$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa File: b640e40a-1d4d-3423-99a0-815a476ab16e.roa (raw, json) Hash identifier: GvdkhErbW9omnLuSfmD5IGKWgGqAhb5xqhP4VkrCKj0= Subject key identifier: 85:D4:B3:0C:D9:D5:B0:99:83:CB:50:F0:DA:AB:76:CD:44:D3:4F:A2 Certificate issuer: /CN=28df346d-3f66-4555-b2ab-67f450efdcb3 Certificate serial: 010D0C9F43285848A400B8C451ED89B8E35E5A88 Authority key identifier: D1:31:34:B4:B4:77:2C:0C:8A:FF:F5:82:03:50:28:76:EA:E5:1D:9E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa Signing time: Thu 23 Jan 2025 14:00:52 +0000 ROA not before: Thu 23 Jan 2025 14:00:52 +0000 ROA not after: Wed 23 Apr 2025 13:00:52 +0000 asID: 14230 IP address blocks: 2604:9b00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:a4:00:b8:c4:51:ed:89:b8:e3:5e:5a:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28df346d-3f66-4555-b2ab-67f450efdcb3 Validity Not Before: Jan 23 14:00:52 2025 GMT Not After : Apr 23 13:00:52 2025 GMT Subject: CN=0a2d24d2-fb26-4922-b0af-371517a86882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:08:2a:4e:33:93:d3:48:4c:d9:15:b5:e3:7d: 34:ce:7a:ac:5d:d4:53:30:1f:c3:bf:8a:0e:b0:77: be:04:52:3f:fa:fb:83:5c:c7:1b:72:07:16:cc:2b: b2:ed:bc:4b:37:6d:2f:4b:56:04:56:2a:71:b9:31: 40:c8:43:eb:61:89:ad:64:70:9b:ed:f4:8d:5d:22: 89:2e:ae:85:4d:a7:8f:51:30:78:f9:37:42:cb:a7: b7:b4:6a:bf:4c:19:2b:fd:06:65:6f:72:66:81:37: 4e:b6:3d:67:8f:38:34:17:71:26:7b:a4:da:55:99: 46:1f:dd:b9:61:da:c0:56:ad:54:b7:38:ae:fe:eb: 1d:0b:3b:f4:f2:29:6e:d1:9d:2e:af:6f:6c:81:b1: 3a:27:2e:68:ce:d9:d0:62:f7:05:f7:97:ed:f2:47: 45:d2:89:c2:1e:d5:40:77:9f:46:d9:4f:fa:15:12: b9:22:c2:c6:72:1c:9c:50:74:33:b4:ab:1c:74:7b: ce:bd:b9:be:0c:b7:b1:95:d8:0d:41:97:ed:df:c8: 07:79:f0:13:95:4b:c3:db:40:25:94:d5:93:62:51: 05:cb:1d:c6:cc:1a:e5:46:6c:93:4b:c1:ab:b1:8e: de:50:73:7e:b0:65:6f:9a:be:15:6c:65:f7:38:83: 1e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D4:B3:0C:D9:D5:B0:99:83:CB:50:F0:DA:AB:76:CD:44:D3:4F:A2 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.crl X509v3 Authority Key Identifier: keyid:D1:31:34:B4:B4:77:2C:0C:8A:FF:F5:82:03:50:28:76:EA:E5:1D:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer sbgp-ipAddrBlock: critical IPv6: 2604:9b00::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 62:56:c4:ad:d4:c6:2b:01:81:81:f6:50:3a:db:07:6b:2b:de: 8c:00:28:2c:dc:38:fa:c4:38:e5:82:91:bf:f1:ac:98:24:af: ab:7f:a6:af:6e:74:2e:f5:d6:b0:fb:8c:0b:de:14:ab:29:1a: 3c:24:a6:4a:cb:38:61:27:f8:c2:78:96:69:c7:05:ea:1a:57: cd:91:20:de:8c:34:ed:c4:aa:bc:88:df:8e:91:7c:77:ed:d3: d1:a5:6f:13:98:ac:24:a3:09:fc:b2:1d:6d:0a:e5:66:b8:3d: 24:41:b9:c4:3e:6b:a7:a1:38:4d:34:5f:92:f5:70:62:7f:19: 04:a6:61:7a:64:18:6f:89:63:09:ca:1f:66:5c:8b:6b:10:d9: bc:df:a8:87:d7:03:d3:ac:72:1e:8d:78:8c:06:f7:70:50:7f: 32:23:1d:2e:13:11:cc:df:8e:cc:38:5b:6c:a3:aa:91:09:12: 5e:dc:c6:6c:1f:19:30:54:84:f6:71:89:74:ed:fe:da:01:4e: 02:ad:21:2e:84:3a:89:f8:fa:5b:e6:b9:6c:2d:5b:35:1e:77: a0:fe:6d:40:f9:ea:3a:52:7f:76:fe:67:29:1c:30:5c:39:72: 9f:60:55:b0:18:4c:84:76:61:05:62:b7:65:ec:f5:0f:39:ee: 33:ef:72:40 -----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgIUAQ0Mn0MoWEikALjEUe2JuONeWogwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjhkZjM0NmQtM2Y2Ni00NTU1LWIyYWItNjdmNDUwZWZk Y2IzMB4XDTI1MDEyMzE0MDA1MloXDTI1MDQyMzEzMDA1MlowLzEtMCsGA1UEAxMk MGEyZDI0ZDItZmIyNi00OTIyLWIwYWYtMzcxNTE3YTg2ODgyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjggqTjOT00hM2RW14300znqsXdRTMB/Dv4oO sHe+BFI/+vuDXMcbcgcWzCuy7bxLN20vS1YEVipxuTFAyEPrYYmtZHCb7fSNXSKJ Lq6FTaePUTB4+TdCy6e3tGq/TBkr/QZlb3JmgTdOtj1njzg0F3Eme6TaVZlGH925 YdrAVq1Utziu/usdCzv08ilu0Z0ur29sgbE6Jy5oztnQYvcF95ft8kdF0onCHtVA d59G2U/6FRK5IsLGchycUHQztKscdHvOvbm+DLexldgNQZft38gHefATlUvD20Al lNWTYlEFyx3GzBrlRmyTS8GrsY7eUHN+sGVvmr4VbGX3OIMeFQIDAQABo4IDVjCC A1IwHQYDVR0OBBYEFIXUswzZ1bCZg8tQ8Nqrds1E00+iMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8yOGRm MzQ2ZC0zZjY2LTQ1NTUtYjJhYi02N2Y0NTBlZmRjYjMvYjY0MGU0MGEtMWQ0ZC0z NDIzLTk5YTAtODE1YTQ3NmFiMTZlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMjhkZjM0NmQtM2Y2Ni00NTU1LWIy YWItNjdmNDUwZWZkY2IzLzI4ZGYzNDZkLTNmNjYtNDU1NS1iMmFiLTY3ZjQ1MGVm ZGNiMy5jcmwwHwYDVR0jBBgwFoAU0TE0tLR3LAyK//WCA1AodurlHZ4wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8yOGRmMzQ2ZC0zZjY2LTQ1NTUtYjJhYi02N2Y0 NTBlZmRjYjMuY2VyMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJgSbADBU BgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8v d3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEB CwUAA4IBAQBiVsSt1MYrAYGB9lA62wdrK96MACgs3Dj6xDjlgpG/8ayYJK+rf6av bnQu9daw+4wL3hSrKRo8JKZKyzhhJ/jCeJZpxwXqGlfNkSDejDTtxKq8iN+OkXx3 7dPRpW8TmKwkown8sh1tCuVmuD0kQbnEPmunoThNNF+S9XBifxkEpmF6ZBhviWMJ yh9mXItrENm836iH1wPTrHIejXiMBvdwUH8yIx0uExHM347MOFtso6qRCRJe3MZs HxkwVIT2cYl07f7aAU4CrSEuhDqJ+Ppb5rlsLVs1Hneg/m1A+eo6Un92/mcpHDBc OXKfYFWwGEyEdmEFYrdl7PUPOe4z73JA -----END CERTIFICATE-----Generated at Sun Apr 6 17:54:04 2025 by rpki-client