$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/35396bc4-0ed0-3b26-8fe5-c2883baf0997.roa File: 35396bc4-0ed0-3b26-8fe5-c2883baf0997.roa (raw, json) Hash identifier: KMeHvbzyAe0OzRv4Dr/aVJPc7DGNhIny7Bo/jymZhek= Subject key identifier: 7A:F9:44:31:C5:D3:E3:6D:CD:E8:28:12:A8:00:56:FA:F1:54:3A:0E Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F43285848BBBB7351E360DA1D159FFF7E Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/35396bc4-0ed0-3b26-8fe5-c2883baf0997.roa Signing time: Sat 01 Feb 2025 02:00:39 +0000 ROA not before: Sat 01 Feb 2025 02:00:39 +0000 ROA not after: Fri 02 May 2025 01:00:39 +0000 asID: 394437 IP address blocks: 72.20.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:bb:bb:73:51:e3:60:da:1d:15:9f:ff:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Feb 1 02:00:39 2025 GMT Not After : May 2 01:00:39 2025 GMT Subject: CN=52a810fa-d8ac-4090-8a0c-24275ae0e92f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:be:54:ac:d6:24:f6:59:3f:79:48:ee:b7:63: 78:a5:12:b6:06:58:72:6c:d3:45:e7:0b:f9:94:e5: 65:59:57:70:d9:ce:9c:bc:ff:d5:b1:bf:46:7f:62: 95:00:79:4b:1b:c0:13:3e:03:9d:52:f1:e8:12:37: 2e:21:06:54:b9:5b:ab:75:15:03:29:ba:47:9d:6c: 8b:96:8a:89:4f:f0:23:b9:c7:92:66:51:35:5f:13: 3a:2b:1a:b2:b4:e0:65:4e:da:c3:94:70:ea:5c:70: 8f:dd:a1:8b:1c:4a:2f:6b:f9:af:c7:4d:31:a0:38: 07:24:6a:ca:8b:f3:59:6a:52:21:f0:c4:69:87:85: c7:ab:0f:aa:60:b0:b8:7f:c9:6c:20:9b:1c:91:0e: 07:43:05:05:e3:3c:fe:15:ac:d1:43:8e:2b:fe:8a: 98:70:af:0a:53:19:6d:ab:a0:91:63:f3:5c:3c:75: d6:bf:40:48:4b:7d:62:2f:30:f0:5b:8d:4c:7b:47: 42:81:84:13:fb:9f:31:7d:9a:c2:b2:14:49:b9:b4: a0:a8:a7:22:4b:9a:b2:43:23:97:6d:ff:22:f0:fa: d2:38:68:6d:f8:30:51:d0:ae:06:9e:21:a2:73:8e: 3e:00:b4:1a:37:0a:e3:24:c7:19:58:3a:3d:19:96: 7e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F9:44:31:C5:D3:E3:6D:CD:E8:28:12:A8:00:56:FA:F1:54:3A:0E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/35396bc4-0ed0-3b26-8fe5-c2883baf0997.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 72.20.138.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8c:88:2e:bf:77:1b:55:13:a8:77:68:e8:3b:1f:7e:91:b0:cb: 0d:9b:c7:a1:69:5a:30:3c:c0:dd:a7:46:ab:52:01:f3:c5:7c: b1:15:05:da:65:3d:25:b3:e0:5d:17:fd:46:a4:94:16:99:00: f9:2a:2d:9d:4f:82:ad:f3:6a:1c:69:fc:e3:94:bd:85:cf:9d: dd:a4:0b:f1:59:c5:f2:53:5a:89:85:76:ef:a2:73:a6:73:e1: de:a3:f4:39:b1:f0:36:6f:c0:92:72:8e:87:36:76:73:b5:d4: 6a:41:29:df:63:d7:f4:eb:ea:fe:d2:ad:99:6a:cc:d2:18:70: 66:91:a0:23:f7:8e:5c:9a:20:3c:9b:39:05:99:17:45:45:a1: b0:84:57:72:d7:e0:a9:e7:78:03:ac:5f:7b:c8:e0:02:d3:54: 4a:3e:c3:b5:98:d6:87:09:63:db:46:47:cc:9d:dc:13:ac:5b: ed:2f:db:33:c0:ff:51:0a:3c:dc:04:78:ad:63:44:b3:d1:55: 3a:17:d4:5a:7d:5c:15:22:99:63:1f:9b:6f:14:0a:9c:dc:e0: 50:5f:07:24:a3:c3:42:b8:7b:f0:54:7b:c4:5c:f4:60:aa:a7: 20:c6:69:14:f1:fb:a9:62:e9:83:ec:f4:67:61:cd:03:39:ec: 2e:12:99:58 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEi7u3NR42DaHRWf/34wDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI1MDIwMTAyMDAzOVoXDTI1MDUwMjAxMDAzOVowLzEtMCsGA1UEAxMk NTJhODEwZmEtZDhhYy00MDkwLThhMGMtMjQyNzVhZTBlOTJmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqr5UrNYk9lk/eUjut2N4pRK2BlhybNNF5wv5 lOVlWVdw2c6cvP/Vsb9Gf2KVAHlLG8ATPgOdUvHoEjcuIQZUuVurdRUDKbpHnWyL loqJT/AjuceSZlE1XxM6KxqytOBlTtrDlHDqXHCP3aGLHEova/mvx00xoDgHJGrK i/NZalIh8MRph4XHqw+qYLC4f8lsIJsckQ4HQwUF4zz+FazRQ44r/oqYcK8KUxlt q6CRY/NcPHXWv0BIS31iLzDwW41Me0dCgYQT+58xfZrCshRJubSgqKciS5qyQyOX bf8i8PrSOGht+DBR0K4GniGic44+ALQaNwrjJMcZWDo9GZZ+IwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHr5RDHF0+NtzegoEqgAVvrxVDoOMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvMzUzOTZiYzQtMGVkMC0z YjI2LThmZTUtYzI4ODNiYWYwOTk3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSKMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAIyILr93G1UTqHdo6DsffpGwyw2bx6FpWjA8wN2nRqtSAfPFfLEVBdpl PSWz4F0X/UaklBaZAPkqLZ1Pgq3zahxp/OOUvYXPnd2kC/FZxfJTWomFdu+ic6Zz 4d6j9Dmx8DZvwJJyjoc2dnO11GpBKd9j1/Tr6v7SrZlqzNIYcGaRoCP3jlyaIDyb OQWZF0VFobCEV3LX4KnneAOsX3vI4ALTVEo+w7WY1ocJY9tGR8yd3BOsW+0v2zPA /1EKPNwEeK1jRLPRVToX1Fp9XBUimWMfm28UCpzc4FBfBySjw0K4e/BUe8Rc9GCq pyDGaRTx+6li6YPs9GdhzQM57C4SmVg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:53:29 2025 by rpki-client