$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7/2145dd7e-ab65-3c98-bc0d-77196940761e.roa File: 2145dd7e-ab65-3c98-bc0d-77196940761e.roa (raw, json) Hash identifier: zrIEamIBI16fPH47k0CM6lG/spYG/t0bpOUwPgnRGJQ= Subject key identifier: 48:FD:48:1C:67:3A:EF:78:EC:77:75:DB:89:BC:0B:0B:9F:C1:6A:2D Certificate issuer: /CN=ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7 Certificate serial: 010D0C9F4328584A04EE46ADF7DA45C840B2AC40 Authority key identifier: E8:1E:15:0B:75:76:40:58:B6:9A:14:2D:A7:91:10:D7:B8:85:D2:DD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7/2145dd7e-ab65-3c98-bc0d-77196940761e.roa Signing time: Thu 29 May 2025 23:32:50 +0000 ROA not before: Thu 29 May 2025 23:32:50 +0000 ROA not after: Wed 27 Aug 2025 23:32:50 +0000 asID: 18450 IP address blocks: 23.252.112.0/20 maxlen: 24 50.115.32.0/20 maxlen: 24 64.140.160.0/20 maxlen: 24 64.185.224.0/20 maxlen: 24 67.220.192.0/19 maxlen: 24 100.42.208.0/20 maxlen: 24 104.237.48.0/20 maxlen: 24 107.182.160.0/20 maxlen: 24 108.171.192.0/19 maxlen: 24 142.4.32.0/19 maxlen: 24 173.231.0.0/18 maxlen: 24 192.69.192.0/19 maxlen: 24 216.18.192.0/19 maxlen: 24 216.158.64.0/19 maxlen: 24 2607:f2d8::/32 maxlen: 56 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 23:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:04:ee:46:ad:f7:da:45:c8:40:b2:ac:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7 Validity Not Before: May 29 23:32:50 2025 GMT Not After : Aug 27 23:32:50 2025 GMT Subject: CN=47eee5ee-8b64-4f6c-9e79-794c5b2149a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8b:60:03:5e:8c:ba:c9:81:53:72:42:5e:30: da:c3:57:40:de:f4:8c:41:ae:f3:86:f9:42:48:6c: c5:8a:37:9a:1c:55:b3:a7:f4:48:9b:85:a7:70:65: d1:7a:23:8e:3c:7c:d3:35:41:c0:ef:c0:58:27:8d: e7:86:14:5a:fa:6d:01:b3:63:83:0d:e3:7c:62:bc: fb:04:a0:9f:02:75:21:8c:ca:12:24:38:c1:70:43: d6:a5:48:fa:5e:3e:74:05:73:85:b9:d3:12:7e:a4: 2d:1e:5d:e3:59:b4:e1:17:0f:08:77:6e:9b:3c:7b: f7:b9:20:8b:bf:90:8f:84:8f:f5:48:23:dd:5c:32: 1e:31:8d:eb:bd:32:2d:d2:a9:0e:b6:fd:0c:d5:af: 84:90:fb:f0:12:c4:3d:89:01:e5:19:7f:43:80:74: a3:44:3f:6d:ed:fb:50:b7:80:d8:e1:49:eb:86:3d: 86:8d:d1:1b:67:0c:0a:6d:e4:20:ff:23:b2:53:f9: a8:8f:38:0a:65:cb:bb:b6:80:00:48:b5:85:93:7b: d4:a3:3d:54:c0:0e:2e:02:d6:24:92:b9:9f:b0:0a: 18:7f:56:86:b7:b1:0e:71:52:83:a1:89:f7:fa:6b: 8c:3a:c8:77:79:e9:0d:30:71:e5:e1:e2:d8:07:92: 25:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:FD:48:1C:67:3A:EF:78:EC:77:75:DB:89:BC:0B:0B:9F:C1:6A:2D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7/2145dd7e-ab65-3c98-bc0d-77196940761e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7.crl X509v3 Authority Key Identifier: keyid:E8:1E:15:0B:75:76:40:58:B6:9A:14:2D:A7:91:10:D7:B8:85:D2:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/ba368dc2-dd8a-40d2-bc53-0fe87e9d9dd7.cer sbgp-ipAddrBlock: critical IPv4: 23.252.112.0/20 50.115.32.0/20 64.140.160.0/20 64.185.224.0/20 67.220.192.0/19 100.42.208.0/20 104.237.48.0/20 107.182.160.0/20 108.171.192.0/19 142.4.32.0/19 173.231.0.0/18 192.69.192.0/19 216.18.192.0/19 216.158.64.0/19 IPv6: 2607:f2d8::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 85:19:2b:e5:e7:7f:c0:58:32:91:34:2e:b7:64:3a:74:60:9a: 45:aa:48:99:3c:48:b9:8d:fb:81:92:d1:50:1f:d1:a0:bf:56: ce:86:62:39:a9:36:18:ee:40:7a:0a:15:33:ce:bc:47:1c:48: 6a:e8:11:9f:7d:05:1e:af:e9:18:d9:0e:8f:0c:df:9c:8e:f2: 1f:27:4c:ed:7f:1b:43:f6:6f:91:60:7f:94:c1:b6:f0:7a:91: ec:df:40:92:fd:0a:b6:c8:02:c2:fe:7a:b9:d5:d3:e8:00:07: f6:bd:d7:ef:23:fc:5c:22:ab:ea:1f:e1:6c:f3:c5:47:ad:ed: 36:e3:af:5e:f1:e5:b4:7c:24:99:6d:7b:ee:6d:6f:97:e2:eb: 25:f7:4d:32:e3:e3:8b:d1:58:8a:59:9f:d7:50:eb:63:40:93: 35:05:61:6a:d1:e0:8d:d2:e4:bb:ed:9a:cd:9c:9d:14:92:c8: e6:eb:27:61:cb:ca:54:5e:63:cd:9e:be:74:cf:54:31:6f:5a: 86:d9:58:e6:b3:43:a8:ad:7e:a1:c6:10:98:b5:96:b5:38:b8: 8e:15:d4:4c:88:24:ed:a8:43:e3:48:e2:d6:46:b8:4a:0d:36: 1b:98:58:79:4f:af:50:fc:49:d0:74:8d:93:65:ed:0c:c1:86: d2:13:16:a7 -----BEGIN CERTIFICATE----- MIIGoDCCBYigAwIBAgIUAQ0Mn0MoWEoE7kat99pFyECyrEAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmEzNjhkYzItZGQ4YS00MGQyLWJjNTMtMGZlODdlOWQ5 ZGQ3MB4XDTI1MDUyOTIzMzI1MFoXDTI1MDgyNzIzMzI1MFowLzEtMCsGA1UEAxMk NDdlZWU1ZWUtOGI2NC00ZjZjLTllNzktNzk0YzViMjE0OWEyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtItgA16MusmBU3JCXjDaw1dA3vSMQa7zhvlC SGzFijeaHFWzp/RIm4WncGXReiOOPHzTNUHA78BYJ43nhhRa+m0Bs2ODDeN8Yrz7 BKCfAnUhjMoSJDjBcEPWpUj6Xj50BXOFudMSfqQtHl3jWbThFw8Id26bPHv3uSCL v5CPhI/1SCPdXDIeMY3rvTIt0qkOtv0M1a+EkPvwEsQ9iQHlGX9DgHSjRD9t7ftQ t4DY4Unrhj2GjdEbZwwKbeQg/yOyU/mojzgKZcu7toAASLWFk3vUoz1UwA4uAtYk krmfsAoYf1aGt7EOcVKDoYn3+muMOsh3eekNMHHl4eLYB5IlCwIDAQABo4IDsjCC A64wHQYDVR0OBBYEFEj9SBxnOu947Hd124m8CwufwWotMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9iYTM2 OGRjMi1kZDhhLTQwZDItYmM1My0wZmU4N2U5ZDlkZDcvMjE0NWRkN2UtYWI2NS0z Yzk4LWJjMGQtNzcxOTY5NDA3NjFlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kNmI1YWQyOC0x Y2JjLTQ3YWItOTA0ZS00NTM2MWE1NDg3YzMvYmEzNjhkYzItZGQ4YS00MGQyLWJj NTMtMGZlODdlOWQ5ZGQ3L2JhMzY4ZGMyLWRkOGEtNDBkMi1iYzUzLTBmZTg3ZTlk OWRkNy5jcmwwHwYDVR0jBBgwFoAU6B4VC3V2QFi2mhQtp5EQ17iF0t0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q2YjVhZDI4LTFjYmMtNDdh Yi05MDRlLTQ1MzYxYTU0ODdjMy9iYTM2OGRjMi1kZDhhLTQwZDItYmM1My0wZmU4 N2U5ZDlkZDcuY2VyMHwGCCsGAQUFBwEHAQH/BG0wazBaBAIAATBUAwQEF/xwAwQE MnMgAwQEQIygAwQEQLngAwQFQ9zAAwQEZCrQAwQEaO0wAwQEa7agAwQFbKvAAwQF jgQgAwQGrecAAwQFwEXAAwQF2BLAAwQF2J5AMA0EAgACMAcDBQAmB/LYMFQGA1Ud IAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cu YXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQAD ggEBAIUZK+Xnf8BYMpE0LrdkOnRgmkWqSJk8SLmN+4GS0VAf0aC/Vs6GYjmpNhju QHoKFTPOvEccSGroEZ99BR6v6RjZDo8M35yO8h8nTO1/G0P2b5Fgf5TBtvB6kezf QJL9CrbIAsL+ernV0+gAB/a91+8j/Fwiq+of4WzzxUet7Tbjr17x5bR8JJlte+5t b5fi6yX3TTLj44vRWIpZn9dQ62NAkzUFYWrR4I3S5Lvtms2cnRSSyObrJ2HLylRe Y82evnTPVDFvWobZWOazQ6itfqHGEJi1lrU4uI4V1EyIJO2oQ+NI4tZGuEoNNhuY WHlPr1D8SdB0jZNl7QzBhtITFqc= -----END CERTIFICATE-----Generated at Sun Jun 8 16:37:40 2025 by rpki-client