$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa File: a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa (raw, json) Hash identifier: DIiiqRklAr+1+lcUapsscaiS/eNTyip3cxsMuVCoebQ= Subject key identifier: 60:CC:EB:53:9E:2D:A0:AC:7D:8B:43:5B:09:C7:9B:0A:6C:CB:A5:2D Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F43285849287E556052BEC43E15EEDB00 Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa Signing time: Wed 12 Mar 2025 01:00:39 +0000 ROA not before: Wed 12 Mar 2025 01:00:39 +0000 ROA not after: Tue 10 Jun 2025 01:00:39 +0000 asID: 7181 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:28:7e:55:60:52:be:c4:3e:15:ee:db:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: Mar 12 01:00:39 2025 GMT Not After : Jun 10 01:00:39 2025 GMT Subject: CN=dbc27d04-4ba5-46e9-abbb-e52fbcdd6afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:78:c9:90:e1:a9:21:e7:71:0d:d2:eb:5b:50: cd:5a:98:1c:b7:14:c4:06:e9:ad:01:20:d7:ed:73: 66:5c:6f:0b:6f:72:0e:b6:83:e7:88:40:f2:57:34: fe:54:c8:a9:52:85:9e:43:bc:f5:80:b1:12:e1:92: 1b:a5:d6:93:16:1e:f3:59:48:ac:48:97:25:75:ce: 99:6c:81:f5:92:3e:60:9b:a2:5e:9e:88:3f:3e:2a: 20:d1:c9:c7:9d:07:34:69:ae:30:c6:e2:1a:8c:36: 12:4c:20:72:31:9a:49:6f:21:e6:0f:1f:d3:95:d2: 16:82:80:4a:c3:1e:e3:da:8b:a9:c1:a1:87:38:1e: 65:43:ce:51:49:ae:7e:bf:b3:8a:92:18:bd:be:bd: cf:d4:9e:77:78:45:c7:ab:4f:40:d0:d1:7e:4a:59: 83:db:0e:78:3b:27:d8:41:84:9b:af:78:1b:31:d0: 0e:e4:c7:28:a4:6f:0d:63:71:cf:07:52:c1:1c:87: 90:29:20:55:b7:79:4d:f2:c9:e8:c5:69:a9:fa:b5: a5:a9:45:e1:db:40:10:f8:a2:66:56:ca:db:84:fd: d6:d9:37:83:11:84:21:0e:1e:8e:8f:66:b1:7d:93: d2:57:90:31:66:5a:41:4f:d5:aa:a5:d8:5b:78:17: 13:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CC:EB:53:9E:2D:A0:AC:7D:8B:43:5B:09:C7:9B:0A:6C:CB:A5:2D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 07:a5:00:b9:ff:bc:3b:1a:4d:a1:3d:1c:41:fa:97:71:e1:89: 3a:11:df:43:8b:d0:5a:43:95:77:fd:ab:c0:a9:04:64:d4:51: aa:a0:2d:28:03:e3:a7:99:df:4f:a4:6c:bc:54:76:46:d0:60: 47:62:52:9d:a9:ee:64:e1:67:3e:7d:75:92:f9:62:f2:84:62: ba:ef:a4:37:be:44:80:b2:14:4d:73:27:0d:85:88:c0:fb:ca: 2e:aa:15:54:f9:e1:82:df:29:24:ac:cf:73:5e:df:4e:12:ec: 19:18:fc:3a:36:3f:62:86:e8:1a:a1:9d:a6:99:e3:a1:55:45: bf:49:81:b1:2d:7f:f0:85:9b:60:66:e8:9f:a5:9a:c4:ec:4c: ca:c9:1c:02:a2:81:e8:54:f3:b2:b5:53:62:93:cb:c4:19:3f: f4:ac:6e:d7:c0:16:b7:61:9d:2d:bb:14:74:fe:31:fa:13:6f: 90:a6:eb:05:47:39:50:a3:84:a6:7c:07:9a:ae:61:a6:79:ad: 1a:b5:f2:8b:ee:98:92:21:f8:85:07:e0:f5:6c:a8:51:ec:f7: 02:ef:42:06:30:bd:3f:20:c7:dd:1f:a8:ca:cf:5f:90:d8:3a: c1:25:c3:93:15:08:5f:b1:67:44:2d:ae:5e:a2:32:d7:50:c6: e4:95:99:ab -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWEkoflVgUr7EPhXu2wAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI1MDMxMjAxMDAzOVoXDTI1MDYxMDAxMDAzOVowLzEtMCsGA1UEAxMk ZGJjMjdkMDQtNGJhNS00NmU5LWFiYmItZTUyZmJjZGQ2YWZiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlXjJkOGpIedxDdLrW1DNWpgctxTEBumtASDX 7XNmXG8Lb3IOtoPniEDyVzT+VMipUoWeQ7z1gLES4ZIbpdaTFh7zWUisSJcldc6Z bIH1kj5gm6Jenog/Piog0cnHnQc0aa4wxuIajDYSTCByMZpJbyHmDx/TldIWgoBK wx7j2oupwaGHOB5lQ85RSa5+v7OKkhi9vr3P1J53eEXHq09A0NF+SlmD2w54OyfY QYSbr3gbMdAO5McopG8NY3HPB1LBHIeQKSBVt3lN8snoxWmp+rWlqUXh20AQ+KJm VsrbhP3W2TeDEYQhDh6Oj2axfZPSV5AxZlpBT9WqpdhbeBcTewIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFGDM61OeLaCsfYtDWwnHmwpsy6UtMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvYTc0OGY3NzctOGI3OS0z YWQ2LTkxMjctOGVhZDdhNGNmN2QxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAB6UAuf+8OxpNoT0cQfqXceGJ OhHfQ4vQWkOVd/2rwKkEZNRRqqAtKAPjp5nfT6RsvFR2RtBgR2JSnanuZOFnPn11 kvli8oRiuu+kN75EgLIUTXMnDYWIwPvKLqoVVPnhgt8pJKzPc17fThLsGRj8OjY/ YoboGqGdppnjoVVFv0mBsS1/8IWbYGbon6WaxOxMyskcAqKB6FTzsrVTYpPLxBk/ 9Kxu18AWt2GdLbsUdP4x+hNvkKbrBUc5UKOEpnwHmq5hpnmtGrXyi+6YkiH4hQfg 9WyoUez3Au9CBjC9PyDH3R+oys9fkNg6wSXDkxUIX7FnRC2uXqIy11DG5JWZqw== -----END CERTIFICATE-----Generated at Sun Apr 6 07:35:18 2025 by rpki-client