$ rpki-client -vvf rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3430303a3a2f34302d3430203d3e20343031363832.roa File: 323630343a6361303a3430303a3a2f34302d3430203d3e20343031363832.roa (raw, json) Hash identifier: Z1MNjNIKGDUrdne1bh6qRP/NWRsmjDNTZ8IDNn/+ARk= Subject key identifier: 40:F3:C8:D9:25:70:84:45:19:54:C5:ED:26:A5:01:CB:44:58:BD:BD Certificate issuer: /CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Certificate serial: 3FF4CC1F225706663AA79B257096ED9A7EFEDC33 Authority key identifier: 3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject info access: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3430303a3a2f34302d3430203d3e20343031363832.roa Signing time: Mon 28 Apr 2025 01:48:05 +0000 ROA not before: Mon 28 Apr 2025 01:43:05 +0000 ROA not after: Mon 27 Apr 2026 01:48:05 +0000 asID: 401682 IP address blocks: 2604:ca0:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Apr 2025 18:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f4:cc:1f:22:57:06:66:3a:a7:9b:25:70:96:ed:9a:7e:fe:dc:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Validity Not Before: Apr 28 01:43:05 2025 GMT Not After : Apr 27 01:48:05 2026 GMT Subject: CN=40F3C8D9257084451954C5ED26A501CB4458BDBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7a:94:d5:8a:fc:8e:5c:5d:1f:f1:b1:00:30: 0e:2f:cf:db:3c:ca:a5:e3:8f:05:43:b7:f4:1b:cc: 3f:e2:51:c6:e0:d9:58:f5:6e:56:1a:1f:f9:43:c4: f7:5b:f3:ac:a5:77:99:47:a2:d7:8b:82:5c:73:96: 40:74:86:29:54:30:3d:c2:89:0a:26:8c:cd:40:39: 86:bd:a4:bf:93:94:3c:91:d1:77:9f:67:5e:29:8d: c4:6b:b7:2f:4c:f5:f8:76:9a:96:bf:ea:0d:ec:bf: ee:19:7c:53:cf:70:93:28:5d:f2:41:1d:01:34:cd: cf:70:5a:14:f4:5f:ce:16:8f:da:1f:52:38:ef:ae: 30:5a:93:17:9a:4c:ab:3c:90:cb:a2:c7:be:70:94: 0b:de:08:92:b2:30:47:a6:b9:f2:cf:97:30:29:90: f8:2c:e7:a4:32:4f:6e:b7:42:fe:96:3c:0a:8e:5d: f4:99:4f:ee:a5:f5:a2:95:d7:2f:f2:6e:e2:78:f3: 60:f9:1a:ed:d3:5f:f3:ab:cb:44:1d:a8:b3:12:b0: a8:2f:27:c0:ee:fd:78:22:5b:91:8a:89:fd:03:b0: a6:7d:85:b1:74:01:dc:d2:3f:b9:ed:6f:52:11:bd: af:fd:2a:b6:28:b9:3f:93:f7:09:17:ce:7f:73:b6: 65:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F3:C8:D9:25:70:84:45:19:54:C5:ED:26:A5:01:CB:44:58:BD:BD X509v3 Authority Key Identifier: keyid:3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3430303a3a2f34302d3430203d3e20343031363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:ca0:400::/40 Signature Algorithm: sha256WithRSAEncryption a0:76:f1:68:0d:76:f7:75:51:d4:67:b9:e1:9d:4e:88:e6:f9: a8:16:89:8b:51:a4:67:04:bc:42:dc:2c:f0:65:08:8f:cc:7e: 68:84:69:4b:b9:99:43:88:bd:11:8c:6d:96:3b:1b:b0:73:71: 91:c4:10:c5:a3:9e:07:84:ef:17:c4:c9:74:d1:95:60:45:d9: a2:37:8a:3c:fe:aa:aa:69:b2:c8:cc:13:16:79:6c:7f:e8:86: 4f:ae:94:1a:13:00:b9:f4:16:47:d6:74:4f:a4:db:92:be:0f: fa:9e:81:e1:60:4d:28:24:c1:37:9d:c8:09:20:49:63:2a:5e: c5:38:ec:ea:d3:05:a8:af:4a:1f:b2:4a:17:cd:7a:10:4b:fb: 3c:70:d7:24:fc:5c:5e:82:b0:9a:ac:62:94:aa:09:f5:03:2b: af:0b:3f:39:20:5e:72:b3:ad:e7:b4:0a:a5:41:36:ab:82:bd: 35:8f:a7:b4:0f:11:bb:95:a7:58:54:7d:7d:63:65:c7:7d:9d: 6c:55:5e:52:88:dd:28:63:9f:a3:0d:1f:a2:75:51:da:fd:24: 25:12:c7:3c:7f:a4:54:ae:46:87:a6:f9:34:83:b2:57:7e:33: 39:ba:0d:d6:ff:59:de:c5:f6:84:f9:7e:c7:c5:a5:9e:9f:d0: 1a:5c:08:06 -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUP/TMHyJXBmY6p5slcJbtmn7+3DMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZTg3NDFhYzRmMWZmOWEwNjg4ZjFiNWJmMTM1NWU1Nzg4 Mzc0MjUzNDYxMjM1NmQ5NTkwHhcNMjUwNDI4MDE0MzA1WhcNMjYwNDI3MDE0ODA1 WjAzMTEwLwYDVQQDEyg0MEYzQzhEOTI1NzA4NDQ1MTk1NEM1RUQyNkE1MDFDQjQ0 NThCREJEMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnqU1Yr8jlxd H/GxADAOL8/bPMql448FQ7f0G8w/4lHG4NlY9W5WGh/5Q8T3W/OspXeZR6LXi4Jc c5ZAdIYpVDA9wokKJozNQDmGvaS/k5Q8kdF3n2deKY3Ea7cvTPX4dpqWv+oN7L/u GXxTz3CTKF3yQR0BNM3PcFoU9F/OFo/aH1I4764wWpMXmkyrPJDLose+cJQL3giS sjBHprnyz5cwKZD4LOekMk9ut0L+ljwKjl30mU/upfWildcv8m7iePNg+Rrt01/z q8tEHaizErCoLyfA7v14IluRion9A7CmfYWxdAHc0j+57W9SEb2v/Sq2KLk/k/cJ F85/c7ZlMQIDAQABo4ICujCCArYwHQYDVR0OBBYEFEDzyNklcIRFGVTF7SalActE WL29MB8GA1UdIwQYMBaAFDuj+4k9g4oVcYpbxxV1DO2Jnv0fMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5L2M1ZGE0MTNlNDQzODRkN2I4N2UwYTc0YjQyY2ExODY3LzAv M0JBM0ZCODkzRDgzOEExNTcxOEE1QkM3MTU3NTBDRUQ4OTlFRkQxRi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZDZiNWFkMjgtMWNiYy00N2FiLTkwNGUtNDUzNjFh NTQ4N2MzLzRlOTYyNzE3LTExMzgtNGQyYi05NDQyLTAzMzJlOTA2MDEzMi9lODc0 MWFjNGYxZmY5YTA2ODhmMWI1YmYxMzU1ZTU3ODgzNzQyNTM0NjEyMzU2ZDk1OS5j ZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS9jNWRhNDEzZTQ0Mzg0ZDdiODdlMGE3 NGI0MmNhMTg2Ny8wLzMyMzYzMDM0M2E2MzYxMzAzYTM0MzAzMDNhM2EyZjM0MzAy ZDM0MzAyMDNkM2UyMDM0MzAzMTM2MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACYEDKAEMA0GCSqG SIb3DQEBCwUAA4IBAQCgdvFoDXb3dVHUZ7nhnU6I5vmoFomLUaRnBLxC3CzwZQiP zH5ohGlLuZlDiL0RjG2WOxuwc3GRxBDFo54HhO8XxMl00ZVgRdmiN4o8/qqqabLI zBMWeWx/6IZPrpQaEwC59BZH1nRPpNuSvg/6noHhYE0oJME3ncgJIEljKl7FOOzq 0wWor0ofskoXzXoQS/s8cNck/FxegrCarGKUqgn1AyuvCz85IF5ys63ntAqlQTar gr01j6e0DxG7ladYVH19Y2XHfZ1sVV5SiN0oY5+jDR+idVHa/SQlEsc8f6RUrkaH pvk0g7JXfjM5ug3W/1nexfaE+X7HxaWen9AaXAgG -----END CERTIFICATE-----Generated at Wed Apr 30 00:10:48 2025 by rpki-client