$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/af478d3d-02cc-354c-a27f-6b17372db688.roa File: af478d3d-02cc-354c-a27f-6b17372db688.roa (raw, json) Hash identifier: wbhoykPEtWdUXJBB85Xi2rczZGEVqZ2cLvrAwzAXfOk= Subject key identifier: 67:11:95:1A:6C:BF:7F:4B:40:A6:57:46:67:28:7B:6E:10:23:92:AA Certificate issuer: /CN=86fea470-b380-45c0-9f6b-033b7d884388 Certificate serial: 010D0C9F4328584973DEE9F59C9C047013886780 Authority key identifier: 08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/af478d3d-02cc-354c-a27f-6b17372db688.roa Signing time: Tue 08 Apr 2025 01:00:47 +0000 ROA not before: Tue 08 Apr 2025 01:00:47 +0000 ROA not after: Mon 07 Jul 2025 01:00:47 +0000 asID: 3320 IP address blocks: 68.168.18.0/24 maxlen: 24 68.168.19.0/24 maxlen: 24 186.190.214.0/24 maxlen: 24 186.190.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 16 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:73:de:e9:f5:9c:9c:04:70:13:88:67:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86fea470-b380-45c0-9f6b-033b7d884388 Validity Not Before: Apr 8 01:00:47 2025 GMT Not After : Jul 7 01:00:47 2025 GMT Subject: CN=9780b519-a76e-4396-bb5e-19e593497670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:21:ef:63:dd:27:16:a7:4a:a7:d3:b4:a1:cd: e4:af:05:a1:33:9d:34:97:6e:35:84:3a:26:e0:58: 20:e0:c1:81:8b:24:40:61:71:33:dd:f2:8e:0d:25: 41:dc:91:38:9d:ac:49:c8:43:98:f2:17:7b:25:ef: 15:46:68:5e:45:88:a6:92:b7:7b:b0:6c:3a:61:fe: 6b:ca:8f:17:0c:da:73:c2:54:99:f4:8d:44:f8:18: 02:48:aa:c3:91:c2:50:60:e5:85:17:0c:5c:15:e1: ba:3c:80:7c:35:ab:34:7e:b7:ae:50:fc:01:81:ca: 0e:90:35:24:f1:cd:5e:59:17:45:87:83:db:db:8c: 00:84:8f:ac:cb:13:97:80:7b:a2:51:fa:41:ed:12: eb:63:fa:87:6b:91:d4:69:5e:49:9a:0f:a5:e1:3a: ef:17:1e:72:ee:ea:59:0b:bb:07:95:2e:55:47:98: dc:d4:e0:bd:20:26:a3:d1:c0:d6:b9:7b:64:bd:34: 1a:0d:1e:ed:61:d3:f4:4e:d8:80:93:ff:f2:7a:c4: 34:2d:c8:63:58:52:26:56:58:1e:4a:8c:68:a0:f4: dc:ab:e0:17:85:20:84:c0:53:d0:53:67:19:89:da: 6b:42:5d:9a:84:6d:4d:ac:40:dd:f0:c2:b2:9a:3b: 2f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:11:95:1A:6C:BF:7F:4B:40:A6:57:46:67:28:7B:6E:10:23:92:AA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/af478d3d-02cc-354c-a27f-6b17372db688.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl X509v3 Authority Key Identifier: keyid:08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer sbgp-ipAddrBlock: critical IPv4: 68.168.18.0/23 186.190.214.0/24 186.190.222.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption c2:19:06:71:a7:81:cc:68:06:98:ec:e7:3d:66:43:08:cb:75: 55:c2:20:ad:af:27:6e:6e:49:50:78:91:b1:be:88:99:89:23: b6:6d:20:55:53:2c:76:c6:13:40:9d:c1:06:73:c5:9d:64:d1: fa:31:ed:6b:20:c1:93:42:d8:f8:63:eb:b0:9a:01:dd:57:e6: 9f:6a:fd:26:70:bd:bb:0e:07:ee:56:4d:c3:4d:e8:c7:92:41: 1d:22:aa:16:00:e8:b0:b8:20:b2:c1:4f:af:f8:59:87:29:1d: e8:b8:13:dd:85:48:af:40:03:77:1b:a1:60:0d:f4:10:28:46: 04:80:4b:22:12:d2:aa:31:af:22:b0:6a:17:e9:cd:41:16:91: db:4a:83:ae:eb:5a:6b:97:ca:ea:e0:df:42:e8:87:ad:2f:48: 3b:2a:12:2a:dd:ec:0d:fc:b4:5f:4d:44:6c:fd:10:16:92:5c: ca:62:6c:b0:23:d6:ca:28:61:9f:7a:1e:01:5a:d3:fc:a3:59: ca:5f:e9:41:22:d5:34:af:1c:d3:d8:c4:0a:72:51:f8:b3:af: cc:21:e7:08:9e:f9:2f:b5:7b:da:f1:27:bf:e0:9d:ea:c0:cc: e9:07:a9:5f:a8:06:41:40:79:0e:28:89:c5:fe:ef:38:5c:11: 50:f2:c5:20 -----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgIUAQ0Mn0MoWElz3un1nJwEcBOIZ4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkODZmZWE0NzAtYjM4MC00NWMwLTlmNmItMDMzYjdkODg0 Mzg4MB4XDTI1MDQwODAxMDA0N1oXDTI1MDcwNzAxMDA0N1owLzEtMCsGA1UEAxMk OTc4MGI1MTktYTc2ZS00Mzk2LWJiNWUtMTllNTkzNDk3NjcwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriHvY90nFqdKp9O0oc3krwWhM500l241hDom 4Fgg4MGBiyRAYXEz3fKODSVB3JE4naxJyEOY8hd7Je8VRmheRYimkrd7sGw6Yf5r yo8XDNpzwlSZ9I1E+BgCSKrDkcJQYOWFFwxcFeG6PIB8Nas0freuUPwBgcoOkDUk 8c1eWRdFh4Pb24wAhI+syxOXgHuiUfpB7RLrY/qHa5HUaV5Jmg+l4TrvFx5y7upZ C7sHlS5VR5jc1OC9ICaj0cDWuXtkvTQaDR7tYdP0TtiAk//yesQ0LchjWFImVlge SoxooPTcq+AXhSCEwFPQU2cZidprQl2ahG1NrEDd8MKymjsvpQIDAQABo4IDYTCC A10wHQYDVR0OBBYEFGcRlRpsv39LQKZXRmcoe24QI5KqMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS84NmZl YTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNiN2Q4ODQzODgvYWY0NzhkM2QtMDJjYy0z NTRjLWEyN2YtNmIxNzM3MmRiNjg4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy82OWZkMDE1Ni1i YjFmLTQ4YjYtYmYzMi1jOTQ5MjI4NmYxOTUvODZmZWE0NzAtYjM4MC00NWMwLTlm NmItMDMzYjdkODg0Mzg4Lzg2ZmVhNDcwLWIzODAtNDVjMC05ZjZiLTAzM2I3ZDg4 NDM4OC5jcmwwHwYDVR0jBBgwFoAUCHSKMQk8LElEoS6K1lyekgQBzxYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhi Ni1iZjMyLWM5NDkyMjg2ZjE5NS84NmZlYTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNi N2Q4ODQzODguY2VyMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBRKgSAwQA ur7WAwQAur7eMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcC ARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWww DQYJKoZIhvcNAQELBQADggEBAMIZBnGngcxoBpjs5z1mQwjLdVXCIK2vJ25uSVB4 kbG+iJmJI7ZtIFVTLHbGE0CdwQZzxZ1k0fox7WsgwZNC2Phj67CaAd1X5p9q/SZw vbsOB+5WTcNN6MeSQR0iqhYA6LC4ILLBT6/4WYcpHei4E92FSK9AA3cboWAN9BAo RgSASyIS0qoxryKwahfpzUEWkdtKg67rWmuXyurg30Loh60vSDsqEird7A38tF9N RGz9EBaSXMpibLAj1sooYZ96HgFa0/yjWcpf6UEi1TSvHNPYxApyUfizr8wh5wie +S+1e9rxJ7/gnerAzOkHqV+oBkFAeQ4oicX+7zhcEVDyxSA= -----END CERTIFICATE-----Generated at Mon Apr 14 17:02:14 2025 by rpki-client