$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/53255963-e2d4-3ffe-b556-b0d01f4e388d.roa File: 53255963-e2d4-3ffe-b556-b0d01f4e388d.roa (raw, json) Hash identifier: tHfB73rxfxF+gSVLMMusTr5fWFJT78DPGMn1FJAAkeo= Subject key identifier: 53:63:4F:D8:AB:7F:FE:C7:1E:19:EB:EC:5F:82:58:E5:EC:39:C9:43 Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F43285848BBBB73D6B7D54AEA6D4F90E0 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/53255963-e2d4-3ffe-b556-b0d01f4e388d.roa Signing time: Sat 01 Feb 2025 02:00:39 +0000 ROA not before: Sat 01 Feb 2025 02:00:39 +0000 ROA not after: Fri 02 May 2025 01:00:39 +0000 asID: 394437 IP address blocks: 72.20.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:bb:bb:73:d6:b7:d5:4a:ea:6d:4f:90:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Feb 1 02:00:39 2025 GMT Not After : May 2 01:00:39 2025 GMT Subject: CN=025b7047-c212-4814-99ee-7c48d10c23b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:60:19:a6:d8:0a:55:4e:68:2b:3d:dc:21:ea: 73:eb:30:fa:e3:d6:f7:4d:86:3b:55:64:28:c2:7f: b9:d4:87:59:f7:f9:1a:cc:f2:b9:54:a1:d0:e9:34: 36:31:79:e1:d9:93:7d:d5:56:cf:63:e4:d5:2c:1c: 06:d8:21:99:1b:42:77:db:26:c6:c0:c3:46:cc:2d: b4:fc:d5:02:5e:a5:c7:a0:a0:61:b8:8e:3c:b9:ae: de:2d:27:3f:ab:35:2e:80:2c:c4:58:8c:aa:6d:f5: e9:8a:41:fe:36:1b:4f:02:64:b6:81:c1:3b:f3:7d: db:89:84:dd:67:bc:e3:99:d0:b6:d2:44:a8:81:62: 81:5e:48:ec:bd:f5:ab:af:b8:1e:68:12:3d:fe:a8: ac:c7:e4:7e:3d:46:66:ad:a8:4f:3f:6a:ab:5d:65: c6:22:ce:1b:1e:2c:c0:7b:33:df:cd:ee:cc:c3:c6: 55:c5:c5:59:50:f4:f2:62:50:19:64:69:a7:b3:87: 48:e4:e9:a7:61:1b:88:32:5a:45:d9:11:f2:85:5e: 37:9d:2d:c3:e5:1c:8e:38:ea:a8:8f:37:14:22:24: 13:ce:4e:ba:5a:26:36:50:28:8d:0c:c8:86:22:d5: 73:80:9e:d5:1b:3d:ac:01:df:25:87:20:78:e2:f1: 3a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:63:4F:D8:AB:7F:FE:C7:1E:19:EB:EC:5F:82:58:E5:EC:39:C9:43 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/53255963-e2d4-3ffe-b556-b0d01f4e388d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 72.20.158.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7d:bf:f9:de:91:d7:c8:8e:2e:0e:7e:bf:16:40:36:e4:81:f7: 5d:f9:86:df:52:27:a8:2b:da:de:34:0c:df:ce:76:93:40:60: 39:3c:49:4c:14:d5:3b:4d:0a:d7:38:85:33:c7:18:37:c3:31: cb:ed:99:96:9f:86:4a:15:14:fe:78:85:be:f2:3b:c1:ae:4e: 76:08:4f:99:ac:8a:43:e5:31:e4:66:e9:1e:ae:b1:c6:72:f9: 73:cb:c4:f7:0e:93:62:ce:38:6d:d3:4f:36:f9:96:d2:11:88: 76:b7:f5:2e:6f:f8:30:67:7e:77:9c:a7:1c:75:47:2a:bc:2e: b6:c2:25:27:fb:87:1a:c8:3a:31:ba:22:f4:c3:c2:bb:3e:40: d7:bf:79:11:3c:38:54:09:58:68:62:eb:58:8e:fc:7b:4a:ba: 6e:7a:f4:7c:58:c9:e2:31:56:c7:a5:cd:f3:68:21:71:bb:0e: ef:ae:c8:1a:5f:1c:9e:4c:1f:64:3e:42:2c:3d:9e:3d:ce:09: 4c:d7:a3:87:f2:44:d6:35:9d:24:cc:94:a1:5a:f3:6d:8e:dc: 26:0a:90:7c:bc:61:43:47:21:be:c4:9f:f7:6c:4e:98:c8:0e: 65:62:be:8a:0d:4a:53:e6:10:e3:c0:84:40:7f:9c:85:24:65: fa:09:36:5b -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEi7u3PWt9VK6m1PkOAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI1MDIwMTAyMDAzOVoXDTI1MDUwMjAxMDAzOVowLzEtMCsGA1UEAxMk MDI1YjcwNDctYzIxMi00ODE0LTk5ZWUtN2M0OGQxMGMyM2I2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmAZptgKVU5oKz3cIepz6zD649b3TYY7VWQo wn+51IdZ9/kazPK5VKHQ6TQ2MXnh2ZN91VbPY+TVLBwG2CGZG0J32ybGwMNGzC20 /NUCXqXHoKBhuI48ua7eLSc/qzUugCzEWIyqbfXpikH+NhtPAmS2gcE7833biYTd Z7zjmdC20kSogWKBXkjsvfWrr7geaBI9/qisx+R+PUZmrahPP2qrXWXGIs4bHizA ezPfze7Mw8ZVxcVZUPTyYlAZZGmns4dI5OmnYRuIMlpF2RHyhV43nS3D5RyOOOqo jzcUIiQTzk66WiY2UCiNDMiGItVzgJ7VGz2sAd8lhyB44vE6zQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFNjT9irf/7HHhnr7F+CWOXsOclDMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvNTMyNTU5NjMtZTJkNC0z ZmZlLWI1NTYtYjBkMDFmNGUzODhkLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSeMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAH2/+d6R18iOLg5+vxZANuSB9135ht9SJ6gr2t40DN/OdpNAYDk8SUwU 1TtNCtc4hTPHGDfDMcvtmZafhkoVFP54hb7yO8GuTnYIT5msikPlMeRm6R6uscZy +XPLxPcOk2LOOG3TTzb5ltIRiHa39S5v+DBnfnecpxx1Ryq8LrbCJSf7hxrIOjG6 IvTDwrs+QNe/eRE8OFQJWGhi61iO/HtKum569HxYyeIxVselzfNoIXG7Du+uyBpf HJ5MH2Q+Qiw9nj3OCUzXo4fyRNY1nSTMlKFa822O3CYKkHy8YUNHIb7En/dsTpjI DmVivooNSlPmEOPAhEB/nIUkZfoJNls= -----END CERTIFICATE-----Generated at Sun Feb 16 15:16:37 2025 by rpki-client