$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa File: 8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa (raw, json) Hash identifier: xguiCO1WrVjp7mwmdM2f5Bsn5KlqzdLIBDzPPj/CZOs= Subject key identifier: 99:8A:2B:32:F2:45:8A:F6:AF:0A:A6:D7:2F:3E:C7:DF:08:79:86:DF Certificate issuer: /CN=1add3b23-5fb0-4412-be17-98450d352516 Certificate serial: 010D0C9F43285848AF2B7EBB1616FC0BCAEBF000 Authority key identifier: DF:D6:AB:35:08:C4:67:A3:69:8E:4B:5D:EA:87:78:C0:7A:1D:8E:26 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa Signing time: Mon 27 Jan 2025 14:00:52 +0000 ROA not before: Mon 27 Jan 2025 14:00:52 +0000 ROA not after: Sun 27 Apr 2025 13:00:52 +0000 asID: 400209 IP address blocks: 209.143.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:af:2b:7e:bb:16:16:fc:0b:ca:eb:f0:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1add3b23-5fb0-4412-be17-98450d352516 Validity Not Before: Jan 27 14:00:52 2025 GMT Not After : Apr 27 13:00:52 2025 GMT Subject: CN=f99877ca-9bd6-44a9-b9a1-7b241c92e9a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:4b:7c:4c:20:f3:2c:40:25:69:e0:95:73:26: ad:74:fd:34:c4:f8:be:24:38:33:98:74:bb:21:e0: 51:bc:27:5b:b3:fa:b4:a7:75:08:58:eb:d0:79:49: 7c:72:64:4e:66:5d:e1:88:26:11:1b:cb:1b:54:f9: 24:5e:64:e2:29:06:38:ce:e3:a6:af:8d:a3:47:69: 38:9a:13:c8:3d:c5:66:21:e4:b4:82:bd:63:3c:c9: b8:01:82:fd:28:f3:33:43:44:82:ed:15:55:9a:94: 32:9a:38:13:11:ec:8c:15:04:56:41:0f:a6:03:96: a8:33:b8:36:02:3c:80:7b:fd:c7:1a:b3:25:29:96: a1:b8:61:90:ee:1f:67:aa:7d:b1:4e:0c:90:8a:49: ec:2b:46:a0:da:d9:df:d7:4d:f9:95:0a:ec:31:94: f1:56:be:89:b2:ea:5a:a8:53:a0:00:1e:68:bd:88: b3:82:04:6e:38:e9:81:a3:2c:4d:1f:9b:2a:c4:b7: 1f:d8:e8:85:6f:11:de:f0:a9:62:9a:a3:d6:39:00: 73:5d:86:14:44:fd:9a:4a:8e:7b:13:ed:81:28:ad: 2e:ae:a5:9e:f7:aa:cb:4b:57:84:d5:7e:43:6d:c6: c5:7d:c1:a1:79:10:2c:d1:c5:c0:d0:6e:a1:90:e3: a6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8A:2B:32:F2:45:8A:F6:AF:0A:A6:D7:2F:3E:C7:DF:08:79:86:DF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.crl X509v3 Authority Key Identifier: keyid:DF:D6:AB:35:08:C4:67:A3:69:8E:4B:5D:EA:87:78:C0:7A:1D:8E:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer sbgp-ipAddrBlock: critical IPv4: 209.143.96.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 57:dc:3b:73:25:90:60:40:4f:0e:7d:40:c0:64:6e:e3:23:91: be:74:b1:0d:d4:c7:11:75:fd:e4:5b:45:29:17:87:cd:4e:86: 33:c3:e1:76:b9:c2:5b:cf:7b:df:bc:af:76:b9:c9:32:02:c5: af:38:07:c4:e6:5c:f2:1e:f5:83:e4:8b:4c:2c:ad:a9:5c:bf: a3:6e:2f:2f:e5:ed:07:17:da:25:bc:7f:e1:43:2c:bf:c1:94: 91:15:38:b8:d9:04:9c:03:a6:0b:01:72:cb:ed:82:27:ff:8a: fc:88:63:41:88:bf:04:73:8b:b4:d6:8d:1b:80:e5:c9:4b:ad: 42:56:a0:34:69:ce:dc:e0:b7:d4:b2:02:cb:a2:85:bd:53:38: f7:10:6c:b7:53:c5:fe:93:97:ac:6c:a2:98:46:11:f7:b6:6a: 72:1c:53:fc:af:dc:c7:2f:e1:b2:45:b5:b1:5a:39:09:03:ee: 01:2a:cc:c3:5a:41:f8:1b:b8:89:35:5e:57:28:14:3d:35:2b: d9:15:76:30:e8:f8:a2:2d:69:1b:da:65:4d:2c:55:be:28:6d: 55:24:98:69:1c:8d:ef:67:a8:74:eb:b8:24:91:71:f9:c6:f8: 63:ae:3c:7f:1f:ed:3c:23:69:dc:8f:82:a7:74:f8:76:63:f2: b5:31:7b:d3 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEivK367Fhb8C8rr8AAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWFkZDNiMjMtNWZiMC00NDEyLWJlMTctOTg0NTBkMzUy NTE2MB4XDTI1MDEyNzE0MDA1MloXDTI1MDQyNzEzMDA1MlowLzEtMCsGA1UEAxMk Zjk5ODc3Y2EtOWJkNi00NGE5LWI5YTEtN2IyNDFjOTJlOWE4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg0t8TCDzLEAlaeCVcyatdP00xPi+JDgzmHS7 IeBRvCdbs/q0p3UIWOvQeUl8cmROZl3hiCYRG8sbVPkkXmTiKQY4zuOmr42jR2k4 mhPIPcVmIeS0gr1jPMm4AYL9KPMzQ0SC7RVVmpQymjgTEeyMFQRWQQ+mA5aoM7g2 AjyAe/3HGrMlKZahuGGQ7h9nqn2xTgyQiknsK0ag2tnf1035lQrsMZTxVr6Jsupa qFOgAB5ovYizggRuOOmBoyxNH5sqxLcf2OiFbxHe8KlimqPWOQBzXYYURP2aSo57 E+2BKK0urqWe96rLS1eE1X5DbcbFfcGheRAs0cXA0G6hkOOmtwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJmKKzLyRYr2rwqm1y8+x98IeYbfMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8xYWRk M2IyMy01ZmIwLTQ0MTItYmUxNy05ODQ1MGQzNTI1MTYvOGEyMzQ0M2QtMWVkOC0z ZDgwLWFjMDItYmQzZGYzZDhmMWI3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMWFkZDNiMjMtNWZiMC00NDEyLWJl MTctOTg0NTBkMzUyNTE2LzFhZGQzYjIzLTVmYjAtNDQxMi1iZTE3LTk4NDUwZDM1 MjUxNi5jcmwwHwYDVR0jBBgwFoAU39arNQjEZ6Npjktd6od4wHodjiYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8xYWRkM2IyMy01ZmIwLTQ0MTItYmUxNy05ODQ1 MGQzNTI1MTYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0Y9gMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFfcO3MlkGBATw59QMBkbuMjkb50sQ3UxxF1/eRbRSkXh81OhjPD4Xa5 wlvPe9+8r3a5yTICxa84B8TmXPIe9YPki0wsralcv6NuLy/l7QcX2iW8f+FDLL/B lJEVOLjZBJwDpgsBcsvtgif/ivyIY0GIvwRzi7TWjRuA5clLrUJWoDRpztzgt9Sy Asuihb1TOPcQbLdTxf6Tl6xsophGEfe2anIcU/yv3Mcv4bJFtbFaOQkD7gEqzMNa QfgbuIk1XlcoFD01K9kVdjDo+KItaRvaZU0sVb4obVUkmGkcje9nqHTruCSRcfnG +GOuPH8f7TwjadyPgqd0+HZj8rUxe9M= -----END CERTIFICATE-----Generated at Sat Apr 12 15:01:11 2025 by rpki-client