$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa File: 74043b36-4da5-3e84-b21c-ebd4075cbecb.roa (raw, json) Hash identifier: IlnP/QLYTm8A1tdy6+iWXq3D0cAI1jXnbhx7OCXrNUM= Subject key identifier: 9D:44:8A:22:BA:89:D9:1C:FB:22:41:60:99:AD:D9:9B:C6:4E:4B:6C Certificate issuer: /CN=86fea470-b380-45c0-9f6b-033b7d884388 Certificate serial: 010D0C9F43285848090FA66B52383A3FBEF28980 Authority key identifier: 08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa Signing time: Fri 29 Nov 2024 02:00:39 +0000 ROA not before: Fri 29 Nov 2024 02:00:39 +0000 ROA not after: Thu 27 Feb 2025 02:00:39 +0000 asID: 33333 IP address blocks: 67.220.64.0/19 maxlen: 24 68.168.16.0/20 maxlen: 24 69.42.208.0/20 maxlen: 24 186.190.208.0/20 maxlen: 24 2607:3b40::/32 maxlen: 48 2607:f5a0::/32 maxlen: 48 2607:ffd8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:09:0f:a6:6b:52:38:3a:3f:be:f2:89:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86fea470-b380-45c0-9f6b-033b7d884388 Validity Not Before: Nov 29 02:00:39 2024 GMT Not After : Feb 27 02:00:39 2025 GMT Subject: CN=20df37d1-f09c-4355-8d25-8c8419b45f8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0f:6a:47:06:3f:45:27:3b:10:a6:5c:d2:5a: c4:4e:1d:e8:32:7a:c1:ca:23:a5:2e:8c:ce:34:9c: 1b:45:ab:e6:08:65:2f:85:80:71:6b:3a:29:dc:2b: 69:ab:e7:a2:10:fc:b7:85:1b:74:cc:ca:1d:66:5e: 58:86:06:8c:ea:0d:4f:78:fc:10:03:4b:02:f9:a2: 6e:e6:2d:2f:e0:f8:dc:7a:1a:3a:35:84:62:93:25: 95:ef:9f:bb:77:f2:ec:b2:76:3b:d5:cf:c6:93:be: 37:01:43:6a:81:f6:dc:9f:9d:77:57:d1:cb:ec:fe: 3a:79:ae:12:a6:18:8c:7d:05:bc:73:af:13:c0:19: 34:88:13:76:c0:e7:2d:66:dc:a5:b8:01:a4:9c:1f: 67:e7:11:02:86:97:2d:bb:5e:17:4c:17:e5:ea:9f: fd:58:bf:10:bf:e6:b4:c8:71:da:28:31:80:57:c7: e1:3b:f0:51:91:c5:9a:28:24:0b:84:e9:47:a9:02: ed:b8:fa:9b:bc:98:99:c6:61:c9:b7:62:9a:7b:d9: 96:4a:5b:d1:ad:f6:cf:e5:ca:71:ce:29:7c:86:05: c9:25:03:04:cb:d0:7a:99:ff:91:36:55:c0:ad:dd: 84:9f:d6:ae:75:4b:fc:f2:0e:bb:97:aa:87:0d:8e: 9f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:44:8A:22:BA:89:D9:1C:FB:22:41:60:99:AD:D9:9B:C6:4E:4B:6C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl X509v3 Authority Key Identifier: keyid:08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer sbgp-ipAddrBlock: critical IPv4: 67.220.64.0/19 68.168.16.0/20 69.42.208.0/20 186.190.208.0/20 IPv6: 2607:3b40::/32 2607:f5a0::/32 2607:ffd8::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6f:cd:15:64:9a:ab:1f:ef:1d:df:87:54:01:24:dc:f0:a6:14: aa:6d:d9:06:f1:06:26:4d:e7:a4:b1:6e:7b:d9:52:5c:c0:cd: 03:a4:e0:96:c9:b2:b3:54:bc:ac:70:35:74:e4:d7:2a:db:99: 62:98:8d:39:22:56:20:53:e3:72:3e:11:58:33:47:55:24:76: c1:47:35:ba:48:2d:3f:13:5c:c7:70:27:9c:c1:4a:9f:ee:3b: 39:6d:9b:b3:5c:1c:4f:a2:c7:dd:cf:76:8b:6d:a6:c6:71:43: 50:bb:00:a5:cf:e9:f9:e2:ea:fd:22:08:ae:0c:72:b1:38:e9: 78:93:32:4d:c5:cc:54:59:14:3f:84:96:99:23:66:23:51:33: 7a:7a:45:16:f8:53:d2:ee:0d:80:f5:39:55:6b:a6:ad:07:7e: c0:8d:79:c3:14:da:f4:24:8b:4c:8b:c2:55:64:61:b7:04:e4: cd:ba:46:04:eb:76:3d:3f:ac:8a:0d:83:bb:21:6d:9e:ae:fc: ed:a4:29:9d:29:99:49:17:4c:55:86:af:45:7b:92:ba:35:37: ae:a0:48:02:c2:ff:72:0c:0c:30:06:09:d4:05:fc:0e:78:a7: 64:88:ea:a4:30:06:19:84:ee:64:55:c7:69:f1:97:94:ac:1a: c6:24:37:be -----BEGIN CERTIFICATE----- MIIGcjCCBVqgAwIBAgIUAQ0Mn0MoWEgJD6ZrUjg6P77yiYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkODZmZWE0NzAtYjM4MC00NWMwLTlmNmItMDMzYjdkODg0 Mzg4MB4XDTI0MTEyOTAyMDAzOVoXDTI1MDIyNzAyMDAzOVowLzEtMCsGA1UEAxMk MjBkZjM3ZDEtZjA5Yy00MzU1LThkMjUtOGM4NDE5YjQ1ZjhkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAog9qRwY/RSc7EKZc0lrETh3oMnrByiOlLozO NJwbRavmCGUvhYBxazop3Ctpq+eiEPy3hRt0zModZl5YhgaM6g1PePwQA0sC+aJu 5i0v4Pjceho6NYRikyWV75+7d/LssnY71c/Gk743AUNqgfbcn513V9HL7P46ea4S phiMfQW8c68TwBk0iBN2wOctZtyluAGknB9n5xEChpctu14XTBfl6p/9WL8Qv+a0 yHHaKDGAV8fhO/BRkcWaKCQLhOlHqQLtuPqbvJiZxmHJt2Kae9mWSlvRrfbP5cpx zil8hgXJJQMEy9B6mf+RNlXArd2En9audUv88g67l6qHDY6flwIDAQABo4IDhDCC A4AwHQYDVR0OBBYEFJ1EiiK6idkc+yJBYJmt2ZvGTktsMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS84NmZl YTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNiN2Q4ODQzODgvNzQwNDNiMzYtNGRhNS0z ZTg0LWIyMWMtZWJkNDA3NWNiZWNiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy82OWZkMDE1Ni1i YjFmLTQ4YjYtYmYzMi1jOTQ5MjI4NmYxOTUvODZmZWE0NzAtYjM4MC00NWMwLTlm NmItMDMzYjdkODg0Mzg4Lzg2ZmVhNDcwLWIzODAtNDVjMC05ZjZiLTAzM2I3ZDg4 NDM4OC5jcmwwHwYDVR0jBBgwFoAUCHSKMQk8LElEoS6K1lyekgQBzxYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhi Ni1iZjMyLWM5NDkyMjg2ZjE5NS84NmZlYTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNi N2Q4ODQzODguY2VyME4GCCsGAQUFBwEHAQH/BD8wPTAeBAIAATAYAwQFQ9xAAwQE RKgQAwQERSrQAwQEur7QMBsEAgACMBUDBQAmBztAAwUAJgf1oAMFACYH/9gwVAYD VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3 dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF AAOCAQEAb80VZJqrH+8d34dUASTc8KYUqm3ZBvEGJk3npLFue9lSXMDNA6Tglsmy s1S8rHA1dOTXKtuZYpiNOSJWIFPjcj4RWDNHVSR2wUc1ukgtPxNcx3AnnMFKn+47 OW2bs1wcT6LH3c92i22mxnFDULsApc/p+eLq/SIIrgxysTjpeJMyTcXMVFkUP4SW mSNmI1EzenpFFvhT0u4NgPU5VWumrQd+wI15wxTa9CSLTIvCVWRhtwTkzbpGBOt2 PT+sig2DuyFtnq787aQpnSmZSRdMVYavRXuSujU3rqBIAsL/cgwMMAYJ1AX8Dnin ZIjqpDAGGYTuZFXHafGXlKwaxiQ3vg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:36:07 2025 by rpki-client