$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa File: d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa (raw, json) Hash identifier: OJsOWh3VRnPsVdITUOxOoyp8pqbu9hc7G2o4wt2IILc= Subject key identifier: 4C:01:2C:B4:82:4E:D5:55:0D:99:96:7D:BF:BE:96:9C:75:53:9F:C1 Certificate issuer: /CN=d00749ed-70ef-447c-b17c-da6be8d7f312 Certificate serial: 010D0C9F43285848A29B4D5F069B92912E52A400 Authority key identifier: F5:20:15:87:33:58:C5:12:78:64:66:F3:B0:E3:5D:8A:F4:78:79:74 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa Signing time: Thu 23 Jan 2025 02:00:40 +0000 ROA not before: Thu 23 Jan 2025 02:00:40 +0000 ROA not after: Wed 23 Apr 2025 01:00:40 +0000 asID: 396998 IP address blocks: 64.68.192.0/24 maxlen: 24 2620:49:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 08:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:a2:9b:4d:5f:06:9b:92:91:2e:52:a4:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d00749ed-70ef-447c-b17c-da6be8d7f312 Validity Not Before: Jan 23 02:00:40 2025 GMT Not After : Apr 23 01:00:40 2025 GMT Subject: CN=fa38bf81-7a9d-4b39-be10-469d3340d1be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1a:75:60:fa:05:7c:ab:80:10:fe:50:ab:c9: 1a:a7:56:49:ce:3c:52:c8:81:b1:bc:7a:75:e7:4e: c1:9c:50:43:3c:bd:ea:a8:fc:4d:50:ab:a1:0c:1d: 6f:25:db:49:95:3d:d4:b8:51:4a:2c:f0:be:92:c3: 9b:e1:bd:c3:15:a5:ca:79:cc:29:33:f8:89:c1:48: 57:87:ea:21:3c:df:d1:2a:e6:26:88:be:45:6f:22: af:64:76:83:57:af:db:e8:57:39:ec:d7:a9:fc:09: 8c:58:96:3d:55:c7:62:ce:2e:93:44:48:89:99:27: d6:55:2b:58:52:1f:71:65:54:66:9a:c3:82:67:9e: 4c:ed:25:0a:44:62:a9:dc:cf:5e:bb:81:ba:ec:b3: 01:1e:bd:68:91:35:cb:f8:d2:d1:2f:e9:8d:0c:ce: c6:43:80:a9:e3:5e:50:06:30:92:83:bc:9f:29:32: ae:3b:94:ba:5f:c0:6f:f9:15:d8:27:73:38:d8:10: 87:e7:21:ca:84:69:fe:3a:3d:06:c2:f5:d9:19:bf: af:86:d7:01:81:da:53:ba:18:f3:bf:2c:d5:f9:88: 4b:21:71:68:2d:7c:9c:0a:df:b8:bd:5d:f7:ba:44: e3:5e:76:af:e7:d9:1a:a0:c9:0d:e8:2e:bc:49:93: 3e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:01:2C:B4:82:4E:D5:55:0D:99:96:7D:BF:BE:96:9C:75:53:9F:C1 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.crl X509v3 Authority Key Identifier: keyid:F5:20:15:87:33:58:C5:12:78:64:66:F3:B0:E3:5D:8A:F4:78:79:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer sbgp-ipAddrBlock: critical IPv4: 64.68.192.0/24 IPv6: 2620:49:1::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 57:cc:99:24:c2:09:73:31:2b:4c:ce:80:4c:f4:a0:5d:bf:cf: 50:f7:0d:65:bd:97:39:74:39:77:46:50:06:c6:08:60:de:b6: 06:5e:ad:00:13:5b:1e:c9:1a:e0:1d:b6:a5:5f:03:2c:c6:c4: 5f:f3:23:3e:63:a7:eb:f2:67:43:ba:bd:92:30:cc:c2:f2:c9: 8e:ed:de:30:18:39:f5:de:36:4f:94:48:61:f3:28:b3:cc:a6: 20:d6:51:ad:2a:cb:d2:6b:d8:24:0f:84:80:92:15:99:c3:63: a4:73:d7:0b:a9:ed:03:1e:3c:c2:1c:4f:fb:ad:20:4e:70:85: bc:7b:bf:1c:8f:b1:e5:67:7f:bb:1e:46:35:ac:36:85:93:53: 6c:4d:67:88:5d:27:35:f0:44:39:9a:91:e1:8d:f2:37:ed:ff: d1:37:3f:9b:4b:56:d0:50:a0:31:2f:4a:02:39:eb:43:32:54: b9:e8:57:eb:9b:ad:11:35:f3:6a:84:51:4a:07:03:ea:a8:63: 4d:bb:9f:ca:66:0f:93:6b:1b:26:01:dd:71:2b:8e:03:89:3c: 67:fa:9f:f4:2f:9f:50:90:9f:bf:c2:51:81:e2:83:fb:e8:7c: 0b:be:c9:00:c8:67:d2:76:d1:7a:ac:3b:9c:0f:52:bb:b3:7a: a3:15:5d:5a -----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgIUAQ0Mn0MoWEiim01fBpuSkS5SpAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAwNzQ5ZWQtNzBlZi00NDdjLWIxN2MtZGE2YmU4ZDdm MzEyMB4XDTI1MDEyMzAyMDA0MFoXDTI1MDQyMzAxMDA0MFowLzEtMCsGA1UEAxMk ZmEzOGJmODEtN2E5ZC00YjM5LWJlMTAtNDY5ZDMzNDBkMWJlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBp1YPoFfKuAEP5Qq8kap1ZJzjxSyIGxvHp1 507BnFBDPL3qqPxNUKuhDB1vJdtJlT3UuFFKLPC+ksOb4b3DFaXKecwpM/iJwUhX h+ohPN/RKuYmiL5FbyKvZHaDV6/b6Fc57Nep/AmMWJY9Vcdizi6TREiJmSfWVStY Uh9xZVRmmsOCZ55M7SUKRGKp3M9eu4G67LMBHr1okTXL+NLRL+mNDM7GQ4Cp415Q BjCSg7yfKTKuO5S6X8Bv+RXYJ3M42BCH5yHKhGn+Oj0GwvXZGb+vhtcBgdpTuhjz vyzV+YhLIXFoLXycCt+4vV33ukTjXnav59kaoMkN6C68SZM+xwIDAQABo4IDZjCC A2IwHQYDVR0OBBYEFEwBLLSCTtVVDZmWfb++lpx1U5/BMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kMDA3 NDllZC03MGVmLTQ0N2MtYjE3Yy1kYTZiZThkN2YzMTIvZDlmM2JmMjAtNGMwYi0z MGEzLTlkOTgtODNmZGEwMzQ2NjE0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZDAwNzQ5ZWQtNzBlZi00NDdjLWIx N2MtZGE2YmU4ZDdmMzEyL2QwMDc0OWVkLTcwZWYtNDQ3Yy1iMTdjLWRhNmJlOGQ3 ZjMxMi5jcmwwHwYDVR0jBBgwFoAU9SAVhzNYxRJ4ZGbzsONdivR4eXQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kMDA3NDllZC03MGVmLTQ0N2MtYjE3Yy1kYTZi ZThkN2YzMTIuY2VyMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAQETAMA8E AgACMAkDBwAmIABJAAEwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsG AQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMu aHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAV8yZJMIJczErTM6ATPSgXb/PUPcNZb2X OXQ5d0ZQBsYIYN62Bl6tABNbHska4B22pV8DLMbEX/MjPmOn6/JnQ7q9kjDMwvLJ ju3eMBg59d42T5RIYfMos8ymINZRrSrL0mvYJA+EgJIVmcNjpHPXC6ntAx48whxP +60gTnCFvHu/HI+x5Wd/ux5GNaw2hZNTbE1niF0nNfBEOZqR4Y3yN+3/0Tc/m0tW 0FCgMS9KAjnrQzJUuehX65utETXzaoRRSgcD6qhjTbufymYPk2sbJgHdcSuOA4k8 Z/qf9C+fUJCfv8JRgeKD++h8C77JAMhn0nbReqw7nA9Su7N6oxVdWg== -----END CERTIFICATE-----Generated at Sat Apr 12 17:09:07 2025 by rpki-client