$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/240473bb-16f3-3b73-b60e-9b8cba8004f0.roa File: 240473bb-16f3-3b73-b60e-9b8cba8004f0.roa (raw, json) Hash identifier: 0nXCGPzyBrKm+ViPgPofSX/pc0O8V8SRE6N1rcKm6JA= Subject key identifier: 52:E9:B5:57:62:8D:A9:5C:36:14:2C:09:3F:E0:74:A3:24:FE:F0:77 Certificate issuer: /CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Certificate serial: 010D0C9F432858491246D71D51E0F5032C210CC0 Authority key identifier: 29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/240473bb-16f3-3b73-b60e-9b8cba8004f0.roa Signing time: Tue 04 Mar 2025 02:00:40 +0000 ROA not before: Tue 04 Mar 2025 02:00:40 +0000 ROA not after: Mon 02 Jun 2025 01:00:40 +0000 asID: 701 IP address blocks: 173.68.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:12:46:d7:1d:51:e0:f5:03:2c:21:0c:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Validity Not Before: Mar 4 02:00:40 2025 GMT Not After : Jun 2 01:00:40 2025 GMT Subject: CN=b004ab43-4fa5-4a55-8c63-6113dd701a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4a:8e:f7:ea:fb:9f:b0:e8:25:50:85:b8:bb: de:78:17:8e:f0:b5:49:d3:96:25:01:b4:15:3b:89: bd:1f:6e:42:f9:54:8d:cf:a9:e3:22:90:35:c2:81: f7:39:36:19:b4:f1:15:43:7e:43:b8:61:ee:65:d2: 0a:52:b3:db:2c:a4:73:b7:83:94:6f:7d:69:18:c0: dd:ae:ee:ff:8d:6e:a2:3d:1a:81:f0:69:68:8f:cd: 15:43:09:a7:56:10:6b:9d:27:48:20:38:c8:91:97: 01:4c:60:f3:5a:a3:32:2e:b3:25:6b:62:63:fb:18: f6:c0:7b:e4:f3:d2:b0:b4:64:62:b2:d4:2b:ec:05: cf:84:34:5e:eb:2e:b3:a2:b6:53:77:14:53:6e:7e: 2e:74:1d:94:9f:c8:b5:73:a4:60:63:86:ad:99:ce: 98:1d:f8:00:da:b9:4a:05:04:fd:08:f1:8b:7e:33: be:dc:b9:8b:84:f4:f7:e2:bf:cc:0b:78:46:6e:8e: 72:c8:85:79:8d:be:e8:3e:38:31:4c:64:30:97:ee: ff:04:30:94:d0:93:af:e7:68:1c:76:f5:fa:77:22: d3:5f:cc:1a:bd:1f:cf:30:66:bb:bd:b0:c7:6f:70: 4f:5f:37:ac:ad:21:90:5b:e2:9e:31:29:4f:62:7d: af:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E9:B5:57:62:8D:A9:5C:36:14:2C:09:3F:E0:74:A3:24:FE:F0:77 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/240473bb-16f3-3b73-b60e-9b8cba8004f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl X509v3 Authority Key Identifier: keyid:29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer sbgp-ipAddrBlock: critical IPv4: 173.68.0.0/16 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 76:f1:3d:10:54:44:a8:d3:84:37:73:85:45:db:0d:81:b3:b0: 25:0f:1d:36:75:7b:b2:1f:45:21:01:65:bb:3b:ad:d3:ed:f5: c4:9d:fd:f5:4f:85:9a:11:83:d5:16:1b:07:f3:38:7a:5d:1f: e3:55:fa:a5:b5:24:24:4d:61:1b:b7:a8:77:3f:4b:b9:fe:09: ad:10:99:47:12:4c:cc:52:c6:25:fe:a5:fe:5c:4b:34:5a:6a: 51:21:23:95:64:2f:68:92:58:ea:5f:92:42:ef:7b:32:ee:b6: b1:f2:9b:bc:18:8f:0d:9c:b7:67:a0:1b:50:32:80:74:21:e6: 97:e1:64:0f:09:cc:3d:55:33:9a:9c:c4:2f:aa:62:fb:28:91: 80:0d:ab:27:e9:11:04:43:6b:24:eb:18:4e:33:a8:4e:0a:64: 22:39:30:8a:b0:64:98:ff:43:c8:fa:56:a2:3b:08:a0:ff:48: 47:f7:e3:e0:6f:03:39:a9:fa:b2:c5:ad:43:35:7c:9d:bc:82: dd:6b:d6:c2:3a:d3:81:d0:47:25:17:90:85:10:93:73:8a:4a: e7:37:3c:e6:f2:53:6c:bd:cd:a3:f6:7f:d3:07:3a:d0:a9:fc: f4:e3:6a:f6:1f:2d:ac:07:8c:67:72:24:3a:68:00:9d:e1:10: b9:17:d2:12 -----BEGIN CERTIFICATE----- MIIGQjCCBSqgAwIBAgIUAQ0Mn0MoWEkSRtcdUeD1AywhDMAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNzMyOTgwNjItYmQ4Yi00YjlmLTg2MTMtZGViNmU5YzIw ODc4MB4XDTI1MDMwNDAyMDA0MFoXDTI1MDYwMjAxMDA0MFowLzEtMCsGA1UEAxMk YjAwNGFiNDMtNGZhNS00YTU1LThjNjMtNjExM2RkNzAxYTdjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEqO9+r7n7DoJVCFuLveeBeO8LVJ05YlAbQV O4m9H25C+VSNz6njIpA1woH3OTYZtPEVQ35DuGHuZdIKUrPbLKRzt4OUb31pGMDd ru7/jW6iPRqB8Gloj80VQwmnVhBrnSdIIDjIkZcBTGDzWqMyLrMla2Jj+xj2wHvk 89KwtGRistQr7AXPhDRe6y6zorZTdxRTbn4udB2Un8i1c6RgY4atmc6YHfgA2rlK BQT9CPGLfjO+3LmLhPT34r/MC3hGbo5yyIV5jb7oPjgxTGQwl+7/BDCU0JOv52gc dvX6dyLTX8wavR/PMGa7vbDHb3BPXzesrSGQW+KeMSlPYn2vQwIDAQABo4IDVDCC A1AwHQYDVR0OBBYEFFLptVdijalcNhQsCT/gdKMk/vB3MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5 ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2ZTljMjA4NzgvMjQwNDczYmItMTZmMy0z YjczLWI2MGUtOWI4Y2JhODAwNGYwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNzMyOTgwNjItYmQ4Yi00YjlmLTg2 MTMtZGViNmU5YzIwODc4LzczMjk4MDYyLWJkOGItNGI5Zi04NjEzLWRlYjZlOWMy MDg3OC5jcmwwHwYDVR0jBBgwFoAUKZLCNbCJQL6NrTHKzxOku19Y6uYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2 ZTljMjA4NzguY2VyMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMArUQwVAYD VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3 dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF AAOCAQEAdvE9EFREqNOEN3OFRdsNgbOwJQ8dNnV7sh9FIQFluzut0+31xJ399U+F mhGD1RYbB/M4el0f41X6pbUkJE1hG7eodz9Luf4JrRCZRxJMzFLGJf6l/lxLNFpq USEjlWQvaJJY6l+SQu97Mu62sfKbvBiPDZy3Z6AbUDKAdCHml+FkDwnMPVUzmpzE L6pi+yiRgA2rJ+kRBENrJOsYTjOoTgpkIjkwirBkmP9DyPpWojsIoP9IR/fj4G8D Oan6ssWtQzV8nbyC3WvWwjrTgdBHJReQhRCTc4pK5zc85vJTbL3No/Z/0wc60Kn8 9ONq9h8trAeMZ3IkOmgAneEQuRfSEg== -----END CERTIFICATE-----Generated at Sun Apr 6 11:08:19 2025 by rpki-client