$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa File: baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa (raw, json) Hash identifier: QDksoqfzcZe+cWSS6vL/wOM95VHiilrXB6yoRbd2S9U= Subject key identifier: E0:11:10:78:DB:3A:5E:F6:1C:1A:E2:69:80:85:6E:5F:88:BF:31:1E Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F4328584A0C05E169BC10FE0901211680 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa Signing time: Sun 01 Jun 2025 13:01:03 +0000 ROA not before: Sun 01 Jun 2025 13:01:03 +0000 ROA not after: Sat 30 Aug 2025 13:01:03 +0000 asID: 33287 IP address blocks: 68.84.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:0c:05:e1:69:bc:10:fe:09:01:21:16:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Jun 1 13:01:03 2025 GMT Not After : Aug 30 13:01:03 2025 GMT Subject: CN=647d359a-4cff-40b7-b565-e85863f176a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:66:05:c4:f3:94:d1:37:e8:c1:37:87:78:68: 29:55:94:aa:95:57:fd:0e:d8:97:53:5d:de:94:61: 6a:d3:90:e4:fb:88:8e:7f:b8:9f:1c:16:5c:c3:da: ba:f6:40:6b:07:31:36:f4:cc:2c:68:75:02:44:4c: 41:42:50:82:55:3f:38:de:5b:36:86:2a:4c:73:e9: af:f5:cf:90:01:18:35:0a:9f:28:6c:d0:fb:d9:fb: 9a:f9:ef:4a:bb:c8:46:99:3c:3d:14:e4:b3:cf:84: 0a:21:9a:a2:66:31:c6:de:6a:e4:c8:9c:45:bc:ba: 21:52:af:75:97:96:22:4d:c8:1d:83:37:14:5f:44: a4:9e:b2:d9:bf:ad:36:e6:ca:a5:3f:b7:74:52:ea: 51:55:d4:4d:fc:ea:53:aa:39:f3:ee:1c:a4:98:77: 1f:19:5b:0e:37:0f:c6:a9:0d:86:d3:83:ed:dd:53: be:db:80:02:cd:f8:23:a1:fa:06:4c:6c:77:cd:80: 10:c7:54:43:b7:cb:66:b7:8d:03:7c:c8:a0:7a:2b: 2c:2e:6e:e0:fd:ce:c4:90:42:d6:6b:34:ea:7c:0b: ca:4f:29:c7:35:b9:ac:50:a1:a6:1a:df:c5:fc:f5: c2:92:9f:45:69:c1:99:ab:17:62:2c:a1:e9:65:73: 52:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:11:10:78:DB:3A:5E:F6:1C:1A:E2:69:80:85:6E:5F:88:BF:31:1E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.84.120.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 32:ad:f8:f9:39:ec:cf:08:ef:55:16:ad:32:f7:74:11:40:6e: 0f:46:f7:60:31:6c:35:da:20:9c:59:f9:8f:c7:86:6e:83:4a: d9:5f:8a:60:fa:ac:f4:79:53:7f:35:33:c3:f8:73:e7:3a:2f: 56:48:d4:74:54:05:16:fe:fd:7d:45:d2:66:d8:04:f2:9f:b9: 1e:c9:46:23:0b:7a:4a:55:fb:99:a9:c6:bb:2b:fa:1b:d7:80: 92:7e:9f:f7:49:2a:55:eb:65:c6:f0:19:6d:c8:22:8c:39:d9: 14:59:f3:2e:fd:5a:64:ca:47:80:e8:2b:dc:bc:6f:b1:64:e0: cb:fc:43:cd:a3:aa:36:50:24:71:da:72:6c:d2:73:3c:d5:70: b9:7a:f1:fc:35:4b:b3:4b:01:f8:e0:8c:51:91:a2:5d:bb:63: f4:da:32:e7:1b:3e:93:6c:bd:c7:17:c7:b0:a5:ad:54:12:67: 0f:8e:0f:86:76:40:e9:0d:14:1a:d3:3a:21:d1:78:ac:a9:a9: 3c:97:04:eb:fb:13:7b:8b:a0:a2:e0:6c:2f:38:02:09:2d:7f: 6f:d7:b5:8b:bd:32:3d:5c:57:00:23:48:1a:10:19:8b:80:d7: 82:ec:45:53:36:1e:95:f9:45:40:97:30:40:75:fc:21:87:f9: 24:da:c8:98 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEoMBeFpvBD+CQEhFoAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDYwMTEzMDEwM1oXDTI1MDgzMDEzMDEwM1owLzEtMCsGA1UEAxMk NjQ3ZDM1OWEtNGNmZi00MGI3LWI1NjUtZTg1ODYzZjE3NmE0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWYFxPOU0TfowTeHeGgpVZSqlVf9DtiXU13e lGFq05Dk+4iOf7ifHBZcw9q69kBrBzE29MwsaHUCRExBQlCCVT843ls2hipMc+mv 9c+QARg1Cp8obND72fua+e9Ku8hGmTw9FOSzz4QKIZqiZjHG3mrkyJxFvLohUq91 l5YiTcgdgzcUX0SknrLZv6025sqlP7d0UupRVdRN/OpTqjnz7hykmHcfGVsONw/G qQ2G04Pt3VO+24ACzfgjofoGTGx3zYAQx1RDt8tmt40DfMigeissLm7g/c7EkELW azTqfAvKTynHNbmsUKGmGt/F/PXCkp9FacGZqxdiLKHpZXNSiwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFOAREHjbOl72HBriaYCFbl+IvzEeMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvYmFmOWZlMjEtOTdjMS0z ZDMyLWIzZDEtY2UyM2U0NDE4Y2FhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBRFR4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADKt+Pk57M8I71UWrTL3dBFAbg9G92AxbDXaIJxZ+Y/Hhm6DStlfimD6 rPR5U381M8P4c+c6L1ZI1HRUBRb+/X1F0mbYBPKfuR7JRiMLekpV+5mpxrsr+hvX gJJ+n/dJKlXrZcbwGW3IIow52RRZ8y79WmTKR4DoK9y8b7Fk4Mv8Q82jqjZQJHHa cmzSczzVcLl68fw1S7NLAfjgjFGRol27Y/TaMucbPpNsvccXx7ClrVQSZw+OD4Z2 QOkNFBrTOiHReKypqTyXBOv7E3uLoKLgbC84Agktf2/XtYu9Mj1cVwAjSBoQGYuA 14LsRVM2HpX5RUCXMEB1/CGH+STayJg= -----END CERTIFICATE-----Generated at Tue Jun 3 05:05:10 2025 by rpki-client