$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/a1b8a896-6d88-3e0e-af16-2d4a56d3d426.roa File: a1b8a896-6d88-3e0e-af16-2d4a56d3d426.roa (raw, json) Hash identifier: vlqOCUzpKnwTJ4ZxfuGJUBbvqrYRyjh3TsG8X27DvhE= Subject key identifier: A1:8C:92:7D:A4:85:33:74:4F:AF:BD:78:B1:5B:32:7F:13:0A:3E:83 Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F432858451FAAFCE4CA98B4C555CE90E0 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/a1b8a896-6d88-3e0e-af16-2d4a56d3d426.roa Signing time: Thu 07 Mar 2024 02:00:25 +0000 ROA not before: Thu 07 Mar 2024 02:00:25 +0000 ROA not after: Wed 05 Jun 2024 01:00:25 +0000 asID: 22909 IP address blocks: 68.52.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:1f:aa:fc:e4:ca:98:b4:c5:55:ce:90:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Mar 7 02:00:25 2024 GMT Not After : Jun 5 01:00:25 2024 GMT Subject: CN=1568a0a9-7c56-4c00-b5e4-de0cc420331a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:64:89:c8:12:12:e3:22:ee:ac:bc:3e:9c:69: bc:12:75:6b:61:bd:d2:55:3c:a6:73:66:6c:c3:6c: bc:fa:de:61:78:4d:4a:6b:4f:d0:34:00:80:08:df: db:f6:73:77:68:cb:98:54:97:f0:49:5e:43:3d:2f: b0:79:0d:40:e6:a1:95:f6:fc:0a:32:ec:d1:d6:76: 2c:8f:35:05:75:22:99:6d:be:e1:84:e2:a2:cd:71: b6:32:a0:cb:be:8b:1a:f8:58:dd:56:76:39:3c:73: b8:8c:c2:7a:74:f7:58:f9:6c:04:49:b8:c4:6d:9d: 3f:fc:36:db:65:b7:91:7c:95:3b:ed:00:6e:3d:7c: d7:80:e1:96:c6:43:b1:94:41:27:1a:78:c6:d9:c9: 63:72:46:54:b5:f4:37:86:b5:c2:ea:36:8f:89:27: 7a:0a:ee:c9:30:b8:ec:3e:92:f1:14:65:36:c1:43: 0a:ff:84:e7:d3:be:64:6a:b5:96:e6:7a:99:05:8d: e5:30:4d:c8:3b:d1:33:e1:b6:ee:ee:43:9d:6b:4d: 26:af:2a:59:f4:ad:98:90:3c:1a:ad:78:1f:83:16: 20:df:60:35:66:59:25:8c:11:f5:b2:6c:19:f7:6e: 81:30:2c:c2:1f:2b:5d:90:f7:1e:39:8c:29:19:9d: ae:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8C:92:7D:A4:85:33:74:4F:AF:BD:78:B1:5B:32:7F:13:0A:3E:83 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/a1b8a896-6d88-3e0e-af16-2d4a56d3d426.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.52.156.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 32:93:19:c5:a5:ba:69:9f:16:2a:28:85:91:44:e6:4a:57:79: 2a:be:6e:a3:e2:ab:1f:dd:2f:91:99:d0:59:7c:39:cd:46:d2: 99:4d:52:1d:e9:6d:62:6c:0a:4f:5f:5f:56:6d:05:ef:f0:2c: af:de:9f:56:c7:d6:ab:73:1b:ca:f4:87:36:e8:e4:1b:47:c7: 80:41:a5:9c:b1:e8:dc:0f:66:aa:13:0e:72:57:39:67:e6:28: 77:d9:ff:04:9a:ce:2d:0c:83:62:f2:7c:86:b9:d6:52:62:b4: 11:ac:d4:bb:d2:d7:56:a9:54:3c:81:e3:7f:3c:e3:4d:28:c1: 63:ed:d7:a6:b0:61:30:00:0d:b6:d5:ef:7c:aa:fb:5c:5a:b4: b4:83:7d:94:04:0f:dc:0b:42:c2:f9:bd:96:ba:fe:63:8f:bc: 7e:84:60:bf:0d:40:5a:5c:3b:cb:88:08:6e:4c:02:57:56:a6: 0e:60:4f:f8:75:65:48:de:04:77:60:80:3c:d5:01:d1:91:4d: 4c:e4:28:3b:8b:2a:30:88:81:f4:9d:e5:c1:4c:d3:d3:eb:f6: 9c:37:2f:8f:35:c8:50:cd:8f:38:ed:b1:73:4c:be:c9:0f:e5: 15:4e:56:3a:c0:65:1c:4b:66:f0:07:25:11:8e:87:40:06:23: 97:07:2e:24 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEUfqvzkypi0xVXOkOAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI0MDMwNzAyMDAyNVoXDTI0MDYwNTAxMDAyNVowLzEtMCsGA1UEAxMk MTU2OGEwYTktN2M1Ni00YzAwLWI1ZTQtZGUwY2M0MjAzMzFhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGSJyBIS4yLurLw+nGm8EnVrYb3SVTymc2Zs w2y8+t5heE1Ka0/QNACACN/b9nN3aMuYVJfwSV5DPS+weQ1A5qGV9vwKMuzR1nYs jzUFdSKZbb7hhOKizXG2MqDLvosa+FjdVnY5PHO4jMJ6dPdY+WwESbjEbZ0//Dbb ZbeRfJU77QBuPXzXgOGWxkOxlEEnGnjG2cljckZUtfQ3hrXC6jaPiSd6Cu7JMLjs PpLxFGU2wUMK/4Tn075karWW5nqZBY3lME3IO9Ez4bbu7kOda00mrypZ9K2YkDwa rXgfgxYg32A1ZlkljBH1smwZ926BMCzCHytdkPceOYwpGZ2u9wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFKGMkn2khTN0T6+9eLFbMn8TCj6DMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvYTFiOGE4OTYtNmQ4OC0z ZTBlLWFmMTYtMmQ0YTU2ZDNkNDI2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQARDScMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADKTGcWlummfFioohZFE5kpXeSq+bqPiqx/dL5GZ0Fl8Oc1G0plNUh3p bWJsCk9fX1ZtBe/wLK/en1bH1qtzG8r0hzbo5BtHx4BBpZyx6NwPZqoTDnJXOWfm KHfZ/wSazi0Mg2LyfIa51lJitBGs1LvS11apVDyB4388400owWPt16awYTAADbbV 73yq+1xatLSDfZQED9wLQsL5vZa6/mOPvH6EYL8NQFpcO8uICG5MAldWpg5gT/h1 ZUjeBHdggDzVAdGRTUzkKDuLKjCIgfSd5cFM09Pr9pw3L481yFDNjzjtsXNMvskP 5RVOVjrAZRxLZvAHJRGOh0AGI5cHLiQ= -----END CERTIFICATE-----