$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/40b301b2-4202-35c2-addc-14e70c78a526.roa File: 40b301b2-4202-35c2-addc-14e70c78a526.roa (raw, json) Hash identifier: VntRPaIXbd3RQalDJBHmfiPNiEWBfrsExBGvZ4s2PVg= Subject key identifier: 7C:F1:20:B9:A8:7B:BF:4A:76:DD:B9:3B:07:10:48:2A:2D:1E:22:E6 Certificate issuer: /CN=bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16 Certificate serial: 010D0C9F432858497DA46C99352326B39E5DEB00 Authority key identifier: EE:70:3D:40:DA:37:1C:84:70:75:A1:4D:9A:FC:98:73:DD:0B:8F:B7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/40b301b2-4202-35c2-addc-14e70c78a526.roa Signing time: Fri 11 Apr 2025 13:01:00 +0000 ROA not before: Fri 11 Apr 2025 13:01:00 +0000 ROA not after: Thu 10 Jul 2025 13:01:00 +0000 asID: 397270 IP address blocks: 2602:fa9a::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 29 Apr 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:7d:a4:6c:99:35:23:26:b3:9e:5d:eb:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16 Validity Not Before: Apr 11 13:01:00 2025 GMT Not After : Jul 10 13:01:00 2025 GMT Subject: CN=0578d8a3-12ac-42ce-9c66-6170927a5c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f0:c4:fd:31:b5:fc:0b:62:0b:43:01:f1:17: 20:39:b2:46:ce:7b:ea:6d:86:33:d4:72:1d:cb:47: d0:55:7b:bc:b5:9a:e5:8e:23:16:d5:98:65:61:7a: 42:ce:70:18:05:4b:31:b7:f8:3c:88:c0:47:e1:0c: d1:1c:84:64:e7:91:c7:fe:5d:bc:61:4e:38:b6:1a: 72:23:3a:ff:60:da:e2:d8:01:3d:4f:95:43:59:19: a4:ee:4b:0d:80:20:e6:57:00:15:04:aa:76:92:16: 63:57:89:6a:87:35:9c:eb:12:38:31:48:b8:e0:09: 4a:d5:75:b5:0d:29:b1:c0:24:98:7e:32:0f:c9:39: e0:16:f8:2d:f2:07:5e:d1:1e:10:8e:ba:1a:ad:9d: 0a:8b:34:9a:fd:4a:59:3e:b1:98:f2:ff:a4:27:b3: e9:b9:f8:35:2e:99:b9:e5:e9:6f:bc:d3:fa:57:01: 9c:c2:05:d7:49:8a:74:21:62:24:49:57:e7:0c:c9: 1f:c4:bf:0b:ea:ee:08:ec:ba:8a:c3:a7:24:73:18: 61:0c:ac:eb:b9:c7:45:51:80:b0:b7:0e:17:83:73: 04:cf:4c:0f:9d:a0:60:78:a3:b9:19:41:26:3e:38: aa:7e:c7:09:45:e2:49:88:14:82:97:98:73:3f:8d: 47:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:F1:20:B9:A8:7B:BF:4A:76:DD:B9:3B:07:10:48:2A:2D:1E:22:E6 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/40b301b2-4202-35c2-addc-14e70c78a526.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.crl X509v3 Authority Key Identifier: keyid:EE:70:3D:40:DA:37:1C:84:70:75:A1:4D:9A:FC:98:73:DD:0B:8F:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bbb0f0d6-2cb9-4846-be9f-66ce6dbf3a16.cer sbgp-ipAddrBlock: critical IPv6: 2602:fa9a::/40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 14:c3:aa:43:82:9f:81:0c:b5:0e:2c:94:1a:d5:41:96:2d:43: 23:96:ad:1d:cd:10:fd:8f:dd:ea:60:43:1e:23:cf:bb:9e:6c: 71:04:51:e1:78:08:43:54:bf:a0:87:6b:ea:da:86:f7:b4:4e: 77:e8:2b:14:f2:0e:df:95:dd:4d:70:1a:ab:be:95:f5:fe:58: cd:5b:d7:42:a9:88:b9:47:44:61:a4:19:ec:47:d5:57:4a:f9: c4:9e:a6:98:ab:28:81:44:1d:be:d8:7f:69:60:ce:01:d1:46: d9:e9:c7:b5:2e:3c:62:65:cb:b2:1d:36:22:81:7b:5d:0d:72: 51:91:ca:17:70:42:0b:cb:2e:2c:00:73:a7:e4:22:ad:df:b5: 8a:37:63:17:86:1e:22:08:03:83:2e:29:4d:1f:0c:0f:c2:3d: 99:72:8e:6e:4d:ab:ea:da:8e:c7:1f:ee:dd:55:61:7e:bd:9a: e1:a6:20:cf:4a:a2:17:d6:ef:da:eb:d4:ce:bb:9d:b0:2e:90: eb:9c:03:8f:64:0e:f3:90:ee:e2:88:5f:a5:b6:85:69:1e:eb: 0d:8a:ab:38:a4:51:e8:06:3c:10:66:16:6a:4e:9c:4d:fa:cf: 3b:f7:2f:8d:91:83:f4:40:2f:c4:b5:04:53:1d:02:c7:80:c4: a1:28:c9:ea -----BEGIN CERTIFICATE----- MIIGRTCCBS2gAwIBAgIUAQ0Mn0MoWEl9pGyZNSMms55d6wAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmJiMGYwZDYtMmNiOS00ODQ2LWJlOWYtNjZjZTZkYmYz YTE2MB4XDTI1MDQxMTEzMDEwMFoXDTI1MDcxMDEzMDEwMFowLzEtMCsGA1UEAxMk MDU3OGQ4YTMtMTJhYy00MmNlLTljNjYtNjE3MDkyN2E1YzhjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPDE/TG1/AtiC0MB8RcgObJGznvqbYYz1HId y0fQVXu8tZrljiMW1ZhlYXpCznAYBUsxt/g8iMBH4QzRHIRk55HH/l28YU44thpy Izr/YNri2AE9T5VDWRmk7ksNgCDmVwAVBKp2khZjV4lqhzWc6xI4MUi44AlK1XW1 DSmxwCSYfjIPyTngFvgt8gde0R4QjroarZ0KizSa/UpZPrGY8v+kJ7Ppufg1Lpm5 5elvvNP6VwGcwgXXSYp0IWIkSVfnDMkfxL8L6u4I7LqKw6ckcxhhDKzrucdFUYCw tw4Xg3MEz0wPnaBgeKO5GUEmPjiqfscJReJJiBSCl5hzP41HHwIDAQABo4IDVzCC A1MwHQYDVR0OBBYEFHzxILmoe79Kdt25OwcQSCotHiLmMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iYmIw ZjBkNi0yY2I5LTQ4NDYtYmU5Zi02NmNlNmRiZjNhMTYvNDBiMzAxYjItNDIwMi0z NWMyLWFkZGMtMTRlNzBjNzhhNTI2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYmJiMGYwZDYtMmNiOS00ODQ2LWJl OWYtNjZjZTZkYmYzYTE2L2JiYjBmMGQ2LTJjYjktNDg0Ni1iZTlmLTY2Y2U2ZGJm M2ExNi5jcmwwHwYDVR0jBBgwFoAU7nA9QNo3HIRwdaFNmvyYc90Lj7cwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9iYmIwZjBkNi0yY2I5LTQ4NDYtYmU5Zi02NmNl NmRiZjNhMTYuY2VyMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAJgL6mgAw VAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczov L3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0B AQsFAAOCAQEAFMOqQ4KfgQy1DiyUGtVBli1DI5atHc0Q/Y/d6mBDHiPPu55scQRR 4XgIQ1S/oIdr6tqG97ROd+grFPIO35XdTXAaq76V9f5YzVvXQqmIuUdEYaQZ7EfV V0r5xJ6mmKsogUQdvth/aWDOAdFG2enHtS48YmXLsh02IoF7XQ1yUZHKF3BCC8su LABzp+Qird+1ijdjF4YeIggDgy4pTR8MD8I9mXKObk2r6tqOxx/u3VVhfr2a4aYg z0qiF9bv2uvUzrudsC6Q65wDj2QO85Du4ohfpbaFaR7rDYqrOKRR6AY8EGYWak6c TfrPO/cvjZGD9EAvxLUEUx0Cx4DEoSjJ6g== -----END CERTIFICATE-----Generated at Mon Apr 28 23:27:01 2025 by rpki-client