$ rpki-client -vvf rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3230303a3a2f34302d3430203d3e20343031363832.roa File: 323630343a6361303a3230303a3a2f34302d3430203d3e20343031363832.roa (raw, json) Hash identifier: ZLZS7hi/TD7169HMB+AUEXegPLUMrqhrQDYzUHYCi+4= Subject key identifier: 46:42:CA:45:2E:A8:CD:44:73:59:28:21:33:2B:B5:0B:8A:52:54:1C Certificate issuer: /CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Certificate serial: 040A2FA612E8395C2FC5B83101A8E5C5265E73DC Authority key identifier: 3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject info access: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3230303a3a2f34302d3430203d3e20343031363832.roa Signing time: Mon 28 Apr 2025 01:47:44 +0000 ROA not before: Mon 28 Apr 2025 01:42:44 +0000 ROA not after: Mon 27 Apr 2026 01:47:44 +0000 asID: 401682 IP address blocks: 2604:ca0:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 29 Apr 2025 23:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:0a:2f:a6:12:e8:39:5c:2f:c5:b8:31:01:a8:e5:c5:26:5e:73:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Validity Not Before: Apr 28 01:42:44 2025 GMT Not After : Apr 27 01:47:44 2026 GMT Subject: CN=4642CA452EA8CD4473592821332BB50B8A52541C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a0:51:7d:46:4d:f6:78:09:fa:8b:fc:7d:78: 2f:b4:c9:d1:cc:fb:55:d2:d3:b8:ed:3a:89:df:89: 3f:bd:2c:50:f9:8a:00:b6:98:73:fc:69:96:35:81: 8a:a8:a8:96:93:53:72:34:a9:7b:dd:ad:3c:32:94: 0c:ea:83:c5:26:ee:be:82:71:99:ee:82:9e:d9:a9: 6a:52:92:0a:68:a1:0c:2f:28:d3:c4:ff:ee:c2:39: e1:f0:e6:05:88:99:c2:79:a1:0c:ca:8b:4d:48:04: 1f:ec:a1:ab:62:dd:20:92:d8:c5:2b:54:be:72:9e: c7:ca:7a:16:46:25:fe:77:83:44:9b:9d:f4:a0:e6: d0:37:2e:e4:c0:f3:1a:bb:8d:3f:24:66:ff:b9:02: 33:b3:97:d6:a6:b7:50:ce:32:9c:60:3c:f9:37:3e: a2:44:e6:7d:7b:db:9c:c6:54:cd:b9:ae:8c:08:3b: 41:f9:7f:21:4c:ee:e1:69:cd:b3:c2:4e:78:d8:8e: a2:7e:87:b4:49:74:31:0f:98:b2:34:b0:77:be:3e: 35:06:d1:4e:4c:69:4e:8c:6b:60:2b:dd:c7:d8:be: 07:9f:a7:71:38:00:47:1b:5d:80:30:b8:6e:d4:b5: 66:04:b7:e2:3a:d2:98:38:d2:46:e8:7b:de:cd:5d: c2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:42:CA:45:2E:A8:CD:44:73:59:28:21:33:2B:B5:0B:8A:52:54:1C X509v3 Authority Key Identifier: keyid:3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3230303a3a2f34302d3430203d3e20343031363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:ca0:200::/40 Signature Algorithm: sha256WithRSAEncryption 14:58:3c:17:44:ca:bf:0f:41:d8:4a:1b:93:f5:75:fd:54:8a: c5:42:33:87:dc:cc:9d:31:17:4e:9f:79:b7:0a:3e:a8:99:d3: 60:d7:e5:c8:ca:53:e1:09:60:81:71:61:69:fd:64:85:d4:cd: 38:42:2c:dd:76:bd:c7:1e:cc:b6:7d:58:f1:09:62:77:5d:2a: d5:ed:6a:87:5c:a1:af:c8:b2:73:dd:58:60:8d:ca:72:63:1d: 98:2d:ad:98:4b:a2:d8:f1:6c:1d:2d:25:c3:fb:ff:ed:ad:73: 72:90:68:94:f2:4c:d9:94:e3:31:e8:89:e4:04:0a:50:4a:46: d6:76:5a:d7:43:58:72:f1:96:97:56:79:03:3c:0f:29:c6:2d: f7:b0:98:fb:da:b4:8e:2c:9b:22:53:be:37:90:f2:76:d9:aa: 81:c3:05:8a:24:5c:45:38:a6:27:80:74:02:83:9c:0d:46:e1: 3a:f9:3d:a1:0d:18:34:f2:18:fc:95:78:e5:24:3b:9d:ab:60: 75:9d:bb:9b:c6:40:61:bf:6a:07:19:bb:b5:0c:1c:e0:37:4b: 87:b6:be:07:24:39:06:a6:60:66:9c:9f:55:f9:88:18:43:ed: e9:4a:de:06:ce:65:e6:9c:6b:6f:cb:3d:20:d8:f3:78:73:7d: 4e:50:6c:2d -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUBAovphLoOVwvxbgxAajlxSZec9wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZTg3NDFhYzRmMWZmOWEwNjg4ZjFiNWJmMTM1NWU1Nzg4 Mzc0MjUzNDYxMjM1NmQ5NTkwHhcNMjUwNDI4MDE0MjQ0WhcNMjYwNDI3MDE0NzQ0 WjAzMTEwLwYDVQQDEyg0NjQyQ0E0NTJFQThDRDQ0NzM1OTI4MjEzMzJCQjUwQjhB NTI1NDFDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaBRfUZN9ngJ +ov8fXgvtMnRzPtV0tO47TqJ34k/vSxQ+YoAtphz/GmWNYGKqKiWk1NyNKl73a08 MpQM6oPFJu6+gnGZ7oKe2alqUpIKaKEMLyjTxP/uwjnh8OYFiJnCeaEMyotNSAQf 7KGrYt0gktjFK1S+cp7HynoWRiX+d4NEm530oObQNy7kwPMau40/JGb/uQIzs5fW prdQzjKcYDz5Nz6iROZ9e9ucxlTNua6MCDtB+X8hTO7hac2zwk542I6ifoe0SXQx D5iyNLB3vj41BtFOTGlOjGtgK93H2L4Hn6dxOABHG12AMLhu1LVmBLfiOtKYONJG 6HvezV3CZwIDAQABo4ICujCCArYwHQYDVR0OBBYEFEZCykUuqM1Ec1koITMrtQuK UlQcMB8GA1UdIwQYMBaAFDuj+4k9g4oVcYpbxxV1DO2Jnv0fMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5L2M1ZGE0MTNlNDQzODRkN2I4N2UwYTc0YjQyY2ExODY3LzAv M0JBM0ZCODkzRDgzOEExNTcxOEE1QkM3MTU3NTBDRUQ4OTlFRkQxRi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZDZiNWFkMjgtMWNiYy00N2FiLTkwNGUtNDUzNjFh NTQ4N2MzLzRlOTYyNzE3LTExMzgtNGQyYi05NDQyLTAzMzJlOTA2MDEzMi9lODc0 MWFjNGYxZmY5YTA2ODhmMWI1YmYxMzU1ZTU3ODgzNzQyNTM0NjEyMzU2ZDk1OS5j ZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS9jNWRhNDEzZTQ0Mzg0ZDdiODdlMGE3 NGI0MmNhMTg2Ny8wLzMyMzYzMDM0M2E2MzYxMzAzYTMyMzAzMDNhM2EyZjM0MzAy ZDM0MzAyMDNkM2UyMDM0MzAzMTM2MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACYEDKACMA0GCSqG SIb3DQEBCwUAA4IBAQAUWDwXRMq/D0HYShuT9XX9VIrFQjOH3MydMRdOn3m3Cj6o mdNg1+XIylPhCWCBcWFp/WSF1M04Qizddr3HHsy2fVjxCWJ3XSrV7WqHXKGvyLJz 3VhgjcpyYx2YLa2YS6LY8WwdLSXD+//trXNykGiU8kzZlOMx6InkBApQSkbWdlrX Q1hy8ZaXVnkDPA8pxi33sJj72rSOLJsiU743kPJ22aqBwwWKJFxFOKYngHQCg5wN RuE6+T2hDRg08hj8lXjlJDudq2B1nbubxkBhv2oHGbu1DBzgN0uHtr4HJDkGpmBm nJ9V+YgYQ+3pSt4GzmXmnGtvyz0g2PN4c31OUGwt -----END CERTIFICATE-----Generated at Mon Apr 28 23:27:40 2025 by rpki-client