:10 2025 by rpki-client