$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa File: 5aa60e94-2eda-3416-b925-e6b36e93be4e.roa (raw, json) Hash identifier: GfeH0qhV0dyrx6Elruzju7ykvNxvJvtSMbFtCUjaSg8= Subject key identifier: C0:8C:B7:A8:72:92:B4:B2:37:00:7A:86:33:F3:DC:77:15:A1:42:34 Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F43285848D21117412740845B664FA5E0 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa Signing time: Sun 09 Feb 2025 02:00:39 +0000 ROA not before: Sun 09 Feb 2025 02:00:39 +0000 ROA not after: Sat 10 May 2025 01:00:39 +0000 asID: 14 IP address blocks: 209.2.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:d2:11:17:41:27:40:84:5b:66:4f:a5:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Feb 9 02:00:39 2025 GMT Not After : May 10 01:00:39 2025 GMT Subject: CN=a177d4a3-fe7b-4eeb-b212-e47e2b4bd2d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:04:9f:bc:93:0b:70:5b:df:3b:39:58:37:dc: 9e:b8:d4:4c:9e:11:1e:89:c3:f1:99:85:fc:cc:79: e6:ef:d9:a9:f6:94:b4:c5:6f:59:5b:46:da:11:8a: 7e:b1:3a:e1:1f:30:ec:cb:10:bf:f1:7e:9e:9e:90: 8e:52:df:93:6e:20:e7:86:86:3a:7c:d1:c2:5e:2f: 17:38:29:94:01:19:d2:9b:14:6d:10:8b:6b:55:01: 7f:9f:7b:18:04:a3:43:fe:06:4d:a9:ac:19:88:56: f6:30:c1:1d:d2:3c:ff:f9:13:7b:25:af:b3:ad:bb: 82:c2:5a:34:95:f0:d6:51:17:d1:cd:91:35:35:3d: 01:a5:65:fd:ea:36:0c:d6:1f:8e:d0:c5:8b:f5:b8: fe:31:8c:1a:e1:0c:4a:fb:e9:54:5a:96:01:72:61: 07:91:62:c9:e7:e0:91:1a:b6:27:8c:0d:03:8a:db: cf:41:6a:ae:4b:eb:36:39:a3:52:86:dd:0d:37:c3: 59:f6:48:7e:7a:78:d3:aa:a8:72:8a:8f:14:62:5d: 91:b7:bd:70:81:d4:c4:60:f3:6a:7f:9b:f5:90:b5: 55:16:e3:25:97:00:d5:cc:a7:e3:f0:37:28:51:20: d6:fc:ef:51:a6:23:ea:ba:d4:e7:d8:3f:f6:74:e9: ef:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:8C:B7:A8:72:92:B4:B2:37:00:7A:86:33:F3:DC:77:15:A1:42:34 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 209.2.208.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 45:12:3f:60:b9:99:1d:93:04:05:4c:22:93:1e:0c:17:86:82: 09:0c:a1:1f:17:f4:f6:9f:34:f3:8f:90:da:d5:6b:bb:68:6e: d4:ab:ec:ef:09:41:d5:80:be:b1:fa:f2:29:a8:41:14:75:56: 70:19:f5:f2:ef:2a:d3:01:32:1a:f6:a4:72:b9:37:b1:33:cd: 5d:fe:bb:01:d1:3f:1f:15:98:91:dd:c9:68:b3:eb:29:1f:2c: 59:e9:be:27:ed:b8:47:89:6d:6c:ae:ad:f3:7c:c2:3d:33:86: af:25:28:55:48:fd:02:26:3a:0c:21:72:96:7d:01:2d:da:46: 88:2d:14:70:20:77:91:99:af:2c:51:31:8b:b2:a3:8d:3d:da: 91:d5:a0:22:a2:32:7f:19:d3:ea:fa:58:c3:6c:81:6a:66:e9: 0e:e0:28:14:31:7b:89:65:4b:4b:1b:32:ad:dd:27:c2:de:0a: 4d:f6:68:7b:a6:ab:08:80:91:5a:84:bc:ee:3f:93:4d:58:b2: d6:95:c9:85:fb:d7:41:5e:1c:58:58:b2:e7:94:b4:85:26:31: 4e:28:b1:38:97:12:ca:43:ea:41:fe:b9:ca:21:21:20:79:da: a6:df:d4:c8:55:8d:17:ed:8d:9d:07:6e:5a:0b:f3:40:fb:74: 4f:1d:54:03 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEjSERdBJ0CEW2ZPpeAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI1MDIwOTAyMDAzOVoXDTI1MDUxMDAxMDAzOVowLzEtMCsGA1UEAxMk YTE3N2Q0YTMtZmU3Yi00ZWViLWIyMTItZTQ3ZTJiNGJkMmQ1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwSfvJMLcFvfOzlYN9yeuNRMnhEeicPxmYX8 zHnm79mp9pS0xW9ZW0baEYp+sTrhHzDsyxC/8X6enpCOUt+TbiDnhoY6fNHCXi8X OCmUARnSmxRtEItrVQF/n3sYBKND/gZNqawZiFb2MMEd0jz/+RN7Ja+zrbuCwlo0 lfDWURfRzZE1NT0BpWX96jYM1h+O0MWL9bj+MYwa4QxK++lUWpYBcmEHkWLJ5+CR GrYnjA0DitvPQWquS+s2OaNSht0NN8NZ9kh+enjTqqhyio8UYl2Rt71wgdTEYPNq f5v1kLVVFuMllwDVzKfj8DcoUSDW/O9RpiPqutTn2D/2dOnvVQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFMCMt6hykrSyNwB6hjPz3HcVoUI0MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvNWFhNjBlOTQtMmVkYS0z NDE2LWI5MjUtZTZiMzZlOTNiZTRlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0QLQMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAEUSP2C5mR2TBAVMIpMeDBeGggkMoR8X9PafNPOPkNrVa7tobtSr7O8J QdWAvrH68imoQRR1VnAZ9fLvKtMBMhr2pHK5N7EzzV3+uwHRPx8VmJHdyWiz6ykf LFnpviftuEeJbWyurfN8wj0zhq8lKFVI/QImOgwhcpZ9AS3aRogtFHAgd5GZryxR MYuyo4092pHVoCKiMn8Z0+r6WMNsgWpm6Q7gKBQxe4llS0sbMq3dJ8LeCk32aHum qwiAkVqEvO4/k01YstaVyYX710FeHFhYsueUtIUmMU4osTiXEspD6kH+ucohISB5 2qbf1MhVjRftjZ0HbloL80D7dE8dVAM= -----END CERTIFICATE-----Generated at Sat Apr 12 18:39:26 2025 by rpki-client