$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa File: 2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa (raw, json) Hash identifier: 8itQ9FqP3K8uFIGf9sSCH3VTQMkX4GOX4P6UTovV0qg= Subject key identifier: 5F:84:55:34:AE:F4:09:7F:97:9C:95:73:16:14:62:53:C2:8E:B7:56 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F432858493AA3E5791CC39B1AF73B3E00 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa Signing time: Tue 18 Mar 2025 13:00:50 +0000 ROA not before: Tue 18 Mar 2025 13:00:50 +0000 ROA not after: Mon 16 Jun 2025 13:00:50 +0000 asID: 8069 IP address blocks: 20.153.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 18 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:3a:a3:e5:79:1c:c3:9b:1a:f7:3b:3e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Mar 18 13:00:50 2025 GMT Not After : Jun 16 13:00:50 2025 GMT Subject: CN=1c59d0d0-ea01-4160-80cb-9f0abb74b940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f3:0d:ad:d0:bf:f2:04:e1:d1:b4:25:80:85: d5:7c:09:8d:f0:30:7c:f2:a4:a9:c5:0b:99:13:2c: 2e:bb:dc:cd:e7:75:5c:c7:bc:ca:8c:55:ae:2f:8f: 85:76:b1:94:2d:cb:48:01:b7:b7:4f:b1:9c:f9:c4: c0:11:e7:33:75:42:e1:db:25:ed:4c:2c:94:de:ff: b9:c2:c5:2e:9e:1d:d8:fb:d4:c0:71:d9:7d:ab:7f: c7:8c:38:c8:6e:c9:95:3d:e1:97:81:ee:ef:5a:ec: 1b:d7:6b:90:84:94:7e:88:97:49:c8:c6:6b:0a:3e: 76:8a:44:6f:c1:9e:72:30:72:b3:51:8e:65:1d:bf: 51:09:9b:13:f1:bd:28:a4:6d:02:70:7c:65:a0:f7: 8c:21:3a:8c:df:58:2b:15:0c:d2:7a:3f:1d:b7:9d: a3:08:b3:d6:51:5a:5e:b6:2e:c2:e3:90:a1:1e:f6: 9f:1a:99:e7:c8:e7:5a:d0:b4:3e:04:6b:1a:7c:c5: e8:00:e2:b2:68:06:1e:db:ef:b4:2b:74:85:b8:60: f3:5c:db:84:f9:41:40:7e:c7:10:db:52:6c:3e:89: 3d:42:20:a2:17:f7:21:31:93:44:f9:c5:28:15:12: f0:2d:95:b0:71:42:10:42:46:d7:1c:ab:ff:a6:c1: 2b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:84:55:34:AE:F4:09:7F:97:9C:95:73:16:14:62:53:C2:8E:B7:56 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.18.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption a1:9e:b9:19:ee:a3:8a:a7:84:58:0a:d3:6e:3b:4c:c2:03:05: 79:ce:96:69:17:92:05:56:99:d9:4e:18:62:04:54:f0:12:03: b6:94:f8:88:ee:ed:6a:f5:07:83:87:d5:1e:5c:07:85:23:c3: 41:7a:03:f4:e0:a1:d5:70:c7:56:42:56:ee:32:8c:71:1e:a1: 42:ad:c6:55:ff:ef:89:dd:3c:6e:69:d5:a1:14:c8:e1:44:6f: ac:ce:2b:9a:9c:78:d1:84:98:ea:77:e6:7a:1b:7c:a4:5e:48: 17:60:7f:80:59:aa:a7:20:db:02:d1:ad:52:d5:d6:9b:6d:09: 6b:42:fa:4a:b0:16:1a:dc:1b:c8:15:e7:00:ee:a5:f9:02:7a: ed:d3:f1:ff:7e:53:ea:77:7e:2d:58:a5:50:6a:d4:7c:ea:17: d4:79:5f:ce:02:76:65:e1:32:29:d1:5d:b8:6a:da:50:b1:60: 50:1e:ea:36:55:32:b8:92:2a:7d:bd:bd:6c:b7:46:0c:fd:db: d6:79:f5:74:dd:36:86:a2:9f:e0:be:d3:3b:d5:8a:bf:42:bc: 41:ae:d3:b2:81:74:20:7d:a6:83:bc:30:ae:d4:58:52:9c:b5: 52:31:d7:d5:30:7e:41:44:ce:08:99:de:8f:b6:9e:bb:f1:7b: c9:a1:22:7f -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEk6o+V5HMObGvc7PgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDMxODEzMDA1MFoXDTI1MDYxNjEzMDA1MFowLzEtMCsGA1UEAxMk MWM1OWQwZDAtZWEwMS00MTYwLTgwY2ItOWYwYWJiNzRiOTQwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4vMNrdC/8gTh0bQlgIXVfAmN8DB88qSpxQuZ Eywuu9zN53Vcx7zKjFWuL4+FdrGULctIAbe3T7Gc+cTAEeczdULh2yXtTCyU3v+5 wsUunh3Y+9TAcdl9q3/HjDjIbsmVPeGXge7vWuwb12uQhJR+iJdJyMZrCj52ikRv wZ5yMHKzUY5lHb9RCZsT8b0opG0CcHxloPeMITqM31grFQzSej8dt52jCLPWUVpe ti7C45ChHvafGpnnyOda0LQ+BGsafMXoAOKyaAYe2++0K3SFuGDzXNuE+UFAfscQ 21JsPok9QiCiF/chMZNE+cUoFRLwLZWwcUIQQkbXHKv/psErLQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFF+EVTSu9Al/l5yVcxYUYlPCjrdWMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMmVlOTY4NTItM2Q2MC0z MThhLTljMmUtNDRjNGI5YTM3ZGU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJkSMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAKGeuRnuo4qnhFgK0247TMIDBXnOlmkXkgVWmdlOGGIEVPASA7aU+Iju 7Wr1B4OH1R5cB4Ujw0F6A/TgodVwx1ZCVu4yjHEeoUKtxlX/74ndPG5p1aEUyOFE b6zOK5qceNGEmOp35nobfKReSBdgf4BZqqcg2wLRrVLV1pttCWtC+kqwFhrcG8gV 5wDupfkCeu3T8f9+U+p3fi1YpVBq1HzqF9R5X84CdmXhMinRXbhq2lCxYFAe6jZV MriSKn29vWy3Rgz929Z59XTdNoain+C+0zvVir9CvEGu07KBdCB9poO8MK7UWFKc tVIx19UwfkFEzgiZ3o+2nrvxe8mhIn8= -----END CERTIFICATE-----Generated at Thu Apr 17 09:01:53 2025 by rpki-client