$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa File: 2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa (raw, json) Hash identifier: AkQ2WEzsUqKZx7L/nT3QgXisDVRsr3dLaBjqlIle1QU= Subject key identifier: E2:53:95:2E:7F:B9:9C:B0:57:45:13:42:FA:BD:B3:FB:82:AF:74:3C Certificate issuer: /CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Certificate serial: 010D0C9F43285849CBCF9893C84859E127617400 Authority key identifier: 6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa Signing time: Fri 09 May 2025 13:01:00 +0000 ROA not before: Fri 09 May 2025 13:01:00 +0000 ROA not after: Thu 07 Aug 2025 13:01:00 +0000 asID: 20473 IP address blocks: 136.228.0.0/19 maxlen: 32 139.60.200.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 21 May 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:cb:cf:98:93:c8:48:59:e1:27:61:74:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Validity Not Before: May 9 13:01:00 2025 GMT Not After : Aug 7 13:01:00 2025 GMT Subject: CN=12dd95f5-7086-4e36-a1c8-48e532711e29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0c:77:94:a2:8b:44:cc:d5:53:b5:77:cf:d2: 0d:5a:df:72:ec:72:5b:ba:a8:a6:11:87:7c:9b:2a: fe:0e:52:ac:38:7c:60:3d:ce:b2:74:37:3b:88:a8: 3f:68:49:21:ad:69:49:79:bd:5c:a3:4e:e1:75:91: a1:2f:ae:3d:f9:50:39:72:db:6a:cb:17:8a:88:97: 47:1a:f1:f5:3b:b9:f4:a3:fb:a8:39:7e:22:08:be: 39:5c:a6:21:5c:9d:92:98:1a:3d:63:78:23:fd:65: 3b:0b:5e:18:c9:95:18:b8:86:7a:e1:6f:67:cc:0b: 49:f1:b8:5c:0a:41:20:02:d5:7a:ab:b0:4b:34:b5: d8:02:ac:5c:bf:ae:f2:71:c9:02:45:1d:b8:ad:4f: bc:f3:02:dc:4c:55:38:0e:c8:cf:79:6f:5b:bb:fb: 9e:39:12:81:34:3c:cf:11:d0:9e:d7:94:82:51:d1: 82:d3:ca:2d:a1:e0:80:19:22:97:2b:f2:f0:ad:43: 43:c5:2c:bf:a3:38:cd:15:24:7d:4b:2a:39:c5:83: ef:6d:d0:82:a0:75:90:48:08:49:ee:38:36:a3:a9: e1:0c:89:79:52:df:f3:c2:a8:b8:10:c8:51:5a:d0: 0f:e6:bd:63:2f:fd:78:ce:9b:97:14:77:79:95:4f: f9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:53:95:2E:7F:B9:9C:B0:57:45:13:42:FA:BD:B3:FB:82:AF:74:3C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl X509v3 Authority Key Identifier: keyid:6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer sbgp-ipAddrBlock: critical IPv4: 136.228.0.0/19 139.60.200.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 9e:27:53:e4:90:31:e7:2e:77:a1:ab:fa:b9:51:4a:63:c1:2f: 94:53:7d:63:b6:f4:01:e0:0e:99:19:9f:7d:7e:2a:c7:5f:d5: d3:dd:9e:c5:e6:11:c7:5d:ba:e1:4d:5d:61:37:70:e1:2f:1f: ae:b3:42:c7:58:4a:39:75:77:5a:41:6f:8e:09:20:71:af:e9: e6:5b:95:b7:b6:e3:97:a6:bc:66:b2:b6:ed:c0:aa:72:a6:5c: cc:4e:8e:f9:29:47:bd:1e:b3:1a:e8:ea:e8:f4:87:7b:dc:30: be:e9:6c:b9:0d:37:9b:df:6e:1c:97:b5:26:21:29:2f:12:67: ab:e3:9e:5d:85:f5:2f:39:29:10:83:2e:b1:79:15:35:f6:b0: 92:04:92:68:e8:6a:b9:b2:2b:01:ea:21:28:59:a2:cc:96:48: a7:60:61:4c:78:cb:4d:86:92:00:98:1e:0f:b5:81:27:ed:a0: a6:83:eb:b1:81:7c:2d:94:44:a5:2d:20:12:db:6e:37:26:b7: c0:28:69:80:02:11:bc:5c:fc:48:07:45:59:09:c1:cc:45:fd: 2b:48:17:5e:e9:88:4c:4e:2a:28:ba:46:09:3a:66:14:06:7d: e9:ed:84:bb:25:e2:b5:c3:0d:91:8d:66:66:ca:a5:b9:d8:2a: 93:35:bc:93 -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWEnLz5iTyEhZ4SdhdAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAyYTUyZTUtMmI3MS00MTI0LWJkMjktNjBlOTBlNTlm NDdkMB4XDTI1MDUwOTEzMDEwMFoXDTI1MDgwNzEzMDEwMFowLzEtMCsGA1UEAxMk MTJkZDk1ZjUtNzA4Ni00ZTM2LWExYzgtNDhlNTMyNzExZTI5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgx3lKKLRMzVU7V3z9INWt9y7HJbuqimEYd8 myr+DlKsOHxgPc6ydDc7iKg/aEkhrWlJeb1co07hdZGhL649+VA5cttqyxeKiJdH GvH1O7n0o/uoOX4iCL45XKYhXJ2SmBo9Y3gj/WU7C14YyZUYuIZ64W9nzAtJ8bhc CkEgAtV6q7BLNLXYAqxcv67ycckCRR24rU+88wLcTFU4DsjPeW9bu/ueORKBNDzP EdCe15SCUdGC08otoeCAGSKXK/LwrUNDxSy/ozjNFSR9Syo5xYPvbdCCoHWQSAhJ 7jg2o6nhDIl5Ut/zwqi4EMhRWtAP5r1jL/14zpuXFHd5lU/51wIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFOJTlS5/uZywV0UTQvq9s/uCr3Q8MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJh NTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5MGU1OWY0N2QvMmIyNWM0ZWEtM2MzOS0z NzRkLWE4MjMtMmQ5MzYxZDc5ZmU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvZDAyYTUyZTUtMmI3MS00MTI0LWJk MjktNjBlOTBlNTlmNDdkL2QwMmE1MmU1LTJiNzEtNDEyNC1iZDI5LTYwZTkwZTU5 ZjQ3ZC5jcmwwHwYDVR0jBBgwFoAUauWbwwPnU/AIdM3iI5bDJH4557EwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJhNTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5 MGU1OWY0N2QuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFiOQAAwQD izzIMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBAJ4nU+SQMecud6Gr+rlRSmPBL5RTfWO29AHgDpkZn31+Ksdf 1dPdnsXmEcdduuFNXWE3cOEvH66zQsdYSjl1d1pBb44JIHGv6eZblbe245emvGay tu3AqnKmXMxOjvkpR70esxro6uj0h3vcML7pbLkNN5vfbhyXtSYhKS8SZ6vjnl2F 9S85KRCDLrF5FTX2sJIEkmjoarmyKwHqIShZosyWSKdgYUx4y02GkgCYHg+1gSft oKaD67GBfC2URKUtIBLbbjcmt8AoaYACEbxc/EgHRVkJwcxF/StIF17piExOKii6 Rgk6ZhQGfenthLsl4rXDDZGNZmbKpbnYKpM1vJM= -----END CERTIFICATE-----Generated at Tue May 20 09:53:16 2025 by rpki-client