$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa File: 14a619d0-4751-3dd0-8357-da775049c7ff.roa (raw, json) Hash identifier: hBwJoaVldedfttSC9KYMmMjAhCkQeVrLSvLbEcur+FA= Subject key identifier: 1D:A3:82:A9:5E:8C:0B:B2:3A:2E:1C:F3:7F:A1:AA:77:A5:4A:0D:AA Certificate issuer: /CN=41e38da5-de4f-400d-83ab-65ee2e2c2d24 Certificate serial: 010D0C9F43285849A089CE5615BBE9C60EE65C00 Authority key identifier: BF:79:16:BE:B7:8F:69:FB:FD:63:A6:BF:89:19:7D:9E:A8:F2:CA:B7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa Signing time: Thu 24 Apr 2025 01:00:47 +0000 ROA not before: Thu 24 Apr 2025 01:00:47 +0000 ROA not after: Wed 23 Jul 2025 01:00:47 +0000 asID: 26554 IP address blocks: 65.23.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 29 Apr 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:a0:89:ce:56:15:bb:e9:c6:0e:e6:5c:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41e38da5-de4f-400d-83ab-65ee2e2c2d24 Validity Not Before: Apr 24 01:00:47 2025 GMT Not After : Jul 23 01:00:47 2025 GMT Subject: CN=ec7602d9-5822-4f4c-8496-0f4cd347fe0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:19:51:01:79:3a:17:92:92:d1:7d:0a:6f:5c: 3b:c9:a5:ea:a2:2d:3e:85:d8:d6:f1:f7:db:b2:8d: a8:70:8d:d3:27:57:19:04:3b:8c:0f:24:50:10:0f: 5e:a2:a4:49:e7:f6:ce:d9:97:8b:9b:5b:a4:41:6a: bc:81:6a:f9:d3:b8:3d:65:f8:74:be:8a:6d:b1:1a: c4:8b:b6:c0:02:bc:a2:2c:03:02:9b:f1:e8:2c:f4: f1:37:dd:90:4a:43:65:0e:9c:fc:1d:76:5b:66:2a: f3:3e:6e:a7:8e:7a:7c:70:10:0d:df:99:6c:2a:49: f1:f4:89:da:29:2b:59:6d:5b:1d:4e:d6:4b:32:18: 88:0f:34:c3:98:06:8a:89:10:c4:77:55:df:e3:49: 4c:54:43:38:f9:c1:17:69:7d:4e:f7:d6:39:88:e2: 48:24:40:49:f3:ec:1b:b7:e4:88:50:72:b0:08:fb: 51:a6:47:d0:59:69:81:c6:46:6a:05:6c:f8:73:b5: 5d:25:92:f5:e5:cf:a2:ec:d2:c0:9f:a4:35:4d:ad: 15:21:ac:7d:e2:7d:13:04:7f:d7:42:6b:85:c5:f6: bd:d7:7c:f6:62:fd:2a:16:d9:b9:dc:85:5e:a9:0a: 40:9a:56:18:ce:cb:24:f6:b7:8f:46:06:7a:53:a3: 8e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A3:82:A9:5E:8C:0B:B2:3A:2E:1C:F3:7F:A1:AA:77:A5:4A:0D:AA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/14a619d0-4751-3dd0-8357-da775049c7ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24/41e38da5-de4f-400d-83ab-65ee2e2c2d24.crl X509v3 Authority Key Identifier: keyid:BF:79:16:BE:B7:8F:69:FB:FD:63:A6:BF:89:19:7D:9E:A8:F2:CA:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/41e38da5-de4f-400d-83ab-65ee2e2c2d24.cer sbgp-ipAddrBlock: critical IPv4: 65.23.88.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 58:54:ca:7f:dd:f7:1a:09:b3:48:c0:2b:09:10:df:8d:6f:80: c4:61:95:4e:ec:f6:dd:b8:d2:87:a5:cb:10:a0:26:a3:3a:d5: d6:41:c6:56:8c:d3:af:24:3e:16:bb:51:34:ca:69:42:ee:89: 45:66:e7:43:78:c2:b9:70:ef:61:de:43:e3:01:cd:e5:a9:02: ee:d6:5e:4e:5a:18:1b:68:db:3b:51:44:23:ea:dc:f1:55:f0: 1c:8e:83:cd:57:17:ab:6c:0f:bd:d6:fa:36:2d:b7:41:00:b0: f7:f8:28:c7:21:23:2d:f1:c1:1b:ce:84:8d:7d:f8:26:51:a2: 53:38:66:8b:41:35:b9:04:70:fd:aa:fd:36:e1:c0:e1:8c:5c: b2:9c:56:63:69:61:11:00:c7:a6:38:a4:4d:b3:43:25:d8:df: 18:24:78:f6:8e:a9:92:5e:4a:14:9b:9d:10:ca:af:b3:01:9d: 43:cc:5a:3c:57:59:78:82:03:a6:58:36:6b:ee:27:60:77:f3: 3e:0a:1b:23:06:06:fd:61:c3:af:6a:00:74:e4:ca:21:23:97: 05:b7:dd:dd:ef:22:9e:62:91:68:33:52:6b:dd:6e:3f:17:ef: 42:91:52:e9:98:01:53:01:b4:f8:24:64:05:56:d4:c4:f7:12: 6e:73:f4:25 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEmgic5WFbvpxg7mXAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDFlMzhkYTUtZGU0Zi00MDBkLTgzYWItNjVlZTJlMmMy ZDI0MB4XDTI1MDQyNDAxMDA0N1oXDTI1MDcyMzAxMDA0N1owLzEtMCsGA1UEAxMk ZWM3NjAyZDktNTgyMi00ZjRjLTg0OTYtMGY0Y2QzNDdmZTBlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBlRAXk6F5KS0X0Kb1w7yaXqoi0+hdjW8ffb so2ocI3TJ1cZBDuMDyRQEA9eoqRJ5/bO2ZeLm1ukQWq8gWr507g9Zfh0voptsRrE i7bAAryiLAMCm/HoLPTxN92QSkNlDpz8HXZbZirzPm6njnp8cBAN35lsKknx9Ina KStZbVsdTtZLMhiIDzTDmAaKiRDEd1Xf40lMVEM4+cEXaX1O99Y5iOJIJEBJ8+wb t+SIUHKwCPtRpkfQWWmBxkZqBWz4c7VdJZL15c+i7NLAn6Q1Ta0VIax94n0TBH/X QmuFxfa913z2Yv0qFtm53IVeqQpAmlYYzssk9rePRgZ6U6OOvwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFB2jgqlejAuyOi4c83+hqnelSg2qMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MWUz OGRhNS1kZTRmLTQwMGQtODNhYi02NWVlMmUyYzJkMjQvMTRhNjE5ZDAtNDc1MS0z ZGQwLTgzNTctZGE3NzUwNDljN2ZmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDFlMzhkYTUtZGU0Zi00MDBkLTgz YWItNjVlZTJlMmMyZDI0LzQxZTM4ZGE1LWRlNGYtNDAwZC04M2FiLTY1ZWUyZTJj MmQyNC5jcmwwHwYDVR0jBBgwFoAUv3kWvrePafv9Y6a/iRl9nqjyyrcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80MWUzOGRhNS1kZTRmLTQwMGQtODNhYi02NWVl MmUyYzJkMjQuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAQRdYMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFhUyn/d9xoJs0jAKwkQ341vgMRhlU7s9t240oelyxCgJqM61dZBxlaM 068kPha7UTTKaULuiUVm50N4wrlw72HeQ+MBzeWpAu7WXk5aGBto2ztRRCPq3PFV 8ByOg81XF6tsD73W+jYtt0EAsPf4KMchIy3xwRvOhI19+CZRolM4ZotBNbkEcP2q /TbhwOGMXLKcVmNpYREAx6Y4pE2zQyXY3xgkePaOqZJeShSbnRDKr7MBnUPMWjxX WXiCA6ZYNmvuJ2B38z4KGyMGBv1hw69qAHTkyiEjlwW33d3vIp5ikWgzUmvdbj8X 70KRUumYAVMBtPgkZAVW1MT3Em5z9CU= -----END CERTIFICATE-----Generated at Sun Apr 27 22:13:05 2025 by rpki-client