$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa File: 7332e9a4-0787-3148-ac49-59abb3ffcd35.roa (raw, json) Hash identifier: kzB+u9pAMx3pWfqNvuH2FPhxdsuzddn4sEb1Ags3Bpw= Subject key identifier: 54:A2:69:AC:7B:F1:5B:13:5F:79:03:66:82:19:69:50:23:A0:77:32 Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584937D938B838B6DF31275A6B00 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa Signing time: Mon 17 Mar 2025 13:00:52 +0000 ROA not before: Mon 17 Mar 2025 13:00:52 +0000 ROA not after: Sun 15 Jun 2025 13:00:52 +0000 asID: 398210 IP address blocks: 168.220.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:37:d9:38:b8:38:b6:df:31:27:5a:6b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Mar 17 13:00:52 2025 GMT Not After : Jun 15 13:00:52 2025 GMT Subject: CN=7fda088d-34b4-4586-8e19-a95ef3491c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c0:f4:cf:76:dd:20:11:70:a7:cc:53:6c:ea: 96:c1:91:08:8b:f7:6f:72:c4:46:f7:7d:d6:98:06: 19:40:2a:8c:90:0e:74:fc:a6:06:5a:c9:a1:f8:35: e2:7d:ae:8e:40:5a:fb:1d:20:31:2e:bc:0f:af:45: b2:42:94:ec:9d:45:c1:43:c3:6a:e3:fd:43:02:46: 52:5c:33:71:cb:fd:d0:ec:2f:e9:c4:d9:eb:0f:78: bb:27:64:f1:cf:02:20:26:97:0e:80:c5:95:f0:1a: f9:73:89:e0:b5:40:6d:45:f9:ce:f4:58:a3:7f:f2: e2:81:3e:ae:65:13:05:04:d1:d8:f5:cf:8d:8d:9e: 7f:bf:f3:ce:a8:43:f8:2a:41:3a:63:d4:51:95:66: 8c:8c:fb:8f:a8:cb:3f:bb:82:a0:98:fe:8e:b4:7c: 04:bf:2d:71:e5:3e:a5:b4:1c:61:1e:c9:fa:35:ec: d4:2b:e7:ce:34:bc:75:54:03:3a:5b:85:78:5d:be: 58:de:c5:1e:2f:0b:77:3f:06:8b:69:de:71:15:ab: 2b:2b:5f:87:94:15:a2:be:c6:9d:cc:7b:d7:11:58: 02:d4:a9:4c:08:0e:b3:f5:b1:a1:57:37:78:b3:0e: 7e:5c:15:80:52:1f:48:07:f1:cb:ea:fe:09:0c:8b: 94:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A2:69:AC:7B:F1:5B:13:5F:79:03:66:82:19:69:50:23:A0:77:32 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.168.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2b:84:a9:30:11:7f:87:3a:08:38:3a:0c:4d:7c:af:7d:8f:b9: a4:28:56:53:cb:43:fa:6a:30:1e:28:46:cb:9d:d6:ea:5d:a8: 7d:cb:73:62:93:52:ed:15:3a:42:42:bf:9c:c7:ea:91:be:36: cb:86:7a:69:a5:6a:a8:35:5f:9d:99:ce:13:8e:79:d5:34:a4: cd:c1:34:f6:09:40:d1:b0:4b:44:68:3a:09:ed:ad:6c:89:bc: 0a:af:00:dc:f9:77:01:2a:15:0e:50:d2:c2:61:09:23:b5:d8: 09:c1:04:95:29:19:27:bb:5d:a2:9d:64:c8:a5:33:57:a0:51: da:8b:de:5e:b5:c2:ae:c1:34:b0:16:92:75:4e:9d:86:39:c7: 52:64:42:4a:b3:60:e7:30:db:e9:8f:90:59:41:a2:1d:4f:d4: 24:b1:a4:55:8d:ef:22:f9:36:31:f9:dc:ca:28:52:a1:4a:38: ff:fd:2f:f2:f2:41:92:6e:a0:57:7b:c0:12:28:cf:21:0e:a4: 0b:25:4b:06:62:01:21:ce:28:fe:1b:a9:cf:e0:e0:41:98:6a: ad:13:52:2f:d2:cb:86:d3:f4:ab:1f:f3:a5:0a:3b:cb:2d:d4: d3:5a:a8:cb:6d:bd:aa:aa:39:e8:11:92:79:47:7e:80:50:c8: 14:c9:51:57 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEk32Ti4OLbfMSdaawAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI1MDMxNzEzMDA1MloXDTI1MDYxNTEzMDA1MlowLzEtMCsGA1UEAxMk N2ZkYTA4OGQtMzRiNC00NTg2LThlMTktYTk1ZWYzNDkxYzMwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08D0z3bdIBFwp8xTbOqWwZEIi/dvcsRG933W mAYZQCqMkA50/KYGWsmh+DXifa6OQFr7HSAxLrwPr0WyQpTsnUXBQ8Nq4/1DAkZS XDNxy/3Q7C/pxNnrD3i7J2TxzwIgJpcOgMWV8Br5c4ngtUBtRfnO9Fijf/LigT6u ZRMFBNHY9c+NjZ5/v/POqEP4KkE6Y9RRlWaMjPuPqMs/u4KgmP6OtHwEvy1x5T6l tBxhHsn6NezUK+fONLx1VAM6W4V4Xb5Y3sUeLwt3PwaLad5xFasrK1+HlBWivsad zHvXEVgC1KlMCA6z9bGhVzd4sw5+XBWAUh9IB/HL6v4JDIuU+QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFSiaax78VsTX3kDZoIZaVAjoHcyMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvNzMzMmU5YTQtMDc4Ny0z MTQ4LWFjNDktNTlhYmIzZmZjZDM1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNyoMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACuEqTARf4c6CDg6DE18r32PuaQoVlPLQ/pqMB4oRsud1updqH3Lc2KT Uu0VOkJCv5zH6pG+NsuGemmlaqg1X52ZzhOOedU0pM3BNPYJQNGwS0RoOgntrWyJ vAqvANz5dwEqFQ5Q0sJhCSO12AnBBJUpGSe7XaKdZMilM1egUdqL3l61wq7BNLAW knVOnYY5x1JkQkqzYOcw2+mPkFlBoh1P1CSxpFWN7yL5NjH53MooUqFKOP/9L/Ly QZJuoFd7wBIozyEOpAslSwZiASHOKP4bqc/g4EGYaq0TUi/Sy4bT9Ksf86UKO8st 1NNaqMttvaqqOegRknlHfoBQyBTJUVc= -----END CERTIFICATE-----Generated at Sat Apr 12 14:18:27 2025 by rpki-client