$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa File: 2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa (raw, json) Hash identifier: 1xsbmP2VDpDgNxXm8vdZ73ejCuV9S1zFX/I2FbkposY= Subject key identifier: 8C:0E:A6:29:38:2F:A7:FC:4F:CD:0B:18:71:71:B5:6C:4A:57:3A:B2 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F432858485A0579488EA7E4F45980E1A0 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa Signing time: Sat 28 Dec 2024 02:00:38 +0000 ROA not before: Sat 28 Dec 2024 02:00:38 +0000 ROA not after: Fri 28 Mar 2025 01:00:38 +0000 asID: 8069 IP address blocks: 20.153.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:5a:05:79:48:8e:a7:e4:f4:59:80:e1:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Dec 28 02:00:38 2024 GMT Not After : Mar 28 01:00:38 2025 GMT Subject: CN=692101ac-a8c5-4500-aca1-dc52bea4d3c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:58:e4:f0:ad:e2:8a:da:44:93:dd:f2:f7:bc: 9a:6c:db:36:e3:41:56:82:9e:fa:eb:1c:59:d9:6a: 63:8a:47:45:10:32:92:6b:66:51:6b:d9:0d:78:2c: 1b:94:44:fd:12:f6:13:93:22:60:65:5d:d5:66:87: 1a:da:f5:6b:3f:68:e8:46:0d:52:06:ab:c4:4a:87: 40:1e:0a:7b:fd:50:46:60:0c:61:26:7d:a9:43:85: 7d:dd:10:17:1e:f2:c9:94:f1:84:47:af:72:7d:44: e5:43:30:81:0d:0b:44:76:47:f5:55:5b:73:a3:08: 7e:3e:44:ba:86:9c:ac:38:fd:6f:f6:66:6b:6d:3c: 8a:57:aa:95:68:aa:19:92:a6:66:39:7c:b1:85:42: cc:90:b2:30:15:49:1a:d9:ef:ca:09:c3:7c:f5:2e: 85:99:73:13:de:50:d6:af:4b:df:3d:b4:24:52:a3: f7:20:93:d9:ac:15:ef:be:c2:96:32:b0:de:5e:75: ab:d5:fe:ef:71:e4:46:a1:6a:73:25:44:e2:e1:1e: 73:c7:fb:f2:7a:4e:3f:fd:b7:23:b2:08:01:fe:16: 43:9a:94:e0:f7:13:ae:b7:8d:3b:1f:fe:60:1c:18: 9a:3a:89:ed:6f:42:2b:13:02:cd:d7:28:71:85:91: df:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0E:A6:29:38:2F:A7:FC:4F:CD:0B:18:71:71:B5:6C:4A:57:3A:B2 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/2ee96852-3d60-318a-9c2e-44c4b9a37de6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.153.18.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption a9:bb:c2:e8:ca:83:e2:7a:cc:ea:74:f5:c1:e4:fa:5d:c6:2d: 37:ef:a8:e7:92:07:05:8a:f0:b7:da:bd:64:19:d1:19:84:8f: 46:19:20:4e:b3:c5:05:d7:35:3c:be:56:e5:2e:40:cf:8e:f9: f8:a9:53:01:73:50:10:ca:81:d5:7e:94:86:e3:ca:42:0b:63: f7:1a:ce:04:5d:fe:85:f8:45:f8:73:c1:0f:27:d8:ca:77:d9: 47:54:6f:c9:e1:ed:f7:5e:ee:a1:6b:a3:7d:30:5b:15:8a:0d: 9a:0b:91:69:31:96:5e:c9:64:6a:4c:6f:93:25:72:1b:fc:57: 3d:0c:c7:96:da:6d:f2:e4:06:a6:c5:5c:ee:f8:18:d9:40:31: d0:37:21:95:f8:07:2e:d3:80:d8:8f:7c:43:31:e5:f5:3e:6e: 7d:ff:75:fc:f9:d6:49:5f:87:4c:de:d2:09:fa:43:03:51:be: e2:8b:b4:82:77:e4:01:96:d2:91:26:a6:35:92:13:51:9f:5b: 3b:5e:b6:3f:da:b4:a8:b8:12:84:eb:a5:b1:79:fe:d9:b5:31: db:f4:54:85:bd:9f:af:32:94:43:48:23:46:e6:4b:67:3e:b9: d3:94:21:7f:bf:1c:f8:b0:e7:29:73:98:6d:85:2e:1c:9b:40: 92:75:9f:50 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEhaBXlIjqfk9FmA4aAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI0MTIyODAyMDAzOFoXDTI1MDMyODAxMDAzOFowLzEtMCsGA1UEAxMk NjkyMTAxYWMtYThjNS00NTAwLWFjYTEtZGM1MmJlYTRkM2M0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyljk8K3iitpEk93y97yabNs240FWgp766xxZ 2WpjikdFEDKSa2ZRa9kNeCwblET9EvYTkyJgZV3VZoca2vVrP2joRg1SBqvESodA Hgp7/VBGYAxhJn2pQ4V93RAXHvLJlPGER69yfUTlQzCBDQtEdkf1VVtzowh+PkS6 hpysOP1v9mZrbTyKV6qVaKoZkqZmOXyxhULMkLIwFUka2e/KCcN89S6FmXMT3lDW r0vfPbQkUqP3IJPZrBXvvsKWMrDeXnWr1f7vceRGoWpzJUTi4R5zx/vyek4//bcj sggB/hZDmpTg9xOut407H/5gHBiaOontb0IrEwLN1yhxhZHftwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFIwOpik4L6f8T80LGHFxtWxKVzqyMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvMmVlOTY4NTItM2Q2MC0z MThhLTljMmUtNDRjNGI5YTM3ZGU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFJkSMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAKm7wujKg+J6zOp09cHk+l3GLTfvqOeSBwWK8LfavWQZ0RmEj0YZIE6z xQXXNTy+VuUuQM+O+fipUwFzUBDKgdV+lIbjykILY/cazgRd/oX4RfhzwQ8n2Mp3 2UdUb8nh7fde7qFro30wWxWKDZoLkWkxll7JZGpMb5Mlchv8Vz0Mx5babfLkBqbF XO74GNlAMdA3IZX4By7TgNiPfEMx5fU+bn3/dfz51klfh0ze0gn6QwNRvuKLtIJ3 5AGW0pEmpjWSE1GfWztetj/atKi4EoTrpbF5/tm1Mdv0VIW9n68ylENII0bmS2c+ udOUIX+/HPiw5ylzmG2FLhybQJJ1n1A= -----END CERTIFICATE-----Generated at Sun Feb 16 15:06:18 2025 by rpki-client