$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/561680dd-d76f-3173-b887-f57d9e178ec2.roa File: 561680dd-d76f-3173-b887-f57d9e178ec2.roa (raw, json) Hash identifier: ZlO39brk23BSylwerU2/nLxX7FyGYIi4Jw/xVsfv7ok= Subject key identifier: C5:6A:6F:CD:37:36:29:33:74:C6:F1:5F:2D:95:11:10:31:C9:8A:4C Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F43285848BBBB7364DEE18D78AA08EC80 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/561680dd-d76f-3173-b887-f57d9e178ec2.roa Signing time: Sat 01 Feb 2025 02:00:39 +0000 ROA not before: Sat 01 Feb 2025 02:00:39 +0000 ROA not after: Fri 02 May 2025 01:00:39 +0000 asID: 394437 IP address blocks: 72.20.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:bb:bb:73:64:de:e1:8d:78:aa:08:ec:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Feb 1 02:00:39 2025 GMT Not After : May 2 01:00:39 2025 GMT Subject: CN=bc4a3b5e-3532-4a9f-903d-d4ee627beb31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:64:3a:35:10:40:52:8b:67:48:83:05:ed:75: 3e:18:b8:b3:d4:65:44:2d:d8:71:6d:28:93:cc:1e: 8a:25:16:75:1a:cb:7a:cf:25:57:ec:5a:cf:19:e7: 6a:5a:07:c3:50:2b:cf:0e:97:50:ba:32:72:f7:53: 1b:b7:c6:52:d0:9d:68:aa:09:fa:b7:3a:c4:f9:53: 90:ed:ce:c2:0a:2f:43:ad:e5:f6:a7:e6:ad:42:17: fd:64:0d:e1:34:97:ac:3d:53:e5:9b:9e:fd:c5:97: 3f:59:87:6a:49:1c:15:28:ae:9a:53:72:13:b4:90: 1a:64:59:da:d2:dd:37:b0:a6:2c:f6:5d:68:2d:86: 82:01:38:57:80:22:6f:f9:5d:3b:2b:19:6e:f0:e4: ee:2b:9a:98:9c:fd:41:de:8f:9a:d7:f9:f9:38:fd: 26:97:2f:88:01:36:4e:b6:e7:05:b9:ca:93:3b:11: c1:ed:c3:86:0c:31:97:70:ca:e4:55:eb:a2:c2:95: 30:2d:1c:1e:ce:cc:54:53:45:28:66:8e:13:50:a3: ec:0a:44:16:a3:3c:30:e7:66:f2:8d:63:52:bb:96: 22:36:4a:7d:1e:59:c6:aa:07:2b:02:50:68:4f:4c: 12:47:fe:ce:b6:9a:27:37:99:31:6c:c5:03:02:19: bc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6A:6F:CD:37:36:29:33:74:C6:F1:5F:2D:95:11:10:31:C9:8A:4C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/561680dd-d76f-3173-b887-f57d9e178ec2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 72.20.140.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 5e:b6:a5:99:55:c5:6d:0e:2d:46:99:2c:ad:d1:ca:b0:0f:66: 86:fc:a0:19:3e:eb:0e:2a:28:ab:8e:3a:7c:1f:25:11:91:45: 0d:95:34:bf:a1:d0:44:5e:5e:b1:fe:f1:11:f5:b7:f6:ed:ba: 0e:5d:ba:1d:f0:d7:bb:50:b4:5e:e3:53:66:f3:fb:e1:49:73: c2:e1:8e:e0:8b:27:c7:9f:2d:f1:43:67:e7:3d:72:8e:0a:90: b4:8a:37:e9:24:14:25:9b:4c:68:ad:98:c6:3b:0d:12:ab:53: 6f:e0:b9:fd:d0:df:ab:e1:04:41:39:93:da:47:25:e7:b4:01: cf:8e:ae:11:b7:92:6d:d7:7a:3a:15:31:62:74:fd:02:8c:1d: ee:0e:ef:70:eb:84:e7:74:59:7e:2b:df:27:79:e5:f2:0f:f1: 36:1b:ac:ab:ac:06:4f:f6:d5:48:f3:f1:c5:1b:c6:e0:3b:89: 7e:62:92:0a:13:65:08:61:a5:35:a2:b7:25:01:32:b4:95:32: a0:89:e3:fd:4d:ac:14:17:2a:f6:50:55:84:5f:ad:7d:ec:ae: dd:a1:8c:7b:90:87:97:6b:f7:28:04:8e:49:9a:79:4b:c7:2a: 54:69:f9:6f:c3:46:e2:dc:75:57:f2:05:22:75:ed:1c:a0:b5: 54:38:29:34 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEi7u3Nk3uGNeKoI7IAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI1MDIwMTAyMDAzOVoXDTI1MDUwMjAxMDAzOVowLzEtMCsGA1UEAxMk YmM0YTNiNWUtMzUzMi00YTlmLTkwM2QtZDRlZTYyN2JlYjMxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWQ6NRBAUotnSIMF7XU+GLiz1GVELdhxbSiT zB6KJRZ1Gst6zyVX7FrPGedqWgfDUCvPDpdQujJy91Mbt8ZS0J1oqgn6tzrE+VOQ 7c7CCi9DreX2p+atQhf9ZA3hNJesPVPlm579xZc/WYdqSRwVKK6aU3ITtJAaZFna 0t03sKYs9l1oLYaCAThXgCJv+V07Kxlu8OTuK5qYnP1B3o+a1/n5OP0mly+IATZO tucFucqTOxHB7cOGDDGXcMrkVeuiwpUwLRwezsxUU0UoZo4TUKPsCkQWozww52by jWNSu5YiNkp9HlnGqgcrAlBoT0wSR/7OtponN5kxbMUDAhm8WwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFMVqb803NikzdMbxXy2VERAxyYpMMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvNTYxNjgwZGQtZDc2Zi0z MTczLWI4ODctZjU3ZDllMTc4ZWMyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSMMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAF62pZlVxW0OLUaZLK3RyrAPZob8oBk+6w4qKKuOOnwfJRGRRQ2VNL+h 0EReXrH+8RH1t/btug5duh3w17tQtF7jU2bz++FJc8LhjuCLJ8efLfFDZ+c9co4K kLSKN+kkFCWbTGitmMY7DRKrU2/guf3Q36vhBEE5k9pHJee0Ac+OrhG3km3XejoV MWJ0/QKMHe4O73DrhOd0WX4r3yd55fIP8TYbrKusBk/21Ujz8cUbxuA7iX5ikgoT ZQhhpTWityUBMrSVMqCJ4/1NrBQXKvZQVYRfrX3srt2hjHuQh5dr9ygEjkmaeUvH KlRp+W/DRuLcdVfyBSJ17RygtVQ4KTQ= -----END CERTIFICATE-----Generated at Fri Mar 14 10:09:08 2025 by rpki-client