$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa File: 2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa (raw, json) Hash identifier: oAguqafXwdQKA4p7GizQA7EY8CIbrYmaRYj+l4JBy78= Subject key identifier: AA:35:D7:DD:EE:4C:3A:C5:BE:77:D2:7A:48:ED:C9:1E:A6:77:5A:15 Certificate issuer: /CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Certificate serial: 010D0C9F43285848EC9695108770A33F97B62480 Authority key identifier: 6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa Signing time: Tue 18 Feb 2025 14:00:52 +0000 ROA not before: Tue 18 Feb 2025 14:00:52 +0000 ROA not after: Mon 19 May 2025 13:00:52 +0000 asID: 20473 IP address blocks: 136.228.0.0/19 maxlen: 32 139.60.200.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:ec:96:95:10:87:70:a3:3f:97:b6:24:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Validity Not Before: Feb 18 14:00:52 2025 GMT Not After : May 19 13:00:52 2025 GMT Subject: CN=9ed321bc-27db-45a0-8a9e-e9c9a3015e53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:88:a1:da:37:73:3a:dd:07:76:d7:95:58: d9:95:27:10:81:54:0d:55:c1:bf:aa:ea:90:a7:78: 80:63:40:a6:41:40:7c:80:c3:c6:b7:d6:d2:8b:88: 39:52:48:89:bf:db:15:96:c5:a8:12:5c:f4:c3:cd: df:4d:56:ff:aa:4a:1a:55:51:aa:02:47:0b:d5:89: dc:6b:45:71:d1:41:63:2f:1c:c2:db:f2:af:97:09: 57:cf:b5:35:94:25:dc:72:ba:4e:19:a8:28:6b:b6: bc:af:55:ef:da:ee:80:85:24:09:ec:15:aa:b4:74: f4:d1:28:ac:38:d2:90:a7:dc:9c:73:a8:cd:02:d8: d7:d2:7e:a1:e2:ad:ab:c7:bf:dc:ef:41:71:e7:0c: 59:ab:89:e5:de:c3:47:82:1f:50:71:41:32:10:10: be:41:ea:a0:7a:95:09:16:a5:10:f3:fb:33:45:b2: cf:09:1c:2e:c8:3a:b2:df:81:a9:8e:0e:04:98:60: c8:fb:7f:99:bf:fd:33:39:94:72:ab:0a:89:ef:82: 57:a0:38:f6:5c:6a:d4:a1:df:7e:75:13:02:61:9c: f7:48:f9:e9:50:0a:12:a4:7c:02:5c:fe:3f:12:21: aa:d4:c3:b4:4b:ba:3e:84:05:de:25:fb:38:3f:9a: a2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:35:D7:DD:EE:4C:3A:C5:BE:77:D2:7A:48:ED:C9:1E:A6:77:5A:15 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl X509v3 Authority Key Identifier: keyid:6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer sbgp-ipAddrBlock: critical IPv4: 136.228.0.0/19 139.60.200.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0a:f6:2a:1f:82:3d:c7:dc:7f:c8:db:6e:3f:b7:c5:c0:da:8c: 21:fb:8f:9f:40:44:50:cc:32:b5:9c:60:08:d8:4c:34:05:6a: e4:73:82:a8:ff:f3:02:35:eb:f8:cf:0d:93:33:85:ed:8c:3f: 8f:12:97:67:75:f1:5e:05:da:77:84:9e:9b:02:4e:cd:ee:f3: 1e:64:40:67:7e:74:ad:93:bf:8c:e1:e7:67:30:54:31:b3:b1: 53:a7:fb:1f:19:e5:98:b7:82:d5:f0:f0:81:42:1d:33:56:35: 11:89:36:1f:13:50:dd:12:98:ce:e5:1e:8a:b2:7d:3b:c5:25: 42:73:f4:44:f5:52:06:e1:4b:ed:29:05:00:7f:ce:7b:8b:50: 9c:1d:f2:cd:e1:a2:41:d4:4f:82:43:52:e2:aa:21:c4:ab:43: cf:9a:fc:10:15:70:54:eb:e9:92:87:c2:7a:ac:6a:de:fa:9c: 21:33:bc:45:2e:3e:d2:82:04:3f:30:b5:69:ca:d1:00:c1:f9: 5b:02:3a:69:b2:d3:8d:72:5f:aa:46:83:90:fd:ca:cc:3c:59: 57:f8:41:70:9e:9f:6a:5b:bd:f7:17:c1:3a:94:8d:27:b1:85: cd:ba:50:43:24:cd:48:7b:5c:88:71:cf:39:88:5d:73:29:89: b1:f1:1c:9e -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWEjslpUQh3CjP5e2JIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAyYTUyZTUtMmI3MS00MTI0LWJkMjktNjBlOTBlNTlm NDdkMB4XDTI1MDIxODE0MDA1MloXDTI1MDUxOTEzMDA1MlowLzEtMCsGA1UEAxMk OWVkMzIxYmMtMjdkYi00NWEwLThhOWUtZTljOWEzMDE1ZTUzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNCIodo3czrdB3bXlVjZlScQgVQNVcG/quqQ p3iAY0CmQUB8gMPGt9bSi4g5UkiJv9sVlsWoElz0w83fTVb/qkoaVVGqAkcL1Ync a0Vx0UFjLxzC2/KvlwlXz7U1lCXccrpOGagoa7a8r1Xv2u6AhSQJ7BWqtHT00Sis ONKQp9ycc6jNAtjX0n6h4q2rx7/c70Fx5wxZq4nl3sNHgh9QcUEyEBC+QeqgepUJ FqUQ8/szRbLPCRwuyDqy34Gpjg4EmGDI+3+Zv/0zOZRyqwqJ74JXoDj2XGrUod9+ dRMCYZz3SPnpUAoSpHwCXP4/EiGq1MO0S7o+hAXeJfs4P5qi4wIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFKo1193uTDrFvnfSekjtyR6md1oVMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJh NTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5MGU1OWY0N2QvMmIyNWM0ZWEtM2MzOS0z NzRkLWE4MjMtMmQ5MzYxZDc5ZmU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvZDAyYTUyZTUtMmI3MS00MTI0LWJk MjktNjBlOTBlNTlmNDdkL2QwMmE1MmU1LTJiNzEtNDEyNC1iZDI5LTYwZTkwZTU5 ZjQ3ZC5jcmwwHwYDVR0jBBgwFoAUauWbwwPnU/AIdM3iI5bDJH4557EwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJhNTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5 MGU1OWY0N2QuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFiOQAAwQD izzIMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBAAr2Kh+CPcfcf8jbbj+3xcDajCH7j59ARFDMMrWcYAjYTDQF auRzgqj/8wI16/jPDZMzhe2MP48Sl2d18V4F2neEnpsCTs3u8x5kQGd+dK2Tv4zh 52cwVDGzsVOn+x8Z5Zi3gtXw8IFCHTNWNRGJNh8TUN0SmM7lHoqyfTvFJUJz9ET1 UgbhS+0pBQB/znuLUJwd8s3hokHUT4JDUuKqIcSrQ8+a/BAVcFTr6ZKHwnqsat76 nCEzvEUuPtKCBD8wtWnK0QDB+VsCOmmy041yX6pGg5D9ysw8WVf4QXCen2pbvfcX wTqUjSexhc26UEMkzUh7XIhxzzmIXXMpibHxHJ4= -----END CERTIFICATE-----Generated at Sun Apr 6 00:02:14 2025 by rpki-client