$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/53255963-e2d4-3ffe-b556-b0d01f4e388d.roa File: 53255963-e2d4-3ffe-b556-b0d01f4e388d.roa (raw, json) Hash identifier: AHBMwrsT3CEOz4SsdfwfTnosXF6pnt3FIj0c9yCcjyY= Subject key identifier: F7:B7:87:B0:61:D2:A6:4F:D8:5A:F8:C6:ED:05:4E:9E:30:58:A3:94 Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F432858499AF4879BB54DE6AD1A48D280 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/53255963-e2d4-3ffe-b556-b0d01f4e388d.roa Signing time: Tue 22 Apr 2025 01:00:47 +0000 ROA not before: Tue 22 Apr 2025 01:00:47 +0000 ROA not after: Mon 21 Jul 2025 01:00:47 +0000 asID: 394437 IP address blocks: 72.20.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:9a:f4:87:9b:b5:4d:e6:ad:1a:48:d2:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Apr 22 01:00:47 2025 GMT Not After : Jul 21 01:00:47 2025 GMT Subject: CN=3a75e668-974b-47bb-bdef-6c8d8f5261d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:56:a5:48:b0:40:8e:e6:87:2d:19:f6:c5:a4: b6:bb:33:c6:8a:21:d7:66:81:26:df:81:30:ef:73: 19:88:ea:16:10:45:8a:61:bc:16:cf:d4:91:ba:ce: df:57:58:0e:4a:dc:3b:a8:e3:2c:d3:06:43:2a:6d: 1a:67:52:66:34:01:40:70:05:a4:ec:98:22:f9:73: 32:34:0b:4a:93:2e:c3:13:09:e5:60:f0:97:f9:fa: dd:4c:72:f4:50:e6:b7:6a:10:77:f6:de:af:11:ea: 70:e0:70:09:39:5d:53:8f:e8:35:da:3e:b5:c5:5c: fe:ac:f1:ba:8c:b1:bf:a2:ae:14:c2:b7:7b:68:02: 53:67:04:18:21:9e:28:92:e1:42:67:a0:95:e1:5d: b8:0f:4a:26:c6:68:6a:36:87:76:77:79:ac:31:68: 4f:4c:6c:a7:2b:0e:e1:31:af:41:d2:c3:7f:c1:ce: 05:30:93:79:1b:72:a7:20:8e:d2:88:c9:03:d0:37: 36:a5:da:a5:11:ed:57:83:1a:4f:9a:06:d7:37:7a: f7:e8:49:86:bd:80:17:5d:c6:7c:02:43:60:b4:52: 44:9c:af:0a:a7:f3:60:40:fa:22:a3:01:79:5f:c3: 25:81:28:de:2f:2a:a5:c2:3c:75:28:06:57:74:8c: d7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B7:87:B0:61:D2:A6:4F:D8:5A:F8:C6:ED:05:4E:9E:30:58:A3:94 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/53255963-e2d4-3ffe-b556-b0d01f4e388d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 72.20.158.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 84:8f:18:c8:bb:7a:52:f7:6c:77:c2:c1:17:25:a0:f3:95:6d: 07:29:73:15:63:71:f1:b1:8a:08:89:26:15:c8:d9:9b:e4:17: 5b:a9:c5:46:ae:f7:0b:f4:16:94:18:26:5a:32:cf:37:68:e4: 7f:e0:c1:a1:b5:38:e1:86:9a:19:0c:ec:0a:4e:e1:1e:d4:71: 29:99:54:88:71:d3:08:a2:42:35:0f:25:45:0f:6c:5f:55:01: c0:94:b1:cf:a8:7d:68:d6:0f:2c:b5:4b:ea:da:5a:fe:8b:fd: 14:29:f0:20:be:68:38:6e:86:59:5a:25:76:b6:99:21:e8:92: bd:04:3f:b1:86:32:01:9a:40:f2:54:89:24:ed:12:fc:1d:66: ca:4e:3b:fc:99:bf:9c:80:11:fa:42:9f:5d:de:e8:ea:a9:73: ea:b0:12:4f:5d:74:c2:ce:48:04:a4:eb:40:d1:06:07:1e:39: e3:3d:03:02:41:67:07:0c:75:94:4e:36:0e:53:1a:29:b5:f3: 36:30:74:f8:af:03:f3:29:f7:70:9f:c4:33:e6:39:81:4b:19: b2:c8:2b:ea:c3:a4:6d:7d:02:05:56:4f:1c:6f:d8:ed:6d:f7: ec:07:5b:35:59:f3:4e:aa:4b:a8:2b:aa:a5:bd:23:73:34:70: bc:2c:31:2b -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEma9IebtU3mrRpI0oAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI1MDQyMjAxMDA0N1oXDTI1MDcyMTAxMDA0N1owLzEtMCsGA1UEAxMk M2E3NWU2NjgtOTc0Yi00N2JiLWJkZWYtNmM4ZDhmNTI2MWQ4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFalSLBAjuaHLRn2xaS2uzPGiiHXZoEm34Ew 73MZiOoWEEWKYbwWz9SRus7fV1gOStw7qOMs0wZDKm0aZ1JmNAFAcAWk7Jgi+XMy NAtKky7DEwnlYPCX+frdTHL0UOa3ahB39t6vEepw4HAJOV1Tj+g12j61xVz+rPG6 jLG/oq4Uwrd7aAJTZwQYIZ4okuFCZ6CV4V24D0omxmhqNod2d3msMWhPTGynKw7h Ma9B0sN/wc4FMJN5G3KnII7SiMkD0Dc2pdqlEe1XgxpPmgbXN3r36EmGvYAXXcZ8 AkNgtFJEnK8Kp/NgQPoiowF5X8MlgSjeLyqlwjx1KAZXdIzXMQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFPe3h7Bh0qZP2Fr4xu0FTp4wWKOUMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvNTMyNTU5NjMtZTJkNC0z ZmZlLWI1NTYtYjBkMDFmNGUzODhkLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSeMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAISPGMi7elL3bHfCwRcloPOVbQcpcxVjcfGxigiJJhXI2ZvkF1upxUau 9wv0FpQYJloyzzdo5H/gwaG1OOGGmhkM7ApO4R7UcSmZVIhx0wiiQjUPJUUPbF9V AcCUsc+ofWjWDyy1S+raWv6L/RQp8CC+aDhuhllaJXa2mSHokr0EP7GGMgGaQPJU iSTtEvwdZspOO/yZv5yAEfpCn13e6Oqpc+qwEk9ddMLOSASk60DRBgceOeM9AwJB ZwcMdZRONg5TGim18zYwdPivA/Mp93CfxDPmOYFLGbLIK+rDpG19AgVWTxxv2O1t 9+wHWzVZ806qS6grqqW9I3M0cLwsMSs= -----END CERTIFICATE-----Generated at Tue Apr 29 14:02:08 2025 by rpki-client