$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa File: e21aefd6-472c-3930-aa58-debd99be2072.roa (raw, json) Hash identifier: ApwHhZeSRyBnjFMSu0tISoBX5d8yUJZYB3U1sB5IQig= Subject key identifier: BF:1D:8C:C8:6F:2C:E8:0E:3B:DA:D1:D4:09:C9:B2:A5:E0:72:6C:7D Certificate issuer: /CN=9970d52c-d3a1-4687-a712-212a44ee0fb2 Certificate serial: 010D0C9F432858496484405AAA73AA8BC356EE80 Authority key identifier: 56:D1:3C:08:C7:F6:2C:0B:42:A3:CB:3A:17:E8:6B:D9:D8:77:E1:76 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa Signing time: Wed 02 Apr 2025 13:01:01 +0000 ROA not before: Wed 02 Apr 2025 13:01:01 +0000 ROA not after: Tue 01 Jul 2025 13:01:01 +0000 asID: 395035 IP address blocks: 216.150.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 13 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:64:84:40:5a:aa:73:aa:8b:c3:56:ee:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9970d52c-d3a1-4687-a712-212a44ee0fb2 Validity Not Before: Apr 2 13:01:01 2025 GMT Not After : Jul 1 13:01:01 2025 GMT Subject: CN=0725fb38-175a-4eb9-8455-312319d5a16a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b0:1e:bd:60:1d:a4:12:da:ee:82:46:de:0a: 07:9a:fe:13:7d:15:54:ec:7f:8f:00:68:cb:03:3a: 81:ff:31:3e:a8:f1:dc:3c:c8:8b:58:0d:d3:98:ce: 59:29:00:22:e3:20:ed:c1:7c:67:59:bb:28:7a:df: 93:88:9c:26:5d:2f:fc:5f:5e:6b:3e:c3:e1:3f:9d: 59:09:db:d4:3a:a5:43:31:5b:12:e6:07:87:6c:9b: cf:7a:9a:41:34:a4:c2:e8:0c:6a:9e:e5:9e:dd:34: ac:7b:59:b8:5a:a6:e7:39:cc:01:7d:b1:a2:43:3c: 5b:58:ba:3b:6c:d8:55:0e:0a:11:27:e0:80:41:92: 5b:94:da:c1:34:76:53:f0:82:a8:48:b9:b4:da:ca: b1:ee:3a:17:b5:52:7a:4b:9e:31:4a:bf:26:4f:f2: bd:73:5f:5e:96:c9:ad:f8:cc:b3:77:67:b1:a4:90: da:0b:6f:60:36:b7:6a:77:ee:12:ae:ed:c0:59:ac: 4a:69:ac:08:e3:db:fa:81:70:c2:5f:e0:d6:5e:dd: e7:5a:f6:df:c3:00:7c:0f:68:f8:e3:cf:2f:7d:99: 91:a8:dd:3c:2b:89:08:8d:b3:cb:02:2f:5c:6f:c5: b7:e3:9e:fd:44:fd:4d:ed:df:34:b1:d1:bb:82:63: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:1D:8C:C8:6F:2C:E8:0E:3B:DA:D1:D4:09:C9:B2:A5:E0:72:6C:7D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.crl X509v3 Authority Key Identifier: keyid:56:D1:3C:08:C7:F6:2C:0B:42:A3:CB:3A:17:E8:6B:D9:D8:77:E1:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer sbgp-ipAddrBlock: critical IPv4: 216.150.8.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 23:6c:53:5b:ab:76:85:54:dd:0c:69:a6:52:71:c7:e2:10:34: de:26:78:1f:60:07:45:af:cd:66:8a:9f:3b:8d:3d:21:b5:2a: 95:45:53:81:96:76:55:74:75:94:96:73:1d:45:29:de:af:21: 69:9b:3c:c7:b2:a9:f2:95:8f:0a:64:85:f1:7d:8d:9d:ca:e8: 94:e3:1b:9e:87:48:a1:dc:a6:cf:1a:ce:4b:43:4f:3b:30:46: ad:fb:9a:73:86:08:7b:66:8a:55:5b:ee:a3:e8:09:4d:6b:fc: 9b:1c:af:2c:1f:11:a3:2d:1e:5c:f8:ab:a3:84:23:aa:c6:fe: 97:fe:81:6e:84:a2:b7:68:bd:41:71:c7:d3:c4:6d:76:23:4f: 41:b8:f5:96:26:19:29:73:e0:e3:0f:d2:59:28:3f:96:47:88: 9c:2c:06:75:83:51:ec:ab:d7:4c:17:2f:7c:a7:9c:d8:38:bf: a3:71:6e:c9:68:0d:dd:b3:95:fa:e8:6b:b0:a8:e6:5b:20:c0: ea:6a:49:99:1e:15:d9:f1:12:6d:b2:ad:09:49:03:b9:bc:31: 4b:9a:0d:8f:ef:bb:5e:ba:d3:7e:89:0d:f4:66:a0:58:8b:b0: f6:53:81:56:84:c4:5d:e7:11:8e:51:35:d3:62:13:37:18:10: 9e:72:1b:e7 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWElkhEBaqnOqi8NW7oAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkOTk3MGQ1MmMtZDNhMS00Njg3LWE3MTItMjEyYTQ0ZWUw ZmIyMB4XDTI1MDQwMjEzMDEwMVoXDTI1MDcwMTEzMDEwMVowLzEtMCsGA1UEAxMk MDcyNWZiMzgtMTc1YS00ZWI5LTg0NTUtMzEyMzE5ZDVhMTZhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1rAevWAdpBLa7oJG3goHmv4TfRVU7H+PAGjL AzqB/zE+qPHcPMiLWA3TmM5ZKQAi4yDtwXxnWbsoet+TiJwmXS/8X15rPsPhP51Z CdvUOqVDMVsS5geHbJvPeppBNKTC6AxqnuWe3TSse1m4WqbnOcwBfbGiQzxbWLo7 bNhVDgoRJ+CAQZJblNrBNHZT8IKoSLm02sqx7joXtVJ6S54xSr8mT/K9c19elsmt +Myzd2expJDaC29gNrdqd+4Sru3AWaxKaawI49v6gXDCX+DWXt3nWvbfwwB8D2j4 488vfZmRqN08K4kIjbPLAi9cb8W34579RP1N7d80sdG7gmNujwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFL8djMhvLOgOO9rR1AnJsqXgcmx9MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS85OTcw ZDUyYy1kM2ExLTQ2ODctYTcxMi0yMTJhNDRlZTBmYjIvZTIxYWVmZDYtNDcyYy0z OTMwLWFhNTgtZGViZDk5YmUyMDcyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvOTk3MGQ1MmMtZDNhMS00Njg3LWE3 MTItMjEyYTQ0ZWUwZmIyLzk5NzBkNTJjLWQzYTEtNDY4Ny1hNzEyLTIxMmE0NGVl MGZiMi5jcmwwHwYDVR0jBBgwFoAUVtE8CMf2LAtCo8s6F+hr2dh34XYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS85OTcwZDUyYy1kM2ExLTQ2ODctYTcxMi0yMTJh NDRlZTBmYjIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD2JYIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACNsU1urdoVU3QxpplJxx+IQNN4meB9gB0WvzWaKnzuNPSG1KpVFU4GW dlV0dZSWcx1FKd6vIWmbPMeyqfKVjwpkhfF9jZ3K6JTjG56HSKHcps8azktDTzsw Rq37mnOGCHtmilVb7qPoCU1r/JscrywfEaMtHlz4q6OEI6rG/pf+gW6EordovUFx x9PEbXYjT0G49ZYmGSlz4OMP0lkoP5ZHiJwsBnWDUeyr10wXL3ynnNg4v6Nxbslo Dd2zlfroa7Co5lsgwOpqSZkeFdnxEm2yrQlJA7m8MUuaDY/vu166036JDfRmoFiL sPZTgVaExF3nEY5RNdNiEzcYEJ5yG+c= -----END CERTIFICATE-----Generated at Fri Apr 11 21:41:02 2025 by rpki-client