$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa File: d57da0e6-f691-31f3-9cdb-493375eb5d74.roa (raw, json) Hash identifier: qW4Pms1MdaKsZm3SrjIcfvyD9jfzWD5WvZt6x55F/z8= Subject key identifier: 2C:92:32:91:43:05:98:2A:74:2C:FA:F3:AF:50:F1:FB:91:41:FC:1D Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F432858491D71600516C4C597DC5DDB40 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa Signing time: Sat 08 Mar 2025 02:00:39 +0000 ROA not before: Sat 08 Mar 2025 02:00:39 +0000 ROA not after: Fri 06 Jun 2025 01:00:39 +0000 asID: 7029 IP address blocks: 71.29.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:1d:71:60:05:16:c4:c5:97:dc:5d:db:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Mar 8 02:00:39 2025 GMT Not After : Jun 6 01:00:39 2025 GMT Subject: CN=78a81502-23aa-40e1-b3b6-cca2e7f7df0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f1:27:13:ce:be:03:cd:4a:45:37:2d:41:ab: 7c:47:5e:98:81:b0:76:78:12:0a:f7:9f:c2:d9:04: d3:d6:d0:79:cb:ee:07:d7:d9:da:a5:66:eb:46:4d: 99:56:c6:38:a0:0d:3b:ef:15:1b:25:9c:9c:ff:49: f5:99:54:5f:87:63:e9:ee:8e:6d:d8:5c:df:bc:cb: c8:33:4f:bc:c7:0a:6b:40:2f:9f:19:8f:dd:54:44: e7:97:e4:a5:08:84:1c:96:54:75:a1:b5:a5:c6:e7: f0:36:d0:44:91:14:c3:e7:9a:cc:9c:74:92:fd:1d: bc:ad:92:ac:aa:30:a9:35:1b:c6:6e:97:48:09:f8: de:39:2c:0a:e4:55:a2:7d:41:8b:9f:20:ca:96:fc: 68:47:fc:10:7a:a4:f0:82:0e:29:a3:4f:7a:59:e9: de:36:ce:ee:2f:d8:ff:db:9d:be:b9:44:58:6e:96: 5a:1e:d1:b4:39:7c:10:0d:3b:25:98:cd:b0:2c:ce: 27:53:52:db:44:82:10:36:1f:c6:99:d0:c6:a1:6c: 13:66:7c:84:48:84:e4:4c:fc:05:81:23:13:57:ba: e0:96:d1:7a:f7:ae:bf:40:48:3f:05:24:13:46:9c: 70:b4:85:2a:eb:43:b8:86:3d:ca:be:b0:8f:5a:8d: 50:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:92:32:91:43:05:98:2A:74:2C:FA:F3:AF:50:F1:FB:91:41:FC:1D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 71.29.252.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 80:e6:64:26:d6:1c:18:75:cf:6f:d0:89:57:90:54:0e:9d:55: 91:e8:6c:a0:84:3f:18:00:f5:d8:4b:ba:23:ca:6a:1a:5c:29: 02:2f:80:3e:cc:d3:e6:c8:05:d8:e6:1d:bf:6b:cb:46:89:47: 6d:51:e7:cd:a7:11:0c:e3:f5:5a:2f:f0:aa:ec:fc:15:86:70: de:33:e8:06:26:e3:a0:a5:d7:37:e4:b7:20:77:b3:99:20:63: d4:d2:95:42:3a:a8:cf:88:3a:8b:da:8f:c8:26:86:b8:eb:22: ae:ab:d3:91:09:06:36:6a:2b:98:ea:e1:dd:bf:ff:2a:2c:66: 4a:9c:b8:61:45:5a:7a:98:54:be:e3:eb:45:15:03:73:2c:b3: a7:2d:75:dc:d1:38:f9:86:d8:99:84:ce:65:2d:f6:7a:fa:75: cd:42:97:ad:69:56:5f:4c:d9:15:ac:be:20:d9:ae:b5:3f:9d: aa:31:fc:80:14:a9:c8:6a:2a:bc:17:c0:6b:8b:93:67:e3:bd: 1f:63:31:c4:65:c4:2a:5c:fc:f0:fc:ed:d9:d9:59:52:f4:88: 8d:26:8e:ad:1a:c6:47:05:7d:33:0c:7b:35:0d:0e:c6:7a:fc: 75:85:c2:21:c8:fe:6a:00:9f:3b:b8:b9:06:10:07:29:29:36: 4b:8d:f9:26 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEkdcWAFFsTFl9xd20AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI1MDMwODAyMDAzOVoXDTI1MDYwNjAxMDAzOVowLzEtMCsGA1UEAxMk NzhhODE1MDItMjNhYS00MGUxLWIzYjYtY2NhMmU3ZjdkZjBhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvEnE86+A81KRTctQat8R16YgbB2eBIK95/C 2QTT1tB5y+4H19napWbrRk2ZVsY4oA077xUbJZyc/0n1mVRfh2Pp7o5t2FzfvMvI M0+8xwprQC+fGY/dVETnl+SlCIQcllR1obWlxufwNtBEkRTD55rMnHSS/R28rZKs qjCpNRvGbpdICfjeOSwK5FWifUGLnyDKlvxoR/wQeqTwgg4po096WeneNs7uL9j/ 252+uURYbpZaHtG0OXwQDTslmM2wLM4nU1LbRIIQNh/GmdDGoWwTZnyESITkTPwF gSMTV7rgltF6966/QEg/BSQTRpxwtIUq60O4hj3KvrCPWo1QPQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCySMpFDBZgqdCz6869Q8fuRQfwdMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvZDU3ZGEwZTYtZjY5MS0z MWYzLTljZGItNDkzMzc1ZWI1ZDc0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCRx38MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAIDmZCbWHBh1z2/QiVeQVA6dVZHobKCEPxgA9dhLuiPKahpcKQIvgD7M 0+bIBdjmHb9ry0aJR21R582nEQzj9Vov8Krs/BWGcN4z6AYm46Cl1zfktyB3s5kg Y9TSlUI6qM+IOovaj8gmhrjrIq6r05EJBjZqK5jq4d2//yosZkqcuGFFWnqYVL7j 60UVA3Mss6ctddzROPmG2JmEzmUt9nr6dc1Cl61pVl9M2RWsviDZrrU/naox/IAU qchqKrwXwGuLk2fjvR9jMcRlxCpc/PD87dnZWVL0iI0mjq0axkcFfTMMezUNDsZ6 /HWFwiHI/moAnzu4uQYQBykpNkuN+SY= -----END CERTIFICATE-----Generated at Sat Apr 5 22:37:56 2025 by rpki-client