$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa File: bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa (raw, json) Hash identifier: p8bKGXDw97DemUqAZ6o+8Ldgag60DU+kzIG8MBPOJLY= Subject key identifier: B5:F4:AB:9A:EB:DE:9F:17:0C:04:21:ED:26:DB:94:7C:A8:04:38:A9 Certificate issuer: /CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Certificate serial: 010D0C9F43285848B1F6313200BB7E788C64A400 Authority key identifier: AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa Signing time: Tue 28 Jan 2025 14:00:52 +0000 ROA not before: Tue 28 Jan 2025 14:00:52 +0000 ROA not after: Mon 28 Apr 2025 13:00:52 +0000 asID: 54994 IP address blocks: 157.185.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:b1:f6:31:32:00:bb:7e:78:8c:64:a4:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Validity Not Before: Jan 28 14:00:52 2025 GMT Not After : Apr 28 13:00:52 2025 GMT Subject: CN=3da43836-c43c-47db-b940-d8be26fcdb1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f5:25:c4:f8:2a:7e:60:17:df:0a:68:6d:16: 4d:03:04:8b:ab:eb:e2:05:f1:8e:0f:0e:24:52:9d: 89:d4:dd:f6:22:f2:05:e0:71:21:21:a2:8f:32:2b: 9f:14:c8:c1:6f:f7:45:43:f0:56:53:4d:34:0c:e7: a9:d4:93:c4:4e:e1:46:18:3b:13:97:f7:ab:2d:f1: 28:47:02:d8:76:cd:ce:01:58:ab:d4:5a:12:7a:f4: 2e:36:ba:c4:5b:bc:26:38:b7:31:72:87:8d:19:d3: eb:cf:41:29:25:6d:5d:75:0d:5f:a7:c8:7c:1c:a1: 90:84:4f:a2:be:f4:47:e4:b0:fa:e8:ee:36:4d:3d: d6:63:c0:f2:a1:34:9e:4b:0d:43:b1:29:33:43:9a: fe:e9:05:83:b7:7d:5a:cb:f0:28:15:59:3f:0b:b5: be:f3:d0:8f:4f:71:c5:b5:9a:5e:25:07:c8:c3:aa: 6d:e2:07:41:61:9e:a4:ee:0f:10:b7:da:eb:a7:b9: b1:da:91:8e:6d:f9:53:06:56:53:1f:d5:c4:22:29: 4e:02:03:3e:8a:df:5e:ba:fe:12:cc:a8:4f:1f:0d: b4:1f:dd:de:0d:87:dc:1f:2d:f8:db:66:dc:46:30: b0:4f:08:f9:a4:bd:7e:ca:97:02:f7:c7:8f:e4:3d: 01:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F4:AB:9A:EB:DE:9F:17:0C:04:21:ED:26:DB:94:7C:A8:04:38:A9 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl X509v3 Authority Key Identifier: keyid:AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer sbgp-ipAddrBlock: critical IPv4: 157.185.172.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3c:7c:de:a7:2b:01:cd:22:71:40:98:5f:c0:81:21:9b:dd:d6: 43:9b:7e:22:47:d8:b3:0b:46:58:78:a0:20:6f:d6:32:af:5f: 6e:25:a4:eb:62:80:65:98:4e:27:af:41:c8:e0:3b:2f:7e:a2: cb:1c:08:34:d6:10:33:6f:83:a3:fc:93:0d:db:f8:7f:65:ed: 95:50:31:44:74:47:ef:03:89:44:24:c3:2a:05:d4:16:e0:4e: 98:fd:56:3e:62:73:a4:cc:f1:21:5d:c0:2e:fb:94:04:79:da: e4:33:82:c8:f8:48:9c:a1:74:2d:0e:77:ad:a8:24:e2:cf:aa: eb:8f:27:11:cb:9e:6a:6a:3c:0d:b5:8f:86:5a:89:45:88:d0: 8b:66:9d:13:08:e7:99:91:56:f1:2d:9a:8d:f5:18:9c:77:c9: e1:c1:ec:51:48:89:48:c2:15:7f:8a:e4:9d:b4:d4:9d:3f:7b: 58:87:ab:55:3a:de:d1:da:d3:f8:92:74:09:9c:b6:d5:24:c2: 82:22:47:72:a9:75:72:41:84:d1:51:51:50:10:2f:4d:47:42: a2:32:0d:90:77:6e:53:4b:cc:08:df:62:b4:e3:20:30:af:54: f6:91:d2:0e:55:41:9f:1a:42:6f:58:4f:c1:f0:e8:38:ba:57: c3:e3:81:32 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEix9jEyALt+eIxkpAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDFkYmMwZDctNGVjZi00YjliLTljN2ItOTIwMGFmOTAy ZDFiMB4XDTI1MDEyODE0MDA1MloXDTI1MDQyODEzMDA1MlowLzEtMCsGA1UEAxMk M2RhNDM4MzYtYzQzYy00N2RiLWI5NDAtZDhiZTI2ZmNkYjFjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PUlxPgqfmAX3wpobRZNAwSLq+viBfGODw4k Up2J1N32IvIF4HEhIaKPMiufFMjBb/dFQ/BWU000DOep1JPETuFGGDsTl/erLfEo RwLYds3OAVir1FoSevQuNrrEW7wmOLcxcoeNGdPrz0EpJW1ddQ1fp8h8HKGQhE+i vvRH5LD66O42TT3WY8DyoTSeSw1DsSkzQ5r+6QWDt31ay/AoFVk/C7W+89CPT3HF tZpeJQfIw6pt4gdBYZ6k7g8Qt9rrp7mx2pGObflTBlZTH9XEIilOAgM+it9euv4S zKhPHw20H93eDYfcHy3422bcRjCwTwj5pL1+ypcC98eP5D0BnQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFLX0q5rr3p8XDAQh7SbblHyoBDipMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS80MWRi YzBkNy00ZWNmLTRiOWItOWM3Yi05MjAwYWY5MDJkMWIvYmZhMGJhYjMtYTU2NC0z ZTdjLWFiZDgtOGEwMDlmMTA0N2Y2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNDFkYmMwZDctNGVjZi00YjliLTlj N2ItOTIwMGFmOTAyZDFiLzQxZGJjMGQ3LTRlY2YtNGI5Yi05YzdiLTkyMDBhZjkw MmQxYi5jcmwwHwYDVR0jBBgwFoAUr+2KlmaX9JrFjYUWRsptXpsJ0LcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS80MWRiYzBkNy00ZWNmLTRiOWItOWM3Yi05MjAw YWY5MDJkMWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnbmsMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADx83qcrAc0icUCYX8CBIZvd1kObfiJH2LMLRlh4oCBv1jKvX24lpOti gGWYTievQcjgOy9+osscCDTWEDNvg6P8kw3b+H9l7ZVQMUR0R+8DiUQkwyoF1Bbg Tpj9Vj5ic6TM8SFdwC77lAR52uQzgsj4SJyhdC0Od62oJOLPquuPJxHLnmpqPA21 j4ZaiUWI0ItmnRMI55mRVvEtmo31GJx3yeHB7FFIiUjCFX+K5J201J0/e1iHq1U6 3tHa0/iSdAmcttUkwoIiR3KpdXJBhNFRUVAQL01HQqIyDZB3blNLzAjfYrTjIDCv VPaR0g5VQZ8aQm9YT8Hw6Di6V8PjgTI= -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:16 2025 by rpki-client