$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/0be9c008-0b81-3981-bdaa-c2c0d0ec1e7a.roa File: 0be9c008-0b81-3981-bdaa-c2c0d0ec1e7a.roa (raw, json) Hash identifier: e/jgG3MYBjrByQAshY3gSAc1dxLE3vnaJClAz7iAxBI= Subject key identifier: 3E:49:4A:4A:9B:76:F5:60:D5:27:A7:C5:4D:0F:B8:A8:6A:4F:82:96 Certificate issuer: /CN=20defc99-73f1-4ccf-93ff-ac08b7301a18 Certificate serial: 010D0C9F43285849E91FA3D846370AE3EC80AE80 Authority key identifier: 19:52:F4:3C:BD:DA:D0:41:D8:6F:9A:EA:9A:E8:5C:4C:55:4D:78:63 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/0be9c008-0b81-3981-bdaa-c2c0d0ec1e7a.roa Signing time: Tue 20 May 2025 01:00:49 +0000 ROA not before: Tue 20 May 2025 01:00:49 +0000 ROA not after: Mon 18 Aug 2025 01:00:49 +0000 asID: 29757 IP address blocks: 23.168.193.0/24 maxlen: 24 104.153.44.0/24 maxlen: 24 104.153.45.0/24 maxlen: 24 104.153.46.0/24 maxlen: 24 104.153.47.0/24 maxlen: 24 162.217.144.0/24 maxlen: 24 162.217.145.0/24 maxlen: 24 162.217.146.0/24 maxlen: 24 162.217.147.0/24 maxlen: 24 192.231.255.0/24 maxlen: 24 199.231.92.0/24 maxlen: 24 199.231.93.0/24 maxlen: 24 199.231.94.0/24 maxlen: 24 199.231.95.0/24 maxlen: 24 208.72.20.0/22 maxlen: 22 208.93.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/20defc99-73f1-4ccf-93ff-ac08b7301a18.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/20defc99-73f1-4ccf-93ff-ac08b7301a18.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:e9:1f:a3:d8:46:37:0a:e3:ec:80:ae:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20defc99-73f1-4ccf-93ff-ac08b7301a18 Validity Not Before: May 20 01:00:49 2025 GMT Not After : Aug 18 01:00:49 2025 GMT Subject: CN=c98d6c58-a0f2-413d-857d-ee54d9f48a9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:b2:c1:08:8e:c4:24:90:91:a3:75:4e:c2:ff: 20:77:d5:97:85:5f:46:a2:3b:bc:f3:0a:ee:3f:f9: eb:d7:db:bf:f7:23:37:b0:eb:3f:15:b3:26:ba:df: 38:5d:20:ea:c6:35:46:11:80:59:1f:99:92:2f:ae: 4f:23:6f:5d:78:ea:35:57:6e:a7:a7:cd:00:45:6a: 01:c0:b4:70:bd:02:c1:f8:40:4d:84:62:05:00:4a: 1a:74:9f:73:26:df:f0:a0:2a:79:47:46:cf:58:f9: 12:e9:49:44:23:32:06:13:04:bb:ee:14:f7:ee:43: ac:60:3f:41:ad:3d:54:5e:64:ac:f0:17:7f:d7:75: f9:07:8f:a1:7d:38:98:51:eb:a3:b4:16:39:1e:43: fb:09:2d:a1:46:7b:23:33:4b:4c:ae:82:81:d9:3f: 91:70:5e:55:45:3e:33:a9:bf:93:ad:d3:5c:ca:ab: 23:72:36:1a:75:23:9b:62:56:b9:fd:e8:ba:b2:1c: 0b:09:5b:6d:2c:f1:9c:50:48:4d:4b:d6:32:91:f3: 60:6e:7b:f4:b8:49:e7:50:58:3b:a6:32:d1:31:8b: ec:96:63:c9:a5:1d:2b:4e:c4:72:c1:c1:29:4b:5f: 8d:40:b4:4c:15:cc:b8:b5:93:f0:4d:c4:72:70:cb: 24:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:49:4A:4A:9B:76:F5:60:D5:27:A7:C5:4D:0F:B8:A8:6A:4F:82:96 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/0be9c008-0b81-3981-bdaa-c2c0d0ec1e7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/20defc99-73f1-4ccf-93ff-ac08b7301a18.crl X509v3 Authority Key Identifier: keyid:19:52:F4:3C:BD:DA:D0:41:D8:6F:9A:EA:9A:E8:5C:4C:55:4D:78:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18.cer sbgp-ipAddrBlock: critical IPv4: 23.168.193.0/24 104.153.44.0/22 162.217.144.0/22 192.231.255.0/24 199.231.92.0/22 208.72.20.0/22 208.93.216.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 71:69:74:75:f4:b2:70:d2:0b:4f:b3:2c:67:d8:92:52:64:40: a2:37:a8:b8:1d:79:68:37:41:5b:f3:6b:24:7b:64:fc:c0:a3: 29:2f:86:c7:1f:f3:e7:e3:86:c6:f2:3c:4c:6c:12:96:a0:fa: f6:3f:33:70:c5:11:89:b6:cd:45:d7:b3:48:24:8d:4e:48:ed: 21:7d:93:02:54:ca:d2:0c:44:9b:11:f9:e0:10:6e:ae:99:cc: 9f:8b:dd:30:a3:68:23:89:11:ae:ad:59:59:13:ed:42:88:ea: d4:4a:ca:ee:00:4c:11:43:d2:c0:d9:7c:55:11:3f:5b:68:f5: 7e:51:e5:f8:c1:4f:a7:86:7b:b3:97:55:ca:d1:a5:7a:8d:68: 03:94:70:06:d5:37:1f:70:9d:37:d8:bf:2e:a2:b0:53:47:e6: bd:de:6c:24:87:bf:56:8b:42:84:0e:8e:db:79:95:50:a0:bb: b7:20:be:9d:c2:58:2a:f5:de:80:3f:0c:9f:a2:57:8c:24:c6: 14:47:7e:f5:5b:3b:14:70:59:cc:35:4c:22:4e:1a:2f:ac:49: d2:0a:51:ad:00:ad:b6:d9:2d:d5:9d:ef:6f:ea:24:b8:7d:01: 52:d3:20:67:0c:e5:f2:bc:18:c0:e1:44:f5:47:ef:a6:bf:b4: e9:21:2a:6e -----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgIUAQ0Mn0MoWEnpH6PYRjcK4+yAroAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjBkZWZjOTktNzNmMS00Y2NmLTkzZmYtYWMwOGI3MzAx YTE4MB4XDTI1MDUyMDAxMDA0OVoXDTI1MDgxODAxMDA0OVowLzEtMCsGA1UEAxMk Yzk4ZDZjNTgtYTBmMi00MTNkLTg1N2QtZWU1NGQ5ZjQ4YTlkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiLLBCI7EJJCRo3VOwv8gd9WXhV9Goju88wru P/nr19u/9yM3sOs/FbMmut84XSDqxjVGEYBZH5mSL65PI29deOo1V26np80ARWoB wLRwvQLB+EBNhGIFAEoadJ9zJt/woCp5R0bPWPkS6UlEIzIGEwS77hT37kOsYD9B rT1UXmSs8Bd/13X5B4+hfTiYUeujtBY5HkP7CS2hRnsjM0tMroKB2T+RcF5VRT4z qb+TrdNcyqsjcjYadSObYla5/ei6shwLCVttLPGcUEhNS9YykfNgbnv0uEnnUFg7 pjLRMYvslmPJpR0rTsRywcEpS1+NQLRMFcy4tZPwTcRycMsksQIDAQABo4IDeTCC A3UwHQYDVR0OBBYEFD5JSkqbdvVg1SenxU0PuKhqT4KWMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8yMGRl ZmM5OS03M2YxLTRjY2YtOTNmZi1hYzA4YjczMDFhMTgvMGJlOWMwMDgtMGI4MS0z OTgxLWJkYWEtYzJjMGQwZWMxZTdhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NmZlMTFkNC1k MzUyLTQ5OTQtOGY2Yy1kNmM5MWIwYjg0MTUvMjBkZWZjOTktNzNmMS00Y2NmLTkz ZmYtYWMwOGI3MzAxYTE4LzIwZGVmYzk5LTczZjEtNGNjZi05M2ZmLWFjMDhiNzMw MWExOC5jcmwwHwYDVR0jBBgwFoAUGVL0PL3a0EHYb5rqmuhcTFVNeGMwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5 NC04ZjZjLWQ2YzkxYjBiODQxNS8yMGRlZmM5OS03M2YxLTRjY2YtOTNmZi1hYzA4 YjczMDFhMTguY2VyMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAF6jBAwQC aJksAwQCotmQAwQAwOf/AwQCx+dcAwQC0EgUAwQC0F3YMFQGA1UdIAEB/wRKMEgw RgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQv cmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBAHFpdHX0 snDSC0+zLGfYklJkQKI3qLgdeWg3QVvzayR7ZPzAoykvhscf8+fjhsbyPExsEpag +vY/M3DFEYm2zUXXs0gkjU5I7SF9kwJUytIMRJsR+eAQbq6ZzJ+L3TCjaCOJEa6t WVkT7UKI6tRKyu4ATBFD0sDZfFURP1to9X5R5fjBT6eGe7OXVcrRpXqNaAOUcAbV Nx9wnTfYvy6isFNH5r3ebCSHv1aLQoQOjtt5lVCgu7cgvp3CWCr13oA/DJ+iV4wk xhRHfvVbOxRwWcw1TCJOGi+sSdIKUa0ArbbZLdWd72/qJLh9AVLTIGcM5fK8GMDh RPVH76a/tOkhKm4= -----END CERTIFICATE-----Generated at Sat Jun 7 21:13:12 2025 by rpki-client