$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa File: 3311aef9-8ac3-3227-ae15-f68204bedd03.roa (raw, json) Hash identifier: HMv/+3Cnf+R1hlb7uRqOMdNAARhCbmYnZOl9x72OquQ= Subject key identifier: 7E:F3:22:DC:FA:8E:A2:93:46:6A:AF:FA:6C:47:B9:05:7B:EA:B8:3C Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F43285848F4F8EA65A5F2E3A705C48C80 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa Signing time: Fri 21 Feb 2025 14:00:50 +0000 ROA not before: Fri 21 Feb 2025 14:00:50 +0000 ROA not after: Thu 22 May 2025 13:00:50 +0000 asID: 33668 IP address blocks: 68.49.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:f4:f8:ea:65:a5:f2:e3:a7:05:c4:8c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Feb 21 14:00:50 2025 GMT Not After : May 22 13:00:50 2025 GMT Subject: CN=a1fe4561-1f02-4e25-bd7d-0fd93654224c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1c:77:dd:09:f9:97:bf:50:f5:05:70:ad:12: f3:d2:b5:f4:9c:cf:93:e1:8d:6c:fb:e0:f3:55:77: 26:c0:fc:d9:0c:05:df:92:68:2c:b7:d5:74:39:f4: 0d:7c:5e:60:70:87:42:38:68:82:1c:6e:11:d8:db: e6:21:15:43:a8:c1:a7:32:14:ad:51:50:49:73:b8: 6d:73:8e:3c:b5:4b:85:02:bc:1a:a2:69:0f:b0:0d: 6b:c6:84:96:10:51:f7:38:4a:21:4f:05:51:f6:64: 30:0d:cc:ad:74:1a:35:45:64:2d:25:16:1f:93:c0: b3:60:6c:3c:ae:ea:8d:20:31:b0:a6:5e:6a:91:ed: 7b:9e:61:35:07:3c:18:2c:9c:12:19:36:bf:9f:58: c9:94:a9:63:01:6f:cc:3f:2a:52:2d:16:32:36:0d: 9f:89:ca:00:1d:f5:ca:1d:f0:b9:3a:4b:25:17:bc: bf:b0:4f:21:e9:4d:03:ae:e8:1a:6d:a8:cb:02:29: 38:09:3b:4a:2b:ef:13:9b:e6:c9:0e:5f:7f:10:cc: 2e:7c:aa:d5:55:30:91:e2:58:47:cb:32:fa:9b:5f: cb:f2:7b:cc:b9:8c:fe:e2:a0:8e:c7:fc:87:42:07: f5:19:c5:3e:5c:9c:e1:4b:8a:1f:65:0e:d8:56:89: 19:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F3:22:DC:FA:8E:A2:93:46:6A:AF:FA:6C:47:B9:05:7B:EA:B8:3C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3311aef9-8ac3-3227-ae15-f68204bedd03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.49.12.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 91:eb:2f:e6:01:8a:90:fd:55:23:82:1d:88:87:4d:f9:20:72: b1:9f:74:ee:f7:f3:4e:a1:fe:93:f5:a4:60:78:63:f2:4b:1b: b5:8b:38:16:42:2d:de:3e:39:94:17:fd:6c:95:22:f6:27:0e: db:1d:1b:a6:85:d7:10:22:31:86:94:0c:bb:1d:bb:2e:80:26: 15:c5:d6:7d:d2:61:e2:b2:77:ec:41:de:d0:6f:8b:d5:7c:d3: a4:d5:8a:e8:45:59:52:51:42:28:c4:da:af:f5:ef:b6:72:91: 67:36:95:6a:08:c7:70:d2:b8:bb:53:db:7e:a8:fc:be:b2:a2: 6d:f2:a4:6e:d2:30:cf:34:8b:07:e7:69:4b:dd:6a:5e:d2:79: ca:36:f4:9d:fd:d8:8b:16:90:10:f9:40:22:ad:84:7f:b5:94: 6f:2f:2e:e1:3c:82:7d:52:03:90:9e:17:41:f4:9c:8d:88:2b: b1:8f:71:e2:78:a9:d8:86:14:fc:a4:0d:90:b9:e6:ce:5c:05: 3a:83:c6:eb:80:ef:53:d3:96:c7:ab:66:e0:5f:74:b7:1b:d7: eb:e6:0f:8a:29:9d:b4:17:b5:ac:11:83:b9:16:1d:fc:a3:9a: 4b:30:9b:4b:c4:a6:45:ef:f4:4c:4b:4e:ce:62:af:25:e3:88: d0:ca:a2:08 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEj0+OplpfLjpwXEjIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDIyMTE0MDA1MFoXDTI1MDUyMjEzMDA1MFowLzEtMCsGA1UEAxMk YTFmZTQ1NjEtMWYwMi00ZTI1LWJkN2QtMGZkOTM2NTQyMjRjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxx33Qn5l79Q9QVwrRLz0rX0nM+T4Y1s++Dz VXcmwPzZDAXfkmgst9V0OfQNfF5gcIdCOGiCHG4R2NvmIRVDqMGnMhStUVBJc7ht c448tUuFArwaomkPsA1rxoSWEFH3OEohTwVR9mQwDcytdBo1RWQtJRYfk8CzYGw8 ruqNIDGwpl5qke17nmE1BzwYLJwSGTa/n1jJlKljAW/MPypSLRYyNg2ficoAHfXK HfC5OkslF7y/sE8h6U0DrugabajLAik4CTtKK+8Tm+bJDl9/EMwufKrVVTCR4lhH yzL6m1/L8nvMuYz+4qCOx/yHQgf1GcU+XJzhS4ofZQ7YVokZIwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFH7zItz6jqKTRmqv+mxHuQV76rg8MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvMzMxMWFlZjktOGFjMy0z MjI3LWFlMTUtZjY4MjA0YmVkZDAzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCRDEMMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJHrL+YBipD9VSOCHYiHTfkgcrGfdO73806h/pP1pGB4Y/JLG7WLOBZC Ld4+OZQX/WyVIvYnDtsdG6aF1xAiMYaUDLsduy6AJhXF1n3SYeKyd+xB3tBvi9V8 06TViuhFWVJRQijE2q/177ZykWc2lWoIx3DSuLtT236o/L6yom3ypG7SMM80iwfn aUvdal7Seco29J392IsWkBD5QCKthH+1lG8vLuE8gn1SA5CeF0H0nI2IK7GPceJ4 qdiGFPykDZC55s5cBTqDxuuA71PTlserZuBfdLcb1+vmD4opnbQXtawRg7kWHfyj mkswm0vEpkXv9ExLTs5iryXjiNDKogg= -----END CERTIFICATE-----Generated at Mon Apr 7 06:22:18 2025 by rpki-client