$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa File: 7be3ce67-426a-397a-9a74-e2c03aae3762.roa (raw, json) Hash identifier: lXN1lSq9D/KL3+ru9j0wi3vGSVxqeUqgylbLrtgRlO0= Subject key identifier: F5:69:6E:44:EE:6E:91:BA:CD:95:60:56:16:E4:2B:8E:6F:2C:A7:EA Certificate issuer: /CN=ad3f6620-0576-46d8-b05d-3e2cdd06afa3 Certificate serial: 010D0C9F432858492E13BE1AA2BFA811F882101C Authority key identifier: 88:DF:DB:98:30:C1:D1:4C:D5:B7:31:84:EC:A7:FC:60:F4:5F:F2:D3 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa Signing time: Fri 14 Mar 2025 01:00:39 +0000 ROA not before: Fri 14 Mar 2025 01:00:39 +0000 ROA not after: Thu 12 Jun 2025 01:00:39 +0000 asID: 19905 IP address blocks: 64.57.32.0/20 maxlen: 24 216.230.48.0/20 maxlen: 24 2620:110:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:2e:13:be:1a:a2:bf:a8:11:f8:82:10:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad3f6620-0576-46d8-b05d-3e2cdd06afa3 Validity Not Before: Mar 14 01:00:39 2025 GMT Not After : Jun 12 01:00:39 2025 GMT Subject: CN=21d449b5-ee25-4e00-8381-853e92341725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:73:5b:00:0c:38:ce:c1:14:d7:8d:64:d6:41: ce:00:90:b5:4d:6b:c4:01:87:87:7d:4a:26:e9:0d: 45:61:c4:96:d6:53:a4:bd:be:a2:07:c6:46:1d:d2: af:9b:e4:85:58:2f:cc:de:b7:b5:c0:7a:c0:c2:cd: 9a:b3:03:db:3e:82:0f:f4:01:0b:8a:83:a8:98:b8: 73:eb:7f:d4:91:2c:71:a3:e3:ef:1f:bc:6f:29:76: 4f:09:6e:ac:04:fe:63:00:89:85:c7:f8:24:20:c6: 1a:4c:33:5e:0c:2a:e4:f5:cd:56:f5:29:31:5a:a5: 6f:66:1e:62:39:25:be:4b:2b:b6:44:13:d1:80:9a: 5b:3a:ed:35:fa:c5:89:73:06:ec:c4:b7:05:f4:4c: 17:cd:ab:3b:4e:b3:ea:87:36:98:a7:3e:a1:f5:6c: 63:da:86:d1:68:2b:12:40:c3:0a:6d:be:a4:5d:37: b5:37:d3:8b:be:4e:22:83:56:4e:a7:d2:13:fd:57: 08:32:43:9e:26:66:5a:b1:e6:dc:3d:6c:da:14:bd: a1:2a:64:04:f0:1e:75:db:63:db:07:12:e0:0f:63: de:f5:49:05:da:88:d9:22:cb:2c:71:5a:91:74:89: c4:19:60:d5:68:e0:4a:b9:67:15:75:ce:29:0e:5e: 7f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:69:6E:44:EE:6E:91:BA:CD:95:60:56:16:E4:2B:8E:6F:2C:A7:EA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.crl X509v3 Authority Key Identifier: keyid:88:DF:DB:98:30:C1:D1:4C:D5:B7:31:84:EC:A7:FC:60:F4:5F:F2:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer sbgp-ipAddrBlock: critical IPv4: 64.57.32.0/20 216.230.48.0/20 IPv6: 2620:110:7000::/44 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 28:ec:54:68:66:d6:a0:b0:3b:10:8e:31:b9:34:16:c9:12:75: 76:fe:30:93:0b:3d:54:a2:e6:4b:d7:80:ba:c3:20:86:61:be: 23:17:af:70:61:f1:65:9c:08:ba:65:cd:e6:f1:b0:43:51:11: 22:2b:bb:5d:c8:b4:ca:30:7b:26:1e:0e:0f:7e:31:b1:da:18: ad:b1:e7:74:22:0f:fd:2f:7a:fe:6d:45:2f:f2:07:db:2f:1e: 7d:92:8f:60:0b:c4:96:36:60:ff:9a:bb:e2:35:64:46:26:bd: 97:ce:54:50:28:90:54:5e:1c:82:0f:14:41:90:5e:6e:a8:c5: 47:5c:87:61:4a:cd:31:03:44:06:60:65:a5:9e:01:8e:69:01: b7:24:36:05:0f:7d:bb:26:35:1b:fc:7a:0d:70:30:a9:fb:bb: d2:52:4e:dd:b8:e6:7b:f5:b2:4b:c0:c4:94:f0:1c:f3:c5:71: ec:5f:38:b3:0d:28:96:a5:3a:d3:14:1e:2b:cd:83:1f:a2:4a: 63:a9:2e:1a:76:a5:e3:ab:05:a6:4b:ee:50:b0:bf:68:01:a1: 83:c5:32:3c:56:d0:f9:78:2a:6d:20:e4:d3:55:a4:7a:1a:fa: 3d:c2:fb:43:8d:97:43:a0:c6:3c:f6:92:b6:12:f4:a2:4a:cd: e0:27:4c:d3 -----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgIUAQ0Mn0MoWEkuE74aor+oEfiCEBwwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWQzZjY2MjAtMDU3Ni00NmQ4LWIwNWQtM2UyY2RkMDZh ZmEzMB4XDTI1MDMxNDAxMDAzOVoXDTI1MDYxMjAxMDAzOVowLzEtMCsGA1UEAxMk MjFkNDQ5YjUtZWUyNS00ZTAwLTgzODEtODUzZTkyMzQxNzI1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3NbAAw4zsEU141k1kHOAJC1TWvEAYeHfUom 6Q1FYcSW1lOkvb6iB8ZGHdKvm+SFWC/M3re1wHrAws2aswPbPoIP9AELioOomLhz 63/UkSxxo+PvH7xvKXZPCW6sBP5jAImFx/gkIMYaTDNeDCrk9c1W9SkxWqVvZh5i OSW+Syu2RBPRgJpbOu01+sWJcwbsxLcF9EwXzas7TrPqhzaYpz6h9Wxj2obRaCsS QMMKbb6kXTe1N9OLvk4ig1ZOp9IT/VcIMkOeJmZasebcPWzaFL2hKmQE8B5122Pb BxLgD2Pe9UkF2ojZIssscVqRdInEGWDVaOBKuWcVdc4pDl5/RwIDAQABo4IDbDCC A2gwHQYDVR0OBBYEFPVpbkTubpG6zZVgVhbkK45vLKfqMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9hZDNm NjYyMC0wNTc2LTQ2ZDgtYjA1ZC0zZTJjZGQwNmFmYTMvN2JlM2NlNjctNDI2YS0z OTdhLTlhNzQtZTJjMDNhYWUzNzYyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvYWQzZjY2MjAtMDU3Ni00NmQ4LWIw NWQtM2UyY2RkMDZhZmEzL2FkM2Y2NjIwLTA1NzYtNDZkOC1iMDVkLTNlMmNkZDA2 YWZhMy5jcmwwHwYDVR0jBBgwFoAUiN/bmDDB0UzVtzGE7Kf8YPRf8tMwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9hZDNmNjYyMC0wNTc2LTQ2ZDgtYjA1ZC0zZTJj ZGQwNmFmYTMuY2VyMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQEQDkgAwQE 2OYwMA8EAgACMAkDBwQmIAEQcAAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAKOxUaGbWoLA7EI4xuTQWyRJ1 dv4wkws9VKLmS9eAusMghmG+IxevcGHxZZwIumXN5vGwQ1ERIiu7Xci0yjB7Jh4O D34xsdoYrbHndCIP/S96/m1FL/IH2y8efZKPYAvEljZg/5q74jVkRia9l85UUCiQ VF4cgg8UQZBebqjFR1yHYUrNMQNEBmBlpZ4BjmkBtyQ2BQ99uyY1G/x6DXAwqfu7 0lJO3bjme/WyS8DElPAc88Vx7F84sw0olqU60xQeK82DH6JKY6kuGnal46sFpkvu ULC/aAGhg8UyPFbQ+XgqbSDk01Wkehr6PcL7Q42XQ6DGPPaSthL0okrN4CdM0w== -----END CERTIFICATE-----Generated at Fri Mar 14 11:01:03 2025 by rpki-client