$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/dad7d956-91ce-309d-a710-c9e480e1eb82.roa File: dad7d956-91ce-309d-a710-c9e480e1eb82.roa (raw, json) Hash identifier: rwEmm6BkoqufAhsKXi+PIWNBZcCNh6y4X5Ouq4MrIMo= Subject key identifier: 12:8C:98:55:26:16:BB:CD:BC:A1:EE:C1:E7:0B:3C:C5:92:1E:82:0E Certificate issuer: /CN=5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca Certificate serial: 010D0C9F432858497279AF6E5EE7B9A1F2388000 Authority key identifier: 02:5F:8E:3F:1A:33:F6:22:34:19:90:CE:F1:19:AB:2B:9B:5B:AF:79 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/dad7d956-91ce-309d-a710-c9e480e1eb82.roa Signing time: Mon 07 Apr 2025 13:00:59 +0000 ROA not before: Mon 07 Apr 2025 13:00:59 +0000 ROA not after: Sun 06 Jul 2025 13:00:59 +0000 asID: 400644 IP address blocks: 2620:aa:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:72:79:af:6e:5e:e7:b9:a1:f2:38:80:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca Validity Not Before: Apr 7 13:00:59 2025 GMT Not After : Jul 6 13:00:59 2025 GMT Subject: CN=13c622df-45dc-45ae-aee3-bd7f34dda416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:02:fb:95:6b:20:f1:c1:b3:6f:5c:d9:3e:82: 96:ac:31:20:7e:91:c6:7a:98:63:9f:09:d6:b9:80: e7:62:4c:a4:1c:9b:df:44:9b:fd:3d:54:8a:06:87: e6:fe:1a:d0:15:8d:d2:74:1a:de:07:d3:63:a9:d9: e6:bf:e2:8d:b0:cf:69:fd:ab:22:5d:3e:3d:2e:76: e3:6e:60:af:44:9b:a3:96:8d:08:9f:90:23:9d:1a: 1d:1b:55:1f:66:ce:91:b4:d7:5b:43:bd:81:59:3d: 3b:e4:02:89:6d:b7:b8:02:7c:00:01:d0:ef:28:af: 5d:0b:d9:60:e0:35:2d:c8:87:e0:6f:e8:b7:25:11: 81:0c:af:5f:5c:2c:57:c2:f7:61:7b:58:59:03:d0: 20:38:be:1b:a8:c0:9c:c1:d3:d8:45:6d:b1:ea:c0: 14:ef:39:fc:4e:68:a0:4d:35:ee:63:dd:fe:cf:be: 21:89:61:1f:e4:ca:e9:16:1f:ee:bf:0a:64:23:d7: 3d:95:9b:e1:10:85:31:9a:d3:dd:1b:20:25:e6:5d: db:49:ab:0c:f1:14:ce:23:29:78:d0:71:63:72:8c: a9:10:45:26:6d:f2:f0:1f:4d:ef:e2:27:75:5f:b2: 7f:9a:09:47:89:70:43:78:0a:8c:cd:27:d0:01:39: 51:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8C:98:55:26:16:BB:CD:BC:A1:EE:C1:E7:0B:3C:C5:92:1E:82:0E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/dad7d956-91ce-309d-a710-c9e480e1eb82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.crl X509v3 Authority Key Identifier: keyid:02:5F:8E:3F:1A:33:F6:22:34:19:90:CE:F1:19:AB:2B:9B:5B:AF:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5ba1aa8a-bad6-4e09-a4c6-ac424f04f5ca.cer sbgp-ipAddrBlock: critical IPv6: 2620:aa:a000::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 37:57:7f:06:03:41:70:eb:03:91:1a:86:b3:99:6d:f1:a9:14: 1d:d6:99:55:5b:d9:54:51:16:4b:ab:a2:27:81:d0:e0:84:19: 15:8a:60:6b:7c:38:48:ae:f9:d7:18:8a:d1:ff:81:99:47:6a: bb:9c:8f:01:58:38:c6:15:aa:a7:33:16:aa:ae:ab:24:b2:10: 07:1c:e0:91:b3:19:4c:a1:3a:e4:51:57:25:e8:fa:44:9e:e2: f0:90:43:b0:8a:2c:81:ee:78:ac:fa:37:37:b9:e7:25:1b:af: d8:d5:7a:3d:e9:53:4f:06:d0:62:f5:4c:80:35:37:89:a2:d5: 24:79:d1:48:e2:48:bb:db:00:db:f6:48:1f:bc:37:5f:8b:71: 54:ff:b6:37:1e:d8:16:9a:08:33:27:4b:9b:67:ae:17:4d:a9: 57:3d:bd:c9:f7:45:fa:0e:1a:3a:fe:e6:c1:75:57:b2:66:ab: 41:a7:5f:91:d5:ea:35:ea:69:0c:17:88:bc:8c:b9:a1:27:00: 57:78:97:d7:35:7b:9f:22:06:ff:1f:af:d1:af:7c:23:18:cd: 86:db:85:e9:41:cd:68:fa:7d:f5:4d:4c:e2:10:06:0f:22:52: 9c:45:4c:b0:3f:56:1b:43:77:4d:ba:80:0d:4d:88:79:46:ec: 22:1e:a8:d2 -----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgIUAQ0Mn0MoWElyea9uXue5ofI4gAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWJhMWFhOGEtYmFkNi00ZTA5LWE0YzYtYWM0MjRmMDRm NWNhMB4XDTI1MDQwNzEzMDA1OVoXDTI1MDcwNjEzMDA1OVowLzEtMCsGA1UEAxMk MTNjNjIyZGYtNDVkYy00NWFlLWFlZTMtYmQ3ZjM0ZGRhNDE2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwL7lWsg8cGzb1zZPoKWrDEgfpHGephjnwnW uYDnYkykHJvfRJv9PVSKBofm/hrQFY3SdBreB9Njqdnmv+KNsM9p/asiXT49Lnbj bmCvRJujlo0In5AjnRodG1UfZs6RtNdbQ72BWT075AKJbbe4AnwAAdDvKK9dC9lg 4DUtyIfgb+i3JRGBDK9fXCxXwvdhe1hZA9AgOL4bqMCcwdPYRW2x6sAU7zn8Tmig TTXuY93+z74hiWEf5MrpFh/uvwpkI9c9lZvhEIUxmtPdGyAl5l3bSasM8RTOIyl4 0HFjcoypEEUmbfLwH03v4id1X7J/mglHiXBDeAqMzSfQATlRawIDAQABo4IDWDCC A1QwHQYDVR0OBBYEFBKMmFUmFrvNvKHuwecLPMWSHoIOMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS81YmEx YWE4YS1iYWQ2LTRlMDktYTRjNi1hYzQyNGYwNGY1Y2EvZGFkN2Q5NTYtOTFjZS0z MDlkLWE3MTAtYzllNDgwZTFlYjgyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNWJhMWFhOGEtYmFkNi00ZTA5LWE0 YzYtYWM0MjRmMDRmNWNhLzViYTFhYThhLWJhZDYtNGUwOS1hNGM2LWFjNDI0ZjA0 ZjVjYS5jcmwwHwYDVR0jBBgwFoAUAl+OPxoz9iI0GZDO8RmrK5tbr3kwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS81YmExYWE4YS1iYWQ2LTRlMDktYTRjNi1hYzQy NGYwNGY1Y2EuY2VyMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJiAAqqAA MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBADdXfwYDQXDrA5EahrOZbfGpFB3WmVVb2VRRFkuroieB0OCEGRWK YGt8OEiu+dcYitH/gZlHarucjwFYOMYVqqczFqquqySyEAcc4JGzGUyhOuRRVyXo +kSe4vCQQ7CKLIHueKz6Nze55yUbr9jVej3pU08G0GL1TIA1N4mi1SR50UjiSLvb ANv2SB+8N1+LcVT/tjce2BaaCDMnS5tnrhdNqVc9vcn3RfoOGjr+5sF1V7Jmq0Gn X5HV6jXqaQwXiLyMuaEnAFd4l9c1e58iBv8fr9GvfCMYzYbbhelBzWj6ffVNTOIQ Bg8iUpxFTLA/VhtDd026gA1NiHlG7CIeqNI= -----END CERTIFICATE-----Generated at Sat Apr 12 15:01:05 2025 by rpki-client