$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa File: d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa (raw, json) Hash identifier: 0CVwJENZwncjTALemBrN70A7F6tM0qSfDhdFxDpQuP0= Subject key identifier: B9:DA:0A:4B:C5:C3:86:08:D7:1A:68:F6:E1:C9:F3:5E:CE:2C:F9:0F Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F43285849D430B8F44FB7AA9A0A7E8AC0 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa Signing time: Mon 12 May 2025 13:01:00 +0000 ROA not before: Mon 12 May 2025 13:01:00 +0000 ROA not after: Sun 10 Aug 2025 13:01:00 +0000 asID: 33668 IP address blocks: 68.56.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:d4:30:b8:f4:4f:b7:aa:9a:0a:7e:8a:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: May 12 13:01:00 2025 GMT Not After : Aug 10 13:01:00 2025 GMT Subject: CN=51caf818-a6b2-41a8-b066-9f1a35d06903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:be:39:03:68:8f:6a:40:c2:e0:e4:a1:03:a0: c0:18:00:65:63:dd:db:ca:a3:8f:50:72:b7:95:22: 55:52:df:69:ab:f1:9a:f2:66:71:b0:64:24:2a:07: ab:6b:b3:1d:1a:25:4a:4d:33:61:c8:d1:84:75:1f: a4:f5:83:8f:7e:48:80:35:ad:29:06:8f:bc:13:97: 59:75:5b:8c:b3:c8:5f:34:41:10:d2:c6:75:c4:1c: 7c:f2:66:91:7f:83:1e:f4:ca:41:e3:98:53:a2:2f: f9:f9:21:71:eb:9e:6c:65:7c:9d:ba:4a:7e:9d:97: 8b:e2:b5:38:2a:e3:c7:79:0d:37:47:d5:2f:00:28: 33:c1:ff:5a:e3:92:bb:24:a3:9b:af:82:71:f3:18: 3e:8f:f6:9b:3f:b4:e0:3c:4b:a7:9a:ff:20:d5:0f: dc:43:4c:a1:5d:81:43:ab:a4:86:4a:1f:16:bd:f3: 58:5d:fb:69:e3:e0:b8:ef:9e:28:71:ea:53:2b:43: fd:2d:5c:93:f5:49:60:b5:50:94:1e:1c:5d:2a:5e: 36:92:ae:03:ec:7a:ea:84:29:7f:71:b2:c2:c0:69: 15:f8:07:54:a1:ae:d0:bd:87:cf:a2:71:78:dc:74: 91:67:7b:75:68:1a:c1:99:7d:12:01:30:46:0c:19: 5d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DA:0A:4B:C5:C3:86:08:D7:1A:68:F6:E1:C9:F3:5E:CE:2C:F9:0F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/d8cb8f44-6024-34f1-a24a-5a4f5c77c1d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.56.16.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption a6:14:32:c7:13:6e:e5:e3:aa:1a:74:e4:4c:cb:98:60:ed:ab: a5:06:f7:f5:81:54:95:28:94:f5:8d:25:03:a4:51:89:69:3d: bd:ed:25:73:2b:a5:51:9e:ab:a1:bd:35:b3:ee:e7:90:2b:c7: 31:f3:c8:c3:cc:c4:81:25:b7:10:4e:b2:54:4d:f2:1b:e8:d8: a6:5d:7c:eb:ec:f6:01:2c:e9:e8:fc:9a:d0:e4:a3:79:c9:71: 44:cc:74:54:d5:65:b9:d0:a0:3c:7d:51:36:37:f6:d7:0a:4c: 2f:fd:f8:68:be:19:fd:88:c7:6d:9b:b1:1c:da:d8:bf:19:24: be:4f:e7:75:ce:a0:9d:8a:9b:55:f7:6f:4e:02:4b:0e:b9:7b: b2:73:ec:65:35:f5:83:fd:f2:b0:3c:4a:10:d7:c9:d0:f2:bb: 3c:42:17:77:e9:d6:e3:22:77:59:6c:15:a6:fc:9b:ef:34:8c: 8f:6c:dd:6c:e9:47:1c:74:91:97:59:98:9b:fc:83:e6:bb:b3: 32:a9:c6:52:d2:3e:b9:71:3f:d8:89:b6:bf:d8:b1:ca:a8:db: bc:a0:4a:14:c2:94:4d:22:e1:7a:fd:e1:49:b7:d5:00:ba:90: 73:03:bf:cb:62:9c:22:54:1b:7c:15:ab:f0:3d:79:4c:6e:a5: eb:da:50:cc -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEnUMLj0T7eqmgp+isAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDUxMjEzMDEwMFoXDTI1MDgxMDEzMDEwMFowLzEtMCsGA1UEAxMk NTFjYWY4MTgtYTZiMi00MWE4LWIwNjYtOWYxYTM1ZDA2OTAzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjL45A2iPakDC4OShA6DAGABlY93byqOPUHK3 lSJVUt9pq/Ga8mZxsGQkKgera7MdGiVKTTNhyNGEdR+k9YOPfkiANa0pBo+8E5dZ dVuMs8hfNEEQ0sZ1xBx88maRf4Me9MpB45hToi/5+SFx655sZXydukp+nZeL4rU4 KuPHeQ03R9UvACgzwf9a45K7JKObr4Jx8xg+j/abP7TgPEunmv8g1Q/cQ0yhXYFD q6SGSh8WvfNYXftp4+C4754ocepTK0P9LVyT9UlgtVCUHhxdKl42kq4D7HrqhCl/ cbLCwGkV+AdUoa7QvYfPonF43HSRZ3t1aBrBmX0SATBGDBldZwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFLnaCkvFw4YI1xpo9uHJ817OLPkPMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvZDhjYjhmNDQtNjAyNC0z NGYxLWEyNGEtNWE0ZjVjNzdjMWQwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDRDgQMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAKYUMscTbuXjqhp05EzLmGDtq6UG9/WBVJUolPWNJQOkUYlpPb3tJXMr pVGeq6G9NbPu55ArxzHzyMPMxIEltxBOslRN8hvo2KZdfOvs9gEs6ej8mtDko3nJ cUTMdFTVZbnQoDx9UTY39tcKTC/9+Gi+Gf2Ix22bsRza2L8ZJL5P53XOoJ2Km1X3 b04CSw65e7Jz7GU19YP98rA8ShDXydDyuzxCF3fp1uMid1lsFab8m+80jI9s3Wzp Rxx0kZdZmJv8g+a7szKpxlLSPrlxP9iJtr/Yscqo27ygShTClE0i4Xr94Um31QC6 kHMDv8tinCJUG3wVq/A9eUxupevaUMw= -----END CERTIFICATE-----Generated at Wed Jun 4 23:07:00 2025 by rpki-client