$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/89afb169-1360-3eeb-80be-97a0ab258b09.roa File: 89afb169-1360-3eeb-80be-97a0ab258b09.roa (raw, json) Hash identifier: ZI29v3qKu+GtJQuM1grLegh1pPdSbSL+d/iNTheyCRg= Subject key identifier: 72:DF:3E:6A:D1:60:CA:55:86:70:EA:94:F4:80:31:88:30:FB:53:15 Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F432858492CB0CD4C90379F170D974BC0 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/89afb169-1360-3eeb-80be-97a0ab258b09.roa Signing time: Thu 13 Mar 2025 13:00:52 +0000 ROA not before: Thu 13 Mar 2025 13:00:52 +0000 ROA not after: Wed 11 Jun 2025 13:00:52 +0000 asID: 33491 IP address blocks: 67.176.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:2c:b0:cd:4c:90:37:9f:17:0d:97:4b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Mar 13 13:00:52 2025 GMT Not After : Jun 11 13:00:52 2025 GMT Subject: CN=9074c088-7fa1-4e24-ac5c-17993e2b55bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8c:19:ce:89:86:69:45:74:99:d4:4a:a1:b9: 69:3d:71:ef:6d:26:58:ef:23:de:5c:3a:d1:59:35: ea:2e:ed:b6:25:d7:4a:9b:b9:5b:89:88:a1:e8:6b: 49:de:8f:12:22:3d:69:2a:bb:04:b5:e1:71:3f:ac: 26:01:52:8f:d3:c1:57:72:39:8d:aa:3e:34:29:88: 1b:c8:f6:68:44:0b:2a:5b:a2:a8:e0:9a:4b:f0:7a: 89:ba:d9:20:26:c6:b5:46:72:46:08:93:60:2e:0a: fc:f9:91:ce:7c:ea:eb:b3:80:63:bf:67:c5:97:7c: 78:6f:c2:0a:ac:c0:67:ee:a2:8e:18:43:2c:23:00: 10:12:fa:6c:9e:23:6d:f5:14:0e:bb:15:ca:03:ab: 94:49:88:87:82:66:e4:13:a9:4e:53:17:de:a4:9e: 15:a6:8b:6d:bf:cd:d9:9f:9d:6a:32:b7:8b:bb:5b: fe:d8:af:32:43:90:47:ec:78:cb:a0:3b:35:41:9f: 60:36:7a:ea:95:d2:30:0c:bc:0e:73:9c:aa:ad:0b: b3:e6:53:e2:4f:d7:d5:05:99:8a:e6:c3:bb:c2:6e: 93:49:a6:69:a1:83:71:74:cd:e6:e5:c5:ed:8d:60: a3:3b:c9:77:76:b4:f6:e9:6d:ea:c1:94:32:d3:9b: b1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DF:3E:6A:D1:60:CA:55:86:70:EA:94:F4:80:31:88:30:FB:53:15 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/89afb169-1360-3eeb-80be-97a0ab258b09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 67.176.180.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 5c:9b:73:b2:83:c2:84:61:d5:a5:ef:b7:1a:12:1c:4f:d1:30: 08:70:68:04:3b:2e:6d:f3:1d:9f:60:f5:13:dd:d6:8a:47:1e: 55:88:1c:08:a0:5a:b9:29:0a:c9:29:ba:3c:01:e5:5e:c2:32: 6d:a8:55:e8:49:e8:59:61:b1:44:90:e0:52:da:ca:8c:04:06: b4:17:85:86:77:24:ab:29:0b:c3:0f:a6:20:97:bd:79:3f:aa: 47:6d:b8:b0:1f:9f:56:04:55:33:59:0a:37:42:a7:5f:20:45: 57:64:c4:97:3c:6c:5f:81:16:67:22:be:9d:15:0b:30:16:b5: d3:bb:c9:8d:65:1d:65:91:bf:3b:c9:01:fa:25:b2:e1:47:58: b7:73:cf:86:f2:25:ce:39:7a:7b:c4:e2:b9:01:1a:0b:ae:34: 8c:56:ac:a4:82:1b:29:31:6c:09:7c:3c:c6:db:18:fe:62:a1: cf:72:e1:c5:a2:1a:67:eb:23:b6:5e:fb:a4:de:f3:b9:c0:4f: 85:3f:51:6e:42:ab:30:8b:ca:08:ab:76:39:10:6e:34:b4:80: c4:7a:c5:64:ee:72:e0:34:c4:00:db:66:d5:34:14:a7:d2:a7: 0c:30:3e:f9:18:ee:eb:61:37:c8:38:97:3d:26:2f:3b:2f:7e: a5:44:e7:96 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEkssM1MkDefFw2XS8AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDMxMzEzMDA1MloXDTI1MDYxMTEzMDA1MlowLzEtMCsGA1UEAxMk OTA3NGMwODgtN2ZhMS00ZTI0LWFjNWMtMTc5OTNlMmI1NWJjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxowZzomGaUV0mdRKoblpPXHvbSZY7yPeXDrR WTXqLu22JddKm7lbiYih6GtJ3o8SIj1pKrsEteFxP6wmAVKP08FXcjmNqj40KYgb yPZoRAsqW6Ko4JpL8HqJutkgJsa1RnJGCJNgLgr8+ZHOfOrrs4Bjv2fFl3x4b8IK rMBn7qKOGEMsIwAQEvpsniNt9RQOuxXKA6uUSYiHgmbkE6lOUxfepJ4Vpottv83Z n51qMreLu1v+2K8yQ5BH7HjLoDs1QZ9gNnrqldIwDLwOc5yqrQuz5lPiT9fVBZmK 5sO7wm6TSaZpoYNxdM3m5cXtjWCjO8l3drT26W3qwZQy05uxuwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHLfPmrRYMpVhnDqlPSAMYgw+1MVMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvODlhZmIxNjktMTM2MC0z ZWViLTgwYmUtOTdhMGFiMjU4YjA5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQ7C0MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFybc7KDwoRh1aXvtxoSHE/RMAhwaAQ7Lm3zHZ9g9RPd1opHHlWIHAig WrkpCskpujwB5V7CMm2oVehJ6FlhsUSQ4FLayowEBrQXhYZ3JKspC8MPpiCXvXk/ qkdtuLAfn1YEVTNZCjdCp18gRVdkxJc8bF+BFmcivp0VCzAWtdO7yY1lHWWRvzvJ AfolsuFHWLdzz4byJc45envE4rkBGguuNIxWrKSCGykxbAl8PMbbGP5ioc9y4cWi GmfrI7Ze+6Te87nAT4U/UW5CqzCLygirdjkQbjS0gMR6xWTucuA0xADbZtU0FKfS pwwwPvkY7uthN8g4lz0mLzsvfqVE55Y= -----END CERTIFICATE-----Generated at Mon Apr 7 06:34:44 2025 by rpki-client