$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/fdfb5184-61d0-3a3d-93b7-6a34a00328a7.roa File: fdfb5184-61d0-3a3d-93b7-6a34a00328a7.roa (raw, json) Hash identifier: npoHKHZIXRo+/ylNEbytypj7YaK69zwcfZlxIbaRT6c= Subject key identifier: B0:82:C0:54:72:71:2E:89:CD:4B:E6:8E:A7:95:74:B3:F1:B6:33:4E Certificate issuer: /CN=bad5af20-8385-44d4-815f-bb83497d4a0e Certificate serial: 010D0C9F432858496A19A76577570DDE0B260D00 Authority key identifier: 11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/fdfb5184-61d0-3a3d-93b7-6a34a00328a7.roa Signing time: Fri 04 Apr 2025 13:00:59 +0000 ROA not before: Fri 04 Apr 2025 13:00:59 +0000 ROA not after: Thu 03 Jul 2025 13:00:59 +0000 asID: 21777 IP address blocks: 199.189.28.0/23 maxlen: 24 207.174.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:6a:19:a7:65:77:57:0d:de:0b:26:0d:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bad5af20-8385-44d4-815f-bb83497d4a0e Validity Not Before: Apr 4 13:00:59 2025 GMT Not After : Jul 3 13:00:59 2025 GMT Subject: CN=313cc2e7-9555-4881-93a7-9055f610f50a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:51:02:5f:f8:4a:47:7a:43:c9:59:da:09:21: 25:f1:0d:a1:60:5b:7c:35:22:49:fe:28:90:02:9e: 78:dc:10:07:df:eb:9a:80:3a:e8:4a:b2:11:dd:69: 39:9f:80:4d:1c:c6:6f:78:a7:04:27:0e:76:61:e9: 7f:e2:90:c4:ee:9f:68:7c:75:71:a1:ab:cf:0c:b8: 35:2e:8f:ae:34:06:7b:27:df:ad:56:ed:c6:00:f6: b3:87:d0:40:a6:af:c8:16:9f:f3:38:6d:ee:da:89: 72:cc:f5:e5:3f:2d:59:8c:af:aa:32:92:f4:a6:00: 0f:93:2b:61:75:b5:54:db:d2:6d:c5:ee:c1:c2:72: ca:70:d5:c9:9b:6c:99:48:4d:0c:92:5f:70:27:db: af:17:b8:1d:4c:7f:16:c1:df:88:38:6a:4d:ea:d5: b8:55:50:20:6d:60:e6:c8:d7:06:b0:fe:d6:ac:b7: 89:9a:e2:69:94:66:2f:46:5c:c1:be:5f:37:70:72: 9b:06:e2:ec:81:e0:75:d6:c9:4c:c5:7d:bc:6b:38: 38:00:ed:17:be:43:ab:69:84:5b:79:1c:6c:79:4d: 63:c4:f4:78:b2:c9:aa:ca:b1:b8:4e:a4:df:c8:6c: 5c:0a:a9:d1:58:c1:f5:d8:35:15:27:9d:52:41:50: da:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:82:C0:54:72:71:2E:89:CD:4B:E6:8E:A7:95:74:B3:F1:B6:33:4E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/fdfb5184-61d0-3a3d-93b7-6a34a00328a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl X509v3 Authority Key Identifier: keyid:11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer sbgp-ipAddrBlock: critical IPv4: 199.189.28.0/23 207.174.110.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8c:ab:87:fb:4b:04:1f:21:3d:fe:d2:a3:25:b9:bd:d4:1c:99: 50:58:2b:b1:d3:d6:5a:1a:be:69:08:91:a9:af:04:a6:74:4f: 20:65:69:52:3a:65:1e:ff:63:aa:a4:fd:67:fe:e0:e7:b7:12: b4:4c:d9:6e:86:cd:1b:5e:7d:e5:a2:b6:18:2a:4c:ed:8d:8a: 2f:68:2c:fa:d5:45:dc:8c:60:9e:63:e2:28:d5:6b:26:e1:54: 64:61:67:74:c6:24:86:5b:31:6a:03:0b:e0:61:92:8d:29:cf: 29:39:d8:9a:60:bc:82:15:62:57:f1:92:34:ac:fd:5c:74:05: dd:40:25:14:f8:25:30:80:73:b6:d0:cf:e6:fa:9b:c7:54:42: 36:e6:9c:89:b1:b2:ee:e1:6f:8e:8a:48:31:d5:97:76:fd:a3: 36:64:ef:77:2d:6f:16:19:32:d0:e8:f3:42:70:5a:b5:7f:18: cf:75:cf:14:a7:d3:d3:c0:51:6d:06:5f:05:06:f3:fd:d7:81: f8:fe:44:22:f6:1b:59:16:32:e8:8a:9c:bf:fd:31:82:98:78: 81:c9:9f:73:de:d8:e4:32:f8:4a:42:d9:5c:49:af:71:a1:04: ab:b4:dc:bb:8b:2d:b0:56:f3:4a:6d:38:3f:27:6a:7c:5f:a8: a3:20:29:74 -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWElqGadld1cN3gsmDQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmFkNWFmMjAtODM4NS00NGQ0LTgxNWYtYmI4MzQ5N2Q0 YTBlMB4XDTI1MDQwNDEzMDA1OVoXDTI1MDcwMzEzMDA1OVowLzEtMCsGA1UEAxMk MzEzY2MyZTctOTU1NS00ODgxLTkzYTctOTA1NWY2MTBmNTBhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1ECX/hKR3pDyVnaCSEl8Q2hYFt8NSJJ/iiQ Ap543BAH3+uagDroSrIR3Wk5n4BNHMZveKcEJw52Yel/4pDE7p9ofHVxoavPDLg1 Lo+uNAZ7J9+tVu3GAPazh9BApq/IFp/zOG3u2olyzPXlPy1ZjK+qMpL0pgAPkyth dbVU29Jtxe7BwnLKcNXJm2yZSE0Mkl9wJ9uvF7gdTH8Wwd+IOGpN6tW4VVAgbWDm yNcGsP7WrLeJmuJplGYvRlzBvl83cHKbBuLsgeB11slMxX28azg4AO0XvkOraYRb eRxseU1jxPR4ssmqyrG4TqTfyGxcCqnRWMH12DUVJ51SQVDaNQIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFLCCwFRycS6JzUvmjqeVdLPxtjNOMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1 YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgzNDk3ZDRhMGUvZmRmYjUxODQtNjFkMC0z YTNkLTkzYjctNmEzNGEwMDMyOGE3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvYmFkNWFmMjAtODM4NS00NGQ0LTgx NWYtYmI4MzQ5N2Q0YTBlL2JhZDVhZjIwLTgzODUtNDRkNC04MTVmLWJiODM0OTdk NGEwZS5jcmwwHwYDVR0jBBgwFoAUEapw8wRQo6yCOXMUtq3WNdHdOZQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgz NDk3ZDRhMGUuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBx70cAwQB z65uMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBAIyrh/tLBB8hPf7SoyW5vdQcmVBYK7HT1loavmkIkamvBKZ0 TyBlaVI6ZR7/Y6qk/Wf+4Oe3ErRM2W6GzRtefeWithgqTO2Nii9oLPrVRdyMYJ5j 4ijVaybhVGRhZ3TGJIZbMWoDC+Bhko0pzyk52JpgvIIVYlfxkjSs/Vx0Bd1AJRT4 JTCAc7bQz+b6m8dUQjbmnImxsu7hb46KSDHVl3b9ozZk73ctbxYZMtDo80JwWrV/ GM91zxSn09PAUW0GXwUG8/3Xgfj+RCL2G1kWMuiKnL/9MYKYeIHJn3Pe2OQy+EpC 2VxJr3GhBKu03LuLLbBW80ptOD8nanxfqKMgKXQ= -----END CERTIFICATE-----Generated at Fri Apr 11 21:44:37 2025 by rpki-client