$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa File: 40a22eee-4031-3336-8b2d-96d68d61d8a9.roa (raw, json) Hash identifier: vDzhQr2fyYkYga+gqeWRBK5SjWieCq1JdDqAM4t8SbY= Subject key identifier: 5B:3B:7E:DF:14:57:D3:A9:FA:4B:FB:D8:33:AE:F4:24:6A:90:2B:3E Certificate issuer: /CN=d44ce5f4-28a9-4c1f-b029-cc35b3e3950e Certificate serial: 010D0C9F432858492E13BBF72026BD815B59E2E0 Authority key identifier: D2:70:53:AA:1E:41:4B:CD:A4:FF:3C:F8:BC:B0:DC:1C:2B:B6:0C:52 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa Signing time: Fri 14 Mar 2025 01:00:39 +0000 ROA not before: Fri 14 Mar 2025 01:00:39 +0000 ROA not after: Thu 12 Jun 2025 01:00:39 +0000 asID: 35998 IP address blocks: 67.21.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:2e:13:bb:f7:20:26:bd:81:5b:59:e2:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d44ce5f4-28a9-4c1f-b029-cc35b3e3950e Validity Not Before: Mar 14 01:00:39 2025 GMT Not After : Jun 12 01:00:39 2025 GMT Subject: CN=501c30ce-6003-4ab6-bc7a-8d84471d2d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:64:cb:89:e8:f3:de:11:55:88:a5:f9:74:01: af:5b:5e:ee:40:a1:39:5b:d9:b1:b1:9e:a5:a0:40: 57:1d:1d:71:35:be:d6:45:c0:c5:d2:ac:ac:5f:07: fa:2b:c9:b1:81:f4:c5:71:40:7e:32:aa:aa:bc:ad: 2f:d8:bf:e6:1f:c7:cd:66:6a:08:a0:05:61:12:79: b6:ab:7b:c6:f3:62:52:1a:8d:07:43:35:f4:85:e8: 6e:b9:9e:7d:27:fc:86:80:96:c2:60:28:04:31:4c: 30:09:fa:17:bb:64:de:a5:cd:b4:cf:09:99:e2:15: 6f:ec:25:4a:66:bc:36:74:4b:bf:e5:97:a8:10:27: d4:ad:19:c4:26:ab:cb:04:13:39:df:66:3d:f2:9f: dc:6f:cf:02:30:13:db:bd:84:63:d2:38:36:24:77: 1e:b3:66:25:dd:03:b6:1b:d2:d3:7e:bb:f1:cc:6f: c5:9f:5f:d9:41:6e:c7:df:58:9c:ed:ae:0d:cd:bf: 16:14:99:46:67:0e:d5:e4:85:ab:db:48:83:3b:e2: c3:3e:09:39:e2:ff:be:c4:e1:fb:29:b9:bc:8c:94: e6:83:58:d7:2b:18:73:2c:b2:0b:f7:ea:be:12:3e: 74:e4:bc:f5:82:ac:7c:52:2d:e3:e0:4b:5b:f0:33: fe:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3B:7E:DF:14:57:D3:A9:FA:4B:FB:D8:33:AE:F4:24:6A:90:2B:3E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.crl X509v3 Authority Key Identifier: keyid:D2:70:53:AA:1E:41:4B:CD:A4:FF:3C:F8:BC:B0:DC:1C:2B:B6:0C:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer sbgp-ipAddrBlock: critical IPv4: 67.21.152.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3a:1d:19:c1:58:b1:75:b9:ea:55:45:2b:db:09:17:a5:52:1e: 80:46:d2:2f:ab:a7:d4:b4:48:6c:a9:92:2f:e4:62:88:d7:57: 5f:6c:93:63:cd:55:6e:2c:e2:03:1d:92:44:8b:2f:30:41:4d: 9c:e7:0f:0f:d6:0e:1c:a2:00:60:61:b1:bf:0b:03:39:df:da: 29:4b:f1:b7:28:be:31:2d:51:1c:76:23:21:d1:75:62:ab:d1: 84:c5:21:b6:d8:cd:31:d1:43:12:cd:b6:c0:b0:2f:63:da:4d: 06:9b:7c:c8:1b:cb:be:9c:4c:51:e3:c5:e5:19:06:8d:f4:3e: 3d:17:a7:24:dc:49:55:88:b2:3f:e3:2a:9e:68:1a:12:a5:21: 5d:eb:62:b9:78:ab:0e:17:d0:9d:d0:78:ad:3a:03:0a:9b:ce: ce:45:57:67:ab:09:c8:46:c5:aa:46:0d:1a:38:87:48:1e:a3: 05:a8:2b:df:93:c7:0b:b5:75:fe:f1:4c:68:3b:27:11:1e:9b: 4d:fe:ae:cf:59:00:83:95:a7:51:c8:12:48:79:6d:3b:5e:0a: ae:d1:9b:0e:78:eb:d1:52:8f:b1:6d:61:a1:86:01:d1:cc:30: 48:74:2e:1d:50:47:31:22:2d:d0:f9:71:49:58:b4:12:84:0e: f7:a7:49:05 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEkuE7v3ICa9gVtZ4uAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDQ0Y2U1ZjQtMjhhOS00YzFmLWIwMjktY2MzNWIzZTM5 NTBlMB4XDTI1MDMxNDAxMDAzOVoXDTI1MDYxMjAxMDAzOVowLzEtMCsGA1UEAxMk NTAxYzMwY2UtNjAwMy00YWI2LWJjN2EtOGQ4NDQ3MWQyZDAyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2TLiejz3hFViKX5dAGvW17uQKE5W9mxsZ6l oEBXHR1xNb7WRcDF0qysXwf6K8mxgfTFcUB+MqqqvK0v2L/mH8fNZmoIoAVhEnm2 q3vG82JSGo0HQzX0hehuuZ59J/yGgJbCYCgEMUwwCfoXu2Tepc20zwmZ4hVv7CVK Zrw2dEu/5ZeoECfUrRnEJqvLBBM532Y98p/cb88CMBPbvYRj0jg2JHces2Yl3QO2 G9LTfrvxzG/Fn1/ZQW7H31ic7a4Nzb8WFJlGZw7V5IWr20iDO+LDPgk54v++xOH7 Kbm8jJTmg1jXKxhzLLIL9+q+Ej505Lz1gqx8Ui3j4Etb8DP+WwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFs7ft8UV9Op+kv72DOu9CRqkCs+MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kNDRj ZTVmNC0yOGE5LTRjMWYtYjAyOS1jYzM1YjNlMzk1MGUvNDBhMjJlZWUtNDAzMS0z MzM2LThiMmQtOTZkNjhkNjFkOGE5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZDQ0Y2U1ZjQtMjhhOS00YzFmLWIw MjktY2MzNWIzZTM5NTBlL2Q0NGNlNWY0LTI4YTktNGMxZi1iMDI5LWNjMzViM2Uz OTUwZS5jcmwwHwYDVR0jBBgwFoAU0nBTqh5BS82k/zz4vLDcHCu2DFIwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kNDRjZTVmNC0yOGE5LTRjMWYtYjAyOS1jYzM1 YjNlMzk1MGUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQxWYMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADodGcFYsXW56lVFK9sJF6VSHoBG0i+rp9S0SGypki/kYojXV19sk2PN VW4s4gMdkkSLLzBBTZznDw/WDhyiAGBhsb8LAznf2ilL8bcovjEtURx2IyHRdWKr 0YTFIbbYzTHRQxLNtsCwL2PaTQabfMgby76cTFHjxeUZBo30Pj0XpyTcSVWIsj/j Kp5oGhKlIV3rYrl4qw4X0J3QeK06Awqbzs5FV2erCchGxapGDRo4h0geowWoK9+T xwu1df7xTGg7JxEem03+rs9ZAIOVp1HIEkh5bTteCq7Rmw5469FSj7FtYaGGAdHM MEh0Lh1QRzEiLdD5cUlYtBKEDvenSQU= -----END CERTIFICATE-----Generated at Sat Apr 12 14:18:33 2025 by rpki-client