$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee/4e8a6a60-1d92-37f6-9990-fdedce5dd603.roa File: 4e8a6a60-1d92-37f6-9990-fdedce5dd603.roa (raw, json) Hash identifier: ClU8HBUudmzGzxfgr3YY6vauQfswLlNpcIzEPB9obXw= Subject key identifier: 71:F5:E2:FE:0C:84:7F:69:16:E0:85:C7:8E:91:FF:45:2D:C1:B0:4C Certificate issuer: /CN=72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee Certificate serial: 010D0C9F4328584905B6AF1E6EE949943D318080 Authority key identifier: 27:B8:A3:DD:49:F5:D9:F3:10:53:B6:43:5A:C2:38:B8:25:A7:D7:7D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee/4e8a6a60-1d92-37f6-9990-fdedce5dd603.roa Signing time: Thu 27 Feb 2025 14:00:51 +0000 ROA not before: Thu 27 Feb 2025 14:00:51 +0000 ROA not after: Wed 28 May 2025 13:00:51 +0000 asID: 26946 IP address blocks: 207.28.238.0/24 maxlen: 24 207.165.60.0/24 maxlen: 24 207.165.200.0/24 maxlen: 24 207.165.223.0/24 maxlen: 24 207.165.224.0/23 maxlen: 24 209.56.112.0/23 maxlen: 24 209.56.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:05:b6:af:1e:6e:e9:49:94:3d:31:80:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee Validity Not Before: Feb 27 14:00:51 2025 GMT Not After : May 28 13:00:51 2025 GMT Subject: CN=a4c5589f-d793-40aa-a2c8-5e3dc46ffe98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:28:03:01:08:4e:ec:9e:76:cd:81:3b:a3:2e: ab:af:07:05:ff:e0:95:29:55:bf:cd:8d:4a:1d:d1: f8:2d:1c:4b:51:0e:62:d1:0d:8c:6a:3b:0c:07:30: 92:07:46:10:29:3d:89:4d:0e:47:48:00:58:ea:fb: 21:1f:fa:67:ab:82:11:b8:a2:b8:be:e2:96:ad:2d: fb:11:cb:a4:21:6d:83:e9:32:ab:05:55:f7:7c:14: e3:19:a9:da:d0:8c:db:e7:58:5f:d6:44:c1:05:c7: 61:e8:c4:27:c9:e6:b0:9f:a7:17:7c:89:88:7e:93: e0:d4:59:f8:8c:27:c3:f6:66:c1:8b:da:1b:0c:6e: b6:90:d9:fb:94:4b:8c:2e:30:e8:d2:88:96:b1:3b: b7:b1:03:61:e0:56:46:49:32:16:65:f9:0a:30:d5: 07:f3:a1:a7:6c:c1:0a:57:ca:02:c4:cf:92:cc:4b: b9:f0:39:f8:51:77:06:0c:88:0f:8f:0b:e0:6e:62: e0:d9:87:5e:87:33:62:70:3a:a5:27:30:85:cc:d4: 34:fc:a6:51:bb:db:e4:33:64:65:0b:81:88:37:7d: 62:4f:13:6f:06:08:9b:23:71:20:b0:46:de:6b:bf: 82:5f:01:12:25:26:60:b9:ee:fa:fc:2d:4e:ee:3d: 92:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F5:E2:FE:0C:84:7F:69:16:E0:85:C7:8E:91:FF:45:2D:C1:B0:4C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee/4e8a6a60-1d92-37f6-9990-fdedce5dd603.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee.crl X509v3 Authority Key Identifier: keyid:27:B8:A3:DD:49:F5:D9:F3:10:53:B6:43:5A:C2:38:B8:25:A7:D7:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/72ef7c9b-c756-439a-ac59-0fb5e5e8c1ee.cer sbgp-ipAddrBlock: critical IPv4: 207.28.238.0/24 207.165.60.0/24 207.165.200.0/24 207.165.223.0-207.165.225.255 209.56.112.0/23 209.56.158.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 00:de:ca:bd:41:76:0c:dc:09:1b:c8:46:e9:96:15:9b:cf:ec: 20:a6:56:c4:86:c7:51:d8:46:56:75:55:b2:02:07:e0:3c:16: 7b:ab:85:e0:23:19:a4:3e:03:60:9f:88:44:85:a0:bc:f7:3d: cd:1a:ea:bf:8d:df:52:9a:34:0f:7f:4b:30:49:e7:48:72:35: 7b:e4:ce:4e:5f:ae:4c:f1:a5:ce:48:3d:4c:cd:a3:59:10:2e: 10:8a:80:da:0b:a6:2d:f6:a9:55:95:d9:72:bd:64:0b:f0:f1: 0e:32:d7:c2:5b:78:53:98:93:6c:86:78:58:db:50:c0:8b:2a: 51:7e:63:27:0c:65:f4:a8:5d:bd:11:7e:fe:1b:f6:f4:1f:ef: a5:81:4d:ff:24:b9:2e:b8:a7:ba:55:30:3e:18:8e:82:16:dd: 44:bd:69:05:10:7d:c4:ca:a4:af:03:87:8f:61:e3:90:fc:c6: 98:b6:c4:29:9b:73:ee:2c:28:cf:ae:46:0c:00:7d:d8:9e:0d: 4b:a5:86:d8:e1:1e:ab:12:51:41:49:c7:3b:7b:62:10:5d:87: 4b:56:8a:cb:97:cc:94:b2:10:87:30:9d:7a:15:29:33:fa:6f: 71:d7:06:14:f6:c0:c8:bf:dc:95:32:cf:b5:82:07:d1:86:ce: 16:a0:5b:8d -----BEGIN CERTIFICATE----- MIIGaTCCBVGgAwIBAgIUAQ0Mn0MoWEkFtq8ebulJlD0xgIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNzJlZjdjOWItYzc1Ni00MzlhLWFjNTktMGZiNWU1ZThj MWVlMB4XDTI1MDIyNzE0MDA1MVoXDTI1MDUyODEzMDA1MVowLzEtMCsGA1UEAxMk YTRjNTU4OWYtZDc5My00MGFhLWEyYzgtNWUzZGM0NmZmZTk4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSgDAQhO7J52zYE7oy6rrwcF/+CVKVW/zY1K HdH4LRxLUQ5i0Q2MajsMBzCSB0YQKT2JTQ5HSABY6vshH/pnq4IRuKK4vuKWrS37 EcukIW2D6TKrBVX3fBTjGana0Izb51hf1kTBBcdh6MQnyeawn6cXfImIfpPg1Fn4 jCfD9mbBi9obDG62kNn7lEuMLjDo0oiWsTu3sQNh4FZGSTIWZfkKMNUH86GnbMEK V8oCxM+SzEu58Dn4UXcGDIgPjwvgbmLg2YdehzNicDqlJzCFzNQ0/KZRu9vkM2Rl C4GIN31iTxNvBgibI3EgsEbea7+CXwESJSZgue76/C1O7j2SrQIDAQABo4IDezCC A3cwHQYDVR0OBBYEFHH14v4MhH9pFuCFx46R/0UtwbBMMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzg3MWRhNDBmLTc5M2EtNGE0NS1hMGE5LTk3ODE0ODMyMWEwNy83MmVm N2M5Yi1jNzU2LTQzOWEtYWM1OS0wZmI1ZTVlOGMxZWUvNGU4YTZhNjAtMWQ5Mi0z N2Y2LTk5OTAtZmRlZGNlNWRkNjAzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy84NzFkYTQwZi03 OTNhLTRhNDUtYTBhOS05NzgxNDgzMjFhMDcvNzJlZjdjOWItYzc1Ni00MzlhLWFj NTktMGZiNWU1ZThjMWVlLzcyZWY3YzliLWM3NTYtNDM5YS1hYzU5LTBmYjVlNWU4 YzFlZS5jcmwwHwYDVR0jBBgwFoAUJ7ij3Un12fMQU7ZDWsI4uCWn130wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2EtNGE0 NS1hMGE5LTk3ODE0ODMyMWEwNy83MmVmN2M5Yi1jNzU2LTQzOWEtYWM1OS0wZmI1 ZTVlOGMxZWUuY2VyMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQAzxzuAwQA z6U8AwQAz6XIMAwDBADPpd8DBAHPpeADBAHROHADBAHROJ4wVAYDVR0gAQH/BEow SDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5l dC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAAN7K vUF2DNwJG8hG6ZYVm8/sIKZWxIbHUdhGVnVVsgIH4DwWe6uF4CMZpD4DYJ+IRIWg vPc9zRrqv43fUpo0D39LMEnnSHI1e+TOTl+uTPGlzkg9TM2jWRAuEIqA2gumLfap VZXZcr1kC/DxDjLXwlt4U5iTbIZ4WNtQwIsqUX5jJwxl9KhdvRF+/hv29B/vpYFN /yS5LrinulUwPhiOghbdRL1pBRB9xMqkrwOHj2HjkPzGmLbEKZtz7iwoz65GDAB9 2J4NS6WG2OEeqxJRQUnHO3tiEF2HS1aKy5fMlLIQhzCdehUpM/pvcdcGFPbAyL/c lTLPtYIH0YbOFqBbjQ== -----END CERTIFICATE-----Generated at Fri Apr 4 19:26:09 2025 by rpki-client