$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/290299e5-0f22-3823-b566-33f7489de718.roa File: 290299e5-0f22-3823-b566-33f7489de718.roa (raw, json) Hash identifier: 8zW9w8Mz4vH5j4fjHEz37FY0pwO32NwEWb3pGgLtxUo= Subject key identifier: 63:4D:78:5A:D0:81:7C:81:2B:46:AD:28:26:0B:2D:F4:F8:3A:A9:6F Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F43285848F4F787CC9E121F11067EAC40 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/290299e5-0f22-3823-b566-33f7489de718.roa Signing time: Fri 21 Feb 2025 14:00:50 +0000 ROA not before: Fri 21 Feb 2025 14:00:50 +0000 ROA not after: Thu 22 May 2025 13:00:50 +0000 asID: 33668 IP address blocks: 68.37.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:f4:f7:87:cc:9e:12:1f:11:06:7e:ac:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Feb 21 14:00:50 2025 GMT Not After : May 22 13:00:50 2025 GMT Subject: CN=2fd8f647-a5c9-4636-a624-e63dc44f69b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:cb:97:0a:9b:1c:c9:80:c3:cd:a7:d0:47:e1: 28:5b:fb:de:21:02:21:30:e8:b8:84:10:fa:7d:12: 83:5c:3a:a9:c1:2f:3c:54:8e:b0:a5:3f:84:a1:bd: 95:c5:27:f5:a6:0b:c9:32:25:c8:17:2c:fa:d4:9b: bd:ee:f4:1e:81:00:97:49:69:ac:cd:3b:e7:4d:cf: a3:6c:d9:44:f1:0b:86:e8:90:a4:90:ed:3d:22:cd: 48:3a:48:26:53:7f:ef:a4:5b:01:db:0e:2a:c3:20: 00:5a:96:57:35:3b:ac:ae:b0:56:ca:b7:6f:a4:44: 55:d6:05:8e:6e:73:d3:f7:ee:7a:84:97:73:df:4e: 55:63:43:f1:33:64:b7:68:fe:74:6e:01:20:20:ca: fc:e0:ee:5a:51:be:84:09:06:29:cf:76:76:1f:fc: dc:ce:12:b0:0d:7a:0e:4f:7f:5b:f6:60:8d:45:29: 29:dc:27:06:a0:11:4d:d2:5b:e7:95:87:76:70:24: e0:c8:9e:fe:f5:d7:37:32:96:47:cf:7d:c4:c8:14: e0:df:d9:57:56:9f:96:16:a0:4b:c9:d0:53:de:2a: d7:8d:90:11:04:53:cd:36:8b:1b:af:5e:e1:13:cf: 58:c9:ec:f7:53:85:46:44:9d:c2:ef:14:3a:6d:22: 77:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:4D:78:5A:D0:81:7C:81:2B:46:AD:28:26:0B:2D:F4:F8:3A:A9:6F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/290299e5-0f22-3823-b566-33f7489de718.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.37.218.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3b:9d:12:23:3f:2f:d5:c1:4e:d7:8a:a2:d0:59:1b:ef:49:ec: 05:71:eb:86:95:d5:d5:71:3c:82:48:4f:85:0c:89:43:00:9f: c3:cb:34:20:91:5b:51:99:d3:e0:9c:4e:06:14:69:7e:49:fe: 6e:fd:93:6e:ca:78:5c:dc:ca:ad:84:a5:f2:8d:68:0e:0f:29: e2:6e:ef:55:e6:8a:59:9d:5c:06:dd:73:3d:f3:3f:f3:01:56: 23:4e:89:f2:83:bd:df:5b:aa:bf:ea:07:35:4e:c6:7c:d8:1d: 65:56:c8:74:93:f0:f7:48:ac:5d:5a:b1:11:fd:eb:6e:a3:e8: 56:20:ac:d5:1c:5d:dc:a2:42:48:14:c5:c6:39:d2:b4:cc:4f: ac:e3:65:e3:a4:f2:1b:b7:e8:c2:4c:1b:b6:ff:d0:3e:9a:59: b7:ca:85:6c:15:77:e7:ad:4a:9a:c0:47:b8:af:95:d5:e5:c6: 97:14:a0:b0:66:e7:fa:19:d0:68:8b:13:a5:78:6b:46:35:5b: e8:38:e0:49:60:e8:73:d9:cb:20:b7:9b:49:d1:1d:43:ab:c0: a6:9f:f0:6e:93:03:d3:83:7f:72:b8:c1:0d:86:61:b6:df:92: 94:27:15:4f:30:aa:7a:f6:cc:ea:46:ac:9c:76:49:c8:2a:7a: 92:32:38:f0 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEj094fMnhIfEQZ+rEAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDIyMTE0MDA1MFoXDTI1MDUyMjEzMDA1MFowLzEtMCsGA1UEAxMk MmZkOGY2NDctYTVjOS00NjM2LWE2MjQtZTYzZGM0NGY2OWI4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcuXCpscyYDDzafQR+EoW/veIQIhMOi4hBD6 fRKDXDqpwS88VI6wpT+Eob2VxSf1pgvJMiXIFyz61Ju97vQegQCXSWmszTvnTc+j bNlE8QuG6JCkkO09Is1IOkgmU3/vpFsB2w4qwyAAWpZXNTusrrBWyrdvpERV1gWO bnPT9+56hJdz305VY0PxM2S3aP50bgEgIMr84O5aUb6ECQYpz3Z2H/zczhKwDXoO T39b9mCNRSkp3CcGoBFN0lvnlYd2cCTgyJ7+9dc3MpZHz33EyBTg39lXVp+WFqBL ydBT3irXjZARBFPNNosbr17hE89Yyez3U4VGRJ3C7xQ6bSJ3jQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFGNNeFrQgXyBK0atKCYLLfT4OqlvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvMjkwMjk5ZTUtMGYyMi0z ODIzLWI1NjYtMzNmNzQ4OWRlNzE4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBRCXaMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADudEiM/L9XBTteKotBZG+9J7AVx64aV1dVxPIJIT4UMiUMAn8PLNCCR W1GZ0+CcTgYUaX5J/m79k27KeFzcyq2EpfKNaA4PKeJu71XmilmdXAbdcz3zP/MB ViNOifKDvd9bqr/qBzVOxnzYHWVWyHST8PdIrF1asRH9626j6FYgrNUcXdyiQkgU xcY50rTMT6zjZeOk8hu36MJMG7b/0D6aWbfKhWwVd+etSprAR7ivldXlxpcUoLBm 5/oZ0GiLE6V4a0Y1W+g44Elg6HPZyyC3m0nRHUOrwKaf8G6TA9ODf3K4wQ2GYbbf kpQnFU8wqnr2zOpGrJx2ScgqepIyOPA= -----END CERTIFICATE-----Generated at Mon Apr 7 09:57:29 2025 by rpki-client