$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa File: d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa (raw, json) Hash identifier: I1jZvNZL5VhIeMOxVfVxxh0y7x3euJB3mfBHlhxh9NQ= Subject key identifier: 52:E9:BD:AE:80:75:EE:BE:5C:05:2D:A3:77:FC:E1:7C:CF:34:AB:AF Certificate issuer: /CN=bf7c43e7-0571-4d08-b71a-8b930dda9aad Certificate serial: 010D0C9F432858493C09315006BFB0E3CC4E4640 Authority key identifier: 79:9A:9F:EA:8D:05:18:92:60:86:70:C3:43:10:E3:27:21:E0:14:A8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa Signing time: Wed 19 Mar 2025 01:00:40 +0000 ROA not before: Wed 19 Mar 2025 01:00:40 +0000 ROA not after: Tue 17 Jun 2025 01:00:40 +0000 asID: 35908 IP address blocks: 209.11.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Apr 2025 16:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:3c:09:31:50:06:bf:b0:e3:cc:4e:46:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf7c43e7-0571-4d08-b71a-8b930dda9aad Validity Not Before: Mar 19 01:00:40 2025 GMT Not After : Jun 17 01:00:40 2025 GMT Subject: CN=605e5dc9-2759-4e7c-bc23-be1b0c5c19d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3f:8e:34:73:41:32:38:23:55:fa:6d:fc:a1: 8d:5d:5a:5c:f2:88:5b:de:ff:43:fd:e5:b8:09:f7: bb:19:5c:aa:8a:d7:6d:ce:ea:1b:3b:e9:64:55:50: 7b:59:c9:af:a1:3e:aa:4c:85:d3:70:8b:21:fc:47: 34:c8:5f:2f:4e:02:8c:01:89:8f:f1:4b:02:19:c1: a5:0f:be:b1:ea:fd:94:64:a8:d6:61:2b:8c:ef:7d: c2:08:f4:b9:c8:c5:05:21:f3:13:02:95:60:73:d3: 6a:5d:bc:66:64:c3:92:34:b8:25:04:ed:20:48:22: e2:be:ba:31:81:97:0f:63:40:41:70:5b:7f:53:1a: fc:8a:7b:e6:69:8b:67:89:29:93:d7:30:53:b6:39: 7f:a9:be:d1:e9:83:de:42:8f:a8:06:3e:f7:26:a2: 6b:85:35:5a:83:10:8c:3b:7c:38:cf:ad:85:d3:57: c0:ff:1d:30:10:fb:2e:92:ab:ec:37:3b:97:8c:4f: 5d:ef:10:93:56:d8:cc:88:76:bc:20:55:99:f2:4a: 0a:82:cd:70:63:94:99:ff:16:09:c5:09:95:23:c4: 15:18:be:38:99:2c:eb:86:7b:18:04:fe:32:33:e2: ff:52:af:71:3a:9e:3c:49:7c:8f:59:9a:f3:77:14: a4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E9:BD:AE:80:75:EE:BE:5C:05:2D:A3:77:FC:E1:7C:CF:34:AB:AF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.crl X509v3 Authority Key Identifier: keyid:79:9A:9F:EA:8D:05:18:92:60:86:70:C3:43:10:E3:27:21:E0:14:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer sbgp-ipAddrBlock: critical IPv4: 209.11.240.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 5b:67:c8:e4:36:ba:34:eb:4a:25:1e:03:5c:55:76:39:05:3d: 84:b6:88:e6:a7:9d:5d:c3:36:6e:3d:d9:e7:c8:69:dd:a6:f2: 7c:a6:cd:5a:31:14:e7:0f:77:81:d8:76:67:60:95:a7:c4:9b: a6:63:92:f4:20:1f:9f:e4:53:4f:10:bf:dd:10:0d:4a:32:85: 26:7d:c6:23:5a:18:5a:09:e8:40:bf:4d:26:4c:4a:e4:00:e8: 7c:54:c9:ef:b6:63:60:d7:05:29:3d:07:df:3d:da:f4:01:9d: 38:10:11:2d:65:cc:23:53:14:df:83:31:39:1d:e2:bd:c2:6c: 36:73:b6:73:b1:6c:e2:ba:29:90:fc:ca:1d:1a:ce:4b:56:98: db:0c:37:a7:bc:a8:26:cf:97:0c:d0:5b:f0:d2:6a:eb:0d:2d: c3:4e:cc:70:4e:2a:57:6f:b9:0b:b4:c8:90:3a:d9:2d:cf:49: 7f:5d:e6:32:fc:ca:cf:5b:cc:b2:4c:66:f8:99:02:78:01:1e: 99:fc:f5:e5:45:f6:de:33:63:77:7a:54:3e:f2:ce:51:0d:f1: 5e:0f:1a:b2:77:c4:60:e9:e5:44:52:c5:83:ac:8c:a8:18:c1: fe:17:f1:c2:5f:27:ed:95:78:e6:91:db:a7:21:55:eb:4e:f4: 7c:16:1e:10 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEk8CTFQBr+w48xORkAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmY3YzQzZTctMDU3MS00ZDA4LWI3MWEtOGI5MzBkZGE5 YWFkMB4XDTI1MDMxOTAxMDA0MFoXDTI1MDYxNzAxMDA0MFowLzEtMCsGA1UEAxMk NjA1ZTVkYzktMjc1OS00ZTdjLWJjMjMtYmUxYjBjNWMxOWQyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqD+ONHNBMjgjVfpt/KGNXVpc8ohb3v9D/eW4 Cfe7GVyqitdtzuobO+lkVVB7WcmvoT6qTIXTcIsh/Ec0yF8vTgKMAYmP8UsCGcGl D76x6v2UZKjWYSuM733CCPS5yMUFIfMTApVgc9NqXbxmZMOSNLglBO0gSCLivrox gZcPY0BBcFt/Uxr8invmaYtniSmT1zBTtjl/qb7R6YPeQo+oBj73JqJrhTVagxCM O3w4z62F01fA/x0wEPsukqvsNzuXjE9d7xCTVtjMiHa8IFWZ8koKgs1wY5SZ/xYJ xQmVI8QVGL44mSzrhnsYBP4yM+L/Uq9xOp48SXyPWZrzdxSkyQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFLpva6Ade6+XAUto3f84XzPNKuvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iZjdj NDNlNy0wNTcxLTRkMDgtYjcxYS04YjkzMGRkYTlhYWQvZDZiNTBkYTEtZjAwYy0z OGUxLTkyYzQtYjk3YTRhODBmMDQzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy80YWI3YWU0ZC1i ZDdiLTRiMzMtOWE4OC01YjIyZDJhODMzN2QvYmY3YzQzZTctMDU3MS00ZDA4LWI3 MWEtOGI5MzBkZGE5YWFkL2JmN2M0M2U3LTA1NzEtNGQwOC1iNzFhLThiOTMwZGRh OWFhZC5jcmwwHwYDVR0jBBgwFoAUeZqf6o0FGJJghnDDQxDjJyHgFKgwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIz My05YTg4LTViMjJkMmE4MzM3ZC9iZjdjNDNlNy0wNTcxLTRkMDgtYjcxYS04Yjkz MGRkYTlhYWQuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0QvwMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFtnyOQ2ujTrSiUeA1xVdjkFPYS2iOannV3DNm492efIad2m8nymzVox FOcPd4HYdmdglafEm6ZjkvQgH5/kU08Qv90QDUoyhSZ9xiNaGFoJ6EC/TSZMSuQA 6HxUye+2Y2DXBSk9B9892vQBnTgQES1lzCNTFN+DMTkd4r3CbDZztnOxbOK6KZD8 yh0azktWmNsMN6e8qCbPlwzQW/DSausNLcNOzHBOKldvuQu0yJA62S3PSX9d5jL8 ys9bzLJMZviZAngBHpn89eVF9t4zY3d6VD7yzlEN8V4PGrJ3xGDp5URSxYOsjKgY wf4X8cJfJ+2VeOaR26chVetO9HwWHhA= -----END CERTIFICATE-----Generated at Fri Apr 4 15:57:27 2025 by rpki-client