$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa File: d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa (raw, json) Hash identifier: WLtK4PUkR67nj/X4V6ErVSga+KgvET/5x6mCt2R9Dd8= Subject key identifier: 22:A9:50:E4:44:8F:5C:6B:F0:4A:F1:E2:8C:5D:F6:CC:82:D1:6E:9A Certificate issuer: /CN=b927dc15-9316-467a-b50d-d6b361478436 Certificate serial: 010D0C9F432858492CB21DEFFD2562E5D24EA780 Authority key identifier: 9A:5B:82:A8:00:DF:D6:23:2A:45:9E:7A:4B:55:17:F4:18:E5:83:E2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa Signing time: Thu 13 Mar 2025 13:00:52 +0000 ROA not before: Thu 13 Mar 2025 13:00:52 +0000 ROA not after: Wed 11 Jun 2025 13:00:52 +0000 asID: 2901 IP address blocks: 192.133.99.0/24 maxlen: 24 192.150.253.0/24 maxlen: 24 198.49.160.0/24 maxlen: 24 198.59.96.0/24 maxlen: 24 198.59.98.0/23 maxlen: 24 198.59.100.0/22 maxlen: 24 198.59.104.0/23 maxlen: 24 198.59.109.0/24 maxlen: 24 198.59.110.0/23 maxlen: 24 198.59.112.0/23 maxlen: 24 198.59.114.0/24 maxlen: 24 198.59.116.0/22 maxlen: 24 198.59.120.0/21 maxlen: 24 198.187.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:2c:b2:1d:ef:fd:25:62:e5:d2:4e:a7:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b927dc15-9316-467a-b50d-d6b361478436 Validity Not Before: Mar 13 13:00:52 2025 GMT Not After : Jun 11 13:00:52 2025 GMT Subject: CN=de0cfea8-2418-4ef4-9d2b-49d55e7f52b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:17:d4:8e:8b:10:c1:92:0f:29:1b:0c:4d:a5: 0c:dc:66:b5:fe:3d:28:f3:06:ac:ef:f4:3b:d2:c8: d2:40:9e:f7:85:bd:0a:42:67:a7:06:57:9c:0b:f3: b9:a3:ab:e6:16:6d:09:ad:db:38:ab:8e:2e:48:b6: 6a:b1:8f:6b:41:ba:a0:b5:cd:2b:33:ce:40:d7:d3: 1b:a8:01:89:9d:37:f9:2b:5b:d7:f3:2d:db:57:c1: 2d:b2:01:28:77:72:c1:bd:da:1e:f4:64:d2:e1:2a: c1:57:7c:b6:0c:54:de:10:6d:ba:81:76:87:be:7e: 4b:ef:bc:f7:9e:f0:ab:86:86:5b:11:bd:0d:84:de: 2b:39:69:a9:d4:79:ab:98:1c:0d:4c:f1:cf:49:6b: fd:a9:f0:2b:52:9e:80:69:71:83:23:60:64:05:70: 8a:65:96:1f:88:1f:76:eb:16:1c:fc:36:72:f9:6a: a6:0e:1e:20:0b:bf:05:4b:ad:10:e0:34:eb:59:a9: c5:4b:f9:d0:f3:f0:7b:b9:de:ee:f1:c6:dc:96:05: cb:30:c2:60:fd:cc:0f:11:32:c3:83:31:e4:e3:79: 18:2c:e7:f5:18:c6:11:4c:5b:1d:91:d6:d7:7a:aa: 28:9b:94:df:17:fd:a0:0a:c3:cb:12:3b:ef:f0:77: 0b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A9:50:E4:44:8F:5C:6B:F0:4A:F1:E2:8C:5D:F6:CC:82:D1:6E:9A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.crl X509v3 Authority Key Identifier: keyid:9A:5B:82:A8:00:DF:D6:23:2A:45:9E:7A:4B:55:17:F4:18:E5:83:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer sbgp-ipAddrBlock: critical IPv4: 192.133.99.0/24 192.150.253.0/24 198.49.160.0/24 198.59.96.0/24 198.59.98.0-198.59.105.255 198.59.109.0-198.59.114.255 198.59.116.0-198.59.127.255 198.187.251.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 02:2f:e0:ff:da:62:2c:d3:51:eb:8f:6d:7c:c9:8e:61:86:0d: de:cb:38:c1:53:6f:2d:04:c3:69:15:64:e7:83:51:ba:22:a1: 90:aa:fa:bf:e4:eb:ce:75:a9:8f:94:94:aa:23:11:c2:b3:cc: c2:46:cf:cb:89:3e:cf:ca:0a:da:c2:9c:8d:07:05:6c:35:4c: 7c:b8:ac:66:49:00:db:b7:fd:e9:a1:00:b5:bc:c7:9e:b0:fe: 88:0f:aa:29:ce:14:66:e8:3b:94:86:f6:31:69:17:71:3a:a6: 5e:63:49:39:65:76:1b:c6:09:b1:d6:c1:e5:9f:0f:c5:60:25: 97:6f:34:c2:35:ca:32:7a:8c:8a:ec:c1:ac:89:06:31:07:6c: df:66:ef:ae:43:6b:7a:9a:9c:a7:cc:7b:27:77:8b:a3:a2:71: 8a:e1:eb:5b:42:3e:b9:28:68:7c:b1:2e:0b:50:b3:82:29:e8: 24:5b:ed:32:9d:56:7b:86:ae:3e:af:b7:c1:ad:62:ea:06:38: 67:3a:25:78:8c:6d:75:3a:3f:66:29:52:45:d5:41:5f:e6:da: 18:87:5f:c0:3d:bf:ce:28:c1:8c:38:33:5b:8f:62:bb:2c:09: 58:27:a1:0b:91:53:72:f4:2b:f7:c6:d1:e2:67:53:6e:39:5e: 8c:76:71:51 -----BEGIN CERTIFICATE----- MIIGhTCCBW2gAwIBAgIUAQ0Mn0MoWEkssh3v/SVi5dJOp4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYjkyN2RjMTUtOTMxNi00NjdhLWI1MGQtZDZiMzYxNDc4 NDM2MB4XDTI1MDMxMzEzMDA1MloXDTI1MDYxMTEzMDA1MlowLzEtMCsGA1UEAxMk ZGUwY2ZlYTgtMjQxOC00ZWY0LTlkMmItNDlkNTVlN2Y1MmIyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxfUjosQwZIPKRsMTaUM3Ga1/j0o8was7/Q7 0sjSQJ73hb0KQmenBlecC/O5o6vmFm0Jrds4q44uSLZqsY9rQbqgtc0rM85A19Mb qAGJnTf5K1vX8y3bV8EtsgEod3LBvdoe9GTS4SrBV3y2DFTeEG26gXaHvn5L77z3 nvCrhoZbEb0NhN4rOWmp1HmrmBwNTPHPSWv9qfArUp6AaXGDI2BkBXCKZZYfiB92 6xYc/DZy+WqmDh4gC78FS60Q4DTrWanFS/nQ8/B7ud7u8cbclgXLMMJg/cwPETLD gzHk43kYLOf1GMYRTFsdkdbXeqoom5TfF/2gCsPLEjvv8HcLoQIDAQABo4IDlzCC A5MwHQYDVR0OBBYEFCKpUOREj1xr8Erx4oxd9syC0W6aMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iOTI3 ZGMxNS05MzE2LTQ2N2EtYjUwZC1kNmIzNjE0Nzg0MzYvZDE0ZDBkM2UtMTcwMS0z YTViLTljYTctMzRhYTMzNmM2NWRiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYjkyN2RjMTUtOTMxNi00NjdhLWI1 MGQtZDZiMzYxNDc4NDM2L2I5MjdkYzE1LTkzMTYtNDY3YS1iNTBkLWQ2YjM2MTQ3 ODQzNi5jcmwwHwYDVR0jBBgwFoAUmluCqADf1iMqRZ56S1UX9Bjlg+IwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9iOTI3ZGMxNS05MzE2LTQ2N2EtYjUwZC1kNmIz NjE0Nzg0MzYuY2VyMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQAwIVjAwQA wJb9AwQAxjGgAwQAxjtgMAwDBAHGO2IDBAHGO2gwDAMEAMY7bQMEAMY7cjAMAwQC xjt0AwQHxjsAAwQAxrv7MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4Bggr BgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3Bz Lmh0bWwwDQYJKoZIhvcNAQELBQADggEBAAIv4P/aYizTUeuPbXzJjmGGDd7LOMFT by0Ew2kVZOeDUboioZCq+r/k6851qY+UlKojEcKzzMJGz8uJPs/KCtrCnI0HBWw1 THy4rGZJANu3/emhALW8x56w/ogPqinOFGboO5SG9jFpF3E6pl5jSTlldhvGCbHW weWfD8VgJZdvNMI1yjJ6jIrswayJBjEHbN9m765Da3qanKfMeyd3i6OicYrh61tC PrkoaHyxLgtQs4Ip6CRb7TKdVnuGrj6vt8GtYuoGOGc6JXiMbXU6P2YpUkXVQV/m 2hiHX8A9v84owYw4M1uPYrssCVgnoQuRU3L0K/fG0eJnU245Xox2cVE= -----END CERTIFICATE-----Generated at Fri Apr 11 22:27:18 2025 by rpki-client