$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/2b14bda5-732a-32d4-b0c3-b2c6baf1df86.roa File: 2b14bda5-732a-32d4-b0c3-b2c6baf1df86.roa (raw, json) Hash identifier: UJwBxpLXpnmkvCi0GKKBOEozeGv2UPBa3/oOSS/etRw= Subject key identifier: A3:66:15:8C:C3:90:02:55:C5:AE:10:6F:D0:07:19:ED:46:06:E0:FD Certificate issuer: /CN=bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16 Certificate serial: 010D0C9F432858489E6B64F3C27939910F071A30 Authority key identifier: EE:70:3D:40:DA:37:1C:84:70:75:A1:4D:9A:FC:98:73:DD:0B:8F:B7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/2b14bda5-732a-32d4-b0c3-b2c6baf1df86.roa Signing time: Tue 21 Jan 2025 14:00:53 +0000 ROA not before: Tue 21 Jan 2025 14:00:53 +0000 ROA not after: Mon 21 Apr 2025 13:00:53 +0000 asID: 397270 IP address blocks: 23.148.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:9e:6b:64:f3:c2:79:39:91:0f:07:1a:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16 Validity Not Before: Jan 21 14:00:53 2025 GMT Not After : Apr 21 13:00:53 2025 GMT Subject: CN=e3243ce1-8881-4844-b65b-57b0f8612b0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:13:35:e2:dd:3c:4a:2e:35:ad:80:26:07:6a: 6f:67:4f:06:96:49:38:61:5b:a6:ae:3c:5a:af:fd: 6c:7f:58:a6:ab:c1:5e:8a:b5:70:a6:f2:b5:3c:a8: 4c:fc:d9:70:ea:de:47:51:19:ae:f6:e2:23:45:5f: 3d:ff:66:b3:eb:90:68:10:09:92:c6:b1:5d:ec:b6: bf:23:c3:0e:d9:c4:9e:37:ad:75:3b:c6:b4:e2:09: d5:3b:ad:14:0b:3d:ea:91:49:75:aa:4d:2c:75:48: 32:87:64:ff:ae:f3:64:90:b8:86:9d:c4:d8:49:da: 2a:06:9f:fb:c9:91:8b:fe:47:55:65:2e:5d:f9:75: 7f:ab:61:fd:fd:6a:2b:d3:62:36:2f:e3:31:5c:5c: 37:3f:61:1f:fd:b0:85:15:64:b5:a9:ce:d8:4e:ab: b2:95:ff:4d:fa:65:d0:48:8b:4d:0e:4f:f7:74:6c: d8:e5:84:a9:cc:b1:21:ea:07:b5:97:e1:f9:f2:d5: 2c:1d:59:8d:fe:be:6e:64:81:10:c1:98:c4:3c:bc: f1:14:8a:4e:e2:5b:54:10:57:d3:8f:21:ed:55:4e: b2:5e:94:fc:54:99:b0:6e:d4:47:ef:2e:7a:ce:a2: 8f:72:37:3b:5c:e1:75:fa:ad:f4:19:d6:84:e0:c2: a7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:66:15:8C:C3:90:02:55:C5:AE:10:6F:D0:07:19:ED:46:06:E0:FD Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/2b14bda5-732a-32d4-b0c3-b2c6baf1df86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.crl X509v3 Authority Key Identifier: keyid:EE:70:3D:40:DA:37:1C:84:70:75:A1:4D:9A:FC:98:73:DD:0B:8F:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.cer sbgp-ipAddrBlock: critical IPv4: 23.148.248.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 39:17:41:ba:30:b1:b6:f3:d7:97:d2:07:b0:c9:64:86:69:82: 35:37:36:ea:b6:4e:08:cd:b7:9c:53:66:b7:57:36:4d:d3:fd: ef:f3:7f:82:9f:61:3a:ef:af:01:b4:7a:61:77:78:73:ec:70: 51:20:3a:71:4c:e2:68:54:82:68:eb:56:ba:cd:68:38:f0:55: 61:f5:c2:ba:a9:ad:c7:0b:37:56:f4:96:38:65:fb:74:14:b6: 67:de:d1:2e:44:86:0a:3d:62:1d:22:3f:ca:c1:d2:8b:ae:3a: 28:f8:19:d9:81:38:33:49:48:1a:6a:41:4a:15:a6:7f:5f:f0: a3:c6:df:bb:e0:a0:b7:6a:98:53:05:a0:c1:db:b0:65:68:b1: 87:42:56:dc:9c:1d:f5:6e:de:cf:17:74:7a:6b:be:43:9e:ed: 1b:cd:5f:60:d9:26:e9:fa:77:48:d4:0d:bf:de:d0:5a:37:8e: 1a:7c:fb:c0:59:37:51:f8:3b:f9:7f:a9:75:20:f4:00:aa:c4: a9:f9:d6:8a:ff:1d:a7:9c:21:2f:29:ca:91:6d:bb:a0:c6:c9: 39:8a:40:a7:e1:4e:07:86:a7:99:8a:68:11:2a:8c:50:63:c0: 42:90:ea:2f:42:6d:de:f0:29:5f:92:04:79:e7:65:93:95:3b: ee:5d:4e:f2 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEiea2Tzwnk5kQ8HGjAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmJiMGYwZDYtMmNiOS00ODQ2LWJlOWYtNjZjZTZkYmYz YTE2MB4XDTI1MDEyMTE0MDA1M1oXDTI1MDQyMTEzMDA1M1owLzEtMCsGA1UEAxMk ZTMyNDNjZTEtODg4MS00ODQ0LWI2NWItNTdiMGY4NjEyYjBiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjRM14t08Si41rYAmB2pvZ08Glkk4YVumrjxa r/1sf1imq8FeirVwpvK1PKhM/Nlw6t5HURmu9uIjRV89/2az65BoEAmSxrFd7La/ I8MO2cSeN611O8a04gnVO60UCz3qkUl1qk0sdUgyh2T/rvNkkLiGncTYSdoqBp/7 yZGL/kdVZS5d+XV/q2H9/Wor02I2L+MxXFw3P2Ef/bCFFWS1qc7YTquylf9N+mXQ SItNDk/3dGzY5YSpzLEh6ge1l+H58tUsHVmN/r5uZIEQwZjEPLzxFIpO4ltUEFfT jyHtVU6yXpT8VJmwbtRH7y56zqKPcjc7XOF1+q30GdaE4MKnbwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFKNmFYzDkAJVxa4Qb9AHGe1GBuD9MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iYmIw ZjBkNi0yY2I5LTQ4NDYtYmU5Zi02NmNlNmRiZjNhMTYvMmIxNGJkYTUtNzMyYS0z MmQ0LWIwYzMtYjJjNmJhZjFkZjg2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYmJiMGYwZDYtMmNiOS00ODQ2LWJl OWYtNjZjZTZkYmYzYTE2L2JiYjBmMGQ2LTJjYjktNDg0Ni1iZTlmLTY2Y2U2ZGJm M2ExNi5jcmwwHwYDVR0jBBgwFoAU7nA9QNo3HIRwdaFNmvyYc90Lj7cwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9iYmIwZjBkNi0yY2I5LTQ4NDYtYmU5Zi02NmNl NmRiZjNhMTYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF5T4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADkXQbowsbbz15fSB7DJZIZpgjU3Nuq2TgjNt5xTZrdXNk3T/e/zf4Kf YTrvrwG0emF3eHPscFEgOnFM4mhUgmjrVrrNaDjwVWH1wrqprccLN1b0ljhl+3QU tmfe0S5Ehgo9Yh0iP8rB0ouuOij4GdmBODNJSBpqQUoVpn9f8KPG37vgoLdqmFMF oMHbsGVosYdCVtycHfVu3s8XdHprvkOe7RvNX2DZJun6d0jUDb/e0Fo3jhp8+8BZ N1H4O/l/qXUg9ACqxKn51or/HaecIS8pypFtu6DGyTmKQKfhTgeGp5mKaBEqjFBj wEKQ6i9Cbd7wKV+SBHnnZZOVO+5dTvI= -----END CERTIFICATE-----Generated at Mon Apr 7 13:04:37 2025 by rpki-client