$ rpki-client -vvf rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/32332e3134302e32302e302f32342d3234203d3e203434333534.roa File: 32332e3134302e32302e302f32342d3234203d3e203434333534.roa (raw, json) Hash identifier: kr59tCGu1+Ax9w6AEj/IlmzvOtIvEfTUtnx1kBTwy9c= Subject key identifier: F9:D4:01:D8:66:52:17:2C:69:8B:91:28:0F:94:B8:A2:29:9F:6A:C0 Certificate issuer: /CN=cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf Certificate serial: 7DC3132F5D9425F9A2FE7A199BFD4C2CD9244FFA Authority key identifier: EA:01:8B:25:10:4B:F7:51:B2:B8:90:0C:54:B2:13:3F:C3:C7:9C:EC Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf.cer Subject info access: rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/32332e3134302e32302e302f32342d3234203d3e203434333534.roa Signing time: Tue 10 Jun 2025 18:25:49 +0000 ROA not before: Tue 10 Jun 2025 18:20:49 +0000 ROA not after: Tue 09 Jun 2026 18:25:49 +0000 asID: 44354 IP address blocks: 23.140.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/EA018B25104BF751B2B8900C54B2133FC3C79CEC.crl rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/EA018B25104BF751B2B8900C54B2133FC3C79CEC.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/e91c6482-7261-4772-b3f7-fd5fa4ae995c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/e91c6482-7261-4772-b3f7-fd5fa4ae995c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c3:13:2f:5d:94:25:f9:a2:fe:7a:19:9b:fd:4c:2c:d9:24:4f:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf Validity Not Before: Jun 10 18:20:49 2025 GMT Not After : Jun 9 18:25:49 2026 GMT Subject: CN=F9D401D86652172C698B91280F94B8A2299F6AC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c3:40:ba:dc:20:c2:79:92:1d:17:1d:1e:a0: 09:dd:9c:2b:55:38:33:df:ff:a1:a0:1b:7c:0c:21: 95:47:34:f0:64:7b:6d:07:13:ba:cd:d0:a8:17:e6: ec:ae:15:2f:e0:41:04:43:bd:f8:ff:3c:90:93:06: 57:a4:55:f6:f9:2c:5f:91:15:76:77:d8:4b:2f:77: 54:c8:9f:9b:4a:df:c2:f5:d0:6a:7b:3f:7f:70:22: b2:16:4f:b0:6e:0b:4d:c9:ce:8b:96:0b:04:97:47: 7c:f7:1c:54:43:2e:b9:0c:6c:a4:0d:69:f1:29:2e: 23:df:05:49:27:5b:a7:84:23:47:79:47:ef:35:08: 77:fe:78:4a:a9:43:77:dc:da:6a:36:8e:26:32:42: 1c:ed:2c:b8:de:58:d1:a6:62:13:c9:ce:c5:9e:44: 90:07:52:b0:40:49:78:25:3a:bc:22:b7:48:a1:dc: 5a:71:02:7d:66:51:cb:03:a0:20:11:66:6c:e7:7c: 91:ce:b0:d1:7d:28:1c:bc:d3:42:c8:e6:55:c9:dc: 51:6d:72:9e:23:70:cf:5d:ad:09:b3:21:45:67:87: be:af:b4:67:f2:56:b2:c0:09:b0:7f:f1:e3:8c:c9: 67:ef:1d:28:c2:d9:94:11:72:76:a1:f4:35:3c:c3: 05:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D4:01:D8:66:52:17:2C:69:8B:91:28:0F:94:B8:A2:29:9F:6A:C0 X509v3 Authority Key Identifier: keyid:EA:01:8B:25:10:4B:F7:51:B2:B8:90:0C:54:B2:13:3F:C3:C7:9C:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/EA018B25104BF751B2B8900C54B2133FC3C79CEC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/32332e3134302e32302e302f32342d3234203d3e203434333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.140.20.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:bb:b5:68:9b:2e:2c:e0:e9:90:23:d7:d1:c8:6f:03:32:2f: ac:56:69:e3:6e:ee:35:d1:6a:57:69:66:b4:c7:b4:b8:e7:ae: b1:57:b9:7b:91:14:de:f1:aa:02:ab:d2:93:03:c3:f2:f4:80: bd:87:74:fc:d3:70:15:c4:8f:3f:27:51:6a:bb:0a:a3:a5:64: 07:e8:a0:76:52:0d:c4:c4:ca:52:7e:5b:cf:49:75:93:3e:cb: 7f:db:da:bb:ef:da:d0:77:44:af:6b:20:51:18:fc:67:be:34: 54:de:31:2a:2e:77:57:61:df:4d:5c:17:53:41:ec:d5:74:97: 70:6f:5e:ff:1b:e5:b3:86:6c:35:ea:3b:ca:8d:94:18:c5:22: f5:10:4d:dd:80:71:1a:b9:3c:cf:39:36:8d:0a:fd:c5:18:d3: d8:74:c5:6d:02:3b:5c:28:f9:bc:ce:0b:b4:02:41:e1:2b:e4: da:39:86:19:3d:11:e2:38:78:04:90:09:c2:73:ec:22:ba:30: d9:1b:b4:64:c0:c4:7b:5b:70:ad:a7:df:3e:48:d8:e9:8c:f6: a8:61:a5:d5:16:1c:3f:da:59:ba:22:2e:01:de:62:78:d2:4d: f3:f5:64:9f:f4:76:6b:a5:9e:46:b1:7b:a4:1a:88:9e:5e:9d: 2c:ed:17:e8 -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgIUfcMTL12UJfmi/noZm/1MLNkkT/owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyY2IxZWUwMGNjYWU0NzA1ZGFiMzI2YTk1YTQyOWNkMjM0 MDI1YTE2NzE1MWMyYTZmYWYwHhcNMjUwNjEwMTgyMDQ5WhcNMjYwNjA5MTgyNTQ5 WjAzMTEwLwYDVQQDEyhGOUQ0MDFEODY2NTIxNzJDNjk4QjkxMjgwRjk0QjhBMjI5 OUY2QUMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8NAutwgwnmS HRcdHqAJ3ZwrVTgz3/+hoBt8DCGVRzTwZHttBxO6zdCoF+bsrhUv4EEEQ734/zyQ kwZXpFX2+SxfkRV2d9hLL3dUyJ+bSt/C9dBqez9/cCKyFk+wbgtNyc6LlgsEl0d8 9xxUQy65DGykDWnxKS4j3wVJJ1unhCNHeUfvNQh3/nhKqUN33NpqNo4mMkIc7Sy4 3ljRpmITyc7FnkSQB1KwQEl4JTq8IrdIodxacQJ9ZlHLA6AgEWZs53yRzrDRfSgc vNNCyOZVydxRbXKeI3DPXa0JsyFFZ4e+r7Rn8laywAmwf/HjjMln7x0owtmUEXJ2 ofQ1PMMFmQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFPnUAdhmUhcsaYuRKA+UuKIp n2rAMB8GA1UdIwQYMBaAFOoBiyUQS/dRsriQDFSyEz/Dx5zsMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzNiMDFiNzQ0YzhiODRkNzJiMmFhNjI0N2EyYzA2NDAxLzAv RUEwMThCMjUxMDRCRjc1MUIyQjg5MDBDNTRCMjEzM0ZDM0M3OUNFQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1L2U5MWM2NDgyLTcyNjEtNDc3Mi1iM2Y3LWZkNWZhNGFlOTk1Yy9jYjFl ZTAwY2NhZTQ3MDVkYWIzMjZhOTVhNDI5Y2QyMzQwMjVhMTY3MTUxYzJhNmZhZi5j ZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS8zYjAxYjc0NGM4Yjg0ZDcyYjJhYTYy NDdhMmMwNjQwMS8wLzMyMzMyZTMxMzQzMDJlMzIzMDJlMzAyZjMyMzQyZDMyMzQy MDNkM2UyMDM0MzQzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAXjBQwDQYJKoZIhvcNAQELBQAD ggEBAG27tWibLizg6ZAj19HIbwMyL6xWaeNu7jXRaldpZrTHtLjnrrFXuXuRFN7x qgKr0pMDw/L0gL2HdPzTcBXEjz8nUWq7CqOlZAfooHZSDcTEylJ+W89JdZM+y3/b 2rvv2tB3RK9rIFEY/Ge+NFTeMSoud1dh301cF1NB7NV0l3BvXv8b5bOGbDXqO8qN lBjFIvUQTd2AcRq5PM85No0K/cUY09h0xW0CO1wo+bzOC7QCQeEr5No5hhk9EeI4 eASQCcJz7CK6MNkbtGTAxHtbcK2n3z5I2OmM9qhhpdUWHD/aWboiLgHeYnjSTfP1 ZJ/0dmulnkaxe6QaiJ5enSztF+g= -----END CERTIFICATE-----Generated at Mon Jun 16 15:50:34 2025 by rpki-client