$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/21bbc83a-8179-3ba4-a861-9804353243fc.roa File: 21bbc83a-8179-3ba4-a861-9804353243fc.roa (raw, json) Hash identifier: d4gnehU2qsNAmMoizQr67xb+WPc3UsoPxwofw7BuPmY= Subject key identifier: 95:28:54:E4:FA:D8:EA:F3:9D:2A:B7:50:49:C0:72:A1:5C:F1:9C:47 Certificate issuer: /CN=66dea2a5-837d-46d8-8f8e-9447ece20c09 Certificate serial: 010D0C9F43285849849EF62F72D9B541CEC1D98C Authority key identifier: C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/21bbc83a-8179-3ba4-a861-9804353243fc.roa Signing time: Mon 14 Apr 2025 01:00:43 +0000 ROA not before: Mon 14 Apr 2025 01:00:43 +0000 ROA not after: Sun 13 Jul 2025 01:00:43 +0000 asID: 11798 IP address blocks: 166.1.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 08:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:84:9e:f6:2f:72:d9:b5:41:ce:c1:d9:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66dea2a5-837d-46d8-8f8e-9447ece20c09 Validity Not Before: Apr 14 01:00:43 2025 GMT Not After : Jul 13 01:00:43 2025 GMT Subject: CN=02f144f2-48be-4755-8102-398258a52ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ac:05:98:40:4d:5d:a5:35:c6:a9:bf:c0:55: ed:1e:85:64:19:04:fe:0f:40:76:70:fc:3e:68:b5: 0f:59:4e:80:b4:b6:77:fa:9c:c4:c0:c2:d3:2d:38: e1:e5:aa:f2:af:c4:e5:f8:ce:f0:92:04:94:a3:85: 84:46:fa:f7:b4:73:bd:94:0c:1a:69:9f:a3:cd:7e: 4c:ce:46:de:84:f8:df:f9:d2:2d:c8:66:3d:db:89: d6:bd:f1:a2:55:82:6c:1e:d7:3d:3c:0a:1f:46:d6: 46:36:8a:66:3c:c9:42:e2:d2:40:c5:31:94:fe:1d: 95:6b:88:1c:fb:08:a9:0f:78:16:a5:98:2f:fa:77: 75:d9:92:4e:a9:bd:3f:a9:f0:6e:5d:16:29:af:4b: 00:5b:c1:2e:07:37:ed:82:49:ec:8d:a7:1a:61:7c: 4d:f4:68:6e:df:a4:3c:c6:46:31:87:b8:32:25:ad: 09:a6:e7:76:53:d2:8e:69:9c:bb:1b:0e:6d:22:60: 13:fa:6a:41:cc:5c:53:27:08:ac:2b:10:f1:2f:98: 7d:17:3d:af:f7:1c:5b:71:db:3a:51:37:a4:3c:12: 07:bc:0c:8d:10:a0:97:1e:52:c7:91:d7:b3:1c:a9: 6c:fa:3e:0e:df:a6:79:e1:1c:90:fd:28:71:40:bf: 75:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:28:54:E4:FA:D8:EA:F3:9D:2A:B7:50:49:C0:72:A1:5C:F1:9C:47 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/21bbc83a-8179-3ba4-a861-9804353243fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.crl X509v3 Authority Key Identifier: keyid:C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer sbgp-ipAddrBlock: critical IPv4: 166.1.144.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 58:40:45:1b:bb:e5:c1:b9:67:31:ea:97:4b:d6:4f:b0:e3:40: 3d:f6:e3:66:4b:38:1d:e7:7c:a1:18:b2:55:12:75:3a:fc:41: d7:b2:cb:c0:47:66:ab:32:35:31:1d:53:ea:1c:0f:f7:25:8d: a8:ce:40:90:eb:22:3c:73:04:86:c1:6a:ab:b8:5f:43:e1:a9: 69:b9:83:67:89:a4:a1:75:92:b9:05:fc:fd:c5:ab:73:57:07: 9a:e1:5a:26:d7:6c:ec:cf:ac:10:3a:8a:cf:53:d4:ff:3e:3f: 6e:cd:d0:18:a1:de:08:c8:14:bb:fa:83:bc:9f:9f:3a:39:30: a8:8e:30:cc:01:7e:ee:77:af:e2:43:7e:0c:60:22:89:49:a1: db:c2:7b:5c:84:ef:03:ae:43:5d:e6:97:56:82:fb:34:6b:6b: f0:bb:f6:24:cf:64:3a:b6:9c:ee:53:3f:52:59:d1:63:c1:c3: bb:bb:28:36:ab:56:31:ce:89:39:cb:13:79:9e:56:56:16:4c: fb:4a:a7:04:1a:b9:c9:27:35:16:44:2a:99:ce:6f:cf:4b:1a: 2b:4c:bc:49:d6:06:56:d8:8c:01:b2:31:62:18:c6:05:56:d0: 51:1a:ba:91:9a:3f:a0:2b:4d:0c:5b:46:92:78:28:5f:f3:66: 16:e5:2b:a8 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEmEnvYvctm1Qc7B2YwwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjZkZWEyYTUtODM3ZC00NmQ4LThmOGUtOTQ0N2VjZTIw YzA5MB4XDTI1MDQxNDAxMDA0M1oXDTI1MDcxMzAxMDA0M1owLzEtMCsGA1UEAxMk MDJmMTQ0ZjItNDhiZS00NzU1LTgxMDItMzk4MjU4YTUyYWU0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwawFmEBNXaU1xqm/wFXtHoVkGQT+D0B2cPw+ aLUPWU6AtLZ3+pzEwMLTLTjh5aryr8Tl+M7wkgSUo4WERvr3tHO9lAwaaZ+jzX5M zkbehPjf+dItyGY924nWvfGiVYJsHtc9PAofRtZGNopmPMlC4tJAxTGU/h2Va4gc +wipD3gWpZgv+nd12ZJOqb0/qfBuXRYpr0sAW8EuBzftgknsjacaYXxN9Ghu36Q8 xkYxh7gyJa0Jpud2U9KOaZy7Gw5tImAT+mpBzFxTJwisKxDxL5h9Fz2v9xxbcds6 UTekPBIHvAyNEKCXHlLHkdezHKls+j4O36Z54RyQ/ShxQL91uQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJUoVOT62OrznSq3UEnAcqFc8ZxHMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi82NmRl YTJhNS04MzdkLTQ2ZDgtOGY4ZS05NDQ3ZWNlMjBjMDkvMjFiYmM4M2EtODE3OS0z YmE0LWE4NjEtOTgwNDM1MzI0M2ZjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNjZkZWEyYTUtODM3ZC00NmQ4LThm OGUtOTQ0N2VjZTIwYzA5LzY2ZGVhMmE1LTgzN2QtNDZkOC04ZjhlLTk0NDdlY2Uy MGMwOS5jcmwwHwYDVR0jBBgwFoAUw4ati/QZSzWUJJuQup2AEcIIcckwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi82NmRlYTJhNS04MzdkLTQ2ZDgtOGY4ZS05NDQ3 ZWNlMjBjMDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQApgGQMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFhARRu75cG5ZzHql0vWT7DjQD3242ZLOB3nfKEYslUSdTr8Qdeyy8BH ZqsyNTEdU+ocD/cljajOQJDrIjxzBIbBaqu4X0PhqWm5g2eJpKF1krkF/P3Fq3NX B5rhWibXbOzPrBA6is9T1P8+P27N0Bih3gjIFLv6g7yfnzo5MKiOMMwBfu53r+JD fgxgIolJodvCe1yE7wOuQ13ml1aC+zRra/C79iTPZDq2nO5TP1JZ0WPBw7u7KDar VjHOiTnLE3meVlYWTPtKpwQaucknNRZEKpnOb89LGitMvEnWBlbYjAGyMWIYxgVW 0FEaupGaP6ArTQxbRpJ4KF/zZhblK6g= -----END CERTIFICATE-----Generated at Sun Apr 27 04:07:37 2025 by rpki-client