$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/409dcb1b-8e11-32f3-b345-ba1e33a44598.roa File: 409dcb1b-8e11-32f3-b345-ba1e33a44598.roa (raw, json) Hash identifier: wk5fsF6IQlqDCziaqk7Oty75Mc3guylv1RVGMFISAOk= Subject key identifier: E4:5C:6E:63:D8:4C:76:AD:A6:16:24:2B:FB:8F:4F:DF:C2:69:F2:8E Certificate issuer: /CN=d3bf923d-6c9d-4713-887f-1f30075cf850 Certificate serial: 010D0C9F43285849071BEF5E77A28EE802E10300 Authority key identifier: 5B:7E:94:69:FB:8F:16:3F:CC:C9:25:52:54:45:FB:6D:BB:DA:C5:BB Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/409dcb1b-8e11-32f3-b345-ba1e33a44598.roa Signing time: Fri 28 Feb 2025 02:00:39 +0000 ROA not before: Fri 28 Feb 2025 02:00:39 +0000 ROA not after: Thu 29 May 2025 01:00:39 +0000 asID: 32746 IP address blocks: 204.8.88.0/22 maxlen: 24 208.86.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/d3bf923d-6c9d-4713-887f-1f30075cf850.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/d3bf923d-6c9d-4713-887f-1f30075cf850.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:07:1b:ef:5e:77:a2:8e:e8:02:e1:03:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3bf923d-6c9d-4713-887f-1f30075cf850 Validity Not Before: Feb 28 02:00:39 2025 GMT Not After : May 29 01:00:39 2025 GMT Subject: CN=0d0dd6bf-05ba-4a1a-8d56-2d1830599979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:12:52:d7:c5:98:94:ab:c0:78:63:43:20:ca: df:ef:9f:b5:da:7c:c7:3e:15:d7:c3:6c:a0:b0:03: 6d:13:a6:f4:30:15:05:42:6f:df:1d:f4:45:cc:8b: 8d:38:d0:8c:1b:72:36:06:bf:4f:ff:63:01:1c:8c: 39:5e:14:98:12:76:0a:82:d3:d3:bb:58:6b:4c:59: 2c:28:dc:71:14:ad:0f:fe:91:4b:fe:18:c0:2b:9d: 85:c1:c2:8a:e2:ed:2d:c2:13:fb:f7:b4:7b:a1:f2: 00:8f:33:ab:e9:f5:b2:a4:80:54:bc:b1:ab:20:cb: 36:1e:c1:24:88:c1:c9:2d:a6:f3:68:a8:c1:71:9b: ae:34:c0:20:e2:96:7e:74:d6:33:30:5c:b6:1d:9e: 3b:79:39:ea:f1:e4:91:b5:5a:4f:88:f7:2e:9d:32: 7b:e6:46:b1:1e:b2:6f:04:7f:ee:94:03:41:6d:5f: 32:57:77:0d:04:62:a2:08:e4:07:55:e5:2d:ae:74: 9f:ca:b9:94:94:d2:c4:9e:bd:e2:97:83:c2:9b:d0: 2c:87:fd:6b:4f:36:91:5b:c6:d0:27:88:06:fb:11: ef:33:2a:b7:73:f6:0a:f9:44:09:89:83:c8:b7:7e: 56:ab:83:a0:13:14:30:90:27:e1:bf:23:de:69:d4: c4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:5C:6E:63:D8:4C:76:AD:A6:16:24:2B:FB:8F:4F:DF:C2:69:F2:8E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/409dcb1b-8e11-32f3-b345-ba1e33a44598.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/d3bf923d-6c9d-4713-887f-1f30075cf850.crl X509v3 Authority Key Identifier: keyid:5B:7E:94:69:FB:8F:16:3F:CC:C9:25:52:54:45:FB:6D:BB:DA:C5:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850.cer sbgp-ipAddrBlock: critical IPv4: 204.8.88.0/22 208.86.40.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 34:4f:f5:d5:dd:57:53:2b:aa:0a:c9:73:92:f6:9c:29:55:42: e8:1e:a1:44:df:26:b0:2e:ae:c5:71:51:41:cc:85:71:64:44: 33:2c:b8:87:3f:f3:3a:3d:b4:b6:1d:fa:d7:7f:f4:cf:29:f9: 56:14:8e:86:38:cb:51:8e:94:cf:86:ed:40:e6:06:8f:5d:59: 69:8d:46:c1:c9:40:17:fd:fa:dc:b2:a7:35:cf:8d:b5:69:ca: 35:65:d9:05:82:70:b4:ed:e6:50:5f:30:6c:af:4f:db:ed:06: 4e:e0:c5:e5:7c:cd:33:d9:a8:62:72:cd:6d:60:78:cd:0f:be: d5:c8:29:cb:05:9f:6e:43:7b:9f:22:6b:83:c0:c5:20:b8:e6: de:cf:7f:d5:07:ce:44:3f:e6:23:c9:b7:7b:b5:21:3d:68:02: 0b:7a:c0:d2:d7:78:04:d1:27:c7:25:ad:b6:21:b8:df:5b:4d: 51:42:2d:c3:72:dc:20:34:41:05:b3:ea:b2:23:46:a6:46:c5: f0:07:05:6d:54:e4:e3:ef:33:ea:28:e2:be:f1:bc:92:5c:0a: 27:58:8d:e4:bc:12:8e:f4:98:28:21:de:0f:83:7d:76:59:2a: 32:86:fa:23:e2:79:c6:1a:6a:cd:8c:13:10:05:54:bf:53:98: e1:62:e1:fa -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWEkHG+9ed6KO6ALhAwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDNiZjkyM2QtNmM5ZC00NzEzLTg4N2YtMWYzMDA3NWNm ODUwMB4XDTI1MDIyODAyMDAzOVoXDTI1MDUyOTAxMDAzOVowLzEtMCsGA1UEAxMk MGQwZGQ2YmYtMDViYS00YTFhLThkNTYtMmQxODMwNTk5OTc5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxJS18WYlKvAeGNDIMrf75+12nzHPhXXw2yg sANtE6b0MBUFQm/fHfRFzIuNONCMG3I2Br9P/2MBHIw5XhSYEnYKgtPTu1hrTFks KNxxFK0P/pFL/hjAK52FwcKK4u0twhP797R7ofIAjzOr6fWypIBUvLGrIMs2HsEk iMHJLabzaKjBcZuuNMAg4pZ+dNYzMFy2HZ47eTnq8eSRtVpPiPcunTJ75kaxHrJv BH/ulANBbV8yV3cNBGKiCOQHVeUtrnSfyrmUlNLEnr3il4PCm9Ash/1rTzaRW8bQ J4gG+xHvMyq3c/YK+UQJiYPIt35Wq4OgExQwkCfhvyPeadTEJwIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFORcbmPYTHatphYkK/uPT9/CafKOMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9kM2Jm OTIzZC02YzlkLTQ3MTMtODg3Zi0xZjMwMDc1Y2Y4NTAvNDA5ZGNiMWItOGUxMS0z MmYzLWIzNDUtYmExZTMzYTQ0NTk4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvZDNiZjkyM2QtNmM5ZC00NzEzLTg4 N2YtMWYzMDA3NWNmODUwL2QzYmY5MjNkLTZjOWQtNDcxMy04ODdmLTFmMzAwNzVj Zjg1MC5jcmwwHwYDVR0jBBgwFoAUW36UafuPFj/MySVSVEX7bbvaxbswDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9kM2JmOTIzZC02YzlkLTQ3MTMtODg3Zi0xZjMw MDc1Y2Y4NTAuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCzAhYAwQC 0FYoMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBADRP9dXdV1MrqgrJc5L2nClVQugeoUTfJrAursVxUUHMhXFk RDMsuIc/8zo9tLYd+td/9M8p+VYUjoY4y1GOlM+G7UDmBo9dWWmNRsHJQBf9+tyy pzXPjbVpyjVl2QWCcLTt5lBfMGyvT9vtBk7gxeV8zTPZqGJyzW1geM0PvtXIKcsF n25De58ia4PAxSC45t7Pf9UHzkQ/5iPJt3u1IT1oAgt6wNLXeATRJ8clrbYhuN9b TVFCLcNy3CA0QQWz6rIjRqZGxfAHBW1U5OPvM+oo4r7xvJJcCidYjeS8Eo70mCgh 3g+DfXZZKjKG+iPiecYaas2MExAFVL9TmOFi4fo= -----END CERTIFICATE-----Generated at Mon Apr 7 06:41:13 2025 by rpki-client