$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/41138728-4b0a-33e7-a5bd-ea7cb42a601e.roa File: 41138728-4b0a-33e7-a5bd-ea7cb42a601e.roa (raw, json) Hash identifier: dPXW+oU1lPzZWAX8+AVce/1H9o8SAz3vpgFIebYzK+s= Subject key identifier: 23:C4:A4:21:57:9C:1C:2A:79:E3:69:B5:BA:75:7A:13:1C:76:4F:CC Certificate issuer: /CN=70ddad33-55eb-4125-9221-0129168a645b Certificate serial: 010D0C9F432858491941830F2E3B2B0E1B3C3880 Authority key identifier: 7F:4C:A4:22:A3:CB:BB:A5:D6:77:9C:25:01:F3:7F:E5:D9:0E:B4:BD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/41138728-4b0a-33e7-a5bd-ea7cb42a601e.roa Signing time: Thu 06 Mar 2025 14:00:52 +0000 ROA not before: Thu 06 Mar 2025 14:00:52 +0000 ROA not after: Wed 04 Jun 2025 13:00:52 +0000 asID: 400341 IP address blocks: 165.140.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/70ddad33-55eb-4125-9221-0129168a645b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/70ddad33-55eb-4125-9221-0129168a645b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:19:41:83:0f:2e:3b:2b:0e:1b:3c:38:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70ddad33-55eb-4125-9221-0129168a645b Validity Not Before: Mar 6 14:00:52 2025 GMT Not After : Jun 4 13:00:52 2025 GMT Subject: CN=222dabf4-448b-49e0-8df2-6c135325f717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9a:01:be:4e:33:d4:44:3d:23:94:92:d2:90: b4:79:0a:93:99:42:67:67:fa:f9:58:24:10:a8:5a: ad:72:b1:4f:b4:ac:ee:e6:a5:78:10:85:10:0e:7a: 2a:9c:af:6f:02:df:70:59:10:42:27:a1:43:39:67: b3:8a:7e:67:cb:0e:ae:d8:e9:e5:4a:5c:6f:52:fb: eb:90:19:d4:d8:67:4b:bd:21:9d:41:da:68:fb:d9: bd:29:78:cb:e0:d7:fd:3d:a4:15:e3:b7:5c:e4:ad: a6:04:18:85:61:30:38:55:cd:7c:e0:d5:e6:d8:90: ec:46:cd:a2:5a:49:ac:12:01:b9:b9:a8:37:62:af: 29:ad:6e:74:84:69:a1:91:6b:b1:cb:fb:4e:f0:65: 54:6b:f9:01:83:f0:8e:2b:41:83:d1:b1:22:55:78: a8:31:74:89:1b:80:80:b5:a4:92:d1:80:ac:d4:82: 4e:75:5c:9c:1c:01:65:99:ff:e4:e2:8a:60:5f:df: 71:67:61:e7:3c:af:3e:0e:c0:19:ab:ad:6e:e4:5e: 9c:81:ba:87:60:d9:eb:64:d6:45:a0:86:d9:77:bb: 96:8a:11:6c:21:be:18:10:ca:5e:b2:17:8e:b4:df: 8b:af:f5:13:21:2e:44:cf:68:76:8b:6b:7e:fb:1a: 1f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C4:A4:21:57:9C:1C:2A:79:E3:69:B5:BA:75:7A:13:1C:76:4F:CC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/41138728-4b0a-33e7-a5bd-ea7cb42a601e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b/70ddad33-55eb-4125-9221-0129168a645b.crl X509v3 Authority Key Identifier: keyid:7F:4C:A4:22:A3:CB:BB:A5:D6:77:9C:25:01:F3:7F:E5:D9:0E:B4:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70ddad33-55eb-4125-9221-0129168a645b.cer sbgp-ipAddrBlock: critical IPv4: 165.140.216.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption a6:46:19:31:05:fd:c5:48:73:32:4b:9a:43:0f:95:f0:d7:31: c4:a6:76:67:27:aa:c3:60:d8:68:c8:4d:87:1c:d0:86:92:ba: 00:62:5b:d1:d9:54:9f:11:2e:7c:48:46:62:64:a5:e1:5a:25: 2b:ac:da:d2:5f:c2:24:9c:74:b8:58:97:1a:9d:03:9a:76:60: 6a:74:16:cb:22:9b:d1:02:79:4f:bc:85:97:91:6f:41:aa:a2: 8c:e7:2f:58:47:03:62:f5:8d:72:e2:7f:e7:f3:15:a2:57:aa: 7a:c9:04:c9:3b:6e:c1:36:47:b1:31:32:86:8b:f2:1f:93:51: 20:40:af:3a:53:92:d5:4e:29:66:33:c2:58:4b:68:92:3a:14: ca:9d:18:eb:5e:e0:75:82:36:b5:74:d7:2e:14:31:89:39:fd: d2:4d:66:2f:ec:4d:e1:4a:13:3c:56:43:b7:19:a3:c5:96:c3: 5a:0a:43:11:5d:24:16:e0:0f:66:80:7e:dd:90:c7:b9:cb:f1: fb:e6:41:fc:79:2e:78:f5:c5:33:d0:d0:3a:3c:ad:c7:c7:28: d7:17:eb:7e:04:db:d7:09:e4:1c:35:9f:12:4d:ef:60:3c:87: 47:0f:80:26:40:7a:0d:3c:d9:52:04:a1:9c:e9:41:93:42:e2: 80:04:a7:93 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEkZQYMPLjsrDhs8OIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNzBkZGFkMzMtNTVlYi00MTI1LTkyMjEtMDEyOTE2OGE2 NDViMB4XDTI1MDMwNjE0MDA1MloXDTI1MDYwNDEzMDA1MlowLzEtMCsGA1UEAxMk MjIyZGFiZjQtNDQ4Yi00OWUwLThkZjItNmMxMzUzMjVmNzE3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpoBvk4z1EQ9I5SS0pC0eQqTmUJnZ/r5WCQQ qFqtcrFPtKzu5qV4EIUQDnoqnK9vAt9wWRBCJ6FDOWezin5nyw6u2OnlSlxvUvvr kBnU2GdLvSGdQdpo+9m9KXjL4Nf9PaQV47dc5K2mBBiFYTA4Vc184NXm2JDsRs2i WkmsEgG5uag3Yq8prW50hGmhkWuxy/tO8GVUa/kBg/COK0GD0bEiVXioMXSJG4CA taSS0YCs1IJOdVycHAFlmf/k4opgX99xZ2HnPK8+DsAZq61u5F6cgbqHYNnrZNZF oIbZd7uWihFsIb4YEMpesheOtN+Lr/UTIS5Ez2h2i2t++xofcQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCPEpCFXnBwqeeNptbp1ehMcdk/MMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS83MGRk YWQzMy01NWViLTQxMjUtOTIyMS0wMTI5MTY4YTY0NWIvNDExMzg3MjgtNGIwYS0z M2U3LWE1YmQtZWE3Y2I0MmE2MDFlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNzBkZGFkMzMtNTVlYi00MTI1LTky MjEtMDEyOTE2OGE2NDViLzcwZGRhZDMzLTU1ZWItNDEyNS05MjIxLTAxMjkxNjhh NjQ1Yi5jcmwwHwYDVR0jBBgwFoAUf0ykIqPLu6XWd5wlAfN/5dkOtL0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS83MGRkYWQzMy01NWViLTQxMjUtOTIyMS0wMTI5 MTY4YTY0NWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCpYzYMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAKZGGTEF/cVIczJLmkMPlfDXMcSmdmcnqsNg2GjITYcc0IaSugBiW9HZ VJ8RLnxIRmJkpeFaJSus2tJfwiScdLhYlxqdA5p2YGp0Fssim9ECeU+8hZeRb0Gq ooznL1hHA2L1jXLif+fzFaJXqnrJBMk7bsE2R7ExMoaL8h+TUSBArzpTktVOKWYz wlhLaJI6FMqdGOte4HWCNrV01y4UMYk5/dJNZi/sTeFKEzxWQ7cZo8WWw1oKQxFd JBbgD2aAft2Qx7nL8fvmQfx5Lnj1xTPQ0Do8rcfHKNcX634E29cJ5Bw1nxJN72A8 h0cPgCZAeg082VIEoZzpQZNC4oAEp5M= -----END CERTIFICATE-----Generated at Sat Apr 12 17:23:05 2025 by rpki-client