$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/d474896b-8f19-3b64-a77d-131cf6524395.roa File: d474896b-8f19-3b64-a77d-131cf6524395.roa (raw, json) Hash identifier: Xj7t84ckhAGjqRv9NHKeV24ik5a2/uJ+Uqavcr4ssgk= Subject key identifier: B6:B3:1D:8F:39:9C:07:A1:89:22:5E:A7:D2:85:BA:1C:24:B1:38:04 Certificate issuer: /CN=7b840891-ef20-464d-970d-ffec736f7949 Certificate serial: 010D0C9F43285849F2E52CA9B572DC3119FF3500 Authority key identifier: 54:9A:D3:3B:0F:06:4C:81:99:0C:C8:07:FA:8D:24:13:C3:9F:F6:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/d474896b-8f19-3b64-a77d-131cf6524395.roa Signing time: Fri 23 May 2025 13:01:03 +0000 ROA not before: Fri 23 May 2025 13:01:03 +0000 ROA not after: Thu 21 Aug 2025 13:01:03 +0000 asID: 30500 IP address blocks: 74.123.68.0/22 maxlen: 24 198.134.28.0/22 maxlen: 24 208.77.196.0/22 maxlen: 24 208.123.208.0/24 maxlen: 24 208.123.210.0/23 maxlen: 24 208.123.212.0/22 maxlen: 24 208.123.216.0/22 maxlen: 24 2605:e680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/7b840891-ef20-464d-970d-ffec736f7949.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/7b840891-ef20-464d-970d-ffec736f7949.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:f2:e5:2c:a9:b5:72:dc:31:19:ff:35:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b840891-ef20-464d-970d-ffec736f7949 Validity Not Before: May 23 13:01:03 2025 GMT Not After : Aug 21 13:01:03 2025 GMT Subject: CN=7b5b241e-0b8a-4def-aa1c-0c32b3a329b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:20:26:08:2d:13:4b:06:f1:0c:81:1e:be:78: 09:5a:e1:7e:41:59:2b:5c:65:b4:89:1d:bd:b6:9d: 16:71:6c:0d:bc:3a:48:03:d3:e2:78:51:40:bd:2c: 4a:a5:9e:b2:37:fb:59:53:4c:dd:03:1f:af:e9:93: 7f:77:7b:3f:ee:2d:c5:4d:91:01:98:04:00:fb:d8: 81:5a:ea:84:b4:a8:9c:81:a1:56:37:16:68:7e:09: a0:cd:f9:d9:75:01:fc:26:0d:1b:dc:79:6d:f8:3e: 8c:22:e9:e8:34:8c:83:df:a3:af:49:fc:a0:30:e3: 9d:13:cb:ac:1b:16:2a:80:f9:d4:15:07:68:55:e2: 1f:a5:28:58:a1:76:2b:42:7b:56:4d:de:01:73:53: 77:d6:b9:15:ec:44:d0:62:64:62:2c:48:70:22:9a: 75:4f:fb:de:4a:df:46:d2:19:d8:14:22:05:b0:13: 36:0e:c0:e4:5e:2c:34:3f:e7:e1:90:43:2e:7c:8b: 4b:7c:44:20:44:7a:cb:cc:77:69:2d:7f:f8:5b:fe: 20:79:5b:5f:fa:88:65:07:92:c1:33:51:4e:6a:7e: 22:4f:77:12:69:a8:36:1d:27:e7:ba:a3:5e:2e:b9: 27:31:d2:f0:00:7d:2c:be:ed:bc:fd:a9:21:1f:a1: 18:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B3:1D:8F:39:9C:07:A1:89:22:5E:A7:D2:85:BA:1C:24:B1:38:04 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/d474896b-8f19-3b64-a77d-131cf6524395.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/7b840891-ef20-464d-970d-ffec736f7949.crl X509v3 Authority Key Identifier: keyid:54:9A:D3:3B:0F:06:4C:81:99:0C:C8:07:FA:8D:24:13:C3:9F:F6:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949.cer sbgp-ipAddrBlock: critical IPv4: 74.123.68.0/22 198.134.28.0/22 208.77.196.0/22 208.123.208.0/24 208.123.210.0-208.123.219.255 IPv6: 2605:e680::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 10:68:21:05:59:2d:3d:d6:4a:83:4b:b9:6a:a9:47:db:8d:bc: eb:73:8a:a2:d6:26:56:67:e9:e9:6c:67:cb:c2:4d:de:8d:9e: 2b:b6:0b:e4:de:57:24:92:a0:76:39:9d:a0:a5:88:ec:0b:35: 28:1d:a1:7d:c5:5a:f7:ed:f3:59:5b:3f:96:f7:82:70:a1:40: be:af:bd:be:9c:0a:82:19:80:43:9b:df:4e:c0:86:55:ff:8a: e4:51:2d:e0:12:05:c1:58:18:45:b9:5f:6a:e8:53:46:01:c5: ca:e2:e7:d6:0d:51:7f:23:8d:7b:ef:39:c6:b9:07:ea:09:e2: 0e:32:01:85:3e:1e:5d:ab:62:97:9a:95:1f:87:ab:99:be:9f: 02:a6:d7:cf:d9:79:c8:02:14:41:be:d1:2d:00:79:89:77:31: cb:ca:7c:3e:18:cf:bc:64:86:19:8f:0b:b1:d5:7b:9f:2f:1f: 5a:18:af:15:86:33:fd:17:07:92:e4:4b:9c:94:cb:65:68:87: fd:9a:92:41:f7:cf:c7:27:9a:83:4a:e9:79:6c:57:79:ff:b0: da:ef:1a:a7:ce:2c:cc:82:a7:f5:9a:01:30:3b:3b:e3:69:87: d1:3e:4b:31:ff:86:e2:ab:d1:ee:d7:c8:9b:7a:3b:70:1b:dd: 42:d1:91:40 -----BEGIN CERTIFICATE----- MIIGcjCCBVqgAwIBAgIUAQ0Mn0MoWEny5SyptXLcMRn/NQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkN2I4NDA4OTEtZWYyMC00NjRkLTk3MGQtZmZlYzczNmY3 OTQ5MB4XDTI1MDUyMzEzMDEwM1oXDTI1MDgyMTEzMDEwM1owLzEtMCsGA1UEAxMk N2I1YjI0MWUtMGI4YS00ZGVmLWFhMWMtMGMzMmIzYTMyOWI4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SAmCC0TSwbxDIEevngJWuF+QVkrXGW0iR29 tp0WcWwNvDpIA9PieFFAvSxKpZ6yN/tZU0zdAx+v6ZN/d3s/7i3FTZEBmAQA+9iB WuqEtKicgaFWNxZofgmgzfnZdQH8Jg0b3Hlt+D6MIunoNIyD36OvSfygMOOdE8us GxYqgPnUFQdoVeIfpShYoXYrQntWTd4Bc1N31rkV7ETQYmRiLEhwIpp1T/veSt9G 0hnYFCIFsBM2DsDkXiw0P+fhkEMufItLfEQgRHrLzHdpLX/4W/4geVtf+ohlB5LB M1FOan4iT3cSaag2HSfnuqNeLrknMdLwAH0svu28/akhH6EYBwIDAQABo4IDhDCC A4AwHQYDVR0OBBYEFLazHY85nAehiSJep9KFuhwksTgEMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy83Yjg0 MDg5MS1lZjIwLTQ2NGQtOTcwZC1mZmVjNzM2Zjc5NDkvZDQ3NDg5NmItOGYxOS0z YjY0LWE3N2QtMTMxY2Y2NTI0Mzk1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvN2I4NDA4OTEtZWYyMC00NjRkLTk3 MGQtZmZlYzczNmY3OTQ5LzdiODQwODkxLWVmMjAtNDY0ZC05NzBkLWZmZWM3MzZm Nzk0OS5jcmwwHwYDVR0jBBgwFoAUVJrTOw8GTIGZDMgH+o0kE8Of9tAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy83Yjg0MDg5MS1lZjIwLTQ2NGQtOTcwZC1mZmVj NzM2Zjc5NDkuY2VyME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwQCSntEAwQC xoYcAwQC0E3EAwQA0HvQMAwDBAHQe9IDBALQe9gwDQQCAAIwBwMFACYF5oAwVAYD VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3 dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF AAOCAQEAEGghBVktPdZKg0u5aqlH242863OKotYmVmfp6Wxny8JN3o2eK7YL5N5X JJKgdjmdoKWI7As1KB2hfcVa9+3zWVs/lveCcKFAvq+9vpwKghmAQ5vfTsCGVf+K 5FEt4BIFwVgYRblfauhTRgHFyuLn1g1RfyONe+85xrkH6gniDjIBhT4eXatil5qV H4ermb6fAqbXz9l5yAIUQb7RLQB5iXcxy8p8PhjPvGSGGY8LsdV7ny8fWhivFYYz /RcHkuRLnJTLZWiH/ZqSQffPxyeag0rpeWxXef+w2u8ap84szIKn9ZoBMDs742mH 0T5LMf+G4qvR7tfIm3o7cBvdQtGRQA== -----END CERTIFICATE-----Generated at Tue Jul 1 13:14:22 2025 by rpki-client