$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/86d8de02-83a6-310a-a74a-61af5eba8244.roa File: 86d8de02-83a6-310a-a74a-61af5eba8244.roa (raw, json) Hash identifier: xsjW44I5Pc3SxzO2pPVlKR9+tqjYGsP1kUj+oK4SfVg= Subject key identifier: B5:97:B0:3C:A1:9D:36:83:5B:DB:3D:05:5E:F5:2E:52:3D:C1:30:77 Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F432858489E6CDC5E2A1885437B3B8EC0 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/86d8de02-83a6-310a-a74a-61af5eba8244.roa Signing time: Tue 21 Jan 2025 14:00:53 +0000 ROA not before: Tue 21 Jan 2025 14:00:53 +0000 ROA not after: Mon 21 Apr 2025 13:00:53 +0000 asID: 22909 IP address blocks: 68.32.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:9e:6c:dc:5e:2a:18:85:43:7b:3b:8e:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Jan 21 14:00:53 2025 GMT Not After : Apr 21 13:00:53 2025 GMT Subject: CN=d9d8baf6-7042-40e6-b123-3a2859eabe0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:df:4f:e1:ab:0b:93:b1:44:1b:f5:a1:ed:43: f6:d9:ac:01:05:74:b7:4e:9b:25:c5:e8:2b:04:19: 4f:8b:a0:28:3d:37:37:48:e1:5e:72:ec:52:87:b4: 73:c8:d1:83:e7:61:db:57:53:de:d9:18:19:dd:2d: 12:d8:ec:a1:64:dd:9e:7a:bc:29:61:b9:da:f0:f4: 43:69:86:a5:7c:94:97:03:df:4b:45:0c:a0:aa:7f: c9:44:bb:6c:ee:b1:8d:af:6e:9f:7c:bc:4b:32:bb: 4f:ef:bb:98:63:89:1b:f3:b0:77:6c:bc:13:1b:d7: 99:39:44:47:e0:05:31:02:3b:ce:40:13:41:73:2c: 1e:35:09:14:72:59:58:05:6b:49:c1:3e:a9:d8:5d: f4:1d:8e:6c:7d:61:65:bb:48:80:df:25:a6:a1:95: b4:b6:2d:0d:a7:4b:1c:0f:a5:15:e9:6a:be:d5:e1: a6:e0:04:5e:c9:69:3a:cb:49:e2:b2:59:98:85:0d: 37:63:e0:86:5b:62:26:eb:0c:99:ac:4f:25:e8:5a: 87:b6:56:a0:24:17:b7:6b:16:1f:4f:7b:f7:ec:23: fc:bc:c7:b6:3e:de:b0:14:bb:51:29:91:f4:f6:c2: 72:24:18:dd:2a:94:82:a9:f4:ad:b8:61:a7:9f:3c: eb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:97:B0:3C:A1:9D:36:83:5B:DB:3D:05:5E:F5:2E:52:3D:C1:30:77 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/86d8de02-83a6-310a-a74a-61af5eba8244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.32.240.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption a6:c4:f1:40:27:2b:69:d2:b5:e9:04:c9:0b:1c:c8:43:0b:cf: 5c:fa:56:50:29:65:c7:77:5f:87:41:ee:3e:3d:1c:b7:55:dc: f8:58:f8:33:b5:8a:8c:25:3c:b3:68:36:b4:17:1d:24:05:c5: f7:c5:1e:bc:04:da:5c:1b:eb:10:bf:5a:ec:22:4c:c1:46:27: db:ad:5b:6e:db:64:56:3a:8e:05:f2:5f:29:ec:44:77:54:bc: 30:f4:b0:39:7c:ea:8a:d7:37:ce:28:4d:0c:ee:ba:7a:4e:35: 81:4c:23:74:66:a0:e7:b2:72:83:e6:b4:4d:40:01:84:a5:fc: 0b:07:5b:b6:69:46:38:3a:27:b9:7c:85:a2:4f:21:31:2e:6c: 8d:7f:c2:d4:61:b0:99:5b:16:a1:95:ea:a2:93:63:e2:49:0d: 9b:66:c6:b4:78:aa:43:4f:7f:c7:9a:5a:aa:03:eb:b0:30:2c: 07:96:ba:f4:38:7f:80:d2:1d:e1:c5:a9:52:71:e5:42:10:ad: e7:82:69:91:95:07:fd:43:2a:a4:02:d6:1a:48:f0:cb:7a:f2: 76:1a:cd:dd:67:c6:c4:d0:10:e4:95:eb:4b:19:15:13:a0:57: 43:d8:80:a8:42:d7:19:c6:a5:2c:2d:9f:2d:56:54:ac:c0:12: d0:6c:bf:43 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEiebNxeKhiFQ3s7jsAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDEyMTE0MDA1M1oXDTI1MDQyMTEzMDA1M1owLzEtMCsGA1UEAxMk ZDlkOGJhZjYtNzA0Mi00MGU2LWIxMjMtM2EyODU5ZWFiZTBjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg99P4asLk7FEG/Wh7UP22awBBXS3Tpslxegr BBlPi6AoPTc3SOFecuxSh7RzyNGD52HbV1Pe2RgZ3S0S2OyhZN2eerwpYbna8PRD aYalfJSXA99LRQygqn/JRLts7rGNr26ffLxLMrtP77uYY4kb87B3bLwTG9eZOURH 4AUxAjvOQBNBcyweNQkUcllYBWtJwT6p2F30HY5sfWFlu0iA3yWmoZW0ti0Np0sc D6UV6Wq+1eGm4AReyWk6y0nislmYhQ03Y+CGW2Im6wyZrE8l6FqHtlagJBe3axYf T3v37CP8vMe2Pt6wFLtRKZH09sJyJBjdKpSCqfStuGGnnzzrIwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFLWXsDyhnTaDW9s9BV71LlI9wTB3MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvODZkOGRlMDItODNhNi0z MTBhLWE3NGEtNjFhZjVlYmE4MjQ0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQERCDwMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAKbE8UAnK2nStekEyQscyEMLz1z6VlApZcd3X4dB7j49HLdV3PhY+DO1 iowlPLNoNrQXHSQFxffFHrwE2lwb6xC/WuwiTMFGJ9utW27bZFY6jgXyXynsRHdU vDD0sDl86orXN84oTQzuunpONYFMI3RmoOeycoPmtE1AAYSl/AsHW7ZpRjg6J7l8 haJPITEubI1/wtRhsJlbFqGV6qKTY+JJDZtmxrR4qkNPf8eaWqoD67AwLAeWuvQ4 f4DSHeHFqVJx5UIQreeCaZGVB/1DKqQC1hpI8Mt68nYazd1nxsTQEOSV60sZFROg V0PYgKhC1xnGpSwtny1WVKzAEtBsv0M= -----END CERTIFICATE-----Generated at Mon Apr 7 06:14:48 2025 by rpki-client