$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa File: 83a687bd-8f33-38a0-b954-7a7150c2e666.roa (raw, json) Hash identifier: klevoz0ev41+Aa+i04fO9e6bp7pNbVzloF77Y7BFUc8= Subject key identifier: 95:2B:81:EF:0F:D4:A8:3E:DC:F9:F4:30:4E:58:6A:F1:FC:C2:43:FB Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F4328584909E6A518BFF50ECA9E98C580 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa Signing time: Sat 01 Mar 2025 02:00:39 +0000 ROA not before: Sat 01 Mar 2025 02:00:39 +0000 ROA not after: Fri 30 May 2025 01:00:39 +0000 asID: 394437 IP address blocks: 209.173.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 12 Apr 2025 05:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:09:e6:a5:18:bf:f5:0e:ca:9e:98:c5:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Mar 1 02:00:39 2025 GMT Not After : May 30 01:00:39 2025 GMT Subject: CN=78ecf08d-8932-4d29-a599-d3ecf4ed542e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e7:35:3a:ce:bb:ff:dd:a5:ff:10:2d:1f:7d: 20:1d:7a:d4:44:60:86:60:92:fb:8a:56:09:20:22: a5:84:c3:21:ac:0d:db:91:1b:6b:80:a3:a6:21:60: 58:4b:c6:6a:4c:e6:83:ba:00:fc:c2:e2:22:df:af: b3:c2:28:d2:b5:87:2c:5a:e7:73:8a:e6:02:45:73: 7c:35:f9:a4:5d:06:f0:6b:99:b1:a8:2a:7f:cd:22: 96:a1:ce:94:7b:23:e1:21:3d:9f:ee:ea:ae:bf:e2: 93:49:91:fb:8d:7b:19:2a:94:03:81:e3:35:00:94: 99:d8:7f:28:01:b2:71:01:27:3e:7f:79:e4:75:4e: 04:bc:2d:21:a4:8c:b9:7b:47:e2:b3:f9:9e:7d:b6: 12:6c:70:62:93:88:97:b6:34:94:d3:0f:d8:87:79: 14:8b:1e:8b:6b:70:c0:3a:05:14:dd:ef:29:9e:a9: 20:98:f9:36:35:f1:64:2a:94:49:2a:20:55:fa:98: 91:73:fc:7c:90:b7:ce:fe:83:11:7b:e7:57:21:9a: b8:0b:c0:4a:71:0d:f5:fe:ef:f6:4b:f6:8d:24:3d: 40:6a:ef:c7:37:e8:ed:ef:13:ad:c7:70:4d:0b:40: 77:e7:7e:77:9c:c8:0a:e8:e7:dd:ba:bc:f9:10:f1: 9b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:2B:81:EF:0F:D4:A8:3E:DC:F9:F4:30:4E:58:6A:F1:FC:C2:43:FB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 209.173.252.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0e:d0:b8:41:53:2d:db:0c:72:26:c9:3f:9b:1d:33:87:2a:fd: a3:08:b8:9d:93:3a:9d:48:82:d8:7e:b3:bc:02:78:22:b8:02: 34:c6:b4:48:c2:95:f6:af:07:f6:85:4b:6b:4c:df:ad:4b:a7: ea:0d:d2:7e:a1:9e:19:76:d8:bd:44:7c:c1:c1:39:7b:3e:ce: 18:a6:8c:69:f3:08:d1:1b:77:78:e4:c4:37:4c:4e:a9:2e:1e: 33:34:ff:18:e7:72:08:24:cd:53:f5:a3:31:ee:0c:05:30:d9: fe:f7:bb:4c:3b:00:12:84:1d:47:52:7b:37:21:f4:d4:fb:bd: 99:c6:77:85:a6:d3:d3:e0:af:77:5e:4f:b9:8c:17:8b:a6:d8: d0:a0:f2:e9:e8:d2:62:df:12:28:f4:4e:d1:bb:b7:3f:59:ba: 22:ae:9a:72:bf:1e:fa:e5:9e:f9:78:f3:8d:36:d5:55:09:5c: 97:04:12:2c:d7:cb:d9:9e:b3:e1:21:ad:9d:c7:30:67:65:7d: 40:71:0d:cf:be:ca:3c:1d:41:74:4c:f1:2b:b9:6b:03:61:82: 3a:8f:94:c6:41:d7:18:3e:79:38:9a:aa:ed:25:d7:9e:6f:8b: b4:cf:69:82:24:b5:d0:ef:95:86:d6:2f:27:86:38:d7:fe:f5: ce:63:22:77 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEkJ5qUYv/UOyp6YxYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI1MDMwMTAyMDAzOVoXDTI1MDUzMDAxMDAzOVowLzEtMCsGA1UEAxMk NzhlY2YwOGQtODkzMi00ZDI5LWE1OTktZDNlY2Y0ZWQ1NDJlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquc1Os67/92l/xAtH30gHXrURGCGYJL7ilYJ ICKlhMMhrA3bkRtrgKOmIWBYS8ZqTOaDugD8wuIi36+zwijStYcsWudziuYCRXN8 NfmkXQbwa5mxqCp/zSKWoc6UeyPhIT2f7uquv+KTSZH7jXsZKpQDgeM1AJSZ2H8o AbJxASc+f3nkdU4EvC0hpIy5e0fis/mefbYSbHBik4iXtjSU0w/Yh3kUix6La3DA OgUU3e8pnqkgmPk2NfFkKpRJKiBV+piRc/x8kLfO/oMRe+dXIZq4C8BKcQ31/u/2 S/aNJD1Aau/HN+jt7xOtx3BNC0B35353nMgK6Ofdurz5EPGbRwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJUrge8P1Kg+3Pn0ME5YavH8wkP7MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvODNhNjg3YmQtOGYzMy0z OGEwLWI5NTQtN2E3MTUwYzJlNjY2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC0a38MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAA7QuEFTLdsMcibJP5sdM4cq/aMIuJ2TOp1Igth+s7wCeCK4AjTGtEjC lfavB/aFS2tM361Lp+oN0n6hnhl22L1EfMHBOXs+zhimjGnzCNEbd3jkxDdMTqku HjM0/xjncggkzVP1ozHuDAUw2f73u0w7ABKEHUdSezch9NT7vZnGd4Wm09Pgr3de T7mMF4um2NCg8uno0mLfEij0TtG7tz9ZuiKumnK/Hvrlnvl484021VUJXJcEEizX y9mes+EhrZ3HMGdlfUBxDc++yjwdQXRM8Su5awNhgjqPlMZB1xg+eTiaqu0l155v i7TPaYIktdDvlYbWLyeGONf+9c5jInc= -----END CERTIFICATE-----Generated at Thu Apr 10 15:11:21 2025 by rpki-client