$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/af478d3d-02cc-354c-a27f-6b17372db688.roa File: af478d3d-02cc-354c-a27f-6b17372db688.roa (raw, json) Hash identifier: XKwPdXi0+kRHH+0BbZ5xj/iIzoIEzvivXb/8ICQ3WSI= Subject key identifier: 20:AB:74:3C:21:61:42:61:37:9F:4D:6D:48:6C:3A:89:55:80:00:83 Certificate issuer: /CN=86fea470-b380-45c0-9f6b-033b7d884388 Certificate serial: 010D0C9F4328584894A5E144F358BBA034B42880 Authority key identifier: 08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/af478d3d-02cc-354c-a27f-6b17372db688.roa Signing time: Sat 18 Jan 2025 02:00:38 +0000 ROA not before: Sat 18 Jan 2025 02:00:38 +0000 ROA not after: Fri 18 Apr 2025 01:00:38 +0000 asID: 3320 IP address blocks: 68.168.18.0/24 maxlen: 24 68.168.19.0/24 maxlen: 24 186.190.214.0/24 maxlen: 24 186.190.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:94:a5:e1:44:f3:58:bb:a0:34:b4:28:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86fea470-b380-45c0-9f6b-033b7d884388 Validity Not Before: Jan 18 02:00:38 2025 GMT Not After : Apr 18 01:00:38 2025 GMT Subject: CN=991b9c9c-8cbb-4585-8759-90bc253dbbc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:dd:fa:8d:a7:0d:ea:f1:24:97:70:8b:bd:4a: 1b:af:37:fa:e4:d4:46:7d:e1:46:c2:c7:2c:86:eb: b4:ba:49:1c:00:95:be:fa:7c:63:a9:dc:6f:1c:5c: 64:83:c0:31:00:56:14:b9:3a:56:e3:54:0f:24:89: f0:82:f6:20:69:c3:df:ba:df:79:17:a4:e4:62:77: f1:26:67:7a:0a:fa:17:79:81:59:91:64:bd:8a:1e: ff:52:f3:82:aa:c9:3a:89:1c:27:b2:d3:58:cd:ae: fd:97:5e:da:ad:49:80:7a:a6:bc:9b:a2:5a:f4:79: 1a:36:33:d3:9b:63:b0:cd:7c:c0:f8:97:df:05:a1: c3:14:4d:54:7a:d4:1a:9c:34:60:fe:48:7c:de:20: e2:5c:bf:64:e2:0e:84:37:92:d3:b1:e1:6b:3a:6f: 67:24:3d:d2:9d:3f:f5:24:55:8f:bc:80:fe:96:b8: 6e:4e:3e:90:94:15:49:01:fa:33:e8:32:11:37:b8: 97:06:de:69:c0:46:0f:8b:e5:60:96:31:4d:f4:1f: 5f:1c:90:89:1e:13:8d:4b:d7:8e:1d:07:e9:b9:b3: 76:aa:66:d8:11:78:39:0a:1f:0d:ef:00:28:39:ea: da:62:5e:57:2d:ea:25:ca:ef:ff:fa:1d:69:3c:50: f9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:AB:74:3C:21:61:42:61:37:9F:4D:6D:48:6C:3A:89:55:80:00:83 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/af478d3d-02cc-354c-a27f-6b17372db688.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl X509v3 Authority Key Identifier: keyid:08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer sbgp-ipAddrBlock: critical IPv4: 68.168.18.0/23 186.190.214.0/24 186.190.222.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 72:2c:48:19:dc:0d:39:09:02:61:61:e2:98:12:fd:f2:39:70: 4c:e9:73:b3:f8:da:62:ff:fb:19:12:62:c4:ca:d5:f0:74:40: c2:fe:fc:ee:ae:4f:5f:56:12:a5:6c:ab:32:17:eb:ea:16:13: 93:fe:b6:d1:ed:40:03:28:17:ac:72:4a:26:0f:5e:00:e3:93: b4:9d:94:e9:2b:0d:15:36:3a:10:da:2e:ea:7e:e6:a9:3c:a4: e7:db:c9:a0:5f:93:c3:6d:84:cc:af:0a:23:ca:53:08:c5:aa: 20:e6:35:07:d5:1a:8c:e9:21:29:de:81:30:0b:85:1e:ff:d5: b6:d3:0e:f5:00:b7:27:b0:b5:31:1a:20:0e:89:11:63:0c:5f: 1e:4b:49:e1:50:37:62:27:37:6a:dc:1e:7e:41:ed:8a:34:5a: bd:31:51:83:22:01:93:51:8e:2f:4c:c8:3e:d5:52:f0:14:5e: 77:97:5b:26:ee:f9:c2:06:03:1c:a4:c1:fc:11:58:f4:98:ff: af:be:0b:eb:6b:97:62:69:97:b6:9c:46:ce:e0:89:7b:07:e2: 17:23:36:06:f9:23:fd:a5:75:cb:42:a6:1a:69:38:1d:6b:73: 07:63:47:d6:41:cf:a6:31:db:4d:da:9e:34:f1:a1:f3:1f:53: 78:5d:6d:d6 -----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgIUAQ0Mn0MoWEiUpeFE81i7oDS0KIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkODZmZWE0NzAtYjM4MC00NWMwLTlmNmItMDMzYjdkODg0 Mzg4MB4XDTI1MDExODAyMDAzOFoXDTI1MDQxODAxMDAzOFowLzEtMCsGA1UEAxMk OTkxYjljOWMtOGNiYi00NTg1LTg3NTktOTBiYzI1M2RiYmMxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhN36jacN6vEkl3CLvUobrzf65NRGfeFGwscs huu0ukkcAJW++nxjqdxvHFxkg8AxAFYUuTpW41QPJInwgvYgacPfut95F6TkYnfx Jmd6CvoXeYFZkWS9ih7/UvOCqsk6iRwnstNYza79l17arUmAeqa8m6Ja9HkaNjPT m2OwzXzA+JffBaHDFE1UetQanDRg/kh83iDiXL9k4g6EN5LTseFrOm9nJD3SnT/1 JFWPvID+lrhuTj6QlBVJAfoz6DIRN7iXBt5pwEYPi+VgljFN9B9fHJCJHhONS9eO HQfpubN2qmbYEXg5Ch8N7wAoOeraYl5XLeolyu//+h1pPFD5TQIDAQABo4IDYTCC A10wHQYDVR0OBBYEFCCrdDwhYUJhN59NbUhsOolVgACDMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS84NmZl YTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNiN2Q4ODQzODgvYWY0NzhkM2QtMDJjYy0z NTRjLWEyN2YtNmIxNzM3MmRiNjg4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy82OWZkMDE1Ni1i YjFmLTQ4YjYtYmYzMi1jOTQ5MjI4NmYxOTUvODZmZWE0NzAtYjM4MC00NWMwLTlm NmItMDMzYjdkODg0Mzg4Lzg2ZmVhNDcwLWIzODAtNDVjMC05ZjZiLTAzM2I3ZDg4 NDM4OC5jcmwwHwYDVR0jBBgwFoAUCHSKMQk8LElEoS6K1lyekgQBzxYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhi Ni1iZjMyLWM5NDkyMjg2ZjE5NS84NmZlYTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNi N2Q4ODQzODguY2VyMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBRKgSAwQA ur7WAwQAur7eMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcC ARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWww DQYJKoZIhvcNAQELBQADggEBAHIsSBncDTkJAmFh4pgS/fI5cEzpc7P42mL/+xkS YsTK1fB0QML+/O6uT19WEqVsqzIX6+oWE5P+ttHtQAMoF6xySiYPXgDjk7SdlOkr DRU2OhDaLup+5qk8pOfbyaBfk8NthMyvCiPKUwjFqiDmNQfVGozpISnegTALhR7/ 1bbTDvUAtyewtTEaIA6JEWMMXx5LSeFQN2InN2rcHn5B7Yo0Wr0xUYMiAZNRji9M yD7VUvAUXneXWybu+cIGAxykwfwRWPSY/6++C+trl2Jpl7acRs7giXsH4hcjNgb5 I/2ldctCphppOB1rcwdjR9ZBz6Yx203anjTxofMfU3hdbdY= -----END CERTIFICATE-----Generated at Sun Feb 16 15:36:16 2025 by rpki-client