$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/d474896b-8f19-3b64-a77d-131cf6524395.roa File: d474896b-8f19-3b64-a77d-131cf6524395.roa (raw, json) Hash identifier: +w0Fu1q9wyDxKHPJg8OdQKfHo8GG8Zw/wLkVjRqJgbQ= Subject key identifier: 15:98:4C:11:60:45:57:8A:F8:35:C8:04:DE:3E:6E:8D:50:AD:BD:D7 Certificate issuer: /CN=7b840891-ef20-464d-970d-ffec736f7949 Certificate serial: 010D0C9F4328584913AC198E661F534269F9CF80 Authority key identifier: 54:9A:D3:3B:0F:06:4C:81:99:0C:C8:07:FA:8D:24:13:C3:9F:F6:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/d474896b-8f19-3b64-a77d-131cf6524395.roa Signing time: Tue 04 Mar 2025 14:00:52 +0000 ROA not before: Tue 04 Mar 2025 14:00:52 +0000 ROA not after: Mon 02 Jun 2025 13:00:52 +0000 asID: 30500 IP address blocks: 74.123.68.0/22 maxlen: 24 198.134.28.0/22 maxlen: 24 208.77.196.0/22 maxlen: 24 208.123.208.0/24 maxlen: 24 208.123.210.0/23 maxlen: 24 208.123.212.0/22 maxlen: 24 208.123.216.0/22 maxlen: 24 2605:e680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/7b840891-ef20-464d-970d-ffec736f7949.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/7b840891-ef20-464d-970d-ffec736f7949.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:13:ac:19:8e:66:1f:53:42:69:f9:cf:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b840891-ef20-464d-970d-ffec736f7949 Validity Not Before: Mar 4 14:00:52 2025 GMT Not After : Jun 2 13:00:52 2025 GMT Subject: CN=2ea43775-7019-433b-95ec-2da7cd4354e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:09:14:56:74:06:0f:3d:60:5a:92:d2:f3:8f: 90:e2:f5:0c:56:77:f6:0a:de:cb:32:57:ad:7a:41: bd:f9:bd:78:47:85:f8:ab:8e:7c:c0:14:cd:b2:61: a9:bc:a2:7f:46:3b:7b:f3:44:6c:9b:95:ff:33:a4: ee:dd:40:13:18:5f:75:bd:3d:d8:b7:df:7d:af:cb: 0f:f1:8b:ac:d1:d4:ff:9a:0c:d6:d1:94:a3:ec:ae: 3e:ce:15:0c:dc:2c:97:3c:6c:5b:b6:95:c9:f4:7f: 93:83:4f:fe:2a:83:24:11:da:33:77:2b:81:8b:5d: 8c:f9:f1:a8:fa:4a:e6:69:39:f0:fd:47:af:7a:03: ca:9e:8c:95:85:f0:88:d4:b8:e6:2f:b3:d2:0e:ac: df:e6:9d:49:ad:c9:c1:ec:0d:4e:f5:e7:d5:27:7d: 4b:3b:61:d0:be:af:ae:41:25:11:85:69:17:8e:fd: d1:65:50:1a:61:bf:3a:ee:63:b7:87:78:4b:8e:6b: a9:0d:1d:82:93:ae:11:84:63:d5:de:06:d8:7d:22: 9c:95:33:e4:14:9f:50:fa:bc:a9:ae:c1:ca:08:bb: 06:dd:29:ba:45:0d:c5:47:6f:95:78:43:af:24:a9: f0:0f:b2:60:b4:45:1d:39:17:c1:57:48:da:f7:3e: e7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:98:4C:11:60:45:57:8A:F8:35:C8:04:DE:3E:6E:8D:50:AD:BD:D7 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/d474896b-8f19-3b64-a77d-131cf6524395.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949/7b840891-ef20-464d-970d-ffec736f7949.crl X509v3 Authority Key Identifier: keyid:54:9A:D3:3B:0F:06:4C:81:99:0C:C8:07:FA:8D:24:13:C3:9F:F6:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/7b840891-ef20-464d-970d-ffec736f7949.cer sbgp-ipAddrBlock: critical IPv4: 74.123.68.0/22 198.134.28.0/22 208.77.196.0/22 208.123.208.0/24 208.123.210.0-208.123.219.255 IPv6: 2605:e680::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0e:95:7a:b1:64:ac:03:e5:36:69:ea:6d:9d:7d:6a:2a:82:83: a5:d6:b9:aa:2a:8b:eb:3c:9f:c0:69:dc:b4:64:a3:8d:bb:fb: 4f:33:87:b8:40:94:83:7d:2d:3d:6b:97:da:ef:27:15:b0:af: 74:ae:7b:40:fe:82:c4:dc:4a:eb:1b:a6:22:5f:1c:30:7d:52: 69:c3:07:5c:9a:47:39:11:ca:ca:23:32:56:33:a3:84:3f:2a: eb:84:ac:64:06:1e:46:56:a8:d1:c6:cb:74:73:94:45:db:05: 90:d6:d3:92:5a:ad:70:05:27:fa:98:78:d3:85:58:c9:cc:f6: 97:cb:ec:9d:1a:23:61:fa:77:fd:92:b0:14:fa:f4:28:ee:e0: 20:3e:d6:22:8d:2f:68:35:71:19:e8:0d:53:0f:7a:28:86:2d: 5e:4e:51:d4:61:88:b2:76:71:05:db:ec:60:1f:dc:b2:72:79: d1:52:83:94:b8:2c:4f:44:ca:1c:df:fe:f7:be:ca:17:80:40: a4:e3:10:62:df:18:f6:18:f3:f1:1f:6f:0a:c4:d8:2c:7f:31: 5d:a1:33:b0:7b:80:f6:3d:4e:ce:9d:ef:b0:21:97:2e:9c:1e: da:ce:42:8a:eb:b4:8e:f0:79:b2:e6:e3:3b:78:0f:9f:cb:24: 50:5b:32:46 -----BEGIN CERTIFICATE----- MIIGcjCCBVqgAwIBAgIUAQ0Mn0MoWEkTrBmOZh9TQmn5z4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkN2I4NDA4OTEtZWYyMC00NjRkLTk3MGQtZmZlYzczNmY3 OTQ5MB4XDTI1MDMwNDE0MDA1MloXDTI1MDYwMjEzMDA1MlowLzEtMCsGA1UEAxMk MmVhNDM3NzUtNzAxOS00MzNiLTk1ZWMtMmRhN2NkNDM1NGUxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmAkUVnQGDz1gWpLS84+Q4vUMVnf2Ct7LMlet ekG9+b14R4X4q458wBTNsmGpvKJ/Rjt780Rsm5X/M6Tu3UATGF91vT3Yt999r8sP 8Yus0dT/mgzW0ZSj7K4+zhUM3CyXPGxbtpXJ9H+Tg0/+KoMkEdozdyuBi12M+fGo +krmaTnw/UevegPKnoyVhfCI1LjmL7PSDqzf5p1JrcnB7A1O9efVJ31LO2HQvq+u QSURhWkXjv3RZVAaYb867mO3h3hLjmupDR2Ck64RhGPV3gbYfSKclTPkFJ9Q+ryp rsHKCLsG3Sm6RQ3FR2+VeEOvJKnwD7JgtEUdORfBV0ja9z7nvwIDAQABo4IDhDCC A4AwHQYDVR0OBBYEFBWYTBFgRVeK+DXIBN4+bo1Qrb3XMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy83Yjg0 MDg5MS1lZjIwLTQ2NGQtOTcwZC1mZmVjNzM2Zjc5NDkvZDQ3NDg5NmItOGYxOS0z YjY0LWE3N2QtMTMxY2Y2NTI0Mzk1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvN2I4NDA4OTEtZWYyMC00NjRkLTk3 MGQtZmZlYzczNmY3OTQ5LzdiODQwODkxLWVmMjAtNDY0ZC05NzBkLWZmZWM3MzZm Nzk0OS5jcmwwHwYDVR0jBBgwFoAUVJrTOw8GTIGZDMgH+o0kE8Of9tAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy83Yjg0MDg5MS1lZjIwLTQ2NGQtOTcwZC1mZmVj NzM2Zjc5NDkuY2VyME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwQCSntEAwQC xoYcAwQC0E3EAwQA0HvQMAwDBAHQe9IDBALQe9gwDQQCAAIwBwMFACYF5oAwVAYD VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3 dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF AAOCAQEADpV6sWSsA+U2aeptnX1qKoKDpda5qiqL6zyfwGnctGSjjbv7TzOHuECU g30tPWuX2u8nFbCvdK57QP6CxNxK6xumIl8cMH1SacMHXJpHORHKyiMyVjOjhD8q 64SsZAYeRlao0cbLdHOURdsFkNbTklqtcAUn+ph404VYycz2l8vsnRojYfp3/ZKw FPr0KO7gID7WIo0vaDVxGegNUw96KIYtXk5R1GGIsnZxBdvsYB/csnJ50VKDlLgs T0TKHN/+977KF4BApOMQYt8Y9hjz8R9vCsTYLH8xXaEzsHuA9j1Ozp3vsCGXLpwe 2s5Ciuu0jvB5subjO3gPn8skUFsyRg== -----END CERTIFICATE-----Generated at Sat Apr 5 08:09:24 2025 by rpki-client