$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d/433a87db-3abb-3463-985c-6b6a6686327f.roa File: 433a87db-3abb-3463-985c-6b6a6686327f.roa (raw, json) Hash identifier: cvUy1CH/BeTFm0TAvlFUFZpNo5gm5d7dvDCCuuweNko= Subject key identifier: D7:28:19:99:AD:17:A5:15:C8:CA:C7:84:5E:BD:A9:FD:AE:AD:27:AC Certificate issuer: /CN=0d6bb559-168b-45eb-91f1-f7988760221d Certificate serial: 010D0C9F432858490E16BE23BA32AC15DD2E3F00 Authority key identifier: 76:05:63:64:2B:D7:BC:2E:F9:39:65:1E:FB:00:AE:3F:EC:07:CD:C9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d/433a87db-3abb-3463-985c-6b6a6686327f.roa Signing time: Sun 02 Mar 2025 14:00:52 +0000 ROA not before: Sun 02 Mar 2025 14:00:52 +0000 ROA not after: Sat 31 May 2025 13:00:52 +0000 asID: 46437 IP address blocks: 74.118.112.0/21 maxlen: 24 162.210.16.0/22 maxlen: 24 162.252.224.0/22 maxlen: 24 172.96.152.0/21 maxlen: 24 192.96.44.0/24 maxlen: 24 198.135.182.0/23 maxlen: 24 199.85.63.0/24 maxlen: 24 208.80.140.0/22 maxlen: 24 208.91.88.0/23 maxlen: 24 208.91.92.0/22 maxlen: 24 208.95.136.0/21 maxlen: 24 216.120.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d/0d6bb559-168b-45eb-91f1-f7988760221d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d/0d6bb559-168b-45eb-91f1-f7988760221d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:0e:16:be:23:ba:32:ac:15:dd:2e:3f:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d6bb559-168b-45eb-91f1-f7988760221d Validity Not Before: Mar 2 14:00:52 2025 GMT Not After : May 31 13:00:52 2025 GMT Subject: CN=ae957204-bcbe-4945-a2c7-be8ee4cfcc53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:01:56:0d:ff:a8:52:70:93:a2:38:16:cc:5a: 90:75:05:1a:65:c1:09:01:95:47:15:51:db:f1:68: 4b:9e:74:91:2e:d2:29:f7:b8:a8:d8:78:13:10:2c: e8:76:97:cb:da:eb:68:6f:79:11:4e:15:6d:4f:72: b2:5f:fd:1a:86:56:99:85:2e:c8:55:3d:22:6a:9d: 22:21:0a:ca:31:c1:f2:a4:fe:c2:fa:6c:46:56:c0: fc:27:88:03:da:82:f1:e5:d4:d7:8e:61:77:a0:fd: 50:aa:da:db:bd:ab:4f:8c:8b:3b:7c:18:54:66:ae: 9e:ac:28:d7:9e:d8:cc:bc:94:f6:3c:95:1a:a7:59: ec:48:68:05:a7:46:27:a6:6e:db:43:ef:8a:45:11: 61:b1:32:25:6a:8b:c0:17:3d:c7:42:0c:7a:35:bf: 6e:04:b1:17:f3:6c:c5:5f:d8:4c:6d:e5:86:f8:9e: c8:b2:65:6a:75:5a:0f:1c:50:e5:76:5b:b9:32:37: 49:7c:43:24:4f:54:5d:3e:53:47:78:55:aa:a9:d6: d2:b5:f1:dc:69:cb:75:cc:4e:73:ce:8a:bd:11:f6: 4e:d6:bf:92:69:6b:4c:17:05:0c:8d:61:99:97:a5: fd:3e:3c:c6:5c:9d:43:0a:ce:a6:96:1f:58:d1:9d: db:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:28:19:99:AD:17:A5:15:C8:CA:C7:84:5E:BD:A9:FD:AE:AD:27:AC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d/433a87db-3abb-3463-985c-6b6a6686327f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d/0d6bb559-168b-45eb-91f1-f7988760221d.crl X509v3 Authority Key Identifier: keyid:76:05:63:64:2B:D7:BC:2E:F9:39:65:1E:FB:00:AE:3F:EC:07:CD:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0d6bb559-168b-45eb-91f1-f7988760221d.cer sbgp-ipAddrBlock: critical IPv4: 74.118.112.0/21 162.210.16.0/22 162.252.224.0/22 172.96.152.0/21 192.96.44.0/24 198.135.182.0/23 199.85.63.0/24 208.80.140.0/22 208.91.88.0/23 208.91.92.0/22 208.95.136.0/21 216.120.152.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7f:0e:9d:b2:9b:e8:03:d9:ce:83:cb:ed:10:e3:c5:42:42:bf: 6b:5e:25:d6:ef:6d:23:19:5a:55:d8:22:21:d8:c3:13:b7:0c: 81:c2:af:7f:28:23:7d:1c:9b:6f:7e:81:33:60:e7:29:0f:4f: b4:c9:fa:3e:67:60:2d:86:7c:4e:94:0f:84:66:a6:3c:dd:6a: a4:35:f3:c3:33:62:8d:e7:be:7f:5a:25:de:a9:e5:de:6d:1c: c1:70:04:b6:6f:af:a8:f8:81:49:85:cb:79:56:8b:34:ea:be: 56:48:de:73:53:6c:68:3e:82:c0:32:47:ea:24:ed:03:87:28: 9e:b5:91:14:a3:75:98:a6:d6:e2:74:a8:59:82:68:c6:8c:fe: ab:d8:0f:9b:7c:f3:17:2d:68:9d:03:5d:19:bb:fd:fd:1a:a9: c8:5f:17:05:4d:27:9d:37:5b:e3:da:22:58:6d:21:fd:82:ac: 08:14:ce:f0:98:28:63:7c:32:49:e7:51:fd:e1:c8:d6:5d:d7: 1e:f6:b1:d7:f0:f8:a6:b7:64:cb:2b:c1:b2:4e:28:97:2f:ac: 4c:d5:d0:a2:90:2f:b9:16:8c:67:2e:1f:93:1b:9c:00:4a:2a: 14:09:9d:84:07:97:79:de:aa:a5:9d:ef:4a:e3:3e:ad:1e:09: 13:91:b7:56 -----BEGIN CERTIFICATE----- MIIGhTCCBW2gAwIBAgIUAQ0Mn0MoWEkOFr4jujKsFd0uPwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMGQ2YmI1NTktMTY4Yi00NWViLTkxZjEtZjc5ODg3NjAy MjFkMB4XDTI1MDMwMjE0MDA1MloXDTI1MDUzMTEzMDA1MlowLzEtMCsGA1UEAxMk YWU5NTcyMDQtYmNiZS00OTQ1LWEyYzctYmU4ZWU0Y2ZjYzUzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswFWDf+oUnCTojgWzFqQdQUaZcEJAZVHFVHb 8WhLnnSRLtIp97io2HgTECzodpfL2utob3kRThVtT3KyX/0ahlaZhS7IVT0iap0i IQrKMcHypP7C+mxGVsD8J4gD2oLx5dTXjmF3oP1QqtrbvatPjIs7fBhUZq6erCjX ntjMvJT2PJUap1nsSGgFp0Ynpm7bQ++KRRFhsTIlaovAFz3HQgx6Nb9uBLEX82zF X9hMbeWG+J7IsmVqdVoPHFDldlu5MjdJfEMkT1RdPlNHeFWqqdbStfHcact1zE5z zoq9EfZO1r+SaWtMFwUMjWGZl6X9PjzGXJ1DCs6mlh9Y0Z3bEwIDAQABo4IDlzCC A5MwHQYDVR0OBBYEFNcoGZmtF6UVyMrHhF69qf2urSesMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8wZDZi YjU1OS0xNjhiLTQ1ZWItOTFmMS1mNzk4ODc2MDIyMWQvNDMzYTg3ZGItM2FiYi0z NDYzLTk4NWMtNmI2YTY2ODYzMjdmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvMGQ2YmI1NTktMTY4Yi00NWViLTkx ZjEtZjc5ODg3NjAyMjFkLzBkNmJiNTU5LTE2OGItNDVlYi05MWYxLWY3OTg4NzYw MjIxZC5jcmwwHwYDVR0jBBgwFoAUdgVjZCvXvC75OWUe+wCuP+wHzckwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8wZDZiYjU1OS0xNjhiLTQ1ZWItOTFmMS1mNzk4 ODc2MDIyMWQuY2VyMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQDSnZwAwQC otIQAwQCovzgAwQDrGCYAwQAwGAsAwQBxoe2AwQAx1U/AwQC0FCMAwQB0FtYAwQC 0FtcAwQD0F+IAwQC2HiYMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4Bggr BgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3Bz Lmh0bWwwDQYJKoZIhvcNAQELBQADggEBAH8OnbKb6APZzoPL7RDjxUJCv2teJdbv bSMZWlXYIiHYwxO3DIHCr38oI30cm29+gTNg5ykPT7TJ+j5nYC2GfE6UD4Rmpjzd aqQ188MzYo3nvn9aJd6p5d5tHMFwBLZvr6j4gUmFy3lWizTqvlZI3nNTbGg+gsAy R+ok7QOHKJ61kRSjdZim1uJ0qFmCaMaM/qvYD5t88xctaJ0DXRm7/f0aqchfFwVN J503W+PaIlhtIf2CrAgUzvCYKGN8MknnUf3hyNZd1x72sdfw+Ka3ZMsrwbJOKJcv rEzV0KKQL7kWjGcuH5MbnABKKhQJnYQHl3neqqWd70rjPq0eCRORt1Y= -----END CERTIFICATE-----Generated at Fri Mar 14 11:13:38 2025 by rpki-client