$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa File: 3125937d-10bf-347b-bf28-785512b3e771.roa (raw, json) Hash identifier: vplBWLhZ6EL/QiMESqDfzbdHLVG2HFE65Ys9Z8X2uGw= Subject key identifier: E6:AA:FA:80:D7:B9:C3:B0:E6:0D:43:63:09:B2:26:C3:95:27:EB:A7 Certificate issuer: /CN=a07401de-4b0a-4532-ac08-dba8b0588c48 Certificate serial: 010D0C9F432858494B641CBE3F7E6AD2BA96BF80 Authority key identifier: 2E:F3:B1:0B:CE:E4:C3:34:88:54:17:22:AC:69:76:A5:51:34:03:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa Signing time: Mon 24 Mar 2025 13:00:53 +0000 ROA not before: Mon 24 Mar 2025 13:00:53 +0000 ROA not after: Sun 22 Jun 2025 13:00:53 +0000 asID: 17 IP address blocks: 128.10.0.0/16 maxlen: 24 128.46.0.0/16 maxlen: 24 128.210.0.0/16 maxlen: 24 128.211.0.0/16 maxlen: 24 192.5.40.0/24 maxlen: 24 192.5.48.0/24 maxlen: 24 192.5.91.0/24 maxlen: 24 192.5.101.0/24 maxlen: 24 192.5.102.0/24 maxlen: 24 192.12.63.0/24 maxlen: 24 192.31.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/a07401de-4b0a-4532-ac08-dba8b0588c48.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/a07401de-4b0a-4532-ac08-dba8b0588c48.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 09 Apr 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:4b:64:1c:be:3f:7e:6a:d2:ba:96:bf:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a07401de-4b0a-4532-ac08-dba8b0588c48 Validity Not Before: Mar 24 13:00:53 2025 GMT Not After : Jun 22 13:00:53 2025 GMT Subject: CN=34c7d845-1eb9-47c4-8820-6767fb16ec8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:46:c2:42:f5:03:94:b4:b6:28:92:47:03:2a: 7a:2f:c4:61:08:f6:c8:6e:6e:72:e2:c7:86:c3:26: 32:34:e7:9b:0e:65:fa:d4:d8:f8:86:30:d9:d5:7a: ea:68:3f:8e:76:e2:3e:d1:6a:73:3f:3c:6a:47:8f: dd:73:83:57:a8:82:ee:0d:27:eb:98:4a:a4:83:f0: 7e:ac:29:b7:03:84:c8:ef:01:eb:ae:5e:5e:b3:32: 59:8f:1a:06:21:e4:86:b3:26:30:7e:51:52:4c:8d: 32:2b:7c:1b:49:0b:a9:ee:a1:4a:14:30:96:59:51: c0:a1:6c:ce:e2:0c:af:56:26:77:e6:86:06:92:ab: cd:ec:b8:3d:77:07:de:7d:ad:ce:1c:e5:d5:df:ef: 7d:12:e1:36:82:3f:b0:c4:91:2c:a8:db:eb:dd:f3: f7:7b:7e:89:3d:2f:80:f5:12:ff:61:66:b8:8f:42: fb:b0:06:23:4c:2a:55:03:a5:6d:f1:0b:ce:19:8f: fb:54:c6:ef:9a:52:98:01:e5:a7:c7:9f:08:3b:4d: e7:cf:d1:85:8b:fa:83:e1:46:44:42:e3:48:5f:6b: 72:b0:f0:27:d4:db:cf:f4:b7:9b:1c:b0:68:b3:04: 2f:fa:56:49:1e:3c:c4:14:58:09:57:32:18:fa:f2: e5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AA:FA:80:D7:B9:C3:B0:E6:0D:43:63:09:B2:26:C3:95:27:EB:A7 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/a07401de-4b0a-4532-ac08-dba8b0588c48.crl X509v3 Authority Key Identifier: keyid:2E:F3:B1:0B:CE:E4:C3:34:88:54:17:22:AC:69:76:A5:51:34:03:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48.cer sbgp-ipAddrBlock: critical IPv4: 128.10.0.0/16 128.46.0.0/16 128.210.0.0/15 192.5.40.0/24 192.5.48.0/24 192.5.91.0/24 192.5.101.0-192.5.102.255 192.12.63.0/24 192.31.0.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption b2:d1:a0:2a:a8:79:c4:56:f9:5d:0d:2e:45:cb:cb:77:88:c5: e4:c0:03:62:14:ee:97:38:09:61:f1:0d:07:1c:cb:95:d9:40: 75:8e:8b:e6:b9:d9:71:61:30:dc:cc:54:a6:0d:db:0a:1d:c9: 6e:d7:47:35:31:f9:ce:b3:95:a9:d8:ae:c0:5f:83:9f:b1:50: 1b:fe:73:7f:10:cd:c3:ca:82:00:d9:a1:79:ed:4e:8d:27:69: 28:e0:44:65:f2:b3:09:20:5e:1b:ce:60:8c:31:cc:12:34:65: 13:d2:8f:24:67:e9:5e:db:97:98:92:5b:5c:5d:b5:bf:bc:0d: 1c:b1:23:f2:3d:ef:34:cb:2d:f3:c1:f6:02:77:00:3a:8a:fd: 36:a1:27:3b:a5:06:99:55:02:20:71:fb:09:3c:e7:0d:ff:3c: 72:07:f0:af:2c:49:2a:07:6e:53:cc:ad:08:34:cd:02:ee:c7: 92:55:35:59:86:ea:69:e0:94:45:79:62:27:73:6c:03:88:0e: e2:7b:fe:d7:29:7b:04:89:b5:dc:c5:68:ed:28:e5:dc:94:fd: c0:9f:93:02:64:cf:24:1c:2e:23:85:94:b3:17:fa:52:12:f7: fe:77:f1:77:29:90:3a:b0:c7:f7:27:1c:1e:f5:64:93:70:2e: 9a:9f:b8:ba -----BEGIN CERTIFICATE----- MIIGeDCCBWCgAwIBAgIUAQ0Mn0MoWElLZBy+P35q0rqWv4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYTA3NDAxZGUtNGIwYS00NTMyLWFjMDgtZGJhOGIwNTg4 YzQ4MB4XDTI1MDMyNDEzMDA1M1oXDTI1MDYyMjEzMDA1M1owLzEtMCsGA1UEAxMk MzRjN2Q4NDUtMWViOS00N2M0LTg4MjAtNjc2N2ZiMTZlYzhmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUbCQvUDlLS2KJJHAyp6L8RhCPbIbm5y4seG wyYyNOebDmX61Nj4hjDZ1XrqaD+OduI+0WpzPzxqR4/dc4NXqILuDSfrmEqkg/B+ rCm3A4TI7wHrrl5eszJZjxoGIeSGsyYwflFSTI0yK3wbSQup7qFKFDCWWVHAoWzO 4gyvViZ35oYGkqvN7Lg9dwfefa3OHOXV3+99EuE2gj+wxJEsqNvr3fP3e36JPS+A 9RL/YWa4j0L7sAYjTCpVA6Vt8QvOGY/7VMbvmlKYAeWnx58IO03nz9GFi/qD4UZE QuNIX2tysPAn1NvP9LebHLBoswQv+lZJHjzEFFgJVzIY+vLlLQIDAQABo4IDijCC A4YwHQYDVR0OBBYEFOaq+oDXucOw5g1DYwmyJsOVJ+unMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9hMDc0 MDFkZS00YjBhLTQ1MzItYWMwOC1kYmE4YjA1ODhjNDgvMzEyNTkzN2QtMTBiZi0z NDdiLWJmMjgtNzg1NTEyYjNlNzcxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYTA3NDAxZGUtNGIwYS00NTMyLWFj MDgtZGJhOGIwNTg4YzQ4L2EwNzQwMWRlLTRiMGEtNDUzMi1hYzA4LWRiYThiMDU4 OGM0OC5jcmwwHwYDVR0jBBgwFoAULvOxC87kwzSIVBcirGl2pVE0A4AwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9hMDc0MDFkZS00YjBhLTQ1MzItYWMwOC1kYmE4 YjA1ODhjNDguY2VyMFQGCCsGAQUFBwEHAQH/BEUwQzBBBAIAATA7AwMAgAoDAwCA LgMDAYDSAwQAwAUoAwQAwAUwAwQAwAVbMAwDBADABWUDBADABWYDBADADD8DBADA HwAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRw czovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG 9w0BAQsFAAOCAQEAstGgKqh5xFb5XQ0uRcvLd4jF5MADYhTulzgJYfENBxzLldlA dY6L5rnZcWEw3MxUpg3bCh3JbtdHNTH5zrOVqdiuwF+Dn7FQG/5zfxDNw8qCANmh ee1OjSdpKOBEZfKzCSBeG85gjDHMEjRlE9KPJGfpXtuXmJJbXF21v7wNHLEj8j3v NMst88H2AncAOor9NqEnO6UGmVUCIHH7CTznDf88cgfwryxJKgduU8ytCDTNAu7H klU1WYbqaeCURXliJ3NsA4gO4nv+1yl7BIm13MVo7Sjl3JT9wJ+TAmTPJBwuI4WU sxf6UhL3/nfxdymQOrDH9yccHvVkk3Aump+4ug== -----END CERTIFICATE-----Generated at Tue Apr 8 12:36:13 2025 by rpki-client