$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa File: 29d649ff-7028-3767-8327-8c4721bf56a8.roa (raw, json) Hash identifier: XMshpcMLS0mXikBUmMDqfj52Xoqp3IgzTlbQ+HaJz98= Subject key identifier: F2:DA:B7:B2:46:01:50:B1:2E:77:4D:F9:D0:E9:C5:5B:64:E8:F9:6D Certificate issuer: /CN=ab85686b-bac3-40d2-b46e-f2593fb0bc6b Certificate serial: 010D0C9F4328584913AC1D79DCF52AD613517E00 Authority key identifier: 0E:5E:F6:3E:A7:FF:42:C0:84:5C:18:ED:96:19:B7:6D:8A:D9:86:BE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa Signing time: Tue 04 Mar 2025 14:00:52 +0000 ROA not before: Tue 04 Mar 2025 14:00:52 +0000 ROA not after: Mon 02 Jun 2025 13:00:52 +0000 asID: 399668 IP address blocks: 2620:98:a000::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:13:ac:1d:79:dc:f5:2a:d6:13:51:7e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab85686b-bac3-40d2-b46e-f2593fb0bc6b Validity Not Before: Mar 4 14:00:52 2025 GMT Not After : Jun 2 13:00:52 2025 GMT Subject: CN=bcba808d-2d17-4e73-b8a2-2aec66740b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0b:ba:b3:39:59:37:da:2d:06:9e:86:79:53: 78:65:b0:14:dc:1e:ba:56:95:41:96:c6:81:f5:d4: 8c:a6:7a:cd:48:fb:00:b9:54:2b:e6:d3:f6:41:36: 77:a8:8c:21:bc:9c:ed:09:89:56:3f:0e:1c:6c:ef: 87:04:ad:19:c7:cd:f1:e5:d2:6c:cf:c3:a4:4c:9c: 2b:33:55:00:89:f5:a8:b0:79:f3:0b:65:6e:d9:df: 4c:ea:cf:05:76:5a:0f:c6:93:af:98:11:d8:94:f5: d2:41:ab:22:e5:09:98:a7:21:d3:91:0a:6e:c1:ad: 4f:2b:b7:ee:ae:91:f5:7d:9a:be:69:68:4a:14:05: c0:8c:02:eb:a0:32:d2:e4:6d:2d:6b:15:e5:ab:4b: a5:ba:e0:8a:2d:46:0a:17:df:92:60:e8:fd:e6:ea: 7e:f2:75:8d:14:4d:93:e2:0f:11:e5:33:4d:8c:f6: 9e:6e:7f:38:8f:fe:be:16:dc:aa:96:67:76:b4:48: 8e:e1:79:93:29:29:08:07:5a:c4:05:e5:05:3a:1a: 8b:72:c3:44:b9:9c:b8:e9:cb:35:ff:91:48:36:d0: 1b:7c:99:19:a6:ef:39:3a:d4:6a:71:5c:66:43:6e: f5:ab:aa:0b:bf:09:8e:bb:52:cf:0d:56:b9:70:55: 8f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:DA:B7:B2:46:01:50:B1:2E:77:4D:F9:D0:E9:C5:5B:64:E8:F9:6D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.crl X509v3 Authority Key Identifier: keyid:0E:5E:F6:3E:A7:FF:42:C0:84:5C:18:ED:96:19:B7:6D:8A:D9:86:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer sbgp-ipAddrBlock: critical IPv6: 2620:98:a000::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 1f:ed:3a:53:72:31:28:31:81:de:79:9f:19:9f:bf:70:f7:56: 28:1f:f4:3a:3c:15:06:62:a5:01:46:cf:e7:33:3b:f7:3d:53: f6:94:5a:32:66:f3:2d:2c:c2:e1:b2:2f:24:3c:3e:8b:06:20: 23:37:19:69:d3:22:e2:2c:c9:65:c7:13:4c:0f:bb:58:e9:b2: 7d:e7:01:a8:c6:39:89:8f:60:c2:dd:5c:a4:a1:34:2f:1c:ae: d2:13:64:34:f7:b1:26:0b:c5:96:82:6a:47:6d:88:64:fc:5c: 11:66:9b:db:e9:37:48:8d:02:e8:16:43:f3:7d:af:38:b9:0d: 9e:dc:7b:06:9e:40:bd:19:ea:01:e1:c7:92:4b:82:98:9c:1a: 26:a4:18:7b:39:3b:8f:1d:b7:7b:30:4b:5a:7c:eb:f6:c5:23: 82:ba:46:f4:1a:e9:de:1d:4b:fe:cd:a1:cc:e9:0d:8e:b1:b7: 4f:52:78:a0:90:b1:d7:9c:24:49:67:cc:6a:2b:a0:9f:82:05: f4:df:91:3b:4f:51:3a:1a:7b:8a:b2:d2:87:f4:40:19:eb:f2: e3:e7:f0:45:d0:69:d3:73:76:24:ff:9f:aa:4e:62:2c:6d:3b: 32:7b:ee:82:99:43:7f:e2:48:8e:c3:9e:d6:ea:50:bb:57:f4: 42:41:8b:1e -----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgIUAQ0Mn0MoWEkTrB153PUq1hNRfgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWI4NTY4NmItYmFjMy00MGQyLWI0NmUtZjI1OTNmYjBi YzZiMB4XDTI1MDMwNDE0MDA1MloXDTI1MDYwMjEzMDA1MlowLzEtMCsGA1UEAxMk YmNiYTgwOGQtMmQxNy00ZTczLWI4YTItMmFlYzY2NzQwYjdjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Qu6szlZN9otBp6GeVN4ZbAU3B66VpVBlsaB 9dSMpnrNSPsAuVQr5tP2QTZ3qIwhvJztCYlWPw4cbO+HBK0Zx83x5dJsz8OkTJwr M1UAifWosHnzC2Vu2d9M6s8FdloPxpOvmBHYlPXSQasi5QmYpyHTkQpuwa1PK7fu rpH1fZq+aWhKFAXAjALroDLS5G0taxXlq0uluuCKLUYKF9+SYOj95up+8nWNFE2T 4g8R5TNNjPaebn84j/6+Ftyqlmd2tEiO4XmTKSkIB1rEBeUFOhqLcsNEuZy46cs1 /5FINtAbfJkZpu85OtRqcVxmQ271q6oLvwmOu1LPDVa5cFWPoQIDAQABo4IDWDCC A1QwHQYDVR0OBBYEFPLat7JGAVCxLndN+dDpxVtk6PltMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9hYjg1 Njg2Yi1iYWMzLTQwZDItYjQ2ZS1mMjU5M2ZiMGJjNmIvMjlkNjQ5ZmYtNzAyOC0z NzY3LTgzMjctOGM0NzIxYmY1NmE4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvYWI4NTY4NmItYmFjMy00MGQyLWI0 NmUtZjI1OTNmYjBiYzZiL2FiODU2ODZiLWJhYzMtNDBkMi1iNDZlLWYyNTkzZmIw YmM2Yi5jcmwwHwYDVR0jBBgwFoAUDl72Pqf/QsCEXBjtlhm3bYrZhr4wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9hYjg1Njg2Yi1iYWMzLTQwZDItYjQ2ZS1mMjU5 M2ZiMGJjNmIuY2VyMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJiAAmKAA MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBAB/tOlNyMSgxgd55nxmfv3D3Vigf9Do8FQZipQFGz+czO/c9U/aU WjJm8y0swuGyLyQ8PosGICM3GWnTIuIsyWXHE0wPu1jpsn3nAajGOYmPYMLdXKSh NC8crtITZDT3sSYLxZaCakdtiGT8XBFmm9vpN0iNAugWQ/N9rzi5DZ7cewaeQL0Z 6gHhx5JLgpicGiakGHs5O48dt3swS1p86/bFI4K6RvQa6d4dS/7NoczpDY6xt09S eKCQsdecJElnzGoroJ+CBfTfkTtPUToae4qy0of0QBnr8uPn8EXQadNzdiT/n6pO YixtOzJ77oKZQ3/iSI7DntbqULtX9EJBix4= -----END CERTIFICATE-----Generated at Sat Apr 12 15:31:20 2025 by rpki-client