$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/aa9276be-9f8a-381e-a002-c6984ebc8321.roa File: aa9276be-9f8a-381e-a002-c6984ebc8321.roa (raw, json) Hash identifier: yp6xuyb2cnyysqqG2oSZ2jWj8ViDKY1TFS1tUuCFw8s= Subject key identifier: 20:2D:63:61:DB:0A:62:3E:0E:23:57:4F:78:AC:5B:79:1D:3E:3F:AE Certificate issuer: /CN=2bc601f7-daff-4d8b-8556-b61503268309 Certificate serial: 010D0C9F43285848C58102B1B79EE0EE66D80400 Authority key identifier: DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/aa9276be-9f8a-381e-a002-c6984ebc8321.roa Signing time: Tue 04 Feb 2025 14:00:52 +0000 ROA not before: Tue 04 Feb 2025 14:00:52 +0000 ROA not after: Mon 05 May 2025 13:00:52 +0000 asID: 7155 IP address blocks: 70.41.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:c5:81:02:b1:b7:9e:e0:ee:66:d8:04:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc601f7-daff-4d8b-8556-b61503268309 Validity Not Before: Feb 4 14:00:52 2025 GMT Not After : May 5 13:00:52 2025 GMT Subject: CN=7e080747-a6c0-4b24-be63-7a09b0c787fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:a1:9b:9d:82:e7:e7:97:3a:3b:49:ff:25:39: 17:84:83:87:79:00:70:aa:88:50:2a:0e:f2:22:ab: 69:42:a4:d0:36:25:1f:d8:1a:57:ff:ca:1a:95:d3: 2a:ae:18:93:72:14:18:e9:eb:67:c6:f3:eb:13:dd: 3d:fa:6f:37:56:04:7e:ee:73:fa:fd:49:07:d4:a6: 01:0c:7a:dd:bb:26:3e:f8:cf:22:80:bb:08:e8:e4: 56:5c:b5:2a:64:e6:b1:2c:4d:10:21:dd:ef:f4:6c: 3b:05:b3:db:3c:d6:9a:35:d2:0e:43:c7:45:44:51: 0c:a3:e1:d4:1b:ea:4f:13:6f:15:20:ab:df:d8:12: 74:7a:87:98:41:8c:0e:0c:e7:0c:b5:f5:42:22:91: e2:9f:c3:82:72:52:80:38:a6:a8:d3:72:2b:e8:a1: c5:bf:df:fb:7c:ea:16:08:9c:78:e8:ac:e6:6d:1e: 24:63:13:40:d2:fb:3b:47:c9:4f:b8:3a:8e:5b:19: e2:3c:bd:0f:08:93:f3:94:55:2b:28:b7:39:c9:41: 9a:2d:be:fa:a2:ed:01:89:9e:20:2a:e3:13:67:03: e3:f3:51:15:ac:14:e2:a8:c2:cf:b4:d0:40:e6:18: 2c:b0:17:b3:71:6c:f4:b4:61:5c:8b:e2:e2:d9:99: ec:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2D:63:61:DB:0A:62:3E:0E:23:57:4F:78:AC:5B:79:1D:3E:3F:AE Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/aa9276be-9f8a-381e-a002-c6984ebc8321.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl X509v3 Authority Key Identifier: keyid:DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer sbgp-ipAddrBlock: critical IPv4: 70.41.14.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption c6:13:05:c2:08:23:0b:e4:4f:46:2d:8c:c1:74:c0:b2:f8:3d: e8:76:23:d3:cb:f9:88:69:96:3a:44:41:4f:1c:55:06:e6:31: b6:a0:72:02:29:e2:fb:aa:5a:ba:49:a6:af:55:93:f1:b2:dd: 62:5a:d8:77:b7:7c:49:48:a9:d9:5b:e8:9b:fd:a4:e9:17:d5: 77:1d:ad:46:9d:0d:93:59:d7:e5:b6:3b:e1:f1:19:fa:c2:87: e2:92:0d:1c:f5:4a:0c:f1:40:51:4e:a5:6a:91:0c:23:3a:e0: fe:dc:fa:db:15:0b:9e:2f:d0:9b:58:ac:d3:db:69:d2:50:6e: 33:2e:f9:3c:21:31:dd:4f:11:b3:5a:5b:94:d4:ab:72:ed:4b: 5f:f4:41:7a:e6:a1:dc:6a:29:a9:7d:df:82:ae:1c:ab:ce:73: 89:13:3e:cc:38:60:cb:77:eb:db:2e:5a:70:41:1d:02:d6:dc: f7:30:bf:d4:18:f0:d0:78:d2:7d:55:60:d2:5e:ef:8a:c2:71: ae:0a:a6:17:a6:b5:ae:b5:43:7d:7d:cb:07:71:fa:2e:4f:14: 94:a4:d5:f9:0d:a0:f6:4f:7a:ad:82:98:8e:c7:3f:63:d5:5f: 3e:4e:72:4a:3f:c6:69:f9:0d:ad:ec:0d:4f:d4:af:5a:d0:bd: 74:2f:78:40 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEjFgQKxt57g7mbYBAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmJjNjAxZjctZGFmZi00ZDhiLTg1NTYtYjYxNTAzMjY4 MzA5MB4XDTI1MDIwNDE0MDA1MloXDTI1MDUwNTEzMDA1MlowLzEtMCsGA1UEAxMk N2UwODA3NDctYTZjMC00YjI0LWJlNjMtN2EwOWIwYzc4N2ZhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgqGbnYLn55c6O0n/JTkXhIOHeQBwqohQKg7y IqtpQqTQNiUf2BpX/8oaldMqrhiTchQY6etnxvPrE909+m83VgR+7nP6/UkH1KYB DHrduyY++M8igLsI6ORWXLUqZOaxLE0QId3v9Gw7BbPbPNaaNdIOQ8dFRFEMo+HU G+pPE28VIKvf2BJ0eoeYQYwODOcMtfVCIpHin8OCclKAOKao03Ir6KHFv9/7fOoW CJx46KzmbR4kYxNA0vs7R8lPuDqOWxniPL0PCJPzlFUrKLc5yUGaLb76ou0BiZ4g KuMTZwPj81EVrBTiqMLPtNBA5hgssBezcWz0tGFci+Li2ZnsdwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCAtY2HbCmI+DiNXT3isW3kdPj+uMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2 MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1MDMyNjgzMDkvYWE5Mjc2YmUtOWY4YS0z ODFlLWEwMDItYzY5ODRlYmM4MzIxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvMmJjNjAxZjctZGFmZi00ZDhiLTg1 NTYtYjYxNTAzMjY4MzA5LzJiYzYwMWY3LWRhZmYtNGQ4Yi04NTU2LWI2MTUwMzI2 ODMwOS5jcmwwHwYDVR0jBBgwFoAU2sjvKarps5Jjg0Ir3yR6haVOgxcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1 MDMyNjgzMDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQARikOMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAMYTBcIIIwvkT0YtjMF0wLL4Peh2I9PL+YhpljpEQU8cVQbmMbagcgIp 4vuqWrpJpq9Vk/Gy3WJa2He3fElIqdlb6Jv9pOkX1XcdrUadDZNZ1+W2O+HxGfrC h+KSDRz1SgzxQFFOpWqRDCM64P7c+tsVC54v0JtYrNPbadJQbjMu+TwhMd1PEbNa W5TUq3LtS1/0QXrmodxqKal934KuHKvOc4kTPsw4YMt369suWnBBHQLW3Pcwv9QY 8NB40n1VYNJe74rCca4Kphemta61Q319ywdx+i5PFJSk1fkNoPZPeq2CmI7HP2PV Xz5Ocko/xmn5Da3sDU/Ur1rQvXQveEA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:50 2025 by rpki-client