$ rpki-client -vvf rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3930303a3a2f34302d3430203d3e20343031363832.roa File: 323630343a6361303a3930303a3a2f34302d3430203d3e20343031363832.roa (raw, json) Hash identifier: 0nFjLjL+6/ZtXl6EbQn1jD2WpCqQclOyDHBE+RI1oNU= Subject key identifier: C0:0E:A1:CD:D9:80:48:55:17:F2:CC:51:E6:E0:CA:26:DD:28:C6:DD Certificate issuer: /CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Certificate serial: 02EA9E20F4CDE8C50B6B4D6A8EE957550EA40E4D Authority key identifier: 3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject info access: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3930303a3a2f34302d3430203d3e20343031363832.roa Signing time: Mon 28 Apr 2025 01:48:50 +0000 ROA not before: Mon 28 Apr 2025 01:43:50 +0000 ROA not after: Mon 27 Apr 2026 01:48:50 +0000 asID: 401682 IP address blocks: 2604:ca0:900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 29 Apr 2025 23:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ea:9e:20:f4:cd:e8:c5:0b:6b:4d:6a:8e:e9:57:55:0e:a4:0e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Validity Not Before: Apr 28 01:43:50 2025 GMT Not After : Apr 27 01:48:50 2026 GMT Subject: CN=C00EA1CDD980485517F2CC51E6E0CA26DD28C6DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4d:aa:2c:d8:d9:c1:45:bd:6d:78:34:76:42: 9b:08:0e:d6:72:6e:1d:f9:28:7e:b0:fd:e6:b2:0b: ac:22:5c:24:d6:2d:b8:0f:6d:2b:06:5e:53:48:2c: 2c:61:8b:34:1c:9b:a7:e2:b6:84:5c:c1:6c:8f:29: 13:a2:31:4d:d1:ea:5d:a3:41:15:18:b9:14:bf:c3: 33:9f:f5:df:9d:27:93:99:49:17:3a:3a:cf:91:e4: 68:cc:db:f3:5e:b5:3e:9a:fa:48:1e:8b:e5:da:92: 32:87:33:c9:d2:31:37:38:e2:59:5d:59:34:fd:32: e8:02:e2:6c:2d:87:c2:75:66:d2:1e:5e:8f:36:c1: 0f:14:b5:9b:1f:b0:55:9e:f6:d3:aa:06:a9:2a:0c: f5:0a:77:9c:4a:10:c5:f0:13:6b:57:db:b4:b0:63: fe:43:1f:19:36:b8:f0:52:16:f6:de:13:70:aa:af: 4d:f4:60:6a:5b:cc:1e:91:f4:6c:6b:28:9d:b2:ad: 67:26:09:a5:e2:b0:ae:4f:6a:25:95:51:0e:de:6a: 0d:4c:66:94:7a:05:bf:43:0a:64:91:2d:47:6a:e5: 3a:b5:ab:39:04:fb:69:35:09:cd:48:ab:38:16:3d: 4f:34:c5:45:1c:7e:8a:e4:d3:3d:84:e5:a3:29:88: 76:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0E:A1:CD:D9:80:48:55:17:F2:CC:51:E6:E0:CA:26:DD:28:C6:DD X509v3 Authority Key Identifier: keyid:3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3930303a3a2f34302d3430203d3e20343031363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:ca0:900::/40 Signature Algorithm: sha256WithRSAEncryption a4:65:1e:99:f9:14:98:53:fc:74:f8:ee:3a:ae:e7:60:f7:57: 7f:c3:90:13:88:ca:01:66:e9:8b:16:e9:e0:3e:17:86:8b:a3: 57:ce:c3:c8:65:f1:09:b0:ee:32:82:dc:63:a0:cc:aa:e6:e1: aa:0f:f5:31:de:3f:b1:34:57:1d:55:1b:36:6d:17:54:53:fa: 14:16:31:5e:f1:7a:5f:1d:42:bf:45:ad:9d:33:6d:34:82:6b: 49:5e:af:d9:c5:92:4d:fc:a7:09:02:ba:03:48:fc:53:ee:9a: 91:52:0e:86:aa:79:46:4d:8c:e8:0c:11:f0:ed:5c:88:50:0c: 17:f8:2c:3b:bc:ed:d2:5b:f6:05:86:a3:bc:5a:6b:1e:22:08: 7f:a2:e1:ab:5a:94:ee:cb:8c:b4:03:ed:03:54:72:f2:00:24: 63:85:ab:2f:10:4e:68:d1:34:2a:ce:3d:8d:d4:21:ea:8b:f1: 4c:7c:18:9c:b1:0e:06:d9:08:71:b4:9e:31:74:1d:d5:79:0a: 6c:90:0a:59:52:aa:3a:33:60:d2:69:6f:69:0d:fb:91:5a:15: cb:00:e5:88:7f:7a:16:49:cb:f3:31:e2:1a:d6:87:d9:bf:ac: 20:c2:62:2d:ed:a9:bc:ee:ea:b5:57:7f:e1:0b:40:aa:40:14: 5f:f3:d5:80 -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUAuqeIPTN6MULa01qjulXVQ6kDk0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZTg3NDFhYzRmMWZmOWEwNjg4ZjFiNWJmMTM1NWU1Nzg4 Mzc0MjUzNDYxMjM1NmQ5NTkwHhcNMjUwNDI4MDE0MzUwWhcNMjYwNDI3MDE0ODUw WjAzMTEwLwYDVQQDEyhDMDBFQTFDREQ5ODA0ODU1MTdGMkNDNTFFNkUwQ0EyNkRE MjhDNkREMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuk2qLNjZwUW9 bXg0dkKbCA7Wcm4d+Sh+sP3msgusIlwk1i24D20rBl5TSCwsYYs0HJun4raEXMFs jykTojFN0epdo0EVGLkUv8Mzn/XfnSeTmUkXOjrPkeRozNvzXrU+mvpIHovl2pIy hzPJ0jE3OOJZXVk0/TLoAuJsLYfCdWbSHl6PNsEPFLWbH7BVnvbTqgapKgz1Cnec ShDF8BNrV9u0sGP+Qx8ZNrjwUhb23hNwqq9N9GBqW8wekfRsayidsq1nJgml4rCu T2ollVEO3moNTGaUegW/QwpkkS1HauU6tas5BPtpNQnNSKs4Fj1PNMVFHH6K5NM9 hOWjKYh2kwIDAQABo4ICujCCArYwHQYDVR0OBBYEFMAOoc3ZgEhVF/LMUebgyibd KMbdMB8GA1UdIwQYMBaAFDuj+4k9g4oVcYpbxxV1DO2Jnv0fMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5L2M1ZGE0MTNlNDQzODRkN2I4N2UwYTc0YjQyY2ExODY3LzAv M0JBM0ZCODkzRDgzOEExNTcxOEE1QkM3MTU3NTBDRUQ4OTlFRkQxRi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZDZiNWFkMjgtMWNiYy00N2FiLTkwNGUtNDUzNjFh NTQ4N2MzLzRlOTYyNzE3LTExMzgtNGQyYi05NDQyLTAzMzJlOTA2MDEzMi9lODc0 MWFjNGYxZmY5YTA2ODhmMWI1YmYxMzU1ZTU3ODgzNzQyNTM0NjEyMzU2ZDk1OS5j ZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS9jNWRhNDEzZTQ0Mzg0ZDdiODdlMGE3 NGI0MmNhMTg2Ny8wLzMyMzYzMDM0M2E2MzYxMzAzYTM5MzAzMDNhM2EyZjM0MzAy ZDM0MzAyMDNkM2UyMDM0MzAzMTM2MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACYEDKAJMA0GCSqG SIb3DQEBCwUAA4IBAQCkZR6Z+RSYU/x0+O46rudg91d/w5ATiMoBZumLFungPheG i6NXzsPIZfEJsO4ygtxjoMyq5uGqD/Ux3j+xNFcdVRs2bRdUU/oUFjFe8XpfHUK/ Ra2dM200gmtJXq/ZxZJN/KcJAroDSPxT7pqRUg6GqnlGTYzoDBHw7VyIUAwX+Cw7 vO3SW/YFhqO8WmseIgh/ouGrWpTuy4y0A+0DVHLyACRjhasvEE5o0TQqzj2N1CHq i/FMfBicsQ4G2QhxtJ4xdB3VeQpskApZUqo6M2DSaW9pDfuRWhXLAOWIf3oWScvz MeIa1ofZv6wgwmIt7am87uq1V3/hC0CqQBRf89WA -----END CERTIFICATE-----Generated at Mon Apr 28 22:54:05 2025 by rpki-client