$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa File: 3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa (raw, json) Hash identifier: gzvqSOJDRr25gilGVQRWs/wtHieCwCqGxXO+UrRlAew= Subject key identifier: 33:88:79:8A:26:8F:B1:DD:0C:6D:AC:38:83:41:5D:14:8D:E6:C0:C8 Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F43285848E2D103D9A8824AD85DD73DC0 Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa Signing time: Sat 15 Feb 2025 02:00:39 +0000 ROA not before: Sat 15 Feb 2025 02:00:39 +0000 ROA not after: Fri 16 May 2025 01:00:39 +0000 asID: 46687 IP address blocks: 207.68.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 14 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:e2:d1:03:d9:a8:82:4a:d8:5d:d7:3d:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: Feb 15 02:00:39 2025 GMT Not After : May 16 01:00:39 2025 GMT Subject: CN=3562b496-c56e-4fd6-ab84-9ae1bedfe872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6f:a4:5f:ae:b8:e4:be:42:27:7d:57:c5:7d: b1:21:ce:9f:41:8a:5f:6a:cd:11:63:5d:28:64:57: 68:d2:af:c6:9e:3f:f8:ef:d8:fc:95:2c:2a:d5:0a: 2f:be:fb:30:90:aa:80:6c:9d:ed:74:be:db:44:90: c5:c0:65:a0:a5:13:c0:6f:af:7c:60:51:2a:55:80: 9e:c9:4c:33:32:0f:2d:f6:08:bb:e8:09:76:32:c4: 8e:f5:d7:4d:21:14:d6:af:03:54:ef:d2:70:a1:98: 47:59:14:a6:63:e9:7a:18:95:9f:b7:ee:4c:3e:76: 5e:59:63:d8:15:bb:90:ad:17:09:c1:e4:98:a0:d4: 70:54:73:94:c6:42:9d:3a:a0:49:33:2e:dc:e5:17: 67:5a:0c:3d:3e:30:28:b8:13:31:b5:eb:94:91:8f: cb:48:8f:e7:48:f9:3d:3f:ef:73:20:fa:a2:c5:05: 07:08:4f:47:62:c8:59:43:9e:0d:d8:c2:8f:24:00: 5f:09:27:d2:df:1d:c3:dc:d6:5a:14:e6:09:8e:ea: 07:67:7d:c7:6e:d4:54:a7:da:62:7c:ec:0a:81:47: f5:d0:4d:56:49:cd:5c:09:0a:8b:ed:c1:7f:84:1a: 5f:e0:e7:61:78:38:e7:32:8e:0b:e4:51:ea:1d:8b: 40:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:88:79:8A:26:8F:B1:DD:0C:6D:AC:38:83:41:5D:14:8D:E6:C0:C8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 207.68.224.0/19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 40:8c:33:22:68:51:75:1b:bb:d4:b7:0c:18:65:05:6d:bd:30: 46:e3:da:1a:0a:8b:14:c1:28:27:c3:62:e8:b2:76:54:d5:da: 23:6e:98:98:2d:5e:16:0a:ec:88:6e:2c:a0:e9:97:d5:e5:62: 76:7d:74:92:65:6c:e9:9b:18:ac:44:06:23:2c:bf:30:f6:02: 33:88:1d:43:28:ac:2b:d2:05:78:1a:0c:0d:30:ea:4a:b5:44: a1:ea:64:8b:02:9c:05:b2:98:9c:93:86:41:8c:90:77:2c:11: a5:2b:43:04:62:5c:89:16:e9:38:84:06:a1:91:e1:c5:d4:17: ca:00:1c:bc:c9:08:18:6a:b2:16:42:29:e7:fd:36:11:f3:a0: d8:cb:ed:cf:7c:39:7d:30:08:8e:7f:b1:d5:4a:a1:50:92:93: 23:de:79:d0:3d:98:e0:76:7e:02:20:78:82:41:1d:5a:00:b1: 3d:33:b4:66:68:3b:57:9f:87:a8:3a:99:6a:de:56:0b:1a:3c: cf:5a:91:1c:bb:aa:d3:28:9a:ad:77:b0:dc:37:76:24:89:10: 2d:f2:77:01:8d:1c:6c:68:7b:e3:f4:de:53:b6:fe:11:cf:f3: 2a:42:66:ee:97:bf:c3:87:c6:95:f0:f2:f5:da:9f:62:75:29: ab:36:35:69 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEji0QPZqIJK2F3XPcAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI1MDIxNTAyMDAzOVoXDTI1MDUxNjAxMDAzOVowLzEtMCsGA1UEAxMk MzU2MmI0OTYtYzU2ZS00ZmQ2LWFiODQtOWFlMWJlZGZlODcyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmG+kX6645L5CJ31XxX2xIc6fQYpfas0RY10o ZFdo0q/Gnj/479j8lSwq1QovvvswkKqAbJ3tdL7bRJDFwGWgpRPAb698YFEqVYCe yUwzMg8t9gi76Al2MsSO9ddNIRTWrwNU79JwoZhHWRSmY+l6GJWft+5MPnZeWWPY FbuQrRcJweSYoNRwVHOUxkKdOqBJMy7c5RdnWgw9PjAouBMxteuUkY/LSI/nSPk9 P+9zIPqixQUHCE9HYshZQ54N2MKPJABfCSfS3x3D3NZaFOYJjuoHZ33HbtRUp9pi fOwKgUf10E1WSc1cCQqL7cF/hBpf4OdheDjnMo4L5FHqHYtAqQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDOIeYomj7HdDG2sOINBXRSN5sDIMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvM2I3MGVmNDktNjFlOC0z YzFkLWEzM2EtNTFkMTk0YWNmZjVlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFz0TgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAECMMyJoUXUbu9S3DBhlBW29MEbj2hoKixTBKCfDYuiydlTV2iNumJgt XhYK7IhuLKDpl9XlYnZ9dJJlbOmbGKxEBiMsvzD2AjOIHUMorCvSBXgaDA0w6kq1 RKHqZIsCnAWymJyThkGMkHcsEaUrQwRiXIkW6TiEBqGR4cXUF8oAHLzJCBhqshZC Kef9NhHzoNjL7c98OX0wCI5/sdVKoVCSkyPeedA9mOB2fgIgeIJBHVoAsT0ztGZo O1efh6g6mWreVgsaPM9akRy7qtMomq13sNw3diSJEC3ydwGNHGxoe+P03lO2/hHP 8ypCZu6Xv8OHxpXw8vXan2J1Kas2NWk= -----END CERTIFICATE-----Generated at Sat Apr 12 15:24:45 2025 by rpki-client