$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb/43d013ec-a6c3-3388-8d14-0791322dd8c0.roa File: 43d013ec-a6c3-3388-8d14-0791322dd8c0.roa (raw, json) Hash identifier: NTnjiDuH6B9f9xePsz6sYVslhipz9Q48BjTZ7iMiB5Y= Subject key identifier: CA:89:A3:0A:8F:4A:47:DD:BE:F1:D3:48:E2:66:B6:09:53:28:CA:FA Certificate issuer: /CN=04c216c1-5924-4a66-9346-a1f215800ceb Certificate serial: 010D0C9F43285849912F2B9B4A4D3674908A4580 Authority key identifier: 98:B8:4C:6C:DD:3D:9B:0A:D7:06:98:7D:61:74:95:AB:15:54:04:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb/43d013ec-a6c3-3388-8d14-0791322dd8c0.roa Signing time: Fri 18 Apr 2025 13:00:59 +0000 ROA not before: Fri 18 Apr 2025 13:00:59 +0000 ROA not after: Thu 17 Jul 2025 13:00:59 +0000 asID: 399889 IP address blocks: 2602:fc54::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb/04c216c1-5924-4a66-9346-a1f215800ceb.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb/04c216c1-5924-4a66-9346-a1f215800ceb.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 30 Apr 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:91:2f:2b:9b:4a:4d:36:74:90:8a:45:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04c216c1-5924-4a66-9346-a1f215800ceb Validity Not Before: Apr 18 13:00:59 2025 GMT Not After : Jul 17 13:00:59 2025 GMT Subject: CN=2d405e79-d9cd-4832-93cd-af18034c5526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f4:25:3a:6d:e6:e3:97:d8:11:76:e1:29:35: 77:ca:9b:2a:49:7a:04:76:44:5d:ed:1f:db:6d:48: 47:9c:ab:23:ba:dd:2d:b4:41:ce:5c:f5:d4:39:02: dd:9c:38:37:2f:bf:5d:5e:78:02:9f:f9:3e:be:6b: 8e:ef:ca:d5:cb:1c:1b:5d:d1:05:c1:c0:f2:02:c7: bb:63:b2:01:86:a0:e0:eb:41:1e:bc:99:43:eb:9d: d5:30:ca:e2:2d:b3:92:e6:0f:94:9f:51:49:4a:58: a1:c2:85:74:ab:52:82:fb:9f:f5:b3:94:be:b4:29: 48:93:da:0f:50:39:09:4e:f5:7e:72:e3:12:73:5d: 7b:93:18:47:ac:22:cf:e0:0d:01:b9:6b:d7:ad:f0: 2d:a5:47:83:d9:5f:5d:06:3e:b7:7d:de:2c:64:fd: 0c:4e:12:e3:21:48:db:8a:8a:76:5e:67:8f:ff:7d: 4a:bd:16:8a:b9:65:92:b6:f3:a0:b7:1a:a1:be:e9: 07:f9:35:71:6f:94:d5:73:36:c7:65:f8:d4:36:35: ef:d6:17:c5:04:61:4e:05:a1:1c:60:3a:34:f7:56: f0:70:77:53:0a:d9:c5:39:05:99:c5:fb:17:93:1b: 86:dd:67:67:40:f3:a3:c8:3f:bc:8c:28:55:fd:92: 47:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:89:A3:0A:8F:4A:47:DD:BE:F1:D3:48:E2:66:B6:09:53:28:CA:FA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb/43d013ec-a6c3-3388-8d14-0791322dd8c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb/04c216c1-5924-4a66-9346-a1f215800ceb.crl X509v3 Authority Key Identifier: keyid:98:B8:4C:6C:DD:3D:9B:0A:D7:06:98:7D:61:74:95:AB:15:54:04:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/04c216c1-5924-4a66-9346-a1f215800ceb.cer sbgp-ipAddrBlock: critical IPv6: 2602:fc54::/36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 63:37:dc:27:ad:47:e3:e0:5c:d2:a8:4c:13:39:c8:aa:f6:77: 34:de:db:a0:b2:27:54:0e:24:b3:ce:0f:02:15:bd:3e:97:31: 12:b4:76:df:27:17:8e:b6:bb:88:ff:15:12:64:46:c9:be:fd: f1:19:6e:e8:99:8a:4c:07:23:76:6c:8b:12:d4:23:1a:d0:27: 3f:03:70:73:e3:fc:5b:bd:dc:de:74:58:a9:65:73:94:bb:e0: 29:56:ec:1b:3e:9c:38:02:da:fd:a8:fa:25:84:73:bd:e4:42: d4:27:65:40:46:73:8d:85:1d:7a:12:d6:06:38:94:5b:d8:ff: 25:b4:f1:31:29:28:03:a5:5a:2c:ea:06:4f:60:15:10:3d:40: fe:70:53:13:5d:89:53:db:04:bc:de:3b:1a:a2:a7:b3:e9:52: d5:9c:f8:02:5d:29:65:68:47:40:e0:d3:24:e5:7f:3c:86:8c: c7:85:f8:fe:f2:d7:b4:4f:ed:94:1b:e8:3a:a6:f5:0e:d8:47: 4f:89:af:ee:fc:eb:de:cf:21:42:02:96:dd:a5:5b:e6:5f:a8: fa:2b:0c:c7:e3:e2:60:71:4d:5e:3e:c8:28:87:22:63:79:93: 84:96:a0:5c:09:73:ef:0d:e3:70:89:d3:9f:da:80:9b:f2:7e: 79:7a:a1:da -----BEGIN CERTIFICATE----- MIIGRTCCBS2gAwIBAgIUAQ0Mn0MoWEmRLyubSk02dJCKRYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMDRjMjE2YzEtNTkyNC00YTY2LTkzNDYtYTFmMjE1ODAw Y2ViMB4XDTI1MDQxODEzMDA1OVoXDTI1MDcxNzEzMDA1OVowLzEtMCsGA1UEAxMk MmQ0MDVlNzktZDljZC00ODMyLTkzY2QtYWYxODAzNGM1NTI2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovQlOm3m45fYEXbhKTV3ypsqSXoEdkRd7R/b bUhHnKsjut0ttEHOXPXUOQLdnDg3L79dXngCn/k+vmuO78rVyxwbXdEFwcDyAse7 Y7IBhqDg60EevJlD653VMMriLbOS5g+Un1FJSlihwoV0q1KC+5/1s5S+tClIk9oP UDkJTvV+cuMSc117kxhHrCLP4A0BuWvXrfAtpUeD2V9dBj63fd4sZP0MThLjIUjb iop2XmeP/31KvRaKuWWStvOgtxqhvukH+TVxb5TVczbHZfjUNjXv1hfFBGFOBaEc YDo091bwcHdTCtnFOQWZxfsXkxuG3WdnQPOjyD+8jChV/ZJHuwIDAQABo4IDVzCC A1MwHQYDVR0OBBYEFMqJowqPSkfdvvHTSOJmtglTKMr6MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8wNGMy MTZjMS01OTI0LTRhNjYtOTM0Ni1hMWYyMTU4MDBjZWIvNDNkMDEzZWMtYTZjMy0z Mzg4LThkMTQtMDc5MTMyMmRkOGMwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMDRjMjE2YzEtNTkyNC00YTY2LTkz NDYtYTFmMjE1ODAwY2ViLzA0YzIxNmMxLTU5MjQtNGE2Ni05MzQ2LWExZjIxNTgw MGNlYi5jcmwwHwYDVR0jBBgwFoAUmLhMbN09mwrXBph9YXSVqxVUBDAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8wNGMyMTZjMS01OTI0LTRhNjYtOTM0Ni1hMWYy MTU4MDBjZWIuY2VyMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJgL8VAAw VAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczov L3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0B AQsFAAOCAQEAYzfcJ61H4+Bc0qhMEznIqvZ3NN7boLInVA4ks84PAhW9PpcxErR2 3ycXjra7iP8VEmRGyb798Rlu6JmKTAcjdmyLEtQjGtAnPwNwc+P8W73c3nRYqWVz lLvgKVbsGz6cOALa/aj6JYRzveRC1CdlQEZzjYUdehLWBjiUW9j/JbTxMSkoA6Va LOoGT2AVED1A/nBTE12JU9sEvN47GqKns+lS1Zz4Al0pZWhHQODTJOV/PIaMx4X4 /vLXtE/tlBvoOqb1DthHT4mv7vzr3s8hQgKW3aVb5l+o+isMx+PiYHFNXj7IKIci Y3mThJagXAlz7w3jcInTn9qAm/J+eXqh2g== -----END CERTIFICATE-----Generated at Mon Apr 28 20:01:57 2025 by rpki-client