$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa File: baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa (raw, json) Hash identifier: gUK4OJbYxdwUwBiph5ighLfWZvisztU97vG0ejwhOus= Subject key identifier: DB:66:A3:DE:AA:65:FD:31:36:7A:5C:FE:61:8C:93:9F:08:1C:A1:7B Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F432858492CAEFFD55568A4875D97F900 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa Signing time: Thu 13 Mar 2025 13:00:52 +0000 ROA not before: Thu 13 Mar 2025 13:00:52 +0000 ROA not after: Wed 11 Jun 2025 13:00:52 +0000 asID: 33287 IP address blocks: 68.84.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:2c:ae:ff:d5:55:68:a4:87:5d:97:f9:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Mar 13 13:00:52 2025 GMT Not After : Jun 11 13:00:52 2025 GMT Subject: CN=dc4ac83b-da88-45d3-b60e-2b790af9f652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a3:63:bd:af:b4:27:71:24:40:f7:c8:b8:b1: f4:77:d8:87:a7:ca:f6:1d:33:24:17:97:c5:57:b0: 5e:f0:79:a8:d6:70:84:ff:d1:50:0a:d0:e8:3d:b3: 77:71:31:3a:c7:20:78:b8:cc:d7:51:78:ce:4d:e7: 0a:70:cc:ff:c7:d4:a4:66:59:3b:92:1b:c4:31:84: 97:64:5e:f2:05:09:8b:f6:be:74:49:e0:5c:f7:ce: 51:65:9e:a8:42:88:18:40:ed:64:0a:dd:9e:6e:f8: 27:de:35:5b:65:58:86:69:95:46:88:95:b1:83:88: f5:20:61:71:ce:be:81:4f:b1:a5:cf:b4:57:cd:52: 7a:5d:96:b9:28:15:97:ba:4a:ff:89:6f:5c:99:18: b9:07:39:25:6b:72:15:ea:e2:c8:6e:a5:e6:b2:5a: cf:11:86:8a:f8:02:38:96:87:fa:a2:31:a2:f7:a0: e8:db:33:7b:f4:4e:40:39:da:0c:7e:3a:d6:a6:b2: 65:51:a8:47:60:e7:95:c9:33:ac:a3:60:a5:86:a5: d9:09:27:d5:03:10:4d:60:8b:a6:24:10:51:1e:a5: 33:75:32:cf:f9:d9:84:9b:06:98:69:05:6d:fd:c2: dd:49:49:c5:9c:fa:1e:d9:8f:4c:88:9f:14:ca:6e: 60:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:66:A3:DE:AA:65:FD:31:36:7A:5C:FE:61:8C:93:9F:08:1C:A1:7B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.84.120.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 48:86:9f:48:3e:02:d0:c7:25:51:5a:16:97:4a:a5:95:e0:60: 03:69:2d:a8:22:17:a8:cd:29:f6:bc:b4:6c:d1:a9:88:f1:cd: f7:6f:ce:72:cb:7b:69:7e:dc:35:d8:36:99:ca:51:d6:8b:a7: 30:71:8c:7f:4c:cd:5b:70:27:28:53:17:09:5a:f9:b7:25:f1: 73:f8:05:11:0d:fb:15:4b:95:a3:36:eb:dd:7f:66:cf:9c:03: 1e:1a:5e:d2:e5:2e:5d:3d:3d:19:1b:60:40:00:26:40:24:83: c3:6b:89:87:5b:5c:15:58:fb:d8:b0:c5:9d:2b:ec:0f:44:15: b5:fb:68:5b:2e:a0:c6:9c:d6:95:fc:f6:5d:d6:b6:bd:42:54: df:76:47:e4:7b:0f:0f:21:77:89:b8:47:53:af:13:e7:6a:4d: ad:28:9f:30:34:e3:80:5c:6f:d5:35:25:71:77:0c:67:a2:fe: 8a:16:c4:00:17:6c:a9:7b:ed:7e:90:2a:37:cd:a3:4a:36:63: 2d:4a:d9:7b:f9:cf:a7:c1:ae:1b:34:17:e9:0e:a3:4d:ba:66: d8:52:6b:12:2e:66:00:e7:06:95:ee:9a:38:73:5e:3c:8d:81: b5:39:d5:3d:5a:4a:09:07:81:f2:5c:d4:62:0f:2a:1e:9a:9c: af:30:a4:57 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEksrv/VVWikh12X+QAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDMxMzEzMDA1MloXDTI1MDYxMTEzMDA1MlowLzEtMCsGA1UEAxMk ZGM0YWM4M2ItZGE4OC00NWQzLWI2MGUtMmI3OTBhZjlmNjUyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraNjva+0J3EkQPfIuLH0d9iHp8r2HTMkF5fF V7Be8Hmo1nCE/9FQCtDoPbN3cTE6xyB4uMzXUXjOTecKcMz/x9SkZlk7khvEMYSX ZF7yBQmL9r50SeBc985RZZ6oQogYQO1kCt2ebvgn3jVbZViGaZVGiJWxg4j1IGFx zr6BT7Glz7RXzVJ6XZa5KBWXukr/iW9cmRi5Bzkla3IV6uLIbqXmslrPEYaK+AI4 lof6ojGi96Do2zN79E5AOdoMfjrWprJlUahHYOeVyTOso2ClhqXZCSfVAxBNYIum JBBRHqUzdTLP+dmEmwaYaQVt/cLdSUnFnPoe2Y9MiJ8Uym5gtwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNtmo96qZf0xNnpc/mGMk58IHKF7MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvYmFmOWZlMjEtOTdjMS0z ZDMyLWIzZDEtY2UyM2U0NDE4Y2FhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBRFR4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAEiGn0g+AtDHJVFaFpdKpZXgYANpLagiF6jNKfa8tGzRqYjxzfdvznLL e2l+3DXYNpnKUdaLpzBxjH9MzVtwJyhTFwla+bcl8XP4BREN+xVLlaM2691/Zs+c Ax4aXtLlLl09PRkbYEAAJkAkg8NriYdbXBVY+9iwxZ0r7A9EFbX7aFsuoMac1pX8 9l3Wtr1CVN92R+R7Dw8hd4m4R1OvE+dqTa0onzA044Bcb9U1JXF3DGei/ooWxAAX bKl77X6QKjfNo0o2Yy1K2Xv5z6fBrhs0F+kOo026ZthSaxIuZgDnBpXumjhzXjyN gbU51T1aSgkHgfJc1GIPKh6anK8wpFc= -----END CERTIFICATE-----Generated at Sun Apr 6 22:53:22 2025 by rpki-client