$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/a8735f80-d635-36e0-a042-89c554b7b169.roa File: a8735f80-d635-36e0-a042-89c554b7b169.roa (raw, json) Hash identifier: +VTiTx9TSDtrebOhoMlemMCwuKUoZK6wfbk50glvlDo= Subject key identifier: BA:C0:D7:8E:E8:6A:09:AD:38:6E:0A:55:DA:60:B8:73:CB:EF:94:71 Certificate issuer: /CN=f240d902-7ba3-4aec-b663-471f0fabfe37 Certificate serial: 010D0C9F432858494469346713ACA7FBCF0F12A0 Authority key identifier: E4:57:D5:28:0C:09:9C:2A:7E:A8:A5:80:B1:6F:F6:B0:BA:4C:F1:1E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/a8735f80-d635-36e0-a042-89c554b7b169.roa Signing time: Sat 22 Mar 2025 01:00:40 +0000 ROA not before: Sat 22 Mar 2025 01:00:40 +0000 ROA not after: Fri 20 Jun 2025 01:00:40 +0000 asID: 22808 IP address blocks: 66.112.128.16/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/f240d902-7ba3-4aec-b663-471f0fabfe37.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/f240d902-7ba3-4aec-b663-471f0fabfe37.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:44:69:34:67:13:ac:a7:fb:cf:0f:12:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f240d902-7ba3-4aec-b663-471f0fabfe37 Validity Not Before: Mar 22 01:00:40 2025 GMT Not After : Jun 20 01:00:40 2025 GMT Subject: CN=b6fc172f-f78e-4103-af8d-b6dda3d77078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2f:3f:c0:2b:a5:a4:3e:92:59:fa:f0:8c:d8: eb:2f:44:7a:31:5a:96:80:f8:ef:e3:3c:52:90:80: 12:93:df:08:44:f6:f3:66:8e:2a:92:3c:8c:9a:c9: 6b:1c:67:be:31:3b:29:f3:ef:9a:0c:39:36:57:a3: 12:d4:53:5a:15:31:3a:2a:87:3c:d2:12:d8:e8:94: 8c:47:c9:7c:28:bf:14:16:bf:51:ae:f2:65:ea:da: 52:b0:8e:f2:5a:0f:ac:d6:2b:99:c2:40:77:85:02: 4a:9e:96:5b:49:91:29:a3:1a:e9:6b:fa:12:63:d3: f7:60:06:17:79:6c:09:2d:fa:e7:01:98:d9:3a:f7: 2d:1c:6e:ba:41:ad:b6:bd:82:78:01:86:f4:15:cd: 59:b5:3c:17:15:28:85:ea:d8:a5:52:f3:f7:c5:b7: e3:28:d4:67:82:76:64:1f:3b:36:e9:12:ab:ae:7a: 7f:d5:b7:25:46:86:38:01:52:1e:be:b7:c8:f5:88: 99:20:30:d2:0b:49:c6:f6:66:b6:85:dd:d6:d9:9f: 6c:12:36:cf:2f:11:93:73:52:d1:0c:69:2e:0c:7c: 7a:d4:7d:6b:e7:b6:3d:d9:bd:f2:f3:29:54:7a:76: 32:58:8f:2e:46:b5:fb:9d:47:cf:44:d1:db:c4:0c: 71:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C0:D7:8E:E8:6A:09:AD:38:6E:0A:55:DA:60:B8:73:CB:EF:94:71 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/a8735f80-d635-36e0-a042-89c554b7b169.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/f240d902-7ba3-4aec-b663-471f0fabfe37.crl X509v3 Authority Key Identifier: keyid:E4:57:D5:28:0C:09:9C:2A:7E:A8:A5:80:B1:6F:F6:B0:BA:4C:F1:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37.cer sbgp-ipAddrBlock: critical IPv4: 66.112.128.16/29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption d9:aa:33:42:8d:8d:90:20:5d:db:bb:a1:92:a3:01:87:cc:1e: 0b:b5:85:4d:e8:cc:72:39:8d:37:80:7e:32:d3:7b:9e:8b:24: af:ec:16:64:d3:5b:a6:54:b5:31:5e:69:7e:5c:4a:5d:d8:a6: e7:db:2c:37:e5:f8:4e:cf:78:fb:eb:4a:f3:b5:79:ee:08:07: 27:50:89:17:ea:48:33:c5:bc:68:2e:a3:0d:ce:cc:d0:31:03: 5c:81:df:a1:b5:6c:ff:2e:df:33:c9:67:a8:2f:39:71:b1:71: 84:28:73:1f:38:01:34:ae:e6:43:41:c9:b3:fd:5a:5c:73:61: 22:14:39:61:e6:e7:3b:d1:94:74:75:85:36:c7:94:d2:b0:d6: 83:71:39:f6:0d:4f:2f:de:70:e6:4e:78:c3:f0:22:82:8a:eb: 33:db:b9:45:67:b0:fd:0b:9a:b4:d4:60:89:4c:6d:98:4c:c4: c7:19:a3:cd:d3:c0:da:7e:84:7a:17:97:ec:27:5b:67:fc:12: ee:26:b0:fc:4c:4f:f5:8f:71:0b:53:b9:27:4d:9d:72:8a:29: df:aa:ae:2a:2b:2a:78:7b:c7:7a:18:eb:03:e9:68:30:40:37: 3f:75:5b:31:7b:d0:3d:b2:14:7e:97:57:63:a2:79:cc:cf:59: 08:ba:c4:2d -----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgIUAQ0Mn0MoWElEaTRnE6yn+88PEqAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZjI0MGQ5MDItN2JhMy00YWVjLWI2NjMtNDcxZjBmYWJm ZTM3MB4XDTI1MDMyMjAxMDA0MFoXDTI1MDYyMDAxMDA0MFowLzEtMCsGA1UEAxMk YjZmYzE3MmYtZjc4ZS00MTAzLWFmOGQtYjZkZGEzZDc3MDc4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnS8/wCulpD6SWfrwjNjrL0R6MVqWgPjv4zxS kIASk98IRPbzZo4qkjyMmslrHGe+MTsp8++aDDk2V6MS1FNaFTE6Koc80hLY6JSM R8l8KL8UFr9RrvJl6tpSsI7yWg+s1iuZwkB3hQJKnpZbSZEpoxrpa/oSY9P3YAYX eWwJLfrnAZjZOvctHG66Qa22vYJ4AYb0Fc1ZtTwXFSiF6tilUvP3xbfjKNRngnZk Hzs26RKrrnp/1bclRoY4AVIevrfI9YiZIDDSC0nG9ma2hd3W2Z9sEjbPLxGTc1LR DGkuDHx61H1r57Y92b3y8ylUenYyWI8uRrX7nUfPRNHbxAxxAwIDAQABo4IDVjCC A1IwHQYDVR0OBBYEFLrA147oagmtOG4KVdpguHPL75RxMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi9mMjQw ZDkwMi03YmEzLTRhZWMtYjY2My00NzFmMGZhYmZlMzcvYTg3MzVmODAtZDYzNS0z NmUwLWEwNDItODljNTU0YjdiMTY5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvZjI0MGQ5MDItN2JhMy00YWVjLWI2 NjMtNDcxZjBmYWJmZTM3L2YyNDBkOTAyLTdiYTMtNGFlYy1iNjYzLTQ3MWYwZmFi ZmUzNy5jcmwwHwYDVR0jBBgwFoAU5FfVKAwJnCp+qKWAsW/2sLpM8R4wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi9mMjQwZDkwMi03YmEzLTRhZWMtYjY2My00NzFm MGZhYmZlMzcuY2VyMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUDQnCAEDBU BgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8v d3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEB CwUAA4IBAQDZqjNCjY2QIF3bu6GSowGHzB4LtYVN6MxyOY03gH4y03ueiySv7BZk 01umVLUxXml+XEpd2Kbn2yw35fhOz3j760rztXnuCAcnUIkX6kgzxbxoLqMNzszQ MQNcgd+htWz/Lt8zyWeoLzlxsXGEKHMfOAE0ruZDQcmz/Vpcc2EiFDlh5uc70ZR0 dYU2x5TSsNaDcTn2DU8v3nDmTnjD8CKCiusz27lFZ7D9C5q01GCJTG2YTMTHGaPN 08DafoR6F5fsJ1tn/BLuJrD8TE/1j3ELU7knTZ1yiinfqq4qKyp4e8d6GOsD6Wgw QDc/dVsxe9A9shR+l1djonnMz1kIusQt -----END CERTIFICATE-----Generated at Sat Apr 12 16:19:56 2025 by rpki-client