$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa File: 3e233b44-911d-3c32-9600-9580640a3557.roa (raw, json) Hash identifier: ouohn/2qclGvvkiyzDgdVEaU41NRNMqaZYQFEsrwm80= Subject key identifier: D5:44:5A:4C:87:B0:5A:91:43:6A:2A:55:A0:03:71:9E:62:77:D5:C3 Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F43285849287E553F3C184CCD51987040 Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa Signing time: Wed 12 Mar 2025 01:00:39 +0000 ROA not before: Wed 12 Mar 2025 01:00:39 +0000 ROA not after: Tue 10 Jun 2025 01:00:39 +0000 asID: 17378 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:28:7e:55:3f:3c:18:4c:cd:51:98:70:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: Mar 12 01:00:39 2025 GMT Not After : Jun 10 01:00:39 2025 GMT Subject: CN=fbc90cfd-8421-4ff8-97a8-abd8378ed4ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:2f:2d:5e:34:9c:fd:74:f7:43:07:87:72:2d: b8:00:21:d3:e4:03:0e:e2:67:95:4f:6b:fb:19:54: d7:6d:e4:ba:fc:96:06:c6:c1:26:bd:87:b0:7b:09: 7c:74:11:16:7d:48:3c:60:df:44:b7:70:d4:e8:16: 55:0b:cf:7d:81:b6:ea:89:6f:42:ac:0a:2e:bb:64: 3b:19:78:2f:53:de:25:bc:22:4f:e3:78:65:d7:27: ae:95:c3:09:f0:e4:a8:91:cd:cc:4a:fc:f8:0d:a3: 48:68:72:af:87:f5:b8:7f:9d:57:0c:9d:02:7b:d1: d9:7e:b5:d6:02:60:f8:ef:6e:91:02:54:62:f7:16: a5:7f:b0:2b:b7:2f:32:42:ba:46:f0:a5:94:be:dc: ca:e4:30:ae:8d:41:57:e9:39:ca:b1:61:12:b9:fd: 20:ac:69:ee:c6:03:dd:51:f0:11:a6:15:2e:5d:1a: 1f:77:35:8b:2c:d6:d3:dd:53:5a:15:16:0c:c9:ad: b9:dc:3a:17:49:4e:00:19:40:75:ac:17:d9:7b:6e: 96:ff:b2:6d:aa:5c:0c:26:36:e1:42:7f:c1:db:0e: 50:e1:d9:11:62:7e:17:73:f4:c1:67:ee:5c:fc:05: 92:78:71:d0:08:9a:1c:f4:36:7e:89:2e:40:49:5f: 9e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:44:5A:4C:87:B0:5A:91:43:6A:2A:55:A0:03:71:9E:62:77:D5:C3 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 83:17:b4:d4:da:61:3a:7e:0a:b6:11:ce:00:bf:e3:98:71:a5: b6:f9:75:56:48:ad:3e:86:de:29:fa:29:9c:e5:c3:33:db:8c: 41:d0:02:54:4b:c9:5c:a7:fa:61:88:c3:8f:ab:bd:3b:c0:d1: 7f:39:83:12:53:de:f4:4f:5a:70:ba:56:09:3b:58:46:be:75: 0a:23:be:a3:7a:1f:39:cc:5f:f9:0a:5d:dd:ee:97:92:4b:ca: 3a:ce:d8:fd:df:6f:ec:2d:17:bf:ad:ee:d8:cf:aa:9c:9c:2d: 6f:c1:86:c2:2a:64:dd:de:d2:34:7c:db:a4:f1:f7:d8:a7:ea: 30:31:a9:6b:d1:f8:16:6d:33:8a:f3:9e:4c:13:73:75:3a:1a: b5:a1:d9:85:20:94:bd:8e:4e:10:73:3b:c9:7b:6a:5b:c9:ac: 41:19:b5:e5:13:00:93:12:0e:5a:fc:45:9b:7a:ee:9d:f7:ab: 52:22:76:14:d4:ae:a1:90:a4:a4:fc:52:8a:6e:c6:b8:aa:b4: c9:e1:40:62:fc:b8:48:94:14:e4:ce:dd:a0:bd:a1:9d:06:a0: af:10:02:f2:be:de:7e:3b:7c:19:73:aa:8c:69:e3:05:cd:f4: af:52:a7:52:41:b5:c2:cc:39:b7:3c:59:2d:63:b8:6a:a4:a4: 59:27:07:7b -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWEkoflU/PBhMzVGYcEAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI1MDMxMjAxMDAzOVoXDTI1MDYxMDAxMDAzOVowLzEtMCsGA1UEAxMk ZmJjOTBjZmQtODQyMS00ZmY4LTk3YTgtYWJkODM3OGVkNGFkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAki8tXjSc/XT3QweHci24ACHT5AMO4meVT2v7 GVTXbeS6/JYGxsEmvYewewl8dBEWfUg8YN9Et3DU6BZVC899gbbqiW9CrAouu2Q7 GXgvU94lvCJP43hl1yeulcMJ8OSokc3MSvz4DaNIaHKvh/W4f51XDJ0Ce9HZfrXW AmD4726RAlRi9xalf7Arty8yQrpG8KWUvtzK5DCujUFX6TnKsWESuf0grGnuxgPd UfARphUuXRofdzWLLNbT3VNaFRYMya253DoXSU4AGUB1rBfZe26W/7JtqlwMJjbh Qn/B2w5Q4dkRYn4Xc/TBZ+5c/AWSeHHQCJoc9DZ+iS5ASV+eQwIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFNVEWkyHsFqRQ2oqVaADcZ5id9XDMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvM2UyMzNiNDQtOTExZC0z YzMyLTk2MDAtOTU4MDY0MGEzNTU3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAgxe01NphOn4KthHOAL/jmHGl tvl1VkitPobeKfopnOXDM9uMQdACVEvJXKf6YYjDj6u9O8DRfzmDElPe9E9acLpW CTtYRr51CiO+o3ofOcxf+Qpd3e6XkkvKOs7Y/d9v7C0Xv63u2M+qnJwtb8GGwipk 3d7SNHzbpPH32KfqMDGpa9H4Fm0zivOeTBNzdToataHZhSCUvY5OEHM7yXtqW8ms QRm15RMAkxIOWvxFm3runferUiJ2FNSuoZCkpPxSim7GuKq0yeFAYvy4SJQU5M7d oL2hnQagrxAC8r7efjt8GXOqjGnjBc30r1KnUkG1wsw5tzxZLWO4aqSkWScHew== -----END CERTIFICATE-----Generated at Sun Apr 6 05:20:43 2025 by rpki-client