$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/17797fbe-976b-3a44-971c-5db64cddcfc1.roa File: 17797fbe-976b-3a44-971c-5db64cddcfc1.roa (raw, json) Hash identifier: gvnKYdgORgfMaoaECqJR0YMXmaSCFB4orYtqQJFLS4o= Subject key identifier: 7E:C3:67:B4:38:D9:9C:D1:3B:49:A4:9E:0B:70:57:EF:1F:02:3C:4E Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F432858494CC9544DFE2F103850E26380 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/17797fbe-976b-3a44-971c-5db64cddcfc1.roa Signing time: Tue 25 Mar 2025 01:00:40 +0000 ROA not before: Tue 25 Mar 2025 01:00:40 +0000 ROA not after: Mon 23 Jun 2025 01:00:40 +0000 asID: 8069 IP address blocks: 20.33.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:4c:c9:54:4d:fe:2f:10:38:50:e2:63:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Mar 25 01:00:40 2025 GMT Not After : Jun 23 01:00:40 2025 GMT Subject: CN=dcd28778-6fac-45a8-b368-2d24990062a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:02:cf:48:86:d9:ab:90:6e:6e:fc:9f:4d:4a: 4b:fd:44:9d:71:09:11:ad:2f:26:f5:05:79:ba:9c: c5:cd:f9:f0:04:fe:b0:20:3e:5a:9e:e3:aa:7b:fe: e7:e7:83:02:ec:6b:58:7f:b9:af:ef:50:72:ba:36: 16:76:6c:bb:db:f3:71:27:b9:ad:71:9e:d6:fd:51: e0:47:27:1e:b4:d0:50:89:8b:46:08:de:77:09:7a: 23:4f:98:d9:f7:bc:3c:3b:25:d4:58:4e:40:a1:7f: 0f:cd:9f:c3:5b:d0:b1:a0:df:49:14:1f:64:54:aa: 2d:13:1c:1f:a3:74:6e:8f:01:8b:9e:c5:b5:d2:75: 84:f4:d9:eb:35:e1:53:82:f2:38:bb:80:de:81:17: ec:5a:4e:15:50:8d:88:1f:1c:9c:4f:03:08:ac:d6: 11:31:78:c8:5e:6f:ce:3b:fb:1e:1f:1a:30:9d:7a: 7c:39:52:88:e7:fe:19:73:71:11:6a:da:54:95:25: 56:4a:43:f4:bd:8b:6b:6a:36:25:65:86:2c:6e:44: 4a:f3:0b:bd:8d:87:f2:82:e2:af:c3:59:92:2f:df: 53:34:7b:40:ad:95:86:98:d2:88:97:56:4d:08:c9: 1a:6c:60:c8:98:64:e5:9d:af:95:9b:4e:77:2b:c0: 84:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C3:67:B4:38:D9:9C:D1:3B:49:A4:9E:0B:70:57:EF:1F:02:3C:4E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/17797fbe-976b-3a44-971c-5db64cddcfc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.20.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 77:2b:1e:c9:d8:ed:d3:a8:ea:85:fd:66:47:59:72:a5:19:85: 2c:67:60:37:4a:96:d5:bf:16:73:f5:87:36:ae:5a:e6:43:27: 51:f3:4d:73:ed:de:02:6e:13:1b:e1:e5:da:12:7a:6b:6e:4d: 37:66:be:7b:a1:d2:54:86:98:79:a8:32:86:9a:16:76:e6:69: bc:f0:3d:54:66:f1:d3:da:5c:e7:70:20:ed:e6:fe:fa:46:7e: 74:69:08:f1:40:ee:28:8f:a3:39:92:4a:41:d5:2e:7b:54:ec: 49:db:e8:4c:d6:33:18:d2:79:5a:6c:4d:ef:4d:ce:d3:52:b4: d4:3a:d8:31:42:f3:dc:a5:ec:61:cd:1a:66:32:82:9e:2e:72: 4d:23:6a:a2:b7:d6:2f:5f:19:a1:4b:5a:6d:43:20:f7:78:95: c1:ab:81:2c:6c:cc:45:a8:ba:0f:9a:8c:e5:64:fc:f8:18:3e: f8:69:aa:40:f3:a2:1b:4a:d7:20:f1:44:3d:03:69:95:e2:ba: db:82:38:73:dc:67:56:18:18:49:02:10:16:a2:2b:84:19:f2: 60:93:aa:f5:87:e1:3a:7e:ce:d3:db:91:32:c6:44:48:b7:d8: a9:a1:b5:56:47:04:16:9c:3d:85:36:d6:58:bd:14:18:b0:90: 49:33:4f:24 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWElMyVRN/i8QOFDiY4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDMyNTAxMDA0MFoXDTI1MDYyMzAxMDA0MFowLzEtMCsGA1UEAxMk ZGNkMjg3NzgtNmZhYy00NWE4LWIzNjgtMmQyNDk5MDA2MmEzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwLPSIbZq5BubvyfTUpL/USdcQkRrS8m9QV5 upzFzfnwBP6wID5anuOqe/7n54MC7GtYf7mv71ByujYWdmy72/NxJ7mtcZ7W/VHg RycetNBQiYtGCN53CXojT5jZ97w8OyXUWE5AoX8PzZ/DW9CxoN9JFB9kVKotExwf o3RujwGLnsW10nWE9NnrNeFTgvI4u4DegRfsWk4VUI2IHxycTwMIrNYRMXjIXm/O O/seHxownXp8OVKI5/4Zc3ERatpUlSVWSkP0vYtrajYlZYYsbkRK8wu9jYfyguKv w1mSL99TNHtArZWGmNKIl1ZNCMkabGDImGTlna+Vm053K8CEWwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFH7DZ7Q42ZzRO0mkngtwV+8fAjxOMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMTc3OTdmYmUtOTc2Yi0z YTQ0LTk3MWMtNWRiNjRjZGRjZmMxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCEUMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHcrHsnY7dOo6oX9ZkdZcqUZhSxnYDdKltW/FnP1hzauWuZDJ1HzTXPt 3gJuExvh5doSemtuTTdmvnuh0lSGmHmoMoaaFnbmabzwPVRm8dPaXOdwIO3m/vpG fnRpCPFA7iiPozmSSkHVLntU7Enb6EzWMxjSeVpsTe9NztNStNQ62DFC89yl7GHN GmYygp4uck0jaqK31i9fGaFLWm1DIPd4lcGrgSxszEWoug+ajOVk/PgYPvhpqkDz ohtK1yDxRD0DaZXiutuCOHPcZ1YYGEkCEBaiK4QZ8mCTqvWH4Tp+ztPbkTLGREi3 2KmhtVZHBBacPYU21li9FBiwkEkzTyQ= -----END CERTIFICATE-----Generated at Sat Apr 5 09:42:38 2025 by rpki-client