$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/da024b9b-bb62-3d3f-84c7-f35b52779cf4.roa File: da024b9b-bb62-3d3f-84c7-f35b52779cf4.roa (raw, json) Hash identifier: v6uRpynezjAFiZujYF10ki9jXOEshtBo+D9LHPHpCg8= Subject key identifier: 35:D6:F2:CA:A3:15:93:37:82:30:CD:CF:75:D8:74:88:F9:E0:AB:E2 Certificate issuer: /CN=674c2e16-6a5c-4ae2-961d-f9d291126728 Certificate serial: 010D0C9F432858495ABEB27CDD605494D98B6980 Authority key identifier: E5:CD:70:D7:DC:C5:BD:7C:3F:F0:91:FD:5F:FF:08:45:23:8E:EA:AB Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/da024b9b-bb62-3d3f-84c7-f35b52779cf4.roa Signing time: Sun 30 Mar 2025 01:00:47 +0000 ROA not before: Sun 30 Mar 2025 01:00:47 +0000 ROA not after: Sat 28 Jun 2025 01:00:47 +0000 asID: 202 IP address blocks: 20.133.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/674c2e16-6a5c-4ae2-961d-f9d291126728.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/674c2e16-6a5c-4ae2-961d-f9d291126728.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:5a:be:b2:7c:dd:60:54:94:d9:8b:69:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=674c2e16-6a5c-4ae2-961d-f9d291126728 Validity Not Before: Mar 30 01:00:47 2025 GMT Not After : Jun 28 01:00:47 2025 GMT Subject: CN=4317a1c4-eb04-45a6-80ea-bb10ceaad999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:93:fb:ae:b2:47:2d:61:50:67:4f:be:28:2a: 33:00:46:c8:df:6e:92:9c:6e:5a:b4:79:c8:17:1a: 7c:50:4c:8e:85:d1:0b:7a:58:6d:18:68:a5:0b:6e: ac:75:7b:e5:aa:61:7e:28:52:cd:d8:b7:32:b1:2f: 31:d5:74:b1:48:ec:00:58:3a:b5:a0:8a:c9:e8:60: 08:9f:1a:3f:2d:7b:40:69:92:78:2e:ee:40:38:a1: 7f:17:16:53:71:4c:4f:73:bd:ae:7e:5a:6a:f0:d5: df:fd:34:8f:9d:b6:37:3d:37:e4:21:79:22:2f:a2: ac:4d:e4:88:0d:b5:b0:35:da:d0:95:e0:63:90:bb: 65:0f:27:e5:fe:bb:95:ef:2d:9d:ac:d6:56:58:4f: 40:4e:c0:98:74:0a:70:00:a5:63:c3:16:08:c8:7c: 5a:c4:1b:b5:34:53:54:a8:ee:f9:73:9f:ad:da:ba: 57:d0:f4:75:d2:d2:44:95:7b:2b:4c:d7:66:87:6f: b8:2f:c8:11:1c:6d:a6:5a:c1:ca:a7:c8:b1:25:1e: 81:79:da:ab:c2:d6:7a:78:bc:65:bb:05:d2:97:dd: 07:45:e7:48:a5:59:88:6d:2c:97:17:c1:62:33:e0: 24:a0:aa:a7:12:1a:ff:38:9b:48:c0:d0:f7:69:6c: 18:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D6:F2:CA:A3:15:93:37:82:30:CD:CF:75:D8:74:88:F9:E0:AB:E2 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/da024b9b-bb62-3d3f-84c7-f35b52779cf4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/674c2e16-6a5c-4ae2-961d-f9d291126728.crl X509v3 Authority Key Identifier: keyid:E5:CD:70:D7:DC:C5:BD:7C:3F:F0:91:FD:5F:FF:08:45:23:8E:EA:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728.cer sbgp-ipAddrBlock: critical IPv4: 20.133.40.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 72:87:27:26:5e:f3:b8:89:7b:af:90:5e:c9:28:a9:8b:a0:7b: 4f:3a:c1:b6:9c:e8:10:d5:42:fb:c2:c9:9b:20:88:db:b7:37: 40:a0:ac:14:cd:ca:5d:20:4f:98:a5:cb:5a:38:07:79:04:ce: ee:11:e1:6a:ac:ea:fe:d7:8c:f5:39:c2:d6:87:20:da:aa:18: 6f:51:45:bb:4d:07:14:f7:f0:69:6f:1e:9c:0f:d7:05:c2:c6: 83:66:97:c0:58:ff:53:56:35:72:58:26:da:b0:52:b5:e3:7d: ad:9d:fa:04:43:07:ac:ef:00:26:62:39:e6:10:c6:c2:0d:b2: 97:3e:ad:5b:80:e5:75:83:67:71:6b:ed:c2:62:3e:7c:4e:88: ac:c4:8d:59:2c:34:ca:fd:17:29:3e:2e:a8:bf:3b:0f:fe:19: 11:64:75:96:70:3b:06:d4:92:d2:49:43:6b:b1:4a:d0:76:05: 0e:92:12:bf:ce:be:86:f1:0e:b0:ed:49:8b:ae:3d:0e:fa:f8: 12:56:6b:6a:7c:58:43:ff:83:e4:68:62:36:dc:b5:51:3b:7a: ec:23:9a:2b:b1:1e:df:a8:ef:97:0e:ac:d2:a4:85:53:92:fd: 79:65:71:a1:c2:20:58:a5:df:e1:e8:2f:07:72:40:e5:68:41: fe:f4:c7:e7 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWElavrJ83WBUlNmLaYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjc0YzJlMTYtNmE1Yy00YWUyLTk2MWQtZjlkMjkxMTI2 NzI4MB4XDTI1MDMzMDAxMDA0N1oXDTI1MDYyODAxMDA0N1owLzEtMCsGA1UEAxMk NDMxN2ExYzQtZWIwNC00NWE2LTgwZWEtYmIxMGNlYWFkOTk5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZP7rrJHLWFQZ0++KCozAEbI326SnG5atHnI Fxp8UEyOhdELelhtGGilC26sdXvlqmF+KFLN2LcysS8x1XSxSOwAWDq1oIrJ6GAI nxo/LXtAaZJ4Lu5AOKF/FxZTcUxPc72uflpq8NXf/TSPnbY3PTfkIXkiL6KsTeSI DbWwNdrQleBjkLtlDyfl/ruV7y2drNZWWE9ATsCYdApwAKVjwxYIyHxaxBu1NFNU qO75c5+t2rpX0PR10tJElXsrTNdmh2+4L8gRHG2mWsHKp8ixJR6BedqrwtZ6eLxl uwXSl90HRedIpVmIbSyXF8FiM+AkoKqnEhr/OJtIwND3aWwYSwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDXW8sqjFZM3gjDNz3XYdIj54KviMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzRj MmUxNi02YTVjLTRhZTItOTYxZC1mOWQyOTExMjY3MjgvZGEwMjRiOWItYmI2Mi0z ZDNmLTg0YzctZjM1YjUyNzc5Y2Y0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvNjc0YzJlMTYtNmE1Yy00YWUyLTk2 MWQtZjlkMjkxMTI2NzI4LzY3NGMyZTE2LTZhNWMtNGFlMi05NjFkLWY5ZDI5MTEy NjcyOC5jcmwwHwYDVR0jBBgwFoAU5c1w19zFvXw/8JH9X/8IRSOO6qswDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy82NzRjMmUxNi02YTVjLTRhZTItOTYxZC1mOWQy OTExMjY3MjguY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDFIUoMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHKHJyZe87iJe6+QXskoqYuge086wbac6BDVQvvCyZsgiNu3N0CgrBTN yl0gT5ily1o4B3kEzu4R4Wqs6v7XjPU5wtaHINqqGG9RRbtNBxT38GlvHpwP1wXC xoNml8BY/1NWNXJYJtqwUrXjfa2d+gRDB6zvACZiOeYQxsINspc+rVuA5XWDZ3Fr 7cJiPnxOiKzEjVksNMr9Fyk+Lqi/Ow/+GRFkdZZwOwbUktJJQ2uxStB2BQ6SEr/O vobxDrDtSYuuPQ76+BJWa2p8WEP/g+RoYjbctVE7euwjmiuxHt+o75cOrNKkhVOS /XllcaHCIFil3+HoLwdyQOVoQf70x+c= -----END CERTIFICATE-----Generated at Sat Apr 26 19:23:17 2025 by rpki-client