$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa File: 7be3ce67-426a-397a-9a74-e2c03aae3762.roa (raw, json) Hash identifier: iwY+hKnfJJJ8KNDIcbW45NpRvDx7ad5WV+7RozN2TDU= Subject key identifier: 14:A1:3D:3C:CE:58:18:EA:1C:C3:47:19:6C:0A:BE:FB:4A:CA:98:B1 Certificate issuer: /CN=ad3f6620-0576-46d8-b05d-3e2cdd06afa3 Certificate serial: 010D0C9F432858484EDACB801516B709B6E51880 Authority key identifier: 88:DF:DB:98:30:C1:D1:4C:D5:B7:31:84:EC:A7:FC:60:F4:5F:F2:D3 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa Signing time: Tue 24 Dec 2024 02:00:38 +0000 ROA not before: Tue 24 Dec 2024 02:00:38 +0000 ROA not after: Mon 24 Mar 2025 01:00:38 +0000 asID: 19905 IP address blocks: 64.57.32.0/20 maxlen: 24 216.230.48.0/20 maxlen: 24 2620:110:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:4e:da:cb:80:15:16:b7:09:b6:e5:18:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad3f6620-0576-46d8-b05d-3e2cdd06afa3 Validity Not Before: Dec 24 02:00:38 2024 GMT Not After : Mar 24 01:00:38 2025 GMT Subject: CN=18ca0365-6e2e-4c14-994b-d11ec35a450f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:53:8c:bf:76:19:34:78:6a:3d:26:3b:d4:48: 8d:20:cd:95:4c:39:9d:a6:85:b8:21:78:6c:43:b5: cc:a9:c2:84:2b:b9:97:66:96:a1:c7:e8:79:df:79: f2:2f:8b:83:5e:4e:ed:31:f8:36:8b:7e:72:65:85: e1:e0:20:05:60:32:07:ea:6e:b6:65:59:66:0f:7a: 0d:ee:f9:c0:46:9e:1f:bb:73:9e:00:3b:6f:fa:d7: a9:41:88:f6:8b:cd:35:ea:e9:25:88:9f:f8:8f:0c: ac:02:5f:6b:0c:5b:4d:dc:f2:07:3b:b8:bd:60:5a: ad:d9:26:fe:82:fb:10:ad:10:ad:cd:01:b5:6e:5b: fd:57:46:b1:ae:a1:55:02:b6:db:6d:dc:96:6f:fc: 46:83:07:12:6a:88:50:1d:ae:98:ee:40:4b:f9:c6: 09:25:1a:22:24:6a:4a:dc:f9:7f:aa:95:45:bc:2e: a7:69:05:3a:77:14:a3:e9:12:93:8a:a7:f2:12:b8: 6d:1b:39:d7:67:f9:75:16:fc:ca:4a:bb:a4:62:97: 10:34:db:2c:ae:05:d0:dd:0c:6e:b2:4b:95:e0:a5: a2:aa:df:d8:ee:ea:11:69:37:ae:a2:d9:ae:61:90: 16:74:04:34:c2:34:04:3d:2f:21:9b:fe:88:4d:28: 36:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A1:3D:3C:CE:58:18:EA:1C:C3:47:19:6C:0A:BE:FB:4A:CA:98:B1 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.crl X509v3 Authority Key Identifier: keyid:88:DF:DB:98:30:C1:D1:4C:D5:B7:31:84:EC:A7:FC:60:F4:5F:F2:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer sbgp-ipAddrBlock: critical IPv4: 64.57.32.0/20 216.230.48.0/20 IPv6: 2620:110:7000::/44 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 13:4b:21:09:2b:6a:01:7c:6c:df:c8:9c:38:a0:26:34:6d:73: 08:99:e8:74:f3:dc:78:36:62:bc:75:ea:4c:ad:31:c5:e7:bc: a8:21:3f:e3:e8:18:dc:d1:d5:b4:0e:aa:9a:75:d4:85:40:b3: 74:28:f5:f2:6c:c1:c3:4d:e5:27:05:b2:1e:24:fb:a1:d2:ea: 22:17:91:4b:18:9c:48:2f:bb:2d:9b:ed:b2:8b:38:be:c7:3f: 28:ca:22:f8:55:92:60:cd:47:f2:8c:04:6b:e6:f2:fd:9a:6f: 3b:e4:b4:f5:7f:e2:22:a5:8b:bf:b1:8e:0d:d5:02:93:ca:a2: 9f:26:30:0b:62:fd:4e:39:f2:4e:2d:7e:d1:7f:1c:87:b9:cf: 4d:df:5d:8f:37:5f:0f:20:bd:e3:07:a1:a6:4e:cd:2e:1d:e3: 78:f5:a0:50:09:c9:ad:9c:e3:ed:af:ca:27:e6:d2:cc:9d:79: 13:c8:f0:2c:00:68:fa:ef:ad:74:a1:a5:a1:fb:c5:a4:0b:b0: 44:17:f3:b7:44:1f:a7:4e:fd:44:c8:24:fe:bb:ae:c9:9c:de: 02:b0:41:01:80:e6:bc:84:99:f9:c0:ef:51:bc:94:81:a3:0b: e7:f4:ec:d9:ab:6b:ab:42:08:7b:44:a2:e0:2c:1d:af:e9:1a: d6:b8:6c:16 -----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgIUAQ0Mn0MoWEhO2suAFRa3CbblGIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWQzZjY2MjAtMDU3Ni00NmQ4LWIwNWQtM2UyY2RkMDZh ZmEzMB4XDTI0MTIyNDAyMDAzOFoXDTI1MDMyNDAxMDAzOFowLzEtMCsGA1UEAxMk MThjYTAzNjUtNmUyZS00YzE0LTk5NGItZDExZWMzNWE0NTBmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVOMv3YZNHhqPSY71EiNIM2VTDmdpoW4IXhs Q7XMqcKEK7mXZpahx+h533nyL4uDXk7tMfg2i35yZYXh4CAFYDIH6m62ZVlmD3oN 7vnARp4fu3OeADtv+tepQYj2i8016ukliJ/4jwysAl9rDFtN3PIHO7i9YFqt2Sb+ gvsQrRCtzQG1blv9V0axrqFVArbbbdyWb/xGgwcSaohQHa6Y7kBL+cYJJRoiJGpK 3Pl/qpVFvC6naQU6dxSj6RKTiqfyErhtGznXZ/l1FvzKSrukYpcQNNssrgXQ3Qxu skuV4KWiqt/Y7uoRaTeuotmuYZAWdAQ0wjQEPS8hm/6ITSg2nwIDAQABo4IDbDCC A2gwHQYDVR0OBBYEFBShPTzOWBjqHMNHGWwKvvtKypixMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9hZDNm NjYyMC0wNTc2LTQ2ZDgtYjA1ZC0zZTJjZGQwNmFmYTMvN2JlM2NlNjctNDI2YS0z OTdhLTlhNzQtZTJjMDNhYWUzNzYyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvYWQzZjY2MjAtMDU3Ni00NmQ4LWIw NWQtM2UyY2RkMDZhZmEzL2FkM2Y2NjIwLTA1NzYtNDZkOC1iMDVkLTNlMmNkZDA2 YWZhMy5jcmwwHwYDVR0jBBgwFoAUiN/bmDDB0UzVtzGE7Kf8YPRf8tMwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9hZDNmNjYyMC0wNTc2LTQ2ZDgtYjA1ZC0zZTJj ZGQwNmFmYTMuY2VyMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQEQDkgAwQE 2OYwMA8EAgACMAkDBwQmIAEQcAAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAE0shCStqAXxs38icOKAmNG1z CJnodPPceDZivHXqTK0xxee8qCE/4+gY3NHVtA6qmnXUhUCzdCj18mzBw03lJwWy HiT7odLqIheRSxicSC+7LZvtsos4vsc/KMoi+FWSYM1H8owEa+by/ZpvO+S09X/i IqWLv7GODdUCk8qinyYwC2L9TjnyTi1+0X8ch7nPTd9djzdfDyC94wehpk7NLh3j ePWgUAnJrZzj7a/KJ+bSzJ15E8jwLABo+u+tdKGlofvFpAuwRBfzt0Qfp079RMgk /ruuyZzeArBBAYDmvISZ+cDvUbyUgaML5/Ts2atrq0IIe0Si4Cwdr+ka1rhsFg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:55:21 2025 by rpki-client