$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa File: a3af340a-151f-3e65-b202-a86ab76e7ddc.roa (raw, json) Hash identifier: D9dGJNB1Cc7s0e/c1BwHpOVIr2x3fgKjICAa96P+URA= Subject key identifier: 31:E9:9D:72:49:DC:5A:A8:9D:D0:A9:C4:F1:E0:08:B0:8C:5D:BC:92 Certificate issuer: /CN=2dbf604f-24b0-426e-809d-e65b08be5d50 Certificate serial: 010D0C9F43285849AA4F67B743B90CBA402E8B00 Authority key identifier: 9F:0B:96:E4:B5:88:59:9E:EE:BA:41:79:91:C0:93:C9:D1:C3:F5:42 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa Signing time: Sun 27 Apr 2025 13:01:01 +0000 ROA not before: Sun 27 Apr 2025 13:01:01 +0000 ROA not after: Sat 26 Jul 2025 13:01:01 +0000 asID: 16433 IP address blocks: 170.176.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:aa:4f:67:b7:43:b9:0c:ba:40:2e:8b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dbf604f-24b0-426e-809d-e65b08be5d50 Validity Not Before: Apr 27 13:01:01 2025 GMT Not After : Jul 26 13:01:01 2025 GMT Subject: CN=ecdf211c-bf75-4a1a-af2e-f05aa18b80c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:78:59:0f:e0:dd:51:21:42:92:9f:69:64:97: 1f:04:8c:bb:9f:bd:38:e1:a9:2a:21:57:9a:aa:13: d4:5d:3f:c9:45:c2:49:37:40:21:a9:21:79:60:19: 0a:94:c5:80:9b:8f:7e:b1:1f:90:7e:f4:52:43:aa: db:69:b0:77:53:24:8e:45:91:db:d3:f5:99:00:ac: 5a:47:c9:3f:22:69:9f:74:9f:e4:09:12:d6:e8:c2: 60:08:ad:9e:b5:72:16:38:18:8d:9c:34:8f:2d:16: 80:d6:4f:aa:e6:d1:92:16:5a:c7:0f:04:09:46:48: 13:e3:37:8a:be:61:ac:bb:7f:af:eb:dc:21:96:08: aa:0a:b7:d5:1a:c8:e7:90:c4:1a:a2:42:bf:25:d0: c1:2b:9a:7c:98:76:e3:95:56:3f:f5:57:6b:cd:17: ac:b8:54:3b:df:0f:ef:76:5f:c1:8c:22:70:28:88: a5:14:ee:38:2c:ab:48:27:83:f8:95:e7:aa:39:12: be:e6:02:35:f7:38:4d:5b:cc:0f:32:2d:2f:68:70: a5:af:ab:16:01:45:2f:d3:5c:60:99:b3:6a:93:f2: 18:55:a0:2a:51:d0:bd:bc:b8:90:ac:6a:b0:c3:89: 13:47:ae:62:43:5b:45:2b:18:80:1d:59:d5:1a:70: 94:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:E9:9D:72:49:DC:5A:A8:9D:D0:A9:C4:F1:E0:08:B0:8C:5D:BC:92 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/a3af340a-151f-3e65-b202-a86ab76e7ddc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50/2dbf604f-24b0-426e-809d-e65b08be5d50.crl X509v3 Authority Key Identifier: keyid:9F:0B:96:E4:B5:88:59:9E:EE:BA:41:79:91:C0:93:C9:D1:C3:F5:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2dbf604f-24b0-426e-809d-e65b08be5d50.cer sbgp-ipAddrBlock: critical IPv4: 170.176.248.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 75:b4:d8:ae:3b:9e:d3:ea:e3:f5:2b:18:d2:10:f9:a0:b5:db: 6c:21:d1:8a:b1:92:54:54:88:38:d9:83:16:97:36:76:10:8d: 8a:c7:95:62:68:d8:90:12:bd:94:e9:63:63:66:38:71:f6:17: a6:d6:06:58:90:2c:e0:5b:ed:a3:7d:59:98:50:4e:86:df:63: 8b:d4:d0:52:41:14:76:55:48:63:60:c4:af:00:46:36:50:df: a1:93:a7:6d:2b:cc:61:9b:2b:a5:d2:21:20:57:af:1c:02:6d: 75:ff:4d:89:cb:04:4e:11:0f:d5:ff:62:d7:11:14:f1:af:09: cd:a0:8e:a1:0f:51:ac:0b:ce:f6:bb:e2:dd:58:1d:94:1d:e5: 8d:b2:15:c9:55:43:d4:24:97:a2:2f:14:28:40:da:b3:2f:9f: b5:de:d2:c9:05:0f:9d:14:b4:2e:96:ff:f6:93:46:9c:2b:fc: f5:92:98:a3:8f:fc:bd:f4:ec:fe:3c:12:42:40:d0:4d:d2:0f: 77:ab:ad:f6:e6:9d:23:2a:d0:1b:4f:e9:82:d1:c4:bc:48:af: 19:3c:d3:d3:c2:2e:2d:2c:24:77:ad:40:43:cf:02:f6:7d:b7: 68:36:78:d5:58:68:fa:7e:3b:94:6c:e8:75:9d:c0:42:2a:39: 80:6f:93:e2 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEmqT2e3Q7kMukAuiwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmRiZjYwNGYtMjRiMC00MjZlLTgwOWQtZTY1YjA4YmU1 ZDUwMB4XDTI1MDQyNzEzMDEwMVoXDTI1MDcyNjEzMDEwMVowLzEtMCsGA1UEAxMk ZWNkZjIxMWMtYmY3NS00YTFhLWFmMmUtZjA1YWExOGI4MGMxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhHhZD+DdUSFCkp9pZJcfBIy7n7044akqIVea qhPUXT/JRcJJN0AhqSF5YBkKlMWAm49+sR+QfvRSQ6rbabB3UySORZHb0/WZAKxa R8k/ImmfdJ/kCRLW6MJgCK2etXIWOBiNnDSPLRaA1k+q5tGSFlrHDwQJRkgT4zeK vmGsu3+v69whlgiqCrfVGsjnkMQaokK/JdDBK5p8mHbjlVY/9VdrzResuFQ73w/v dl/BjCJwKIilFO44LKtIJ4P4leeqORK+5gI19zhNW8wPMi0vaHClr6sWAUUv01xg mbNqk/IYVaAqUdC9vLiQrGqww4kTR65iQ1tFKxiAHVnVGnCUpwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDHpnXJJ3FqondCpxPHgCLCMXbySMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8yZGJm NjA0Zi0yNGIwLTQyNmUtODA5ZC1lNjViMDhiZTVkNTAvYTNhZjM0MGEtMTUxZi0z ZTY1LWIyMDItYTg2YWI3NmU3ZGRjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMmRiZjYwNGYtMjRiMC00MjZlLTgw OWQtZTY1YjA4YmU1ZDUwLzJkYmY2MDRmLTI0YjAtNDI2ZS04MDlkLWU2NWIwOGJl NWQ1MC5jcmwwHwYDVR0jBBgwFoAUnwuW5LWIWZ7uukF5kcCTydHD9UIwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8yZGJmNjA0Zi0yNGIwLTQyNmUtODA5ZC1lNjVi MDhiZTVkNTAuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDqrD4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHW02K47ntPq4/UrGNIQ+aC122wh0YqxklRUiDjZgxaXNnYQjYrHlWJo 2JASvZTpY2NmOHH2F6bWBliQLOBb7aN9WZhQTobfY4vU0FJBFHZVSGNgxK8ARjZQ 36GTp20rzGGbK6XSISBXrxwCbXX/TYnLBE4RD9X/YtcRFPGvCc2gjqEPUawLzva7 4t1YHZQd5Y2yFclVQ9Qkl6IvFChA2rMvn7Xe0skFD50UtC6W//aTRpwr/PWSmKOP /L307P48EkJA0E3SD3errfbmnSMq0BtP6YLRxLxIrxk809PCLi0sJHetQEPPAvZ9 t2g2eNVYaPp+O5Rs6HWdwEIqOYBvk+I= -----END CERTIFICATE-----Generated at Sun Jun 15 15:24:17 2025 by rpki-client