$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/866da3e0-0d2f-39e5-868b-2f60e4ff9061.roa File: 866da3e0-0d2f-39e5-868b-2f60e4ff9061.roa (raw, json) Hash identifier: GDHBg7vil9oLhM8gDakt+FtsQWgmpcns/0HAhLiGGds= Subject key identifier: 03:3A:A9:C8:5E:23:59:E6:8B:5E:43:F3:00:82:29:93:C0:A9:A4:C9 Certificate issuer: /CN=52cae98e-9a01-4898-90d2-074cdeea24fa Certificate serial: 010D0C9F43285848EF61407AC937B6D2E4D17080 Authority key identifier: 04:32:C6:95:F3:17:21:AC:38:14:2D:1B:34:49:13:9A:4E:D7:FD:DC Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/866da3e0-0d2f-39e5-868b-2f60e4ff9061.roa Signing time: Wed 19 Feb 2025 14:00:52 +0000 ROA not before: Wed 19 Feb 2025 14:00:52 +0000 ROA not after: Tue 20 May 2025 13:00:52 +0000 asID: 13325 IP address blocks: 204.25.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/52cae98e-9a01-4898-90d2-074cdeea24fa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/52cae98e-9a01-4898-90d2-074cdeea24fa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:ef:61:40:7a:c9:37:b6:d2:e4:d1:70:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cae98e-9a01-4898-90d2-074cdeea24fa Validity Not Before: Feb 19 14:00:52 2025 GMT Not After : May 20 13:00:52 2025 GMT Subject: CN=43d5d7b3-d8cf-485c-9ece-91824eec94f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:66:5e:2a:16:3e:73:68:34:15:d6:00:8c:56: f8:ee:ab:53:53:e6:00:3e:be:bd:98:12:ca:e4:af: 1b:c1:46:d6:51:84:36:d7:46:b5:82:bc:6d:6e:a7: ca:2f:62:93:8a:8c:7e:fc:d7:93:62:63:f2:08:11: 96:a6:07:04:7c:8c:af:2e:10:5c:df:b2:db:9c:c3: b4:6c:5e:03:d9:79:9d:d0:52:56:4c:80:27:07:64: 19:10:7f:84:0e:8b:d3:4e:5e:3a:cc:94:f1:0b:5b: e7:22:0a:a1:19:ab:c3:fd:6e:0d:f3:d1:b8:56:3f: 3a:20:b9:4f:18:d5:78:cc:99:81:48:cb:a3:a4:b1: f5:55:1f:9f:ce:d2:df:10:b0:2a:57:77:51:a6:e0: ca:74:e3:5f:91:45:99:72:11:97:e1:dc:5a:7f:6f: 67:bf:93:74:7e:b8:a4:51:83:2c:20:87:39:ad:1b: 14:80:1e:48:33:8b:d0:33:78:86:62:f7:a3:9a:06: 0e:f1:e2:11:4a:d8:a0:5f:01:96:9f:14:99:63:9c: a2:ab:51:6c:08:7f:fe:29:8b:c7:d0:0e:9b:74:38: 05:57:68:76:ed:65:0a:7d:87:4c:78:b3:74:11:18: 17:41:3b:56:55:c3:76:52:f3:cd:80:ab:4b:36:c0: 4c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:3A:A9:C8:5E:23:59:E6:8B:5E:43:F3:00:82:29:93:C0:A9:A4:C9 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/866da3e0-0d2f-39e5-868b-2f60e4ff9061.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/52cae98e-9a01-4898-90d2-074cdeea24fa.crl X509v3 Authority Key Identifier: keyid:04:32:C6:95:F3:17:21:AC:38:14:2D:1B:34:49:13:9A:4E:D7:FD:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa.cer sbgp-ipAddrBlock: critical IPv4: 204.25.0.0/17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2b:fa:20:d1:c6:a1:bb:af:bc:03:47:24:7f:0f:b4:40:44:66: ad:19:eb:b9:1f:9e:26:3a:ce:19:a1:d1:bb:fa:54:58:4a:f2: a4:31:8f:cc:c5:1b:ec:ee:d9:0a:39:bc:eb:7d:61:c9:34:2d: f6:e1:78:b5:69:98:90:07:5d:f9:96:0f:f8:fb:95:d9:8e:f0: cd:7d:f2:d1:a0:6f:17:61:cf:f0:31:44:2a:6d:e8:29:02:4e: fb:fb:9c:49:be:c3:c0:8c:af:98:17:6d:fd:cc:2e:a5:59:80: 3f:98:0c:01:4b:73:e4:60:5a:df:42:8b:44:68:88:42:ae:49: d9:86:f0:d1:de:ab:c4:df:fc:19:f1:fc:84:d4:bb:5a:d4:a4: 08:e6:e5:d8:d8:a0:23:bd:4a:bc:99:47:ea:aa:ec:e3:99:ea: 45:db:af:18:63:f8:e7:e4:b0:dd:51:dc:4b:4a:34:4d:05:2c: d5:af:3e:ff:73:04:c0:e7:b4:5b:c9:1f:eb:b0:6e:cf:cf:c8: 45:4e:16:88:96:44:34:8c:a1:fc:ad:0e:09:f5:d2:65:1e:56: 61:a2:ab:51:12:eb:0a:29:6b:22:03:f7:dd:f0:7b:47:05:87: 62:8f:bd:91:85:e6:64:07:3b:5f:e7:dd:b9:df:99:07:93:fd: 8e:93:d3:47 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEjvYUB6yTe20uTRcIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNTJjYWU5OGUtOWEwMS00ODk4LTkwZDItMDc0Y2RlZWEy NGZhMB4XDTI1MDIxOTE0MDA1MloXDTI1MDUyMDEzMDA1MlowLzEtMCsGA1UEAxMk NDNkNWQ3YjMtZDhjZi00ODVjLTllY2UtOTE4MjRlZWM5NGY4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmZeKhY+c2g0FdYAjFb47qtTU+YAPr69mBLK 5K8bwUbWUYQ210a1grxtbqfKL2KTiox+/NeTYmPyCBGWpgcEfIyvLhBc37LbnMO0 bF4D2Xmd0FJWTIAnB2QZEH+EDovTTl46zJTxC1vnIgqhGavD/W4N89G4Vj86ILlP GNV4zJmBSMujpLH1VR+fztLfELAqV3dRpuDKdONfkUWZchGX4dxaf29nv5N0frik UYMsIIc5rRsUgB5IM4vQM3iGYvejmgYO8eIRStigXwGWnxSZY5yiq1FsCH/+KYvH 0A6bdDgFV2h27WUKfYdMeLN0ERgXQTtWVcN2UvPNgKtLNsBMiwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFAM6qcheI1nmi15D8wCCKZPAqaTJMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS81MmNh ZTk4ZS05YTAxLTQ4OTgtOTBkMi0wNzRjZGVlYTI0ZmEvODY2ZGEzZTAtMGQyZi0z OWU1LTg2OGItMmY2MGU0ZmY5MDYxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNTJjYWU5OGUtOWEwMS00ODk4LTkw ZDItMDc0Y2RlZWEyNGZhLzUyY2FlOThlLTlhMDEtNDg5OC05MGQyLTA3NGNkZWVh MjRmYS5jcmwwHwYDVR0jBBgwFoAUBDLGlfMXIaw4FC0bNEkTmk7X/dwwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS81MmNhZTk4ZS05YTAxLTQ4OTgtOTBkMi0wNzRj ZGVlYTI0ZmEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHzBkAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACv6INHGobuvvANHJH8PtEBEZq0Z67kfniY6zhmh0bv6VFhK8qQxj8zF G+zu2Qo5vOt9Yck0LfbheLVpmJAHXfmWD/j7ldmO8M198tGgbxdhz/AxRCpt6CkC Tvv7nEm+w8CMr5gXbf3MLqVZgD+YDAFLc+RgWt9Ci0RoiEKuSdmG8NHeq8Tf/Bnx /ITUu1rUpAjm5djYoCO9SryZR+qq7OOZ6kXbrxhj+OfksN1R3EtKNE0FLNWvPv9z BMDntFvJH+uwbs/PyEVOFoiWRDSMofytDgn10mUeVmGiq1ES6wopayID993we0cF h2KPvZGF5mQHO1/n3bnfmQeT/Y6T00c= -----END CERTIFICATE-----Generated at Fri Apr 11 22:06:40 2025 by rpki-client