$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa File: 8db1943e-17fa-375d-aa4b-b018e52e3c40.roa (raw, json) Hash identifier: alTlkSxItWrZY7yYjM2W7eTAT770E6F2rmeZnRGyCjQ= Subject key identifier: 5C:0C:AA:BF:1A:85:F3:12:48:08:B3:74:FD:2C:35:00:59:B2:89:D0 Certificate issuer: /CN=bad5af20-8385-44d4-815f-bb83497d4a0e Certificate serial: 010D0C9F432858496A199D792CFE4D1BBFFBA350 Authority key identifier: 11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa Signing time: Fri 04 Apr 2025 13:00:59 +0000 ROA not before: Fri 04 Apr 2025 13:00:59 +0000 ROA not after: Thu 03 Jul 2025 13:00:59 +0000 asID: 21777 IP address blocks: 199.45.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:6a:19:9d:79:2c:fe:4d:1b:bf:fb:a3:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bad5af20-8385-44d4-815f-bb83497d4a0e Validity Not Before: Apr 4 13:00:59 2025 GMT Not After : Jul 3 13:00:59 2025 GMT Subject: CN=b1ebb305-3a70-4f65-a85f-a90175bde5c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f4:74:e3:08:46:25:d5:8b:13:30:c3:7f:a7: 68:b3:29:09:e1:2c:98:00:d0:47:72:60:16:ba:ca: 35:3a:ec:db:a7:26:fe:da:ba:d4:55:7a:f3:27:fd: 2d:ae:f3:4f:aa:6e:0d:e8:50:e5:17:19:5e:02:e3: 5c:e6:8d:f5:e8:f6:a6:35:d6:9a:14:76:61:2e:44: cb:30:76:26:a6:3b:e3:b3:a0:c8:ef:fb:91:ff:3f: 0b:de:99:5b:b6:4e:1a:bb:b7:b3:63:4f:41:98:ae: 81:99:81:bd:d7:0f:c8:9e:cb:54:3c:f5:80:63:ba: 17:f5:3f:65:38:43:17:b5:15:33:4c:5a:92:30:2f: ba:a2:ee:3f:5a:3e:1d:b1:88:d8:44:71:56:00:1a: 7f:11:2c:0a:a9:ec:76:64:e9:b9:0d:05:72:16:bd: 1d:d2:df:95:da:f8:ea:b7:ed:21:f4:34:fd:59:08: 46:96:12:b6:d2:fa:27:36:44:e1:94:13:fa:54:ab: 94:33:e2:83:66:51:db:33:f8:75:7d:3e:ff:16:c9: 56:9c:02:7d:d6:0c:d7:4d:6b:18:7b:cc:a2:d3:c3: bf:ae:b1:c1:59:39:f3:33:6d:32:8e:75:3b:7e:2f: 04:9a:f2:d9:77:8b:82:55:31:ef:e4:95:21:7c:32: 05:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0C:AA:BF:1A:85:F3:12:48:08:B3:74:FD:2C:35:00:59:B2:89:D0 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl X509v3 Authority Key Identifier: keyid:11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer sbgp-ipAddrBlock: critical IPv4: 199.45.152.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6a:0d:59:8d:01:9b:02:ca:e3:82:e0:0b:a0:ee:ba:9c:6c:3b: 9e:1c:62:c2:fa:6e:f3:06:cb:3d:3d:94:8b:80:b2:a3:0d:11: 51:7f:e6:1a:c6:89:a8:e8:0b:c3:98:8e:8a:ab:1e:f6:e7:4c: 1b:f8:66:61:92:62:79:72:26:07:20:da:38:60:07:ca:ee:45: 54:8b:63:98:9d:64:08:8c:38:ea:f6:6f:15:db:78:f4:f3:80: 24:c7:6b:fd:74:8c:89:51:a7:ca:41:8b:8f:e6:ff:73:19:ff: 27:a2:8f:cb:6e:aa:37:3b:9e:2f:d2:e7:78:f1:3b:73:5a:ec: 7d:fe:af:b2:99:c4:c8:92:5c:e6:a8:02:1d:e1:dd:fc:28:ef: ae:59:46:c1:d9:f3:47:5a:4c:7f:fe:d9:3a:97:a5:2b:68:a2: f7:4c:14:22:08:e4:96:09:d2:10:f9:ab:95:01:50:fb:39:15: de:44:a4:40:36:16:5b:01:86:fd:db:08:e0:62:4b:de:81:9e: 7c:5f:75:d4:c9:d2:1f:1b:57:0b:de:22:8d:c6:29:b7:e7:b8: eb:9b:ba:55:f5:2c:97:c7:ff:f0:c3:16:87:ee:4f:97:74:2b: a5:11:a8:41:00:d7:4a:66:fd:91:cc:57:d5:dc:02:57:b4:a8: 3a:a4:5f:16 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWElqGZ15LP5NG7/7o1AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmFkNWFmMjAtODM4NS00NGQ0LTgxNWYtYmI4MzQ5N2Q0 YTBlMB4XDTI1MDQwNDEzMDA1OVoXDTI1MDcwMzEzMDA1OVowLzEtMCsGA1UEAxMk YjFlYmIzMDUtM2E3MC00ZjY1LWE4NWYtYTkwMTc1YmRlNWM3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PR04whGJdWLEzDDf6dosykJ4SyYANBHcmAW uso1Ouzbpyb+2rrUVXrzJ/0trvNPqm4N6FDlFxleAuNc5o316PamNdaaFHZhLkTL MHYmpjvjs6DI7/uR/z8L3plbtk4au7ezY09BmK6BmYG91w/InstUPPWAY7oX9T9l OEMXtRUzTFqSMC+6ou4/Wj4dsYjYRHFWABp/ESwKqex2ZOm5DQVyFr0d0t+V2vjq t+0h9DT9WQhGlhK20vonNkThlBP6VKuUM+KDZlHbM/h1fT7/FslWnAJ91gzXTWsY e8yi08O/rrHBWTnzM20yjnU7fi8EmvLZd4uCVTHv5JUhfDIFTwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFwMqr8ahfMSSAizdP0sNQBZsonQMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1 YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgzNDk3ZDRhMGUvOGRiMTk0M2UtMTdmYS0z NzVkLWFhNGItYjAxOGU1MmUzYzQwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvYmFkNWFmMjAtODM4NS00NGQ0LTgx NWYtYmI4MzQ5N2Q0YTBlL2JhZDVhZjIwLTgzODUtNDRkNC04MTVmLWJiODM0OTdk NGEwZS5jcmwwHwYDVR0jBBgwFoAUEapw8wRQo6yCOXMUtq3WNdHdOZQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgz NDk3ZDRhMGUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAxy2YMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGoNWY0BmwLK44LgC6DuupxsO54cYsL6bvMGyz09lIuAsqMNEVF/5hrG iajoC8OYjoqrHvbnTBv4ZmGSYnlyJgcg2jhgB8ruRVSLY5idZAiMOOr2bxXbePTz gCTHa/10jIlRp8pBi4/m/3MZ/yeij8tuqjc7ni/S53jxO3Na7H3+r7KZxMiSXOao Ah3h3fwo765ZRsHZ80daTH/+2TqXpStoovdMFCII5JYJ0hD5q5UBUPs5Fd5EpEA2 FlsBhv3bCOBiS96BnnxfddTJ0h8bVwveIo3GKbfnuOubulX1LJfH//DDFofuT5d0 K6URqEEA10pm/ZHMV9XcAle0qDqkXxY= -----END CERTIFICATE-----Generated at Sat Apr 12 00:27:42 2025 by rpki-client