$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/bfa59443-3b9f-31c6-8c69-1f4266aa3e47.roa File: bfa59443-3b9f-31c6-8c69-1f4266aa3e47.roa (raw, json) Hash identifier: MdGsIWezp1qEBz8ijvtZP2v+dc9Bpn9k41ON5C4fFMk= Subject key identifier: 01:34:69:48:D3:CD:4C:25:52:B6:45:26:98:14:07:F4:3B:62:03:EA Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F43285849D430BD3ACCFB70A4FE0CE110 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/bfa59443-3b9f-31c6-8c69-1f4266aa3e47.roa Signing time: Mon 12 May 2025 13:01:00 +0000 ROA not before: Mon 12 May 2025 13:01:00 +0000 ROA not after: Sun 10 Aug 2025 13:01:00 +0000 asID: 33668 IP address blocks: 68.59.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:d4:30:bd:3a:cc:fb:70:a4:fe:0c:e1:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: May 12 13:01:00 2025 GMT Not After : Aug 10 13:01:00 2025 GMT Subject: CN=1fcf1dd2-6462-41da-ad68-2f29d98fc8f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:58:0e:22:d1:da:31:59:ee:47:b9:2e:3d:45: 1e:aa:34:b1:a4:03:8c:99:a5:ff:53:c6:8d:d3:7e: 72:19:fd:d7:42:f0:ea:0e:33:23:ec:d9:06:35:27: 40:fa:ab:a6:9e:95:a3:ed:ff:4a:ad:bb:3c:fc:93: 2c:9d:49:76:e4:d9:5a:87:96:d4:fc:6e:29:01:b4: 1b:8c:58:d2:94:be:1f:c7:43:c8:1b:47:f2:13:a9: bd:88:d7:0e:61:da:78:fc:8e:ee:65:7e:20:c2:09: d0:37:0b:26:63:eb:47:8a:f2:e7:5c:73:0a:32:ac: 6e:ed:cc:7a:b7:ad:dc:2b:5e:ef:a9:5c:6b:b1:32: a8:80:3c:46:34:bf:bc:07:c6:3f:73:64:70:19:98: f8:c2:8e:f5:e9:50:4e:aa:69:5f:9d:df:eb:de:9b: 5d:17:35:85:ed:f0:22:cd:91:bb:df:32:01:ba:5f: f8:73:95:01:50:2c:e7:04:be:2f:98:5d:15:f7:1d: 84:6a:e3:63:83:a6:dd:b9:38:4f:69:49:3a:23:d3: 06:98:d2:eb:f4:c4:a4:7a:96:47:ed:30:57:c3:c8: f0:8d:24:b3:d4:1e:48:23:85:dc:4d:34:6a:ce:3d: f9:1e:1a:8b:d7:f6:32:c6:a1:d5:96:6e:2b:a4:66: 6f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:34:69:48:D3:CD:4C:25:52:B6:45:26:98:14:07:F4:3B:62:03:EA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/bfa59443-3b9f-31c6-8c69-1f4266aa3e47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.59.2.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 9a:0a:dd:1c:95:e9:64:56:6c:9c:47:e9:64:7b:2e:e7:82:99: 26:b0:10:11:3f:1f:1a:a3:17:49:3f:77:77:e6:a3:72:10:96: a8:c3:55:b9:71:84:d2:97:e0:c6:9f:e6:8c:69:7e:f2:b0:3d: 16:3c:3c:a7:c0:61:6c:2c:d4:97:fb:e3:d9:86:fc:6d:38:5f: d0:bb:a9:85:84:c6:6a:f9:72:89:e8:f1:d7:4d:76:59:59:9e: 2e:e9:07:87:ee:77:4b:54:f3:b0:18:9a:e7:a7:8b:4e:f6:4f: 85:21:85:43:6b:7e:6c:c3:06:7a:82:a4:13:88:bd:17:8a:42: 72:0f:d1:11:f8:5c:fd:fc:6f:c3:ea:f1:ef:15:4c:58:38:f6: a3:d4:a3:ff:61:6b:45:b3:f4:29:01:8f:67:70:13:2c:24:04: 25:e3:ea:10:0a:15:63:b0:50:a1:e4:e2:ef:55:f9:80:ee:24: 66:54:a6:12:72:a7:6d:1e:10:bf:20:b5:a4:c6:bd:04:33:46: 2b:81:ca:b5:98:ce:9d:32:bc:d0:5d:39:4a:ea:1d:39:8c:c6: 9e:e4:ee:57:45:4d:3f:82:bb:6b:2b:66:30:38:20:b4:4b:26: 55:4f:1b:b8:b3:ee:9a:6d:13:70:45:bc:c6:3b:a4:1f:92:5f: 0c:a9:b7:3c -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEnUML06zPtwpP4M4RAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDUxMjEzMDEwMFoXDTI1MDgxMDEzMDEwMFowLzEtMCsGA1UEAxMk MWZjZjFkZDItNjQ2Mi00MWRhLWFkNjgtMmYyOWQ5OGZjOGY0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFgOItHaMVnuR7kuPUUeqjSxpAOMmaX/U8aN 035yGf3XQvDqDjMj7NkGNSdA+qumnpWj7f9Krbs8/JMsnUl25Nlah5bU/G4pAbQb jFjSlL4fx0PIG0fyE6m9iNcOYdp4/I7uZX4gwgnQNwsmY+tHivLnXHMKMqxu7cx6 t63cK17vqVxrsTKogDxGNL+8B8Y/c2RwGZj4wo716VBOqmlfnd/r3ptdFzWF7fAi zZG73zIBul/4c5UBUCznBL4vmF0V9x2EauNjg6bduThPaUk6I9MGmNLr9MSkepZH 7TBXw8jwjSSz1B5II4XcTTRqzj35HhqL1/YyxqHVlm4rpGZvvwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFAE0aUjTzUwlUrZFJpgUB/Q7YgPqMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvYmZhNTk0NDMtM2I5Zi0z MWM2LThjNjktMWY0MjY2YWEzZTQ3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBRDsCMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJoK3RyV6WRWbJxH6WR7LueCmSawEBE/HxqjF0k/d3fmo3IQlqjDVblx hNKX4Maf5oxpfvKwPRY8PKfAYWws1Jf749mG/G04X9C7qYWExmr5cono8ddNdllZ ni7pB4fud0tU87AYmueni072T4UhhUNrfmzDBnqCpBOIvReKQnIP0RH4XP38b8Pq 8e8VTFg49qPUo/9ha0Wz9CkBj2dwEywkBCXj6hAKFWOwUKHk4u9V+YDuJGZUphJy p20eEL8gtaTGvQQzRiuByrWYzp0yvNBdOUrqHTmMxp7k7ldFTT+Cu2srZjA4ILRL JlVPG7iz7pptE3BFvMY7pB+SXwyptzw= -----END CERTIFICATE-----Generated at Wed Jun 4 22:55:58 2025 by rpki-client