$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/f40704a5-d5f3-3fe1-b8ff-8d0fb3dd6d87.roa File: f40704a5-d5f3-3fe1-b8ff-8d0fb3dd6d87.roa (raw, json) Hash identifier: 5lHqddgCmVsUGRz8VTVN6PY2LvLR/dziIrcJQ04q0cY= Subject key identifier: 7E:9D:4D:5B:A7:E9:D5:8D:C9:74:AD:31:EA:B9:AC:F6:A5:EB:0C:18 Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F432858499829C2B1705B43170CCD3B00 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/f40704a5-d5f3-3fe1-b8ff-8d0fb3dd6d87.roa Signing time: Mon 21 Apr 2025 01:00:47 +0000 ROA not before: Mon 21 Apr 2025 01:00:47 +0000 ROA not after: Sun 20 Jul 2025 01:00:47 +0000 asID: 33665 IP address blocks: 23.31.120.0/22 maxlen: 22 24.23.80.0/20 maxlen: 20 50.76.144.0/22 maxlen: 22 50.184.160.0/22 maxlen: 22 50.193.240.0/22 maxlen: 22 50.244.88.0/22 maxlen: 22 50.251.20.0/22 maxlen: 22 64.139.67.0/24 maxlen: 24 64.139.91.0/24 maxlen: 24 66.208.206.0/23 maxlen: 23 67.173.192.0/19 maxlen: 19 68.85.60.0/24 maxlen: 24 68.85.122.0/24 maxlen: 24 68.86.138.0/23 maxlen: 23 68.86.202.0/23 maxlen: 23 69.252.37.0/24 maxlen: 24 69.254.0.0/20 maxlen: 20 70.88.28.0/23 maxlen: 23 70.91.181.0/24 maxlen: 24 70.91.211.0/24 maxlen: 24 71.25.192.0/22 maxlen: 22 71.203.64.0/20 maxlen: 20 71.226.0.0/20 maxlen: 20 71.226.128.0/19 maxlen: 19 73.20.128.0/17 maxlen: 17 73.108.128.0/18 maxlen: 18 73.113.192.0/18 maxlen: 18 73.190.192.0/18 maxlen: 18 73.217.160.0/19 maxlen: 19 74.92.254.0/24 maxlen: 24 74.94.89.0/24 maxlen: 24 74.95.107.0/24 maxlen: 24 75.146.95.0/24 maxlen: 24 76.125.16.0/20 maxlen: 20 76.140.192.0/18 maxlen: 18 96.67.64.0/22 maxlen: 22 96.69.236.0/22 maxlen: 22 96.73.32.0/22 maxlen: 22 96.84.152.0/22 maxlen: 22 96.88.8.0/22 maxlen: 22 96.94.172.0/22 maxlen: 22 96.96.99.0/24 maxlen: 24 96.96.207.0/24 maxlen: 24 96.114.54.0/23 maxlen: 23 96.124.20.0/22 maxlen: 22 96.208.27.0/24 maxlen: 24 162.151.153.0/25 maxlen: 25 173.10.199.0/24 maxlen: 24 173.163.224.0/22 maxlen: 22 174.50.96.0/19 maxlen: 19 174.56.192.0/18 maxlen: 18 174.63.192.0/18 maxlen: 18 2001:558:360::/44 maxlen: 44 2001:558:fe3c::/48 maxlen: 48 2001:559:3000::/36 maxlen: 36 2001:559:8281::/48 maxlen: 48 2001:559:868b::/48 maxlen: 48 2601:100::/26 maxlen: 26 2603:2100::/26 maxlen: 26 2603:3002::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:98:29:c2:b1:70:5b:43:17:0c:cd:3b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Apr 21 01:00:47 2025 GMT Not After : Jul 20 01:00:47 2025 GMT Subject: CN=6203c3c7-aa0b-42ab-b531-2015ee2ece8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cb:cd:46:0a:97:17:22:61:fc:79:92:d7:76: 89:50:64:ab:7e:fe:2f:93:5c:0d:67:31:90:71:3f: 65:fb:8c:57:3d:ce:df:c1:b0:34:0d:e0:6f:78:08: 90:9c:c3:09:cd:9f:2a:3a:c0:58:a5:64:f0:d9:2c: bd:56:dd:1e:35:cb:70:32:d0:04:67:90:47:03:90: 77:8d:f7:9e:af:d3:74:62:a9:05:0c:f6:65:f1:1b: e5:bc:69:21:04:42:d0:e7:25:41:12:57:6a:0c:cc: 15:c4:8a:b7:40:15:aa:31:b1:05:da:33:35:98:51: c8:ac:28:c3:59:ba:5a:95:32:df:c3:06:35:5b:b3: 08:5b:29:35:db:87:eb:84:52:68:92:45:d5:0e:0a: 9b:b0:c7:d4:9c:6b:c4:de:a9:fa:53:aa:50:15:e3: 80:6c:93:da:2b:f5:60:18:19:e1:f5:1f:97:27:a7: 19:df:84:3d:d8:71:0c:7b:24:6f:9a:30:d5:08:56: 83:7f:00:bd:e5:3d:bb:d1:8e:15:e2:a4:da:53:77: a5:a1:52:bd:1d:71:0c:c1:bd:1c:30:3b:2b:d4:8a: 93:f3:10:76:20:88:54:95:5d:6f:2f:60:a7:0d:aa: ac:df:df:ac:bc:24:b7:1e:21:e3:a2:75:24:43:d8: 2d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9D:4D:5B:A7:E9:D5:8D:C9:74:AD:31:EA:B9:AC:F6:A5:EB:0C:18 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/f40704a5-d5f3-3fe1-b8ff-8d0fb3dd6d87.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 23.31.120.0/22 24.23.80.0/20 50.76.144.0/22 50.184.160.0/22 50.193.240.0/22 50.244.88.0/22 50.251.20.0/22 64.139.67.0/24 64.139.91.0/24 66.208.206.0/23 67.173.192.0/19 68.85.60.0/24 68.85.122.0/24 68.86.138.0/23 68.86.202.0/23 69.252.37.0/24 69.254.0.0/20 70.88.28.0/23 70.91.181.0/24 70.91.211.0/24 71.25.192.0/22 71.203.64.0/20 71.226.0.0/20 71.226.128.0/19 73.20.128.0/17 73.108.128.0/18 73.113.192.0/18 73.190.192.0/18 73.217.160.0/19 74.92.254.0/24 74.94.89.0/24 74.95.107.0/24 75.146.95.0/24 76.125.16.0/20 76.140.192.0/18 96.67.64.0/22 96.69.236.0/22 96.73.32.0/22 96.84.152.0/22 96.88.8.0/22 96.94.172.0/22 96.96.99.0/24 96.96.207.0/24 96.114.54.0/23 96.124.20.0/22 96.208.27.0/24 162.151.153.0/25 173.10.199.0/24 173.163.224.0/22 174.50.96.0/19 174.56.192.0/18 174.63.192.0/18 IPv6: 2001:558:360::/44 2001:558:fe3c::/48 2001:559:3000::/36 2001:559:8281::/48 2001:559:868b::/48 2601:100::/26 2603:2100::/26 2603:3002::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 21:30:f5:cb:ac:af:9d:13:37:c0:d9:03:60:c3:8f:2c:19:6a: d2:70:0c:2f:9c:b4:55:90:7a:2e:92:ca:d6:c5:73:05:6a:07: d6:0b:9e:87:a0:63:9d:e3:7e:5e:a6:f9:5b:8c:c1:d1:fe:30: 1c:0a:8a:39:8c:a2:e6:74:49:03:43:0a:3e:8d:04:4a:29:b3: f1:6d:41:d2:c4:e2:f1:8c:b0:ad:64:f6:c6:40:fa:c8:82:f1: 27:10:53:1a:1b:a0:90:f2:63:de:04:ca:ec:b2:2b:25:b5:83: a8:07:f8:51:fe:45:6e:ba:a9:ff:37:94:a3:b2:6c:58:d7:51: 6c:bf:23:d8:ab:9f:71:8f:46:f1:bc:18:c9:43:96:47:82:68: 0e:ab:44:50:fa:ae:fb:08:13:c4:4b:71:27:3d:c2:a3:0c:6b: 50:f7:4e:0b:50:5c:33:52:7e:15:e6:ee:4e:10:10:87:20:83: e3:82:ea:df:f0:3a:3d:a6:93:49:60:23:62:ef:ba:90:dd:30: ac:c1:86:e6:53:b6:84:98:a9:bf:ac:8c:de:78:9e:fa:45:b8: c1:f8:43:29:be:db:c5:5d:56:51:9e:e4:95:0d:df:99:57:eb: 82:49:2a:6d:b8:7e:c8:12:b6:b4:a5:03:81:78:5c:ed:92:be: 99:8e:d2:0e -----BEGIN CERTIFICATE----- MIIHyTCCBrGgAwIBAgIUAQ0Mn0MoWEmYKcKxcFtDFwzNOwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDQyMTAxMDA0N1oXDTI1MDcyMDAxMDA0N1owLzEtMCsGA1UEAxMk NjIwM2MzYzctYWEwYi00MmFiLWI1MzEtMjAxNWVlMmVjZThmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcvNRgqXFyJh/HmS13aJUGSrfv4vk1wNZzGQ cT9l+4xXPc7fwbA0DeBveAiQnMMJzZ8qOsBYpWTw2Sy9Vt0eNctwMtAEZ5BHA5B3 jfeer9N0YqkFDPZl8RvlvGkhBELQ5yVBEldqDMwVxIq3QBWqMbEF2jM1mFHIrCjD WbpalTLfwwY1W7MIWyk124frhFJokkXVDgqbsMfUnGvE3qn6U6pQFeOAbJPaK/Vg GBnh9R+XJ6cZ34Q92HEMeyRvmjDVCFaDfwC95T270Y4V4qTaU3eloVK9HXEMwb0c MDsr1IqT8xB2IIhUlV1vL2CnDaqs39+svCS3HiHjonUkQ9gtXwIDAQABo4IE2zCC BNcwHQYDVR0OBBYEFH6dTVun6dWNyXStMeq5rPal6wwYMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvZjQwNzA0YTUtZDVmMy0z ZmUxLWI4ZmYtOGQwZmIzZGQ2ZDg3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMIIBowYIKwYBBQUHAQcBAf8EggGSMIIBjjCCAUEEAgABMIIB OQMEAhcfeAMEBBgXUAMEAjJMkAMEAjK4oAMEAjLB8AMEAjL0WAMEAjL7FAMEAECL QwMEAECLWwMEAULQzgMEBUOtwAMEAERVPAMEAERVegMEAURWigMEAURWygMEAEX8 JQMEBEX+AAMEAUZYHAMEAEZbtQMEAEZb0wMEAkcZwAMEBEfLQAMEBEfiAAMEBUfi gAMEB0kUgAMEBklsgAMEBklxwAMEBkm+wAMEBUnZoAMEAEpc/gMEAEpeWQMEAEpf awMEAEuSXwMEBEx9EAMEBkyMwAMEAmBDQAMEAmBF7AMEAmBJIAMEAmBUmAMEAmBY CAMEAmBerAMEAGBgYwMEAGBgzwMEAWByNgMEAmB8FAMEAGDQGwMFB6KXmQADBACt CscDBAKto+ADBAWuMmADBAauOMADBAauP8AwRwQCAAIwQQMHBCABBVgDYAMHACAB BVj+PAMGBCABBVkwAwcAIAEFWYKBAwcAIAEFWYaLAwUGJgEBAAMFBiYDIQADBQAm AzACMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBACEw9cusr50TN8DZA2DDjywZatJwDC+ctFWQei6SytbFcwVq B9YLnoegY53jfl6m+VuMwdH+MBwKijmMouZ0SQNDCj6NBEops/FtQdLE4vGMsK1k 9sZA+siC8ScQUxoboJDyY94EyuyyKyW1g6gH+FH+RW66qf83lKOybFjXUWy/I9ir n3GPRvG8GMlDlkeCaA6rRFD6rvsIE8RLcSc9wqMMa1D3TgtQXDNSfhXm7k4QEIcg g+OC6t/wOj2mk0lgI2LvupDdMKzBhuZTtoSYqb+sjN54nvpFuMH4Qym+28VdVlGe 5JUN35lX64JJKm24fsgStrSlA4F4XO2SvpmO0g4= -----END CERTIFICATE-----Generated at Sun Apr 27 10:34:29 2025 by rpki-client