$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa File: d4727335-009c-3f32-ad27-800d7af9ce97.roa (raw, json) Hash identifier: cASPITnU2woLC0kgJpU8rVQOxrM0AMgtxJNaohqn9hc= Subject key identifier: CB:42:A6:53:4B:8D:E8:6D:31:49:A3:D1:3A:38:F6:97:C5:2B:64:AB Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F432858489D05ECFB70F9BD18C0B70260 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa Signing time: Tue 21 Jan 2025 02:00:39 +0000 ROA not before: Tue 21 Jan 2025 02:00:39 +0000 ROA not after: Mon 21 Apr 2025 01:00:39 +0000 asID: 8069 IP address blocks: 20.33.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:9d:05:ec:fb:70:f9:bd:18:c0:b7:02:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Jan 21 02:00:39 2025 GMT Not After : Apr 21 01:00:39 2025 GMT Subject: CN=1544e04a-8954-4c82-8fd0-be6de153f921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:dc:60:84:ab:c0:2a:55:cc:da:4b:5e:b5:bd: e7:48:87:46:4c:1b:b2:48:52:11:94:8d:b5:41:ee: 30:46:81:8d:1f:70:04:be:9f:f3:cb:ad:af:73:ed: 63:88:3b:43:e8:12:51:e5:80:a4:a1:6b:b5:e1:ac: 5d:87:df:42:3b:ac:7c:1e:e2:6b:0c:d0:21:09:df: 1a:3a:d4:a4:dd:cc:97:e1:09:f5:24:c7:fe:ba:ba: 3a:67:de:d9:ae:2d:3e:08:55:6b:8d:6b:14:ea:ef: d2:07:84:f8:d5:2a:cf:24:aa:61:2c:e0:46:bf:49: b2:fa:b2:6f:f0:70:08:c0:af:42:0c:3f:22:ef:18: 32:e7:1e:8c:61:ac:0a:ad:2a:ba:d0:40:ff:eb:df: 73:d2:27:32:29:bb:e2:3a:f9:45:0e:90:b3:d1:45: e0:78:b6:e6:84:71:76:c4:ef:7c:d9:b4:73:e4:03: 66:96:ad:f8:79:68:86:a2:23:b9:f6:c1:0c:72:0b: ce:85:32:76:30:cb:97:a5:08:02:86:da:3b:22:d2: 65:0a:0b:e1:38:b2:41:d5:df:57:58:85:1f:12:e4: 55:3a:e1:dd:55:36:38:6e:b2:f3:94:ca:92:14:c8: be:fe:b8:53:9c:c7:73:d0:b0:83:01:6b:4c:85:44: 5b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:42:A6:53:4B:8D:E8:6D:31:49:A3:D1:3A:38:F6:97:C5:2B:64:AB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.253.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 14:4d:c7:d5:00:65:2d:cc:20:86:0b:98:ed:7f:b0:cc:80:7a: ee:29:77:63:a0:36:1a:1a:34:1d:4b:d8:35:8c:a2:f7:55:f8: 98:ba:98:06:db:62:1a:4a:d5:22:43:58:50:fa:e7:1b:07:e3: 00:63:0e:96:7f:87:82:ca:1e:80:b1:cb:55:7e:14:3e:bc:e0: f3:e1:4d:b6:9e:de:84:9c:b7:90:2f:8c:24:01:ac:5e:72:eb: 2a:54:b9:8d:ea:dd:b6:4c:95:c7:da:ed:bd:f8:d1:ff:7a:1f: 34:52:27:ff:6e:cf:5d:ea:74:fc:84:74:60:a9:b5:c0:fe:e1: 98:55:c5:9d:ba:e5:62:01:2e:1e:74:cd:89:c9:84:77:ec:ce: 10:8e:2b:9c:14:09:37:9d:24:22:c1:25:64:39:7d:d2:84:ff: c0:87:2e:71:8d:12:9c:3c:e1:4c:1c:9b:65:4c:b8:1e:12:b1: bb:fc:9e:62:51:55:ae:01:3f:8f:9a:c3:5f:0a:fc:c7:1a:67: 60:a2:13:0c:7b:3f:63:77:e4:9e:58:3f:d8:2c:6e:4a:95:f9: c4:0d:43:81:ba:79:15:6d:68:45:e4:7c:e5:bc:94:08:2c:56: ed:e6:0e:97:26:13:ce:72:4d:3e:a2:e2:9a:76:09:3f:d0:0d: e2:79:0c:98 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEidBez7cPm9GMC3AmAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDEyMTAyMDAzOVoXDTI1MDQyMTAxMDAzOVowLzEtMCsGA1UEAxMk MTU0NGUwNGEtODk1NC00YzgyLThmZDAtYmU2ZGUxNTNmOTIxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2dxghKvAKlXM2ktetb3nSIdGTBuySFIRlI21 Qe4wRoGNH3AEvp/zy62vc+1jiDtD6BJR5YCkoWu14axdh99CO6x8HuJrDNAhCd8a OtSk3cyX4Qn1JMf+uro6Z97Zri0+CFVrjWsU6u/SB4T41SrPJKphLOBGv0my+rJv 8HAIwK9CDD8i7xgy5x6MYawKrSq60ED/699z0icyKbviOvlFDpCz0UXgeLbmhHF2 xO982bRz5ANmlq34eWiGoiO59sEMcgvOhTJ2MMuXpQgChto7ItJlCgvhOLJB1d9X WIUfEuRVOuHdVTY4brLzlMqSFMi+/rhTnMdz0LCDAWtMhURb/wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFMtCplNLjehtMUmj0To49pfFK2SrMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvZDQ3MjczMzUtMDA5Yy0z ZjMyLWFkMjctODAwZDdhZjljZTk3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCH9MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBABRNx9UAZS3MIIYLmO1/sMyAeu4pd2OgNhoaNB1L2DWMovdV+Ji6mAbb YhpK1SJDWFD65xsH4wBjDpZ/h4LKHoCxy1V+FD684PPhTbae3oSct5AvjCQBrF5y 6ypUuY3q3bZMlcfa7b340f96HzRSJ/9uz13qdPyEdGCptcD+4ZhVxZ265WIBLh50 zYnJhHfszhCOK5wUCTedJCLBJWQ5fdKE/8CHLnGNEpw84Uwcm2VMuB4Ssbv8nmJR Va4BP4+aw18K/McaZ2CiEwx7P2N35J5YP9gsbkqV+cQNQ4G6eRVtaEXkfOW8lAgs Vu3mDpcmE85yTT6i4pp2CT/QDeJ5DJg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:41:15 2025 by rpki-client