$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa File: 74043b36-4da5-3e84-b21c-ebd4075cbecb.roa (raw, json) Hash identifier: wU16GM6IqLeCl6SD+Ps59effAQRaM9yGp924GQduh7A= Subject key identifier: D9:7C:B6:56:F3:67:B4:E7:F7:31:CC:73:7A:E7:A7:49:AD:34:54:7C Certificate issuer: /CN=86fea470-b380-45c0-9f6b-033b7d884388 Certificate serial: 010D0C9F43285848E9CBED9EB6792FFEBCCF0600 Authority key identifier: 08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa Signing time: Mon 17 Feb 2025 14:00:52 +0000 ROA not before: Mon 17 Feb 2025 14:00:52 +0000 ROA not after: Sun 18 May 2025 13:00:52 +0000 asID: 33333 IP address blocks: 67.220.64.0/19 maxlen: 24 68.168.16.0/20 maxlen: 24 69.42.208.0/20 maxlen: 24 186.190.208.0/20 maxlen: 24 2607:3b40::/32 maxlen: 48 2607:f5a0::/32 maxlen: 48 2607:ffd8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:e9:cb:ed:9e:b6:79:2f:fe:bc:cf:06:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86fea470-b380-45c0-9f6b-033b7d884388 Validity Not Before: Feb 17 14:00:52 2025 GMT Not After : May 18 13:00:52 2025 GMT Subject: CN=80c9c4a9-094a-47ae-8061-d59d197ffb85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fb:9e:84:ff:62:59:5d:86:da:ed:02:e8:9a: d9:46:fc:9c:98:20:40:8d:f5:6f:db:ad:45:98:ec: d3:12:ce:b8:98:4f:59:2d:fb:8d:f9:61:96:aa:df: 9d:d7:70:d1:8d:d0:17:f7:dd:90:22:17:07:c9:77: 88:d6:60:71:ca:7a:9d:d6:04:a9:8e:5a:1e:36:6a: ec:cc:05:da:25:ad:2b:10:27:c0:5b:fd:67:05:07: 46:a6:fc:81:b7:46:00:8c:db:af:9a:59:5b:62:71: 34:88:6b:e6:8e:7b:63:bd:0f:e2:0b:81:4e:a9:52: 57:e5:68:a9:f5:49:75:79:c9:94:3f:fa:96:68:ab: c8:cf:5a:da:2e:99:c2:57:7c:68:b0:eb:4f:0e:78: 2e:70:db:49:da:45:55:4f:15:f5:3a:52:f2:de:b0: 27:e0:cb:7c:50:ca:6e:a8:f4:e8:89:1e:89:c2:f3: 99:53:40:ac:3f:b4:b1:c7:b7:63:28:f4:10:ba:39: c5:c3:4b:b7:42:73:54:d9:c1:ab:58:a4:88:35:ac: 46:b2:6e:dc:99:51:f9:f7:8c:c4:e9:c6:94:10:5d: ea:76:c0:1e:27:f4:ca:7e:50:ae:54:2d:2c:c9:70: b6:b0:e2:2e:ab:be:e3:94:b8:41:45:88:90:29:20: 07:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7C:B6:56:F3:67:B4:E7:F7:31:CC:73:7A:E7:A7:49:AD:34:54:7C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl X509v3 Authority Key Identifier: keyid:08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer sbgp-ipAddrBlock: critical IPv4: 67.220.64.0/19 68.168.16.0/20 69.42.208.0/20 186.190.208.0/20 IPv6: 2607:3b40::/32 2607:f5a0::/32 2607:ffd8::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 85:85:66:c5:4b:c3:17:df:71:18:22:a3:47:8d:d7:2b:af:bf: ef:39:48:63:87:de:4d:83:50:9e:fb:00:96:c1:47:23:55:e7: bf:d3:81:1d:cb:7d:65:3e:81:20:97:a8:7e:2f:9a:81:6f:04: b4:aa:2d:43:ae:0c:bd:9d:44:2c:d8:09:1f:35:07:0c:29:32: fa:09:99:9d:12:5b:21:e7:8b:54:8d:f0:ca:d1:1d:db:11:d3: b2:59:8e:66:84:6d:38:65:1f:a8:8c:16:a4:bb:95:e0:e1:ea: 42:58:65:84:64:c8:1b:b7:71:24:0e:75:0e:60:65:4c:e1:4a: 7a:b8:0f:ac:d2:e1:0c:d7:d3:51:98:f3:c3:0b:4b:32:6c:9a: 2b:ca:e2:eb:09:b4:1d:7f:62:b5:57:a8:a7:0d:4c:d0:b0:f7: 36:95:84:14:3e:10:d6:09:77:9e:e3:19:96:ae:f1:d0:22:44: 30:7b:f2:b9:69:18:99:33:e2:d7:3a:d9:80:a2:e2:35:91:e1: 23:35:50:dd:31:9b:b9:51:41:89:74:e3:2b:ad:53:8e:f6:75: 35:21:7c:39:ce:4a:2d:78:68:d8:c1:a2:8a:0b:9d:b4:18:30: 2f:e1:27:1f:d6:2d:fa:dc:00:8c:08:a0:05:a1:00:c0:8a:76: d4:97:c0:f2 -----BEGIN CERTIFICATE----- MIIGcjCCBVqgAwIBAgIUAQ0Mn0MoWEjpy+2etnkv/rzPBgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkODZmZWE0NzAtYjM4MC00NWMwLTlmNmItMDMzYjdkODg0 Mzg4MB4XDTI1MDIxNzE0MDA1MloXDTI1MDUxODEzMDA1MlowLzEtMCsGA1UEAxMk ODBjOWM0YTktMDk0YS00N2FlLTgwNjEtZDU5ZDE5N2ZmYjg1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vuehP9iWV2G2u0C6JrZRvycmCBAjfVv261F mOzTEs64mE9ZLfuN+WGWqt+d13DRjdAX992QIhcHyXeI1mBxynqd1gSpjloeNmrs zAXaJa0rECfAW/1nBQdGpvyBt0YAjNuvmllbYnE0iGvmjntjvQ/iC4FOqVJX5Wip 9Ul1ecmUP/qWaKvIz1raLpnCV3xosOtPDngucNtJ2kVVTxX1OlLy3rAn4Mt8UMpu qPToiR6JwvOZU0CsP7Sxx7djKPQQujnFw0u3QnNU2cGrWKSINaxGsm7cmVH594zE 6caUEF3qdsAeJ/TKflCuVC0syXC2sOIuq77jlLhBRYiQKSAHrwIDAQABo4IDhDCC A4AwHQYDVR0OBBYEFNl8tlbzZ7Tn9zHMc3rnp0mtNFR8MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS84NmZl YTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNiN2Q4ODQzODgvNzQwNDNiMzYtNGRhNS0z ZTg0LWIyMWMtZWJkNDA3NWNiZWNiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy82OWZkMDE1Ni1i YjFmLTQ4YjYtYmYzMi1jOTQ5MjI4NmYxOTUvODZmZWE0NzAtYjM4MC00NWMwLTlm NmItMDMzYjdkODg0Mzg4Lzg2ZmVhNDcwLWIzODAtNDVjMC05ZjZiLTAzM2I3ZDg4 NDM4OC5jcmwwHwYDVR0jBBgwFoAUCHSKMQk8LElEoS6K1lyekgQBzxYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhi Ni1iZjMyLWM5NDkyMjg2ZjE5NS84NmZlYTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNi N2Q4ODQzODguY2VyME4GCCsGAQUFBwEHAQH/BD8wPTAeBAIAATAYAwQFQ9xAAwQE RKgQAwQERSrQAwQEur7QMBsEAgACMBUDBQAmBztAAwUAJgf1oAMFACYH/9gwVAYD VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3 dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF AAOCAQEAhYVmxUvDF99xGCKjR43XK6+/7zlIY4feTYNQnvsAlsFHI1Xnv9OBHct9 ZT6BIJeofi+agW8EtKotQ64MvZ1ELNgJHzUHDCky+gmZnRJbIeeLVI3wytEd2xHT slmOZoRtOGUfqIwWpLuV4OHqQlhlhGTIG7dxJA51DmBlTOFKergPrNLhDNfTUZjz wwtLMmyaK8ri6wm0HX9itVeopw1M0LD3NpWEFD4Q1gl3nuMZlq7x0CJEMHvyuWkY mTPi1zrZgKLiNZHhIzVQ3TGbuVFBiXTjK61TjvZ1NSF8Oc5KLXho2MGiigudtBgw L+EnH9Yt+twAjAigBaEAwIp21JfA8g== -----END CERTIFICATE-----Generated at Fri Mar 14 08:47:11 2025 by rpki-client