$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa File: d1206389-b9de-36cd-8068-be081e3c00dd.roa (raw, json) Hash identifier: OhE5dVbTr3IgloYcrLCkm7sZyATeAW2NkqbYS6IutYM= Subject key identifier: AD:6E:25:3F:8F:A2:24:4E:48:9E:89:73:8D:B6:85:AD:88:FD:EF:1A Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584937D938C876C89929A4980420 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa Signing time: Mon 17 Mar 2025 13:00:52 +0000 ROA not before: Mon 17 Mar 2025 13:00:52 +0000 ROA not after: Sun 15 Jun 2025 13:00:52 +0000 asID: 398210 IP address blocks: 168.220.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:37:d9:38:c8:76:c8:99:29:a4:98:04:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Mar 17 13:00:52 2025 GMT Not After : Jun 15 13:00:52 2025 GMT Subject: CN=572f1ec1-a2ab-407a-bed5-a93f577662c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a7:03:2c:36:fa:d1:13:9a:9d:c2:bb:b2:e3: 23:85:63:d9:53:83:c4:79:ca:43:f9:4c:69:b5:97: fa:f1:1f:58:3d:07:44:60:9c:bd:1d:36:52:1e:c1: c7:8d:61:2c:d4:44:df:d1:1b:8b:71:44:dc:01:a8: 08:a8:11:d0:b0:88:01:47:14:04:a7:68:f3:d5:b3: 63:1e:02:ba:46:a0:e8:86:7d:f5:e3:c9:65:1d:d2: 08:48:63:c1:01:e1:94:80:8e:2f:cf:1b:ac:55:b8: 3c:a0:2d:87:50:2b:17:a2:80:37:4c:17:c6:56:ff: 82:ee:2a:37:ba:17:fa:a4:0c:08:e6:37:c7:14:df: a2:9a:b9:70:11:d1:82:a0:78:fc:8d:53:5b:8f:e4: e7:46:9e:4d:2a:16:9d:f9:dc:75:cd:07:f6:80:67: c1:98:ee:d3:d6:cf:33:0c:d3:90:a8:aa:0f:e0:55: ea:6a:46:f3:00:6c:97:03:7c:4f:a5:83:dc:98:59: 96:23:90:d1:e1:17:34:e4:29:69:91:11:bb:4d:0d: 40:0c:46:21:ae:3a:84:4a:17:bf:e3:ba:13:d6:fb: 6b:7d:e4:2e:bf:c8:68:62:b8:e7:7f:34:fd:08:3b: e3:9e:f5:96:57:45:c2:0f:1e:b7:ed:27:5f:5f:3c: f5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:6E:25:3F:8F:A2:24:4E:48:9E:89:73:8D:B6:85:AD:88:FD:EF:1A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.170.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 36:e1:7e:f3:98:be:12:2e:16:ff:a1:7e:0e:3d:ff:88:1e:e2: 4c:23:ca:17:7a:53:1b:1f:08:76:a6:ce:f6:bc:ee:87:b2:63: 2a:b0:aa:ae:16:3f:8f:18:6c:d4:56:30:61:86:06:9c:72:2a: c6:63:50:6d:53:b8:31:93:61:77:38:ae:2b:5a:6f:c2:21:0e: 26:fe:2c:1a:36:65:51:c2:76:47:13:0d:ef:11:e9:17:c3:c1: 23:71:23:bf:a3:64:b0:50:1d:91:78:d1:a1:b4:91:23:03:d9: 2e:12:fe:67:21:f5:76:f9:40:0b:60:ce:65:bd:6e:4f:2c:4e: 8b:25:99:8d:c8:58:b2:0d:e5:78:2d:41:81:6c:fd:2c:73:44: 8a:67:b9:80:33:be:c6:40:e0:f0:81:d2:4d:99:40:04:98:fa: 0c:f1:a3:73:e4:95:a7:d1:8c:dc:47:aa:61:55:29:cd:eb:e9: 25:58:5f:09:fa:13:9f:3b:0e:ad:41:c6:16:ef:9c:f8:fc:32: 9b:58:90:a1:de:06:54:15:23:f8:b3:87:7c:69:61:8b:7f:b8: b0:f4:55:ca:2d:e9:6d:85:14:3e:42:89:27:85:e5:a5:70:5a: e4:98:cc:72:a7:d9:71:e4:9b:f3:4c:76:18:cf:2b:1f:5d:b6: a0:12:04:a1 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEk32TjIdsiZKaSYBCAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI1MDMxNzEzMDA1MloXDTI1MDYxNTEzMDA1MlowLzEtMCsGA1UEAxMk NTcyZjFlYzEtYTJhYi00MDdhLWJlZDUtYTkzZjU3NzY2MmM4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvacDLDb60ROancK7suMjhWPZU4PEecpD+Uxp tZf68R9YPQdEYJy9HTZSHsHHjWEs1ETf0RuLcUTcAagIqBHQsIgBRxQEp2jz1bNj HgK6RqDohn3148llHdIISGPBAeGUgI4vzxusVbg8oC2HUCsXooA3TBfGVv+C7io3 uhf6pAwI5jfHFN+imrlwEdGCoHj8jVNbj+TnRp5NKhad+dx1zQf2gGfBmO7T1s8z DNOQqKoP4FXqakbzAGyXA3xPpYPcmFmWI5DR4Rc05ClpkRG7TQ1ADEYhrjqEShe/ 47oT1vtrfeQuv8hoYrjnfzT9CDvjnvWWV0XCDx637SdfXzz1yQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFK1uJT+PoiROSJ6Jc422ha2I/e8aMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvZDEyMDYzODktYjlkZS0z NmNkLTgwNjgtYmUwODFlM2MwMGRkLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNyqMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADbhfvOYvhIuFv+hfg49/4ge4kwjyhd6UxsfCHamzva87oeyYyqwqq4W P48YbNRWMGGGBpxyKsZjUG1TuDGTYXc4ritab8IhDib+LBo2ZVHCdkcTDe8R6RfD wSNxI7+jZLBQHZF40aG0kSMD2S4S/mch9Xb5QAtgzmW9bk8sToslmY3IWLIN5Xgt QYFs/SxzRIpnuYAzvsZA4PCB0k2ZQASY+gzxo3PklafRjNxHqmFVKc3r6SVYXwn6 E587Dq1BxhbvnPj8MptYkKHeBlQVI/izh3xpYYt/uLD0Vcot6W2FFD5CiSeF5aVw WuSYzHKn2XHkm/NMdhjPKx9dtqASBKE= -----END CERTIFICATE-----Generated at Sat Apr 12 14:21:35 2025 by rpki-client