$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/294e9347-de22-31e7-bfc5-75bd383b4a41.roa File: 294e9347-de22-31e7-bfc5-75bd383b4a41.roa (raw, json) Hash identifier: t+RgcHeT1YRZ85vzv2tUmjX5sfFDga04i2FYp6uNWnw= Subject key identifier: 06:5C:D3:E7:11:75:B2:96:08:97:96:D5:1F:80:6D:1A:E6:6D:25:B6 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F432858493AA3E600A2F3E5888BFC4700 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/294e9347-de22-31e7-bfc5-75bd383b4a41.roa Signing time: Tue 18 Mar 2025 13:00:50 +0000 ROA not before: Tue 18 Mar 2025 13:00:50 +0000 ROA not after: Mon 16 Jun 2025 13:00:50 +0000 asID: 8069 IP address blocks: 20.33.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 18 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:3a:a3:e6:00:a2:f3:e5:88:8b:fc:47:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Mar 18 13:00:50 2025 GMT Not After : Jun 16 13:00:50 2025 GMT Subject: CN=5e81a3df-4192-4fb6-b7bc-d93a36a88228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e6:12:8a:3a:a1:fd:21:09:e0:37:d3:dd:fb: c9:44:7e:23:94:f9:00:0c:c8:d7:0a:18:5f:b8:e1: 35:01:86:21:9d:bb:bc:33:0a:58:56:b4:75:4f:68: f0:c1:35:3e:e9:dc:f8:74:64:1d:bc:5f:dc:81:f9: aa:84:74:97:27:e6:9e:57:ee:35:a8:f0:14:16:fd: 3d:12:60:04:5f:d2:d7:9c:96:82:8e:d3:8d:ab:2d: ce:9f:d1:5d:1e:23:63:44:e2:8f:29:05:15:c7:fa: 4b:be:1e:46:28:71:33:7a:83:57:18:00:ed:f7:4f: eb:31:10:88:82:aa:90:7d:32:0f:a3:d4:4c:82:55: 87:1c:14:8f:57:2b:51:7f:40:0f:81:da:f3:18:17: b7:be:33:c9:bd:fb:13:d7:12:9a:23:9b:2e:25:bb: 1f:63:60:64:b4:0b:d1:4d:13:84:1d:11:16:6c:81: d0:67:ef:83:00:9a:e6:1b:49:75:40:78:a0:6a:de: a7:5b:b1:d5:6e:32:c3:57:57:96:77:02:3f:b6:62: 78:28:dd:69:27:33:0e:74:e0:36:9a:68:65:54:55: aa:7f:af:fe:db:38:db:dd:72:08:90:a2:ba:48:6a: 6d:b7:d8:9b:3f:06:1f:c9:58:6f:56:51:43:1c:50: 23:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5C:D3:E7:11:75:B2:96:08:97:96:D5:1F:80:6D:1A:E6:6D:25:B6 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/294e9347-de22-31e7-bfc5-75bd383b4a41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.109.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2f:90:1d:80:73:14:65:69:1f:50:8a:5b:56:b6:f0:9d:32:8b: 32:92:0c:ce:ab:c1:b0:84:08:7a:a7:59:14:a3:68:93:46:38: a1:84:81:c8:cc:ae:80:d4:a4:15:ce:07:3b:4a:33:11:86:cf: 2d:23:51:52:3c:66:8c:56:4a:52:75:7f:c8:df:06:9f:b3:a1: a1:0e:11:53:10:bd:11:58:61:4d:1d:8a:72:e9:c5:cb:2c:32: 89:fd:dd:ef:1c:fc:36:4f:e8:7a:b7:15:a4:c3:5d:12:20:da: ef:e0:f7:0a:b4:d2:4c:17:f1:32:03:07:0a:70:c6:29:ad:31: 53:3c:4e:ff:48:24:0b:35:3a:a1:a2:29:75:26:94:ae:81:be: 54:7d:ce:0b:ec:0c:42:08:66:ea:bf:40:2a:13:3b:32:b6:0a: b1:e9:3e:c2:60:20:41:e1:07:a0:05:64:23:a0:77:cb:6a:57: 6a:b9:d6:13:c6:b0:7f:30:d2:6f:e9:cc:ac:a0:81:93:e6:73: bb:50:2f:7a:06:f7:3c:5b:97:5e:51:08:c4:1a:56:7e:fa:12: c8:2a:f6:c2:0f:a0:46:c3:6c:06:92:4f:e1:0f:82:13:4b:06: b8:5e:02:a1:4c:e2:ef:b5:b0:b4:09:82:d1:16:94:ff:75:7b: d9:ac:de:f2 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEk6o+YAovPliIv8RwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDMxODEzMDA1MFoXDTI1MDYxNjEzMDA1MFowLzEtMCsGA1UEAxMk NWU4MWEzZGYtNDE5Mi00ZmI2LWI3YmMtZDkzYTM2YTg4MjI4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4uYSijqh/SEJ4DfT3fvJRH4jlPkADMjXChhf uOE1AYYhnbu8MwpYVrR1T2jwwTU+6dz4dGQdvF/cgfmqhHSXJ+aeV+41qPAUFv09 EmAEX9LXnJaCjtONqy3On9FdHiNjROKPKQUVx/pLvh5GKHEzeoNXGADt90/rMRCI gqqQfTIPo9RMglWHHBSPVytRf0APgdrzGBe3vjPJvfsT1xKaI5suJbsfY2BktAvR TROEHREWbIHQZ++DAJrmG0l1QHigat6nW7HVbjLDV1eWdwI/tmJ4KN1pJzMOdOA2 mmhlVFWqf6/+2zjb3XIIkKK6SGptt9ibPwYfyVhvVlFDHFAjKQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFAZc0+cRdbKWCJeW1R+AbRrmbSW2MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMjk0ZTkzNDctZGUyMi0z MWU3LWJmYzUtNzViZDM4M2I0YTQxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCFtMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAC+QHYBzFGVpH1CKW1a28J0yizKSDM6rwbCECHqnWRSjaJNGOKGEgcjM roDUpBXOBztKMxGGzy0jUVI8ZoxWSlJ1f8jfBp+zoaEOEVMQvRFYYU0dinLpxcss Mon93e8c/DZP6Hq3FaTDXRIg2u/g9wq00kwX8TIDBwpwximtMVM8Tv9IJAs1OqGi KXUmlK6BvlR9zgvsDEIIZuq/QCoTOzK2CrHpPsJgIEHhB6AFZCOgd8tqV2q51hPG sH8w0m/pzKyggZPmc7tQL3oG9zxbl15RCMQaVn76Esgq9sIPoEbDbAaST+EPghNL BrheAqFM4u+1sLQJgtEWlP91e9ms3vI= -----END CERTIFICATE-----Generated at Thu Apr 17 09:03:12 2025 by rpki-client