$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa File: 3e233b44-911d-3c32-9600-9580640a3557.roa (raw, json) Hash identifier: pXViaiLlcGsLHcAtm3EL8Zz5zIH1UOxNZoB3ADavOcg= Subject key identifier: 04:C3:2A:D6:64:70:01:62:45:03:D3:83:FB:BF:8F:1E:0E:F5:86:E4 Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F4328584A07D53A613954E2908B1634CA Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa Signing time: Sat 31 May 2025 01:00:50 +0000 ROA not before: Sat 31 May 2025 01:00:50 +0000 ROA not after: Fri 29 Aug 2025 01:00:50 +0000 asID: 17378 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:07:d5:3a:61:39:54:e2:90:8b:16:34:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: May 31 01:00:50 2025 GMT Not After : Aug 29 01:00:50 2025 GMT Subject: CN=99795954-a4c1-404f-b909-69d4a5cf6292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:07:b6:1e:e3:ab:21:93:9b:1b:7c:b5:81:49: 1b:91:0b:af:1d:a7:c0:08:5f:60:f1:56:a5:49:4a: 41:22:e8:72:59:ca:54:d6:54:30:69:24:28:62:e3: ac:53:4f:0d:3b:ff:3c:f3:f3:79:47:67:53:21:ff: 47:7f:93:0c:d3:20:90:dc:0b:72:b5:46:31:be:db: a5:5a:0b:58:2d:81:16:17:2f:cd:e7:a2:43:ce:96: 9d:79:1b:47:08:e4:d2:51:25:22:05:b7:58:19:0c: a1:3c:be:63:fd:0e:7d:b4:32:fb:00:b7:fb:38:fc: d5:6d:2d:03:c2:73:2a:04:3a:7a:51:7a:7e:8b:f3: 4d:9b:b8:ea:73:3e:9c:65:41:25:bb:a3:17:7e:0e: ba:24:65:e7:5c:54:2c:4a:5f:c0:4c:cc:97:5c:83: e2:95:bd:20:35:14:94:41:02:6c:a8:c2:66:5a:81: 87:c9:32:30:6e:5e:86:94:ba:51:ea:80:33:41:3a: 75:2d:2b:43:b9:60:94:7d:f2:a1:a5:b6:6e:72:98: e7:37:de:df:58:32:c0:f2:62:86:09:77:cd:47:c0: e8:c4:93:a5:9d:92:51:2d:0d:f3:4a:33:4a:ae:d6: ce:7b:c1:04:1e:2f:c2:11:f4:e5:3c:0c:56:b9:80: 21:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C3:2A:D6:64:70:01:62:45:03:D3:83:FB:BF:8F:1E:0E:F5:86:E4 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 34:15:85:5b:19:58:23:4e:5c:6e:a4:b0:af:69:dc:18:81:34: 0d:af:11:17:0c:0a:06:1d:97:a2:af:0c:88:1a:9a:ad:8d:a5: 07:e5:6f:df:86:5a:ad:5b:28:2b:10:93:aa:56:35:a7:60:cc: 51:93:8f:3b:19:14:99:02:fa:df:94:34:68:2a:e8:44:59:51: 75:54:0d:1c:80:22:a7:88:83:6b:47:29:85:20:9a:3b:ca:8d: 84:ec:eb:ee:54:d3:07:ac:27:6d:da:64:3b:ac:6b:35:ba:14: 6a:e7:75:b1:19:5a:28:a9:ae:3f:72:8f:88:98:57:f9:e5:b3: 7b:6d:3d:b6:ff:a5:09:d1:2b:54:a9:cf:e9:fd:aa:b3:85:8e: 5d:73:c1:c5:e4:e6:92:b4:19:5f:9a:d9:0b:01:1b:b7:16:80: f6:6e:ed:2e:8a:63:f6:b1:70:da:69:2c:60:67:71:78:63:11: 14:d5:3b:6c:fa:76:2b:c1:77:32:33:64:7a:17:75:5e:df:2a: dc:f3:9f:f7:14:80:3f:46:a4:90:6b:c6:0d:65:3c:16:60:2d: 9b:c7:d2:26:6f:83:9a:d2:cc:02:d1:b8:5f:0f:d5:31:cd:50: 48:3d:ed:0d:6c:21:03:f6:4b:fe:99:c5:c7:63:f0:1e:5a:20: 95:7b:fe:26 -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWEoH1TphOVTikIsWNMowDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI1MDUzMTAxMDA1MFoXDTI1MDgyOTAxMDA1MFowLzEtMCsGA1UEAxMk OTk3OTU5NTQtYTRjMS00MDRmLWI5MDktNjlkNGE1Y2Y2MjkyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvge2HuOrIZObG3y1gUkbkQuvHafACF9g8Val SUpBIuhyWcpU1lQwaSQoYuOsU08NO/888/N5R2dTIf9Hf5MM0yCQ3AtytUYxvtul WgtYLYEWFy/N56JDzpadeRtHCOTSUSUiBbdYGQyhPL5j/Q59tDL7ALf7OPzVbS0D wnMqBDp6UXp+i/NNm7jqcz6cZUElu6MXfg66JGXnXFQsSl/ATMyXXIPilb0gNRSU QQJsqMJmWoGHyTIwbl6GlLpR6oAzQTp1LStDuWCUffKhpbZucpjnN97fWDLA8mKG CXfNR8DoxJOlnZJRLQ3zSjNKrtbOe8EEHi/CEfTlPAxWuYAhIQIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFATDKtZkcAFiRQPTg/u/jx4O9YbkMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvM2UyMzNiNDQtOTExZC0z YzMyLTk2MDAtOTU4MDY0MGEzNTU3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEANBWFWxlYI05cbqSwr2ncGIE0 Da8RFwwKBh2Xoq8MiBqarY2lB+Vv34ZarVsoKxCTqlY1p2DMUZOPOxkUmQL635Q0 aCroRFlRdVQNHIAip4iDa0cphSCaO8qNhOzr7lTTB6wnbdpkO6xrNboUaud1sRla KKmuP3KPiJhX+eWze209tv+lCdErVKnP6f2qs4WOXXPBxeTmkrQZX5rZCwEbtxaA 9m7tLopj9rFw2mksYGdxeGMRFNU7bPp2K8F3MjNkehd1Xt8q3POf9xSAP0akkGvG DWU8FmAtm8fSJm+DmtLMAtG4Xw/VMc1QSD3tDWwhA/ZL/pnFx2PwHloglXv+Jg== -----END CERTIFICATE-----Generated at Mon Jun 16 15:58:23 2025 by rpki-client