$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa File: d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa (raw, json) Hash identifier: YZRr3ScRHZVHV5iQkWgF1uWrjaSJViKZ5hsCZuLCRlU= Subject key identifier: B9:63:0D:A5:7B:26:39:EF:94:72:CF:B1:6D:E2:EC:91:10:DD:5A:B0 Certificate issuer: /CN=b927dc15-9316-467a-b50d-d6b361478436 Certificate serial: 010D0C9F4328584A0C056DA36BB453B317999E00 Authority key identifier: 9A:5B:82:A8:00:DF:D6:23:2A:45:9E:7A:4B:55:17:F4:18:E5:83:E2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa Signing time: Sun 01 Jun 2025 13:01:03 +0000 ROA not before: Sun 01 Jun 2025 13:01:03 +0000 ROA not after: Sat 30 Aug 2025 13:01:03 +0000 asID: 2901 IP address blocks: 192.133.99.0/24 maxlen: 24 192.150.253.0/24 maxlen: 24 198.49.160.0/24 maxlen: 24 198.59.96.0/24 maxlen: 24 198.59.98.0/23 maxlen: 24 198.59.100.0/22 maxlen: 24 198.59.104.0/23 maxlen: 24 198.59.109.0/24 maxlen: 24 198.59.110.0/23 maxlen: 24 198.59.112.0/23 maxlen: 24 198.59.114.0/24 maxlen: 24 198.59.116.0/22 maxlen: 24 198.59.120.0/21 maxlen: 24 198.187.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:0c:05:6d:a3:6b:b4:53:b3:17:99:9e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b927dc15-9316-467a-b50d-d6b361478436 Validity Not Before: Jun 1 13:01:03 2025 GMT Not After : Aug 30 13:01:03 2025 GMT Subject: CN=54aa4050-0274-423f-b50d-ebcc2ac91f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ac:00:33:3e:f4:02:fb:7c:bb:57:9d:44:d6: 81:8b:56:e3:e5:65:a5:2b:b3:9b:29:34:e7:0f:ed: 74:15:af:bf:a9:d7:b9:7b:82:51:e0:40:bd:c1:a0: 8c:3f:9b:38:71:4a:16:b5:9a:c1:c3:26:27:7a:fd: 87:ba:4e:c4:df:f9:51:d8:f0:14:3d:6b:50:66:5a: 94:b9:76:22:43:ea:69:21:b0:57:6c:85:9b:bd:7d: 69:c4:87:47:79:5e:d2:a1:ce:e9:5e:e0:37:63:63: 7e:38:42:2c:4b:2b:ae:e4:43:53:42:f4:f9:17:3d: 85:b1:5f:5b:e9:06:76:22:61:f6:db:3c:5a:56:89: 1e:46:65:cc:07:5f:c6:0a:ce:01:6b:40:6b:42:5e: 25:ef:c1:01:ce:b9:ac:f2:ef:8b:61:0b:ec:41:da: 87:b9:3a:2e:bf:bd:ed:22:93:be:f2:ce:64:28:34: 7e:b3:4a:56:49:25:b9:c3:1a:9f:c3:10:99:70:ba: a1:ee:6b:07:f7:ae:ec:6a:f1:94:03:9b:0f:f7:47: 05:54:8f:7c:af:5a:0c:08:52:c2:cd:c6:27:25:58: 21:05:4a:56:f6:ad:ad:38:c5:24:be:db:c7:71:29: 88:a4:74:13:51:8b:11:cd:88:cd:b1:e0:91:b5:c2: 94:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:63:0D:A5:7B:26:39:EF:94:72:CF:B1:6D:E2:EC:91:10:DD:5A:B0 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.crl X509v3 Authority Key Identifier: keyid:9A:5B:82:A8:00:DF:D6:23:2A:45:9E:7A:4B:55:17:F4:18:E5:83:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer sbgp-ipAddrBlock: critical IPv4: 192.133.99.0/24 192.150.253.0/24 198.49.160.0/24 198.59.96.0/24 198.59.98.0-198.59.105.255 198.59.109.0-198.59.114.255 198.59.116.0-198.59.127.255 198.187.251.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 21:23:45:d9:ef:a3:51:f1:4d:9c:ad:a7:12:d4:79:bf:53:f7: 81:37:c4:d8:97:7a:ed:fc:fb:db:d9:58:c5:3b:b6:12:d6:62: 35:87:58:b3:d8:40:ea:b0:81:a5:16:ca:07:d1:e6:56:4c:13: 4e:57:81:90:c8:34:45:61:a6:5d:4d:47:06:f4:cb:f5:29:32: 3e:57:63:c0:4f:ca:68:dd:e3:a2:31:1c:d6:fa:a9:f9:b2:d4: f9:b1:3d:77:38:65:c7:09:19:62:2f:f6:b0:69:b6:ae:74:fa: cb:d1:19:fa:4b:67:e7:f7:d0:c1:02:3c:b0:56:59:9c:b4:c1: 32:0a:29:29:55:ca:8e:50:f6:ae:e7:48:8c:a6:30:04:2f:3e: 58:38:1c:2b:00:68:92:cf:7c:9d:10:76:24:c5:7e:36:7b:07: 25:e6:e2:be:a1:18:33:3a:8e:fb:6f:40:0a:c7:54:bc:f0:84: 40:80:2f:56:4e:3f:af:14:76:dd:45:fb:f8:03:e8:c2:99:4c: 81:03:25:07:dd:65:64:1b:e7:c0:ec:4c:4d:fd:28:97:5d:81: dd:c1:ff:37:be:d3:6a:40:8f:c6:e7:db:7c:f5:fa:3a:bc:3e: 6b:81:3c:45:7c:8f:b3:94:e7:79:f0:a5:8c:70:6c:fa:89:a7: c5:88:52:57 -----BEGIN CERTIFICATE----- MIIGhTCCBW2gAwIBAgIUAQ0Mn0MoWEoMBW2ja7RTsxeZngAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYjkyN2RjMTUtOTMxNi00NjdhLWI1MGQtZDZiMzYxNDc4 NDM2MB4XDTI1MDYwMTEzMDEwM1oXDTI1MDgzMDEzMDEwM1owLzEtMCsGA1UEAxMk NTRhYTQwNTAtMDI3NC00MjNmLWI1MGQtZWJjYzJhYzkxZjdiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArawAMz70Avt8u1edRNaBi1bj5WWlK7ObKTTn D+10Fa+/qde5e4JR4EC9waCMP5s4cUoWtZrBwyYnev2Huk7E3/lR2PAUPWtQZlqU uXYiQ+ppIbBXbIWbvX1pxIdHeV7Soc7pXuA3Y2N+OEIsSyuu5ENTQvT5Fz2FsV9b 6QZ2ImH22zxaVokeRmXMB1/GCs4Ba0BrQl4l78EBzrms8u+LYQvsQdqHuTouv73t IpO+8s5kKDR+s0pWSSW5wxqfwxCZcLqh7msH967savGUA5sP90cFVI98r1oMCFLC zcYnJVghBUpW9q2tOMUkvtvHcSmIpHQTUYsRzYjNseCRtcKUAQIDAQABo4IDlzCC A5MwHQYDVR0OBBYEFLljDaV7JjnvlHLPsW3i7JEQ3VqwMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iOTI3 ZGMxNS05MzE2LTQ2N2EtYjUwZC1kNmIzNjE0Nzg0MzYvZDE0ZDBkM2UtMTcwMS0z YTViLTljYTctMzRhYTMzNmM2NWRiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYjkyN2RjMTUtOTMxNi00NjdhLWI1 MGQtZDZiMzYxNDc4NDM2L2I5MjdkYzE1LTkzMTYtNDY3YS1iNTBkLWQ2YjM2MTQ3 ODQzNi5jcmwwHwYDVR0jBBgwFoAUmluCqADf1iMqRZ56S1UX9Bjlg+IwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9iOTI3ZGMxNS05MzE2LTQ2N2EtYjUwZC1kNmIz NjE0Nzg0MzYuY2VyMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQAwIVjAwQA wJb9AwQAxjGgAwQAxjtgMAwDBAHGO2IDBAHGO2gwDAMEAMY7bQMEAMY7cjAMAwQC xjt0AwQHxjsAAwQAxrv7MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4Bggr BgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3Bz Lmh0bWwwDQYJKoZIhvcNAQELBQADggEBACEjRdnvo1HxTZytpxLUeb9T94E3xNiX eu38+9vZWMU7thLWYjWHWLPYQOqwgaUWygfR5lZME05XgZDINEVhpl1NRwb0y/Up Mj5XY8BPymjd46IxHNb6qfmy1PmxPXc4ZccJGWIv9rBptq50+svRGfpLZ+f30MEC PLBWWZy0wTIKKSlVyo5Q9q7nSIymMAQvPlg4HCsAaJLPfJ0QdiTFfjZ7ByXm4r6h GDM6jvtvQArHVLzwhECAL1ZOP68Udt1F+/gD6MKZTIEDJQfdZWQb58DsTE39KJdd gd3B/ze+02pAj8bn23z1+jq8PmuBPEV8j7OU53nwpYxwbPqJp8WIUlc= -----END CERTIFICATE-----Generated at Wed Jun 18 09:20:38 2025 by rpki-client