$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa File: 83a687bd-8f33-38a0-b954-7a7150c2e666.roa (raw, json) Hash identifier: Aq6HQK7ch34QDVyvBdSmLnU2B8LyKfzTEFCjri45hts= Subject key identifier: CB:8D:99:93:44:29:12:9B:CD:46:93:F8:81:A3:2D:69:53:43:3B:C5 Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F43285849E91FA5E845DED5D7E1942B00 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa Signing time: Tue 20 May 2025 01:00:49 +0000 ROA not before: Tue 20 May 2025 01:00:49 +0000 ROA not after: Mon 18 Aug 2025 01:00:49 +0000 asID: 394437 IP address blocks: 209.173.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Jul 2025 05:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:e9:1f:a5:e8:45:de:d5:d7:e1:94:2b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: May 20 01:00:49 2025 GMT Not After : Aug 18 01:00:49 2025 GMT Subject: CN=f169dc88-176b-4a84-8120-5841b0eba7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:2d:71:64:8d:f0:c7:4d:b4:3b:34:51:6f:b5: 23:9f:d3:c5:73:cd:33:04:7b:ac:97:04:eb:9d:0d: 43:ee:05:d9:dd:4c:10:2c:6c:87:59:33:79:86:0f: d3:dc:01:f8:c9:6d:a6:e1:c4:ad:cd:a7:4a:b5:45: 4e:a5:72:2e:27:86:d1:58:4a:68:1e:5e:98:1c:3c: 9f:18:f6:6b:4b:93:7a:61:a8:e4:d1:37:18:d7:45: 5b:77:31:9a:63:aa:08:54:a1:b5:52:2e:72:92:52: 78:d6:98:71:d4:f6:64:ba:59:a2:6c:63:4b:a6:32: 1d:9a:6d:e8:48:86:69:63:85:62:23:f8:17:c7:64: 99:12:80:e1:8f:3b:6b:aa:07:75:43:ca:17:9e:00: 98:64:c3:9e:d6:1d:85:a2:ac:2d:2f:98:a3:74:0b: f3:77:fe:54:b5:15:37:39:e3:8a:32:98:f6:10:b5: 8c:d0:33:3f:a1:19:fa:3d:22:38:f7:c7:50:c2:e0: 21:45:c4:97:77:0c:86:d6:4f:91:1e:6e:a1:17:cf: 8a:7c:67:a6:0e:0e:7d:ab:a9:c1:08:6c:50:96:db: 75:80:dc:a3:95:74:8c:db:3e:11:63:51:03:e2:cf: 5f:2e:f0:50:43:cf:c4:77:ea:02:73:69:f2:34:55: 5f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:8D:99:93:44:29:12:9B:CD:46:93:F8:81:A3:2D:69:53:43:3B:C5 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 209.173.252.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption af:c4:8e:a6:69:ab:f2:60:94:97:76:d8:51:a2:c6:7e:f6:1b: 60:40:d7:23:77:23:e7:eb:9b:ac:83:7d:3d:37:fa:1e:b6:f2: 79:a7:53:5b:93:d0:1e:8d:25:47:aa:01:5a:ae:a5:ec:70:a6: a0:98:5a:97:96:c2:83:bb:14:75:8c:be:26:50:50:9d:b0:b8: e4:67:66:41:69:7a:1d:81:43:fd:51:d2:39:0f:4d:b3:60:06: 7f:2d:cb:b7:a3:51:b4:16:bd:12:5a:e5:4c:14:aa:b8:5f:ee: 68:ca:c9:c5:a8:73:b6:56:7a:30:45:53:e8:71:aa:4d:48:00: c8:d9:2f:75:d0:24:0c:ce:0d:20:88:56:d8:16:5c:f7:fd:c3: 73:3e:d5:b8:68:54:8d:6e:94:e7:c4:28:f0:ac:95:54:90:e9: a4:66:1b:13:46:4b:3e:a4:9f:21:95:7c:6d:6d:32:db:6f:52: a0:c6:36:d5:27:ad:56:4c:91:e4:93:1b:c7:7c:85:af:b7:ff: a2:2e:75:da:bf:1c:10:ba:71:ca:64:87:fb:73:08:4a:96:de: 68:88:22:2b:9c:1d:7c:22:b8:54:10:0b:da:2e:6d:31:f4:b5: 6c:ec:53:58:a7:c1:93:bf:46:b6:73:a6:64:f9:2b:b9:e2:d8: 13:f2:66:71 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEnpH6XoRd7V1+GUKwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI1MDUyMDAxMDA0OVoXDTI1MDgxODAxMDA0OVowLzEtMCsGA1UEAxMk ZjE2OWRjODgtMTc2Yi00YTg0LTgxMjAtNTg0MWIwZWJhN2Y2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhS1xZI3wx020OzRRb7Ujn9PFc80zBHuslwTr nQ1D7gXZ3UwQLGyHWTN5hg/T3AH4yW2m4cStzadKtUVOpXIuJ4bRWEpoHl6YHDyf GPZrS5N6Yajk0TcY10VbdzGaY6oIVKG1Ui5yklJ41phx1PZkulmibGNLpjIdmm3o SIZpY4ViI/gXx2SZEoDhjztrqgd1Q8oXngCYZMOe1h2FoqwtL5ijdAvzd/5UtRU3 OeOKMpj2ELWM0DM/oRn6PSI498dQwuAhRcSXdwyG1k+RHm6hF8+KfGemDg59q6nB CGxQltt1gNyjlXSM2z4RY1ED4s9fLvBQQ8/Ed+oCc2nyNFVfAQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFMuNmZNEKRKbzUaT+IGjLWlTQzvFMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvODNhNjg3YmQtOGYzMy0z OGEwLWI5NTQtN2E3MTUwYzJlNjY2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC0a38MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAK/EjqZpq/JglJd22FGixn72G2BA1yN3I+frm6yDfT03+h628nmnU1uT 0B6NJUeqAVqupexwpqCYWpeWwoO7FHWMviZQUJ2wuORnZkFpeh2BQ/1R0jkPTbNg Bn8ty7ejUbQWvRJa5UwUqrhf7mjKycWoc7ZWejBFU+hxqk1IAMjZL3XQJAzODSCI VtgWXPf9w3M+1bhoVI1ulOfEKPCslVSQ6aRmGxNGSz6knyGVfG1tMttvUqDGNtUn rVZMkeSTG8d8ha+3/6Iuddq/HBC6ccpkh/tzCEqW3miIIiucHXwiuFQQC9oubTH0 tWzsU1inwZO/RrZzpmT5K7ni2BPyZnE= -----END CERTIFICATE-----Generated at Thu Jul 10 20:12:46 2025 by rpki-client