$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90/3a5532ac-c330-360b-87ba-d368fdf0b0b6.roa File: 3a5532ac-c330-360b-87ba-d368fdf0b0b6.roa (raw, json) Hash identifier: q+mAHGgI6GzU6tQ3vFtHsQhIlrkIFIp72TOGj7+0fLo= Subject key identifier: 5F:53:1F:5F:3A:78:7E:F3:48:4A:89:0E:10:77:3A:78:9E:7B:A5:09 Certificate issuer: /CN=b0c43b75-106f-49e7-bf3a-4aeb94566e90 Certificate serial: 010D0C9F43285848A830AAADCC05985ED3A44F28 Authority key identifier: BB:44:94:5F:01:72:4D:EE:B9:22:B8:EA:D0:2E:A2:07:6E:4E:23:3B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90/3a5532ac-c330-360b-87ba-d368fdf0b0b6.roa Signing time: Sat 25 Jan 2025 02:00:39 +0000 ROA not before: Sat 25 Jan 2025 02:00:39 +0000 ROA not after: Fri 25 Apr 2025 01:00:39 +0000 asID: 3584 IP address blocks: 2607:2a00:2::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90/b0c43b75-106f-49e7-bf3a-4aeb94566e90.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90/b0c43b75-106f-49e7-bf3a-4aeb94566e90.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:a8:30:aa:ad:cc:05:98:5e:d3:a4:4f:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0c43b75-106f-49e7-bf3a-4aeb94566e90 Validity Not Before: Jan 25 02:00:39 2025 GMT Not After : Apr 25 01:00:39 2025 GMT Subject: CN=4437ba5d-7167-4828-ab2e-b198e5a58cbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:9c:c2:c6:02:b9:3d:66:35:5e:bf:cd:d6: db:7c:f3:3b:19:17:34:69:a3:bb:a3:8a:1c:2a:12: 19:6b:0e:ba:ca:cd:5c:ad:91:44:5c:60:51:be:f9: 8e:ad:8d:d5:2e:ca:75:c8:38:c3:b2:80:58:18:99: 16:02:13:94:b1:eb:33:e0:db:fa:72:32:7c:d8:6e: 1a:10:6a:76:07:a1:6f:b2:d4:1d:b9:a4:f4:b8:75: c4:f1:0c:ca:5b:74:89:ef:ba:76:57:bc:dd:33:50: 1d:19:80:85:18:9b:1a:55:ef:61:97:4d:74:75:19: a8:b0:49:44:ff:79:d4:c9:87:d4:17:86:f1:79:a5: f5:63:00:65:57:89:b9:3f:34:5d:43:d4:3a:40:73: 5f:c8:e2:2d:7c:e0:8b:d3:5f:84:a7:7e:f0:f5:f8: 97:1f:72:3c:05:ae:32:aa:f0:a9:d4:03:c2:1f:a4: 38:7a:51:06:b9:13:7c:3c:f8:ed:55:0b:a3:3b:16: 90:22:3d:76:7f:28:51:e4:58:5b:4c:5b:f7:e6:79: 41:9d:71:c0:b2:4a:19:cc:b0:33:fd:34:db:db:f3: b1:19:ad:83:74:95:22:28:29:70:ff:64:c7:02:75: ec:64:8e:ec:06:a5:ab:ca:7d:a6:fa:b2:07:03:ea: ed:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:53:1F:5F:3A:78:7E:F3:48:4A:89:0E:10:77:3A:78:9E:7B:A5:09 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90/3a5532ac-c330-360b-87ba-d368fdf0b0b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90/b0c43b75-106f-49e7-bf3a-4aeb94566e90.crl X509v3 Authority Key Identifier: keyid:BB:44:94:5F:01:72:4D:EE:B9:22:B8:EA:D0:2E:A2:07:6E:4E:23:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b0c43b75-106f-49e7-bf3a-4aeb94566e90.cer sbgp-ipAddrBlock: critical IPv6: 2607:2a00:2::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 69:c0:87:10:28:ff:a0:f2:43:67:e6:5a:1d:d6:1a:1a:1f:8b: 8b:64:7f:a8:a1:8f:ed:1c:ab:13:8f:64:e3:1b:51:d9:84:9c: 85:db:4d:ef:5a:de:fe:96:4a:fb:7c:b3:79:13:00:32:db:5d: 16:4d:8c:b0:98:8f:3c:e5:86:7f:b7:fb:6a:a8:6c:b2:ec:4c: b9:5a:14:9e:78:f7:5c:1e:2b:cb:d0:26:84:e8:bb:d7:60:80: f0:97:c2:3b:38:5f:99:bb:90:9a:eb:4a:56:bc:bb:a5:53:01: fe:0b:c0:09:d0:69:7f:25:1e:33:b4:77:33:d2:4f:44:09:36: 09:be:a4:85:58:81:cf:f0:f8:64:eb:ef:04:02:a6:21:95:44: 9b:cd:2a:96:1f:78:49:26:c7:38:6f:4b:13:f5:46:20:9b:d2: 82:f3:cd:93:d6:a7:a5:a2:f7:43:86:74:f3:c7:0b:52:b9:8d: 4c:2e:f3:fb:81:da:82:7f:3e:5c:99:94:63:70:05:b2:60:34: 28:a2:c2:5a:8d:48:84:54:21:7e:1d:cd:1e:af:20:fd:00:6f: f1:a4:1a:aa:db:1c:cf:78:33:97:cc:9b:16:5b:b0:2f:15:a8: 12:1e:f9:d4:01:eb:de:cc:1d:2d:a9:01:d2:90:e3:4c:0c:3a: 27:90:39:ea -----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgIUAQ0Mn0MoWEioMKqtzAWYXtOkTygwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYjBjNDNiNzUtMTA2Zi00OWU3LWJmM2EtNGFlYjk0NTY2 ZTkwMB4XDTI1MDEyNTAyMDAzOVoXDTI1MDQyNTAxMDAzOVowLzEtMCsGA1UEAxMk NDQzN2JhNWQtNzE2Ny00ODI4LWFiMmUtYjE5OGU1YTU4Y2JjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxWcwsYCuT1mNV6/zdbbfPM7GRc0aaO7o4oc KhIZaw66ys1crZFEXGBRvvmOrY3VLsp1yDjDsoBYGJkWAhOUsesz4Nv6cjJ82G4a EGp2B6FvstQduaT0uHXE8QzKW3SJ77p2V7zdM1AdGYCFGJsaVe9hl010dRmosElE /3nUyYfUF4bxeaX1YwBlV4m5PzRdQ9Q6QHNfyOItfOCL01+Ep37w9fiXH3I8Ba4y qvCp1APCH6Q4elEGuRN8PPjtVQujOxaQIj12fyhR5FhbTFv35nlBnXHAskoZzLAz /TTb2/OxGa2DdJUiKClw/2THAnXsZI7sBqWryn2m+rIHA+rtqQIDAQABo4IDWDCC A1QwHQYDVR0OBBYEFF9TH186eH7zSEqJDhB3Oniee6UJMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iMGM0 M2I3NS0xMDZmLTQ5ZTctYmYzYS00YWViOTQ1NjZlOTAvM2E1NTMyYWMtYzMzMC0z NjBiLTg3YmEtZDM2OGZkZjBiMGI2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYjBjNDNiNzUtMTA2Zi00OWU3LWJm M2EtNGFlYjk0NTY2ZTkwL2IwYzQzYjc1LTEwNmYtNDllNy1iZjNhLTRhZWI5NDU2 NmU5MC5jcmwwHwYDVR0jBBgwFoAUu0SUXwFyTe65Irjq0C6iB25OIzswDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9iMGM0M2I3NS0xMDZmLTQ5ZTctYmYzYS00YWVi OTQ1NjZlOTAuY2VyMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJgcqAAAC MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBAGnAhxAo/6DyQ2fmWh3WGhofi4tkf6ihj+0cqxOPZOMbUdmEnIXb Te9a3v6WSvt8s3kTADLbXRZNjLCYjzzlhn+3+2qobLLsTLlaFJ5491weK8vQJoTo u9dggPCXwjs4X5m7kJrrSla8u6VTAf4LwAnQaX8lHjO0dzPST0QJNgm+pIVYgc/w +GTr7wQCpiGVRJvNKpYfeEkmxzhvSxP1RiCb0oLzzZPWp6Wi90OGdPPHC1K5jUwu 8/uB2oJ/PlyZlGNwBbJgNCiiwlqNSIRUIX4dzR6vIP0Ab/GkGqrbHM94M5fMmxZb sC8VqBIe+dQB697MHS2pAdKQ40wMOieQOeo= -----END CERTIFICATE-----Generated at Sat Apr 12 14:50:43 2025 by rpki-client