$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa File: d4727335-009c-3f32-ad27-800d7af9ce97.roa (raw, json) Hash identifier: 7rO8cig3HpJfj6UguJ2OlWGGXEDWdj0UFkTlwJeayQc= Subject key identifier: 88:72:05:3B:B0:2B:A7:60:BE:EE:7A:B8:05:C0:9B:F7:BD:95:A0:4B Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F432858497C3EF3B7C2AC9646BE37EFA0 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa Signing time: Fri 11 Apr 2025 01:00:48 +0000 ROA not before: Fri 11 Apr 2025 01:00:48 +0000 ROA not after: Thu 10 Jul 2025 01:00:48 +0000 asID: 8069 IP address blocks: 20.33.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 18 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:7c:3e:f3:b7:c2:ac:96:46:be:37:ef:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Apr 11 01:00:48 2025 GMT Not After : Jul 10 01:00:48 2025 GMT Subject: CN=aefddf17-f90d-47e4-a039-d997c4e197a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:69:7b:51:2b:e9:8d:83:30:3b:29:43:a9:03: 18:8f:d8:2e:92:f8:54:3f:37:05:b3:9a:c0:71:a0: ef:87:ab:a0:36:ad:31:29:46:1b:99:47:17:f6:f9: de:92:72:5f:37:a7:35:73:1b:1b:21:79:28:da:7e: 33:74:74:83:15:35:89:79:21:fe:a9:5d:e4:20:7d: b4:7b:a7:b9:29:1b:0d:ef:9c:fc:a1:e2:21:22:af: 78:37:a7:e2:57:26:ee:c4:1b:8b:a3:95:d7:c5:a3: 2d:48:22:7b:99:95:b0:58:55:51:75:64:41:e2:c0: a3:2a:3d:52:9c:2a:41:8c:ff:6e:9a:44:9b:67:9e: fc:dc:5b:3d:e2:10:f6:10:fb:c7:e3:df:ca:3e:66: f3:76:d7:8f:9c:74:ec:cb:ac:f7:90:b9:e2:76:59: 3e:d4:96:d8:7a:31:63:6b:10:68:b9:b7:07:c7:f3: cf:60:38:ae:90:0d:35:69:cf:9b:a7:40:dd:7b:4c: f8:13:d3:fd:7b:90:77:ad:5e:8c:59:dd:ac:79:94: f1:b9:3d:0f:e5:ea:61:8c:26:5b:eb:e3:a8:f1:89: 18:16:46:88:5d:17:6e:09:ec:9e:bd:8b:a7:94:2f: 60:e6:67:16:88:10:5b:e7:bd:0e:bc:e0:c6:b6:df: ea:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:72:05:3B:B0:2B:A7:60:BE:EE:7A:B8:05:C0:9B:F7:BD:95:A0:4B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/d4727335-009c-3f32-ad27-800d7af9ce97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.253.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 16:ff:a4:f0:20:98:2d:57:02:e2:51:7c:d8:01:c8:cd:8b:73: 57:ee:a0:cc:22:d2:ec:20:35:3b:31:f0:7b:b9:9f:c1:56:9c: 3d:a7:e8:43:7a:fa:88:c8:1d:ff:6a:81:14:6e:d2:d1:e8:94: 43:1d:2a:36:2a:e1:28:c9:b7:f0:4a:86:a7:08:c7:e6:4c:1f: 89:b9:2b:c9:33:46:50:04:83:fc:a8:fe:03:ec:04:02:a2:df: bd:a8:27:9e:eb:59:d0:d5:a7:e0:9e:2b:df:15:fc:c7:5c:97: 88:1b:bd:2c:49:51:1c:5b:1e:6b:85:59:18:ba:93:0a:2c:5d: 67:7f:1c:a4:18:cb:25:79:9b:ab:f3:16:e2:c5:8a:75:75:78: 2a:86:56:68:e3:3d:de:82:b7:15:07:a4:28:b2:7a:d1:5d:74: 16:cf:fd:2d:b9:5d:59:2a:10:19:ef:7a:26:61:a4:75:25:a3: 92:29:67:82:ea:cb:f3:2d:e0:9b:73:c8:69:24:b7:2a:7e:ea: a5:e0:8e:b9:df:96:11:8c:96:2e:8b:6e:4c:de:98:ca:bc:b2: 3d:aa:23:8a:4d:ed:b3:25:92:19:a2:32:f4:39:9d:73:e1:a0: 23:8b:78:03:26:f3:38:07:70:45:db:c1:52:5a:f0:34:22:8f: d0:75:5e:bc -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEl8PvO3wqyWRr4376AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDQxMTAxMDA0OFoXDTI1MDcxMDAxMDA0OFowLzEtMCsGA1UEAxMk YWVmZGRmMTctZjkwZC00N2U0LWEwMzktZDk5N2M0ZTE5N2EwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGl7USvpjYMwOylDqQMYj9gukvhUPzcFs5rA caDvh6ugNq0xKUYbmUcX9vneknJfN6c1cxsbIXko2n4zdHSDFTWJeSH+qV3kIH20 e6e5KRsN75z8oeIhIq94N6fiVybuxBuLo5XXxaMtSCJ7mZWwWFVRdWRB4sCjKj1S nCpBjP9umkSbZ5783Fs94hD2EPvH49/KPmbzdtePnHTsy6z3kLnidlk+1JbYejFj axBoubcHx/PPYDiukA01ac+bp0Dde0z4E9P9e5B3rV6MWd2seZTxuT0P5ephjCZb 6+Oo8YkYFkaIXRduCeyevYunlC9g5mcWiBBb570OvODGtt/q/QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFIhyBTuwK6dgvu56uAXAm/e9laBLMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvZDQ3MjczMzUtMDA5Yy0z ZjMyLWFkMjctODAwZDdhZjljZTk3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCH9MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBABb/pPAgmC1XAuJRfNgByM2Lc1fuoMwi0uwgNTsx8Hu5n8FWnD2n6EN6 +ojIHf9qgRRu0tHolEMdKjYq4SjJt/BKhqcIx+ZMH4m5K8kzRlAEg/yo/gPsBAKi 372oJ57rWdDVp+CeK98V/Mdcl4gbvSxJURxbHmuFWRi6kwosXWd/HKQYyyV5m6vz FuLFinV1eCqGVmjjPd6CtxUHpCiyetFddBbP/S25XVkqEBnveiZhpHUlo5IpZ4Lq y/Mt4JtzyGkktyp+6qXgjrnflhGMli6LbkzemMq8sj2qI4pN7bMlkhmiMvQ5nXPh oCOLeAMm8zgHcEXbwVJa8DQij9B1Xrw= -----END CERTIFICATE-----Generated at Thu Apr 17 09:01:16 2025 by rpki-client