$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa File: 8548b407-be60-3815-ad3f-2a6c01accdd7.roa (raw, json) Hash identifier: x5ai6NI0go+yMmohewKf1vNPKSmw02XjJ0yod9gwir0= Subject key identifier: 5D:47:7A:B6:18:4E:1C:E6:58:15:47:6C:64:1C:DF:76:45:37:0A:F8 Certificate issuer: /CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Certificate serial: 010D0C9F43285848FD56B5038370D80C62989B80 Authority key identifier: D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa Signing time: Mon 24 Feb 2025 14:00:52 +0000 ROA not before: Mon 24 Feb 2025 14:00:52 +0000 ROA not after: Sun 25 May 2025 13:00:52 +0000 asID: 198148 IP address blocks: 63.216.56.0/21 maxlen: 24 63.216.82.0/23 maxlen: 24 63.216.142.0/23 maxlen: 24 63.216.144.0/22 maxlen: 24 63.216.152.0/22 maxlen: 24 63.216.156.0/24 maxlen: 24 63.216.168.0/21 maxlen: 24 63.216.176.0/24 maxlen: 24 63.217.16.0/23 maxlen: 24 63.217.24.0/23 maxlen: 24 63.217.40.0/21 maxlen: 24 63.217.59.0/24 maxlen: 24 63.217.66.0/24 maxlen: 24 63.217.72.0/22 maxlen: 24 63.217.80.0/21 maxlen: 24 63.217.120.0/22 maxlen: 24 63.217.237.0/24 maxlen: 24 63.217.254.0/24 maxlen: 24 63.218.0.0/22 maxlen: 24 63.218.10.0/23 maxlen: 24 63.218.18.0/23 maxlen: 24 63.218.43.0/24 maxlen: 24 63.218.56.0/23 maxlen: 24 63.218.60.0/22 maxlen: 24 63.218.76.0/23 maxlen: 24 63.218.107.0/24 maxlen: 24 63.218.114.0/23 maxlen: 24 63.218.116.0/23 maxlen: 24 63.218.144.0/23 maxlen: 24 63.218.156.0/23 maxlen: 24 63.218.158.0/23 maxlen: 24 63.218.162.0/23 maxlen: 24 63.218.164.0/23 maxlen: 24 63.218.174.0/23 maxlen: 24 63.218.204.0/23 maxlen: 24 63.218.210.0/23 maxlen: 24 63.218.213.0/24 maxlen: 24 63.218.214.0/23 maxlen: 24 63.218.228.0/23 maxlen: 24 63.218.240.0/23 maxlen: 24 63.218.248.0/23 maxlen: 24 63.218.252.0/23 maxlen: 24 63.218.254.0/23 maxlen: 24 63.219.16.0/22 maxlen: 24 63.220.0.0/21 maxlen: 24 63.221.136.0/21 maxlen: 24 63.221.152.0/21 maxlen: 24 63.221.200.0/21 maxlen: 24 63.222.7.0/24 maxlen: 24 63.222.16.0/21 maxlen: 24 63.222.45.0/24 maxlen: 24 63.223.17.0/24 maxlen: 24 63.223.20.0/24 maxlen: 24 63.223.31.0/24 maxlen: 24 63.223.34.0/24 maxlen: 24 63.223.44.0/24 maxlen: 24 63.223.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 10 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:fd:56:b5:03:83:70:d8:0c:62:98:9b:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Validity Not Before: Feb 24 14:00:52 2025 GMT Not After : May 25 13:00:52 2025 GMT Subject: CN=bfcbe604-f5f0-4d80-b4e1-a4180a95ee58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:08:a4:ad:1f:2d:03:2c:9f:32:e3:40:7c:bd: f3:18:a9:9b:d3:94:b5:0a:41:6d:58:cc:60:a0:86: 01:ef:90:22:fb:39:88:50:a5:7f:06:8e:63:f0:06: d5:65:d0:4e:9c:b9:4d:b8:5b:cc:fc:6e:ee:0f:f5: 67:5a:54:a2:2f:f8:ae:2c:d8:d7:be:9a:c1:8d:2c: f0:4b:7b:e8:53:44:4a:ee:be:32:12:de:a3:34:a8: 58:60:44:2c:e7:1e:05:59:60:23:db:fd:12:93:95: c6:5a:c0:7f:2a:59:5d:b3:26:26:d5:59:f5:70:de: f5:ac:c5:c8:38:54:0f:8f:42:84:bc:fc:b2:52:a1: 1b:a6:46:5c:2a:c5:f5:fc:b0:b9:f8:52:9d:3e:f7: 06:f9:a2:4f:ab:a0:89:93:a6:f0:ba:8d:a0:c1:0d: 29:91:fb:ed:0e:f8:0c:d5:19:cc:b8:e4:a8:a6:3b: 2f:e5:96:b7:cb:ab:41:8b:bc:4d:cf:cd:05:13:cf: 2d:be:c4:3c:ad:2c:a4:81:b9:46:df:01:89:ba:a0: e3:c3:50:c2:2e:47:d2:44:f7:4b:56:dc:08:cd:4d: 0f:ea:9d:1d:84:ad:d4:ac:1b:7d:d3:6b:36:85:21: d0:93:78:c1:ec:ec:d3:2d:e1:1c:11:0e:cb:49:eb: f4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:47:7A:B6:18:4E:1C:E6:58:15:47:6C:64:1C:DF:76:45:37:0A:F8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl X509v3 Authority Key Identifier: keyid:D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer sbgp-ipAddrBlock: critical IPv4: 63.216.56.0/21 63.216.82.0/23 63.216.142.0-63.216.147.255 63.216.152.0-63.216.156.255 63.216.168.0-63.216.176.255 63.217.16.0/23 63.217.24.0/23 63.217.40.0/21 63.217.59.0/24 63.217.66.0/24 63.217.72.0/22 63.217.80.0/21 63.217.120.0/22 63.217.237.0/24 63.217.254.0/24 63.218.0.0/22 63.218.10.0/23 63.218.18.0/23 63.218.43.0/24 63.218.56.0/23 63.218.60.0/22 63.218.76.0/23 63.218.107.0/24 63.218.114.0-63.218.117.255 63.218.144.0/23 63.218.156.0/22 63.218.162.0-63.218.165.255 63.218.174.0/23 63.218.204.0/23 63.218.210.0/23 63.218.213.0-63.218.215.255 63.218.228.0/23 63.218.240.0/23 63.218.248.0/23 63.218.252.0/22 63.219.16.0/22 63.220.0.0/21 63.221.136.0/21 63.221.152.0/21 63.221.200.0/21 63.222.7.0/24 63.222.16.0/21 63.222.45.0/24 63.223.17.0/24 63.223.20.0/24 63.223.31.0/24 63.223.34.0/24 63.223.44.0/24 63.223.192.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 74:d0:8c:61:51:c8:95:7c:bc:c2:f5:a3:c7:c5:50:6f:b0:4a: d1:49:76:83:29:84:de:be:11:60:60:50:91:61:96:d1:1f:b1: c8:e5:b1:48:b3:f6:46:ac:39:98:6e:b0:c5:56:c3:6a:8e:68: a6:ed:b9:46:16:5a:a7:ca:73:26:51:5e:43:77:df:31:6f:3e: 1b:43:32:9b:66:d4:37:69:ae:d0:a6:6f:09:b5:dd:6d:85:d6: b1:1f:8a:41:03:e7:a7:e8:ba:d0:e8:a4:89:8c:5f:83:fe:ba: 35:55:7b:ce:ed:85:fc:25:94:b7:f6:db:de:8d:af:62:00:03: 92:b1:af:24:69:66:c5:03:6d:ad:3d:ba:3e:0e:99:c4:d9:d8: bd:b3:7e:c4:80:95:60:5f:e3:89:2e:ab:6f:f7:02:46:01:37: ee:35:98:08:cc:06:67:d1:cc:24:b7:b8:35:3d:06:9f:1c:97: 80:2e:ae:1a:cc:a3:bc:0e:d2:da:76:73:4a:7e:50:d6:2c:b0: 2c:94:03:c5:ce:c9:62:25:d7:17:82:f4:bc:26:d7:64:97:44: 70:28:bd:43:37:ce:a7:f7:f2:51:98:7e:54:0f:28:43:41:2a: 2e:35:86:36:21:c0:e6:8e:90:a4:6c:00:58:ee:af:c7:95:ac: e4:47:3c:7c -----BEGIN CERTIFICATE----- MIIHnTCCBoWgAwIBAgIUAQ0Mn0MoWEj9VrUDg3DYDGKYm4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMDUzOWU0OTAtZjYyYy00YmQzLThmMjgtYzg4ZWRhMjIw YzQ4MB4XDTI1MDIyNDE0MDA1MloXDTI1MDUyNTEzMDA1MlowLzEtMCsGA1UEAxMk YmZjYmU2MDQtZjVmMC00ZDgwLWI0ZTEtYTQxODBhOTVlZTU4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgQikrR8tAyyfMuNAfL3zGKmb05S1CkFtWMxg oIYB75Ai+zmIUKV/Bo5j8AbVZdBOnLlNuFvM/G7uD/VnWlSiL/iuLNjXvprBjSzw S3voU0RK7r4yEt6jNKhYYEQs5x4FWWAj2/0Sk5XGWsB/KlldsyYm1Vn1cN71rMXI OFQPj0KEvPyyUqEbpkZcKsX1/LC5+FKdPvcG+aJPq6CJk6bwuo2gwQ0pkfvtDvgM 1RnMuOSopjsv5Za3y6tBi7xNz80FE88tvsQ8rSykgblG3wGJuqDjw1DCLkfSRPdL VtwIzU0P6p0dhK3UrBt902s2hSHQk3jB7OzTLeEcEQ7LSev0FQIDAQABo4IErzCC BKswHQYDVR0OBBYEFF1HerYYThzmWBVHbGQc33ZFNwr4MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5 ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhlZGEyMjBjNDgvODU0OGI0MDctYmU2MC0z ODE1LWFkM2YtMmE2YzAxYWNjZGQ3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMDUzOWU0OTAtZjYyYy00YmQzLThm MjgtYzg4ZWRhMjIwYzQ4LzA1MzllNDkwLWY2MmMtNGJkMy04ZjI4LWM4OGVkYTIy MGM0OC5jcmwwHwYDVR0jBBgwFoAU0ToQMzWxBhO5Z5LsPpF3qYEVn+cwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhl ZGEyMjBjNDguY2VyMIIBdwYIKwYBBQUHAQcBAf8EggFmMIIBYjCCAV4EAgABMIIB VgMEAz/YOAMEAT/YUjAMAwQBP9iOAwQCP9iQMAwDBAM/2JgDBAA/2JwwDAMEAz/Y qAMEAD/YsAMEAT/ZEAMEAT/ZGAMEAz/ZKAMEAD/ZOwMEAD/ZQgMEAj/ZSAMEAz/Z UAMEAj/ZeAMEAD/Z7QMEAD/Z/gMEAj/aAAMEAT/aCgMEAT/aEgMEAD/aKwMEAT/a OAMEAj/aPAMEAT/aTAMEAD/aazAMAwQBP9pyAwQBP9p0AwQBP9qQAwQCP9qcMAwD BAE/2qIDBAE/2qQDBAE/2q4DBAE/2swDBAE/2tIwDAMEAD/a1QMEAz/a0AMEAT/a 5AMEAT/a8AMEAT/a+AMEAj/a/AMEAj/bEAMEAz/cAAMEAz/diAMEAz/dmAMEAz/d yAMEAD/eBwMEAz/eEAMEAD/eLQMEAD/fEQMEAD/fFAMEAD/fHwMEAD/fIgMEAD/f LAMEBD/fwDBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEW LGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0G CSqGSIb3DQEBCwUAA4IBAQB00IxhUciVfLzC9aPHxVBvsErRSXaDKYTevhFgYFCR YZbRH7HI5bFIs/ZGrDmYbrDFVsNqjmim7blGFlqnynMmUV5Dd98xbz4bQzKbZtQ3 aa7Qpm8Jtd1thdaxH4pBA+en6LrQ6KSJjF+D/ro1VXvO7YX8JZS39tveja9iAAOS sa8kaWbFA22tPbo+DpnE2di9s37EgJVgX+OJLqtv9wJGATfuNZgIzAZn0cwkt7g1 PQafHJeALq4azKO8DtLadnNKflDWLLAslAPFzsliJdcXgvS8Jtdkl0RwKL1DN86n 9/JRmH5UDyhDQSouNYY2IcDmjpCkbABY7q/HlazkRzx8 -----END CERTIFICATE-----Generated at Tue Apr 8 23:41:29 2025 by rpki-client