$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/0f6981fa-1e72-324a-bc08-0e353c6fbbda.roa File: 0f6981fa-1e72-324a-bc08-0e353c6fbbda.roa (raw, json) Hash identifier: VnhE5DgkX+JW8qj95oNtsxXnpM+w6e/O5jdRlltOb74= Subject key identifier: 60:FA:92:F4:CE:CD:96:A7:4E:B8:A9:40:4D:79:4D:23:6D:B8:7D:CB Certificate issuer: /CN=2aa438c9-0cbb-4364-946d-9714249a8222 Certificate serial: 010D0C9F43285848B4C0F42A0B3861D5C6154600 Authority key identifier: 05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/0f6981fa-1e72-324a-bc08-0e353c6fbbda.roa Signing time: Wed 29 Jan 2025 14:00:51 +0000 ROA not before: Wed 29 Jan 2025 14:00:51 +0000 ROA not after: Tue 29 Apr 2025 13:00:51 +0000 asID: 63293 IP address blocks: 129.134.128.0/24 maxlen: 24 129.134.130.0/24 maxlen: 24 129.134.131.0/24 maxlen: 24 129.134.132.0/24 maxlen: 24 129.134.135.0/24 maxlen: 24 129.134.136.0/24 maxlen: 24 129.134.137.0/24 maxlen: 24 129.134.138.0/24 maxlen: 24 129.134.139.0/24 maxlen: 24 129.134.140.0/24 maxlen: 24 129.134.143.0/24 maxlen: 24 129.134.144.0/24 maxlen: 24 129.134.147.0/24 maxlen: 24 129.134.148.0/24 maxlen: 24 129.134.149.0/24 maxlen: 24 129.134.150.0/24 maxlen: 24 129.134.154.0/24 maxlen: 24 129.134.155.0/24 maxlen: 24 129.134.156.0/24 maxlen: 24 129.134.157.0/24 maxlen: 24 129.134.158.0/24 maxlen: 24 129.134.159.0/24 maxlen: 24 129.134.160.0/26 maxlen: 26 129.134.161.0/24 maxlen: 24 129.134.163.0/24 maxlen: 24 129.134.164.0/24 maxlen: 24 129.134.165.0/24 maxlen: 24 129.134.168.0/24 maxlen: 24 129.134.169.0/24 maxlen: 24 129.134.170.0/24 maxlen: 24 129.134.171.0/24 maxlen: 24 129.134.172.0/24 maxlen: 24 129.134.173.0/24 maxlen: 24 129.134.174.0/24 maxlen: 24 129.134.175.0/24 maxlen: 24 129.134.176.0/24 maxlen: 24 129.134.177.0/24 maxlen: 24 129.134.178.0/24 maxlen: 24 129.134.179.0/24 maxlen: 24 129.134.181.0/24 maxlen: 24 129.134.182.0/24 maxlen: 24 129.134.183.0/24 maxlen: 24 129.134.184.0/24 maxlen: 24 129.134.185.0/24 maxlen: 24 129.134.186.0/24 maxlen: 24 129.134.187.0/24 maxlen: 24 157.240.128.0/24 maxlen: 24 157.240.157.0/24 maxlen: 24 157.240.158.0/24 maxlen: 24 157.240.169.0/24 maxlen: 24 157.240.170.0/24 maxlen: 24 157.240.175.0/24 maxlen: 24 157.240.176.0/24 maxlen: 24 157.240.177.0/24 maxlen: 24 157.240.179.0/24 maxlen: 24 157.240.181.0/24 maxlen: 24 157.240.182.0/24 maxlen: 24 157.240.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:b4:c0:f4:2a:0b:38:61:d5:c6:15:46:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2aa438c9-0cbb-4364-946d-9714249a8222 Validity Not Before: Jan 29 14:00:51 2025 GMT Not After : Apr 29 13:00:51 2025 GMT Subject: CN=b4c8ce8e-1ebd-4451-925b-191eb0c96c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:a2:f3:a9:2b:00:e3:09:73:78:5e:61:74:84: 04:c1:ff:19:f6:3e:df:d1:86:5f:63:0c:f7:06:df: d4:58:a6:94:68:74:cf:f8:17:fb:f4:be:8e:13:ec: e1:26:5a:a0:bb:94:da:46:9b:8a:03:50:f0:e4:04: e0:dc:7d:14:f0:0d:d7:23:cd:35:f3:79:2e:d0:0e: 24:24:a6:f8:e7:b6:b0:ad:f0:76:75:5e:7a:88:65: 97:19:c4:35:eb:22:fa:64:04:6e:c6:a1:67:b9:35: 01:da:47:b3:e0:5e:0b:2d:20:7b:17:69:2c:97:77: fa:41:d4:65:5b:f1:be:c1:be:3a:dd:42:fc:ff:0b: eb:f6:f7:ba:1e:ca:e1:2a:2d:75:65:30:72:b9:b4: 4b:2f:9b:1b:35:d4:0e:95:69:c6:8b:90:7b:70:4b: 5a:a2:ec:2e:b8:32:de:63:15:0e:29:83:a0:1d:67: 1f:84:8e:6f:33:43:73:67:b2:8a:9d:8c:b8:74:7d: 03:be:86:a4:c2:21:8d:7d:db:f2:18:a9:da:07:4a: f9:7a:06:97:93:96:be:d3:02:26:fb:2d:03:61:9c: 74:05:8f:7a:d0:ef:8c:4a:5a:58:65:4a:22:8e:ae: b6:b0:60:7a:b4:f3:90:ba:23:b5:41:82:9b:2e:3e: d4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:FA:92:F4:CE:CD:96:A7:4E:B8:A9:40:4D:79:4D:23:6D:B8:7D:CB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/0f6981fa-1e72-324a-bc08-0e353c6fbbda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl X509v3 Authority Key Identifier: keyid:05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer sbgp-ipAddrBlock: critical IPv4: 129.134.128.0/24 129.134.130.0-129.134.132.255 129.134.135.0-129.134.140.255 129.134.143.0-129.134.144.255 129.134.147.0-129.134.150.255 129.134.154.0-129.134.160.63 129.134.161.0/24 129.134.163.0-129.134.165.255 129.134.168.0-129.134.179.255 129.134.181.0-129.134.187.255 157.240.128.0/24 157.240.157.0-157.240.158.255 157.240.169.0-157.240.170.255 157.240.175.0-157.240.177.255 157.240.179.0/24 157.240.181.0-157.240.183.255 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8f:b7:a5:48:4d:8b:ab:a2:f9:55:cd:a9:11:89:54:6c:cf:d8: c2:2d:ec:3b:a7:12:69:e6:5e:c6:ae:0f:3a:60:8e:e2:93:1b: 53:fb:a7:8f:91:ce:b3:80:a0:ee:56:9b:82:0a:25:ae:7b:91: fc:ea:79:50:31:8b:1c:75:8e:bb:ca:98:02:8d:10:50:a1:8e: ef:bd:0b:c1:96:ac:8a:0d:51:3c:cb:5c:c4:38:6a:3a:e7:ca: 7a:50:a5:e4:65:67:2d:a3:78:a0:8e:c5:28:a4:b9:c9:af:ef: 68:25:94:87:ea:0a:b0:c5:3f:74:06:20:b2:aa:a2:eb:9a:0b: 1f:be:46:0b:eb:76:3d:2b:d0:40:70:59:54:36:10:92:37:ec: ed:8d:b6:a9:51:74:79:a5:e6:4d:d8:5f:e4:39:66:94:88:b3: e4:63:c2:d7:d8:a7:e3:59:72:46:b7:b7:84:9d:a2:0a:97:1f: cb:64:ff:16:52:a3:38:84:6a:de:87:d7:89:34:ba:a9:dc:64: d6:65:b3:3f:26:50:51:84:17:36:5c:7f:41:02:31:45:df:ef: c7:95:f3:29:e5:87:c4:5f:81:3d:ad:17:aa:ec:0a:84:43:e4: 71:eb:db:86:8c:f2:eb:b8:f2:72:02:7c:2d:9a:da:b8:2c:36: 51:e4:71:34 -----BEGIN CERTIFICATE----- MIIHAzCCBeugAwIBAgIUAQ0Mn0MoWEi0wPQqCzhh1cYVRgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmFhNDM4YzktMGNiYi00MzY0LTk0NmQtOTcxNDI0OWE4 MjIyMB4XDTI1MDEyOTE0MDA1MVoXDTI1MDQyOTEzMDA1MVowLzEtMCsGA1UEAxMk YjRjOGNlOGUtMWViZC00NDUxLTkyNWItMTkxZWIwYzk2YzExMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg6LzqSsA4wlzeF5hdIQEwf8Z9j7f0YZfYwz3 Bt/UWKaUaHTP+Bf79L6OE+zhJlqgu5TaRpuKA1Dw5ATg3H0U8A3XI80183ku0A4k JKb457awrfB2dV56iGWXGcQ16yL6ZARuxqFnuTUB2kez4F4LLSB7F2ksl3f6QdRl W/G+wb463UL8/wvr9ve6HsrhKi11ZTByubRLL5sbNdQOlWnGi5B7cEtaouwuuDLe YxUOKYOgHWcfhI5vM0NzZ7KKnYy4dH0DvoakwiGNfdvyGKnaB0r5egaXk5a+0wIm +y0DYZx0BY960O+MSlpYZUoijq62sGB6tPOQuiO1QYKbLj7UnQIDAQABo4IEFTCC BBEwHQYDVR0OBBYEFGD6kvTOzZanTripQE15TSNtuH3LMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8yYWE0 MzhjOS0wY2JiLTQzNjQtOTQ2ZC05NzE0MjQ5YTgyMjIvMGY2OTgxZmEtMWU3Mi0z MjRhLWJjMDgtMGUzNTNjNmZiYmRhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMmFhNDM4YzktMGNiYi00MzY0LTk0 NmQtOTcxNDI0OWE4MjIyLzJhYTQzOGM5LTBjYmItNDM2NC05NDZkLTk3MTQyNDlh ODIyMi5jcmwwHwYDVR0jBBgwFoAUBSPfkxv/OUKcKv57/3pLM1boXrAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS8yYWE0MzhjOS0wY2JiLTQzNjQtOTQ2ZC05NzE0 MjQ5YTgyMjIuY2VyMIHeBggrBgEFBQcBBwEB/wSBzjCByzCByAQCAAEwgcEDBACB hoAwDAMEAYGGggMEAIGGhDAMAwQAgYaHAwQAgYaMMAwDBACBho8DBACBhpAwDAME AIGGkwMEAIGGljANAwQBgYaaAwUGgYagAAMEAIGGoTAMAwQAgYajAwQBgYakMAwD BAOBhqgDBAKBhrAwDAMEAIGGtQMEAoGGuAMEAJ3wgDAMAwQAnfCdAwQAnfCeMAwD BACd8KkDBACd8KowDAMEAJ3wrwMEAZ3wsAMEAJ3wszAMAwQAnfC1AwQDnfCwMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAI+3pUhNi6ui+VXNqRGJVGzP2MIt7DunEmnmXsauDzpgjuKTG1P7p4+R zrOAoO5Wm4IKJa57kfzqeVAxixx1jrvKmAKNEFChju+9C8GWrIoNUTzLXMQ4ajrn ynpQpeRlZy2jeKCOxSikucmv72gllIfqCrDFP3QGILKqouuaCx++Rgvrdj0r0EBw WVQ2EJI37O2NtqlRdHml5k3YX+Q5ZpSIs+RjwtfYp+NZcka3t4SdogqXH8tk/xZS oziEat6H14k0uqncZNZlsz8mUFGEFzZcf0ECMUXf78eV8ynlh8RfgT2tF6rsCoRD 5HHr24aM8uu48nICfC2a2rgsNlHkcTQ= -----END CERTIFICATE-----Generated at Mon Apr 7 07:07:09 2025 by rpki-client