$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa File: 8aa0414c-8126-3e49-be44-eb2af2892430.roa (raw, json) Hash identifier: 5LGqV710qtSa7ATeFZcIBnPF4UZ28PQ0lq5h9cfih10= Subject key identifier: F8:85:F2:AF:D0:F5:9B:0C:1F:9F:51:20:97:55:D9:3B:98:30:66:E9 Certificate issuer: /CN=2bc601f7-daff-4d8b-8556-b61503268309 Certificate serial: 010D0C9F43285848C5810CB1825E0559A6D85500 Authority key identifier: DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa Signing time: Tue 04 Feb 2025 14:00:52 +0000 ROA not before: Tue 04 Feb 2025 14:00:52 +0000 ROA not after: Mon 05 May 2025 13:00:52 +0000 asID: 7155 IP address blocks: 72.173.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:c5:81:0c:b1:82:5e:05:59:a6:d8:55:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc601f7-daff-4d8b-8556-b61503268309 Validity Not Before: Feb 4 14:00:52 2025 GMT Not After : May 5 13:00:52 2025 GMT Subject: CN=5fdd7895-0a31-421f-9aba-e2fa55da4a46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f9:2d:44:db:42:3c:be:98:32:a6:6d:f3:b3: 2f:24:47:ce:34:34:40:08:ab:c0:5e:c8:09:d4:db: 55:90:18:4d:c5:e2:a3:0c:ad:24:7f:30:ed:98:5b: 66:ce:cb:a0:02:ea:f3:7e:54:97:19:db:c4:0a:7a: 33:98:c5:42:c5:13:14:37:16:b8:a1:db:ab:6d:cb: de:04:09:eb:a3:3e:03:34:7f:86:ca:c1:99:15:9b: 8c:69:e1:ae:13:0a:2a:a0:cb:8e:63:a1:c0:a2:f7: 1e:5e:a9:9c:57:95:bb:8e:93:be:32:88:55:3c:d3: 45:b6:cf:9d:ab:3b:57:46:1e:4f:cf:65:13:28:1d: e7:2c:fe:c7:84:1b:dd:db:66:a9:a0:1d:30:01:1c: 9b:50:59:e1:ec:51:ba:6f:15:03:ca:a6:14:ad:ab: 12:30:cd:22:70:3b:1b:01:0f:07:7a:fa:10:86:ab: e4:25:27:58:57:64:95:bf:f0:07:9e:6f:02:59:21: ec:6c:42:2f:f9:05:8a:d0:f5:53:26:c0:d6:de:d4: 22:f9:b1:8e:02:bb:fa:eb:51:39:b9:56:35:b7:27: 81:cf:d8:37:5a:f0:5c:7e:34:e0:f2:3c:78:5e:4b: 4e:0d:6e:5f:f7:1a:54:88:54:22:19:e5:96:d9:d5: 95:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:85:F2:AF:D0:F5:9B:0C:1F:9F:51:20:97:55:D9:3B:98:30:66:E9 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/8aa0414c-8126-3e49-be44-eb2af2892430.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl X509v3 Authority Key Identifier: keyid:DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer sbgp-ipAddrBlock: critical IPv4: 72.173.42.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6b:09:ec:96:cc:ab:37:83:02:72:c9:a8:82:e6:73:af:60:72: 19:06:c8:d7:80:67:f3:91:b1:5c:0b:c1:41:07:7a:54:35:31: b9:22:e1:8c:5a:04:ad:80:24:21:96:5c:4b:32:b2:4a:40:a5: ac:71:87:eb:16:53:78:ad:80:9a:dd:5e:91:07:7a:9e:41:99: 7b:80:bf:9c:47:7d:67:e4:df:35:32:63:03:91:e1:d6:a8:11: d9:60:f9:76:56:aa:c2:7f:4a:d9:db:9e:11:74:92:32:28:ed: 61:6a:82:27:1f:57:a1:eb:44:fa:dd:a7:10:67:c9:b6:cd:f7: 74:e3:e8:b4:3b:56:d3:53:71:e4:46:c5:4f:dc:7f:ab:ca:a7: df:2c:2f:7d:31:6e:c8:a3:92:17:67:91:0a:38:c8:d2:23:9c: 50:ef:e6:4d:90:56:e0:a5:d2:ad:a0:3c:23:cf:32:81:f3:b6: da:69:68:e4:b0:d6:29:84:aa:9d:47:87:a1:3d:8e:cb:a0:e4: 09:0f:b7:51:55:86:56:a6:1c:ae:52:70:c4:18:1f:4c:ef:cc: 7c:3b:1a:41:80:ac:d4:e8:0e:c5:ce:b6:64:3c:5e:e3:51:fe: ee:69:51:af:67:38:f2:b8:12:21:92:0d:eb:ff:37:6e:49:6a: 57:77:f1:24 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEjFgQyxgl4FWabYVQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmJjNjAxZjctZGFmZi00ZDhiLTg1NTYtYjYxNTAzMjY4 MzA5MB4XDTI1MDIwNDE0MDA1MloXDTI1MDUwNTEzMDA1MlowLzEtMCsGA1UEAxMk NWZkZDc4OTUtMGEzMS00MjFmLTlhYmEtZTJmYTU1ZGE0YTQ2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvktRNtCPL6YMqZt87MvJEfONDRACKvAXsgJ 1NtVkBhNxeKjDK0kfzDtmFtmzsugAurzflSXGdvECnozmMVCxRMUNxa4odurbcve BAnroz4DNH+GysGZFZuMaeGuEwoqoMuOY6HAovceXqmcV5W7jpO+MohVPNNFts+d qztXRh5Pz2UTKB3nLP7HhBvd22apoB0wARybUFnh7FG6bxUDyqYUrasSMM0icDsb AQ8HevoQhqvkJSdYV2SVv/AHnm8CWSHsbEIv+QWK0PVTJsDW3tQi+bGOArv661E5 uVY1tyeBz9g3WvBcfjTg8jx4XktODW5f9xpUiFQiGeWW2dWVowIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFPiF8q/Q9ZsMH59RIJdV2TuYMGbpMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2 MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1MDMyNjgzMDkvOGFhMDQxNGMtODEyNi0z ZTQ5LWJlNDQtZWIyYWYyODkyNDMwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvMmJjNjAxZjctZGFmZi00ZDhiLTg1 NTYtYjYxNTAzMjY4MzA5LzJiYzYwMWY3LWRhZmYtNGQ4Yi04NTU2LWI2MTUwMzI2 ODMwOS5jcmwwHwYDVR0jBBgwFoAU2sjvKarps5Jjg0Ir3yR6haVOgxcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1 MDMyNjgzMDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASK0qMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGsJ7JbMqzeDAnLJqILmc69gchkGyNeAZ/ORsVwLwUEHelQ1Mbki4Yxa BK2AJCGWXEsyskpApaxxh+sWU3itgJrdXpEHep5BmXuAv5xHfWfk3zUyYwOR4dao Edlg+XZWqsJ/StnbnhF0kjIo7WFqgicfV6HrRPrdpxBnybbN93Tj6LQ7VtNTceRG xU/cf6vKp98sL30xbsijkhdnkQo4yNIjnFDv5k2QVuCl0q2gPCPPMoHzttppaOSw 1imEqp1Hh6E9jsug5AkPt1FVhlamHK5ScMQYH0zvzHw7GkGArNToDsXOtmQ8XuNR /u5pUa9nOPK4EiGSDev/N25Jald38SQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:17:46 2025 by rpki-client