$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/83bb3784-a10a-3b7d-b772-d2cdf95fb419.roa File: 83bb3784-a10a-3b7d-b772-d2cdf95fb419.roa (raw, json) Hash identifier: fZKRa3V1KvPdvcpGQ/J4ataszEUR7BcLiP7+9O8wKz8= Subject key identifier: 2C:92:F0:F7:65:DA:BE:52:37:F8:92:4D:3B:04:1F:AE:CD:4D:07:75 Certificate issuer: /CN=bebad29c-c2e4-447d-a29e-20f329219ea9 Certificate serial: 010D0C9F43285848D0ABB6F36351C9ED97B2E100 Authority key identifier: 07:3C:51:6D:EA:85:18:32:66:CA:85:68:84:47:38:0F:36:B9:52:10 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/83bb3784-a10a-3b7d-b772-d2cdf95fb419.roa Signing time: Sat 08 Feb 2025 14:00:52 +0000 ROA not before: Sat 08 Feb 2025 14:00:52 +0000 ROA not after: Fri 09 May 2025 13:00:52 +0000 asID: 16509 IP address blocks: 66.235.130.0/24 maxlen: 24 172.82.196.0/24 maxlen: 24 172.82.209.0/24 maxlen: 24 172.82.216.0/24 maxlen: 24 172.82.217.0/24 maxlen: 24 172.82.218.0/24 maxlen: 24 172.82.219.0/24 maxlen: 24 172.82.220.0/24 maxlen: 24 172.82.223.0/24 maxlen: 24 172.82.242.0/24 maxlen: 24 172.82.243.0/24 maxlen: 24 192.243.225.0/24 maxlen: 24 192.243.228.0/24 maxlen: 24 192.243.229.0/24 maxlen: 24 208.67.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/bebad29c-c2e4-447d-a29e-20f329219ea9.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/bebad29c-c2e4-447d-a29e-20f329219ea9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:d0:ab:b6:f3:63:51:c9:ed:97:b2:e1:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bebad29c-c2e4-447d-a29e-20f329219ea9 Validity Not Before: Feb 8 14:00:52 2025 GMT Not After : May 9 13:00:52 2025 GMT Subject: CN=d5cb43cb-8f77-483a-b64b-e4ec865aafad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:07:e3:65:79:d7:90:c9:4e:15:82:5b:f0:b7: 87:d1:7e:f0:77:3c:c3:3f:0e:58:f6:29:66:40:37: 5c:1d:8d:63:2a:c4:a1:f1:45:5a:13:21:ac:0c:b2: 89:8d:33:bf:e3:78:10:e7:00:ca:31:72:99:70:65: 0f:b3:b2:ca:91:b4:a2:86:78:a9:8a:bd:7d:66:31: 51:0e:63:1b:8d:21:6b:77:18:3c:fd:32:38:f7:bd: 09:ba:92:6c:87:fd:b5:fb:96:b1:d1:e7:b3:39:0e: e8:50:c4:23:6f:4d:01:12:96:a7:7c:d4:8a:c4:07: 93:2c:96:30:42:41:44:3e:e3:15:6d:cb:d6:8c:95: e3:cf:9f:af:0e:fc:ea:b0:4f:5d:4f:83:ab:22:3d: da:be:ef:31:f1:03:74:19:f0:ad:d6:68:5e:31:5a: 95:5a:a9:06:67:e2:29:e1:36:7e:76:35:26:ae:dc: 17:05:9f:d9:c9:1f:57:ba:92:40:7b:a9:c6:c4:82: 32:09:6d:b4:ac:35:5d:a2:06:a9:46:fc:d3:19:6c: 41:94:8e:70:46:ea:14:df:be:26:86:b0:ff:67:c4: 4a:da:70:fc:fb:4a:59:1c:da:06:52:49:98:eb:7e: 70:b3:e0:36:7c:7d:b5:36:91:30:d3:ed:64:0c:ef: f0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:92:F0:F7:65:DA:BE:52:37:F8:92:4D:3B:04:1F:AE:CD:4D:07:75 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/83bb3784-a10a-3b7d-b772-d2cdf95fb419.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/bebad29c-c2e4-447d-a29e-20f329219ea9.crl X509v3 Authority Key Identifier: keyid:07:3C:51:6D:EA:85:18:32:66:CA:85:68:84:47:38:0F:36:B9:52:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9.cer sbgp-ipAddrBlock: critical IPv4: 66.235.130.0/24 172.82.196.0/24 172.82.209.0/24 172.82.216.0-172.82.220.255 172.82.223.0/24 172.82.242.0/23 192.243.225.0/24 192.243.228.0/23 208.67.42.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 19:15:89:0c:67:fc:3c:18:1a:d0:cf:cd:7f:de:cd:99:96:58: 28:2c:76:f6:3a:e7:5e:6b:a8:5c:1d:8a:29:00:38:40:b5:82: 4d:be:52:28:d7:8c:00:96:fc:41:01:ea:c3:ee:99:3b:ab:8e: 75:3d:b4:7d:b9:22:83:22:1b:72:67:51:1c:ec:d5:2a:12:60: 48:a8:a3:c4:33:f4:84:c4:31:3e:d5:0a:31:46:6f:5e:6f:84: 28:cc:63:77:eb:c9:b4:c0:5e:ba:b3:d4:32:5a:d6:bf:e8:a6: 0e:00:c5:04:54:2d:ca:95:7d:1e:e3:e9:34:34:b6:89:a6:89: 86:fb:60:b8:0d:46:67:8c:ac:97:aa:11:b7:bc:7b:df:1b:64: d4:0e:a7:f6:da:fa:07:19:a5:97:d9:66:05:8c:8c:18:e1:df: dd:e7:f2:89:d6:26:86:bf:9b:39:4d:4f:ed:0f:42:b2:a5:d7: 8d:b0:6a:a9:9e:fd:e6:64:eb:b9:57:7e:53:83:49:b4:25:0e: ea:ba:46:e6:7e:ed:d3:84:b6:90:04:3f:d3:9d:ad:aa:f4:94: 03:87:e2:58:77:8b:df:3f:25:c8:73:8c:f7:cb:b6:48:cd:6f: 35:96:55:20:b8:da:c6:d5:f0:e9:6d:0e:c7:65:2b:48:15:61: 0e:86:fd:aa -----BEGIN CERTIFICATE----- MIIGezCCBWOgAwIBAgIUAQ0Mn0MoWEjQq7bzY1HJ7Zey4QAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmViYWQyOWMtYzJlNC00NDdkLWEyOWUtMjBmMzI5MjE5 ZWE5MB4XDTI1MDIwODE0MDA1MloXDTI1MDUwOTEzMDA1MlowLzEtMCsGA1UEAxMk ZDVjYjQzY2ItOGY3Ny00ODNhLWI2NGItZTRlYzg2NWFhZmFkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjAfjZXnXkMlOFYJb8LeH0X7wdzzDPw5Y9ilm QDdcHY1jKsSh8UVaEyGsDLKJjTO/43gQ5wDKMXKZcGUPs7LKkbSihnipir19ZjFR DmMbjSFrdxg8/TI4970JupJsh/21+5ax0eezOQ7oUMQjb00BEpanfNSKxAeTLJYw QkFEPuMVbcvWjJXjz5+vDvzqsE9dT4OrIj3avu8x8QN0GfCt1mheMVqVWqkGZ+Ip 4TZ+djUmrtwXBZ/ZyR9XupJAe6nGxIIyCW20rDVdogapRvzTGWxBlI5wRuoU374m hrD/Z8RK2nD8+0pZHNoGUkmY635ws+A2fH21NpEw0+1kDO/wiQIDAQABo4IDjTCC A4kwHQYDVR0OBBYEFCyS8Pdl2r5SN/iSTTsEH67NTQd1MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS9iZWJh ZDI5Yy1jMmU0LTQ0N2QtYTI5ZS0yMGYzMjkyMTllYTkvODNiYjM3ODQtYTEwYS0z YjdkLWI3NzItZDJjZGY5NWZiNDE5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NmZlMTFkNC1k MzUyLTQ5OTQtOGY2Yy1kNmM5MWIwYjg0MTUvYmViYWQyOWMtYzJlNC00NDdkLWEy OWUtMjBmMzI5MjE5ZWE5L2JlYmFkMjljLWMyZTQtNDQ3ZC1hMjllLTIwZjMyOTIx OWVhOS5jcmwwHwYDVR0jBBgwFoAUBzxRbeqFGDJmyoVohEc4Dza5UhAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5 NC04ZjZjLWQ2YzkxYjBiODQxNS9iZWJhZDI5Yy1jMmU0LTQ0N2QtYTI5ZS0yMGYz MjkyMTllYTkuY2VyMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQAQuuCAwQA rFLEAwQArFLRMAwDBAOsUtgDBACsUtwDBACsUt8DBAGsUvIDBADA8+EDBAHA8+QD BADQQyowVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixo dHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkq hkiG9w0BAQsFAAOCAQEAGRWJDGf8PBga0M/Nf97NmZZYKCx29jrnXmuoXB2KKQA4 QLWCTb5SKNeMAJb8QQHqw+6ZO6uOdT20fbkigyIbcmdRHOzVKhJgSKijxDP0hMQx PtUKMUZvXm+EKMxjd+vJtMBeurPUMlrWv+imDgDFBFQtypV9HuPpNDS2iaaJhvtg uA1GZ4ysl6oRt7x73xtk1A6n9tr6Bxmll9lmBYyMGOHf3efyidYmhr+bOU1P7Q9C sqXXjbBqqZ795mTruVd+U4NJtCUO6rpG5n7t04S2kAQ/052tqvSUA4fiWHeL3z8l yHOM98u2SM1vNZZVILjaxtXw6W0Ox2UrSBVhDob9qg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:40:41 2025 by rpki-client