$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/da0440a7-5f70-3959-8f0b-85d69fe69731.roa File: da0440a7-5f70-3959-8f0b-85d69fe69731.roa (raw, json) Hash identifier: ehtB17RCktH70nRKhDPQ0ms51UcChrdsik6qOzhk1qU= Subject key identifier: A5:B2:CA:7E:78:A9:43:C2:B3:63:28:1E:49:04:16:36:93:42:80:0F Certificate issuer: /CN=35e99eeb-90e3-4a3e-b866-39294b437d3d Certificate serial: 010D0C9F43285848EC96AD420C4F3C1C8E1A2680 Authority key identifier: E5:5B:A0:02:57:F9:60:BC:20:5B:AD:CA:B3:EE:D0:EA:27:2A:99:07 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/da0440a7-5f70-3959-8f0b-85d69fe69731.roa Signing time: Tue 18 Feb 2025 14:00:52 +0000 ROA not before: Tue 18 Feb 2025 14:00:52 +0000 ROA not after: Mon 19 May 2025 13:00:52 +0000 asID: 7018 IP address blocks: 45.58.208.0/24 maxlen: 24 45.58.210.0/23 maxlen: 23 45.58.212.0/22 maxlen: 22 45.58.240.0/22 maxlen: 22 45.58.245.0/24 maxlen: 24 45.58.250.0/24 maxlen: 24 45.58.252.0/22 maxlen: 22 69.91.139.0/24 maxlen: 24 69.91.140.0/24 maxlen: 24 69.91.143.0/24 maxlen: 24 69.91.144.0/24 maxlen: 24 69.91.147.0/24 maxlen: 24 69.91.148.0/24 maxlen: 24 69.91.150.0/24 maxlen: 24 69.91.151.0/24 maxlen: 24 69.91.152.0/24 maxlen: 24 69.91.154.0/24 maxlen: 24 69.91.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/35e99eeb-90e3-4a3e-b866-39294b437d3d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/35e99eeb-90e3-4a3e-b866-39294b437d3d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:ec:96:ad:42:0c:4f:3c:1c:8e:1a:26:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35e99eeb-90e3-4a3e-b866-39294b437d3d Validity Not Before: Feb 18 14:00:52 2025 GMT Not After : May 19 13:00:52 2025 GMT Subject: CN=6111598b-a0a2-4103-b4ae-25427331076e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f5:d0:40:ff:3c:20:ee:cb:fb:6d:b6:c4:c3: c9:ec:e7:e2:ce:e1:47:36:0a:5c:73:dd:0a:7b:d0: 04:67:f1:8b:78:b1:ff:46:5f:b5:2b:c3:ad:4d:e0: 47:b6:de:e2:08:ed:21:74:14:a2:b1:48:4d:6d:bd: 4e:4e:e9:ef:ff:85:8c:9d:25:fa:0b:25:0d:38:8c: 63:18:ff:50:cd:c1:58:3e:ce:34:32:af:c2:33:f8: f9:5c:c3:72:8f:a3:52:9b:2a:06:ee:30:2c:77:09: 95:58:d7:b2:44:c7:a5:14:33:ae:76:35:a3:6b:cc: 46:da:e9:87:1a:9e:87:2f:98:5e:95:e1:19:23:e4: c7:82:5a:3f:e9:60:ab:e3:6c:33:24:13:36:5d:01: 30:96:54:1f:33:2c:db:24:ca:bb:2d:5b:42:81:1a: 6d:86:84:28:f7:bf:31:e4:85:d1:0e:df:87:7f:d2: 20:a1:aa:a0:69:e6:fa:be:04:61:2b:de:8d:38:ce: e9:a0:fd:56:3d:c0:1a:22:b5:01:0e:fd:a8:c5:8b: fc:70:30:41:10:34:76:24:98:10:ba:4c:89:2f:a6: 6e:d5:1b:c3:79:8f:a1:0e:47:80:c0:cc:fc:b4:75: c0:4d:25:14:db:fe:23:27:29:26:b4:e0:9c:f9:7f: 11:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B2:CA:7E:78:A9:43:C2:B3:63:28:1E:49:04:16:36:93:42:80:0F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/da0440a7-5f70-3959-8f0b-85d69fe69731.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/35e99eeb-90e3-4a3e-b866-39294b437d3d.crl X509v3 Authority Key Identifier: keyid:E5:5B:A0:02:57:F9:60:BC:20:5B:AD:CA:B3:EE:D0:EA:27:2A:99:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d.cer sbgp-ipAddrBlock: critical IPv4: 45.58.208.0/24 45.58.210.0-45.58.215.255 45.58.240.0/22 45.58.245.0/24 45.58.250.0/24 45.58.252.0/22 69.91.139.0-69.91.140.255 69.91.143.0-69.91.144.255 69.91.147.0-69.91.148.255 69.91.150.0-69.91.152.255 69.91.154.0/24 69.91.176.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 4b:be:7d:15:bc:7f:7a:84:e4:2a:cd:8f:24:2a:b9:81:53:9c: 25:fc:7f:08:1a:c3:8a:81:bd:d7:5b:72:f4:e0:b7:5a:02:73: 09:aa:73:2e:0b:ee:ab:9f:04:ad:d4:20:05:a3:1a:84:d1:8a: 6a:71:0c:ef:07:ba:8e:55:86:47:e7:e4:20:ff:9c:9f:39:12: a7:e3:0d:0c:c3:e9:19:ce:4c:00:65:9c:48:79:70:1e:9f:0c: e6:5d:50:67:23:f5:30:14:e4:22:ca:af:e9:20:f6:24:d0:0e: 83:5a:ff:c0:00:21:49:63:72:31:5c:63:ce:24:a0:4d:32:b6: 27:58:0b:23:2b:0c:e8:ce:3c:30:d0:d3:f3:c2:05:fb:95:c7: 6b:06:d9:40:30:2e:76:d2:65:b8:e0:c7:3d:f2:85:cd:3b:62: f7:07:19:9f:fb:3b:94:c9:38:40:d2:76:15:d9:5d:19:04:c8: ec:e6:71:f3:b3:aa:46:c7:cf:51:67:50:d2:3d:a3:80:9f:0e: e5:57:ed:36:62:cf:df:81:31:55:cb:e8:91:f0:a8:a7:27:ff: e6:1a:c5:fa:74:cc:7f:5b:bf:c8:76:e7:cf:7e:f2:4b:2f:cf: a4:96:6b:dd:2c:dc:29:00:39:12:b8:e0:18:61:c9:f0:04:b2: 05:4c:ef:d2 -----BEGIN CERTIFICATE----- MIIGrjCCBZagAwIBAgIUAQ0Mn0MoWEjslq1CDE88HI4aJoAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMzVlOTllZWItOTBlMy00YTNlLWI4NjYtMzkyOTRiNDM3 ZDNkMB4XDTI1MDIxODE0MDA1MloXDTI1MDUxOTEzMDA1MlowLzEtMCsGA1UEAxMk NjExMTU5OGItYTBhMi00MTAzLWI0YWUtMjU0MjczMzEwNzZlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2/XQQP88IO7L+222xMPJ7OfizuFHNgpcc90K e9AEZ/GLeLH/Rl+1K8OtTeBHtt7iCO0hdBSisUhNbb1OTunv/4WMnSX6CyUNOIxj GP9QzcFYPs40Mq/CM/j5XMNyj6NSmyoG7jAsdwmVWNeyRMelFDOudjWja8xG2umH Gp6HL5heleEZI+THglo/6WCr42wzJBM2XQEwllQfMyzbJMq7LVtCgRpthoQo978x 5IXRDt+Hf9Igoaqgaeb6vgRhK96NOM7poP1WPcAaIrUBDv2oxYv8cDBBEDR2JJgQ ukyJL6Zu1RvDeY+hDkeAwMz8tHXATSUU2/4jJykmtOCc+X8RWwIDAQABo4IDwDCC A7wwHQYDVR0OBBYEFKWyyn54qUPCs2MoHkkEFjaTQoAPMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy8zNWU5 OWVlYi05MGUzLTRhM2UtYjg2Ni0zOTI5NGI0MzdkM2QvZGEwNDQwYTctNWY3MC0z OTU5LThmMGItODVkNjlmZTY5NzMxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvMzVlOTllZWItOTBlMy00YTNlLWI4 NjYtMzkyOTRiNDM3ZDNkLzM1ZTk5ZWViLTkwZTMtNGEzZS1iODY2LTM5Mjk0YjQz N2QzZC5jcmwwHwYDVR0jBBgwFoAU5VugAlf5YLwgW63Ks+7Q6icqmQcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy8zNWU5OWVlYi05MGUzLTRhM2UtYjg2Ni0zOTI5 NGI0MzdkM2QuY2VyMIGJBggrBgEFBQcBBwEB/wR6MHgwdgQCAAEwcAMEAC060DAM AwQBLTrSAwQDLTrQAwQCLTrwAwQALTr1AwQALTr6AwQCLTr8MAwDBABFW4sDBABF W4wwDAMEAEVbjwMEAEVbkDAMAwQARVuTAwQARVuUMAwDBAFFW5YDBABFW5gDBABF W5oDBABFW7AwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIB FixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDAN BgkqhkiG9w0BAQsFAAOCAQEAS759Fbx/eoTkKs2PJCq5gVOcJfx/CBrDioG911ty 9OC3WgJzCapzLgvuq58ErdQgBaMahNGKanEM7we6jlWGR+fkIP+cnzkSp+MNDMPp Gc5MAGWcSHlwHp8M5l1QZyP1MBTkIsqv6SD2JNAOg1r/wAAhSWNyMVxjziSgTTK2 J1gLIysM6M48MNDT88IF+5XHawbZQDAudtJluODHPfKFzTti9wcZn/s7lMk4QNJ2 FdldGQTI7OZx87OqRsfPUWdQ0j2jgJ8O5VftNmLP34ExVcvokfCopyf/5hrF+nTM f1u/yHbnz37ySy/PpJZr3SzcKQA5ErjgGGHJ8ASyBUzv0g== -----END CERTIFICATE-----Generated at Fri Apr 4 21:45:22 2025 by rpki-client