$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/b59db570-05e4-3a87-bf9b-7ee8db5a1156.roa File: b59db570-05e4-3a87-bf9b-7ee8db5a1156.roa (raw, json) Hash identifier: UcH+SEU66tMzR0OVMqJSoVa+I6U/cHB+IB8UmF5V7yg= Subject key identifier: 5B:74:2C:FD:04:A9:13:19:CA:33:CD:B6:62:A1:9C:4E:A9:90:FF:56 Certificate issuer: /CN=f49fab42-831a-40b8-9fab-60e159c0409a Certificate serial: 010D0C9F43285849A1BBD19E437B73D842C74760 Authority key identifier: A0:55:C7:8F:E0:85:7D:B8:95:44:FE:6E:4A:33:BF:3A:B1:68:26:10 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/b59db570-05e4-3a87-bf9b-7ee8db5a1156.roa Signing time: Thu 24 Apr 2025 11:17:24 +0000 ROA not before: Thu 24 Apr 2025 11:17:24 +0000 ROA not after: Wed 23 Jul 2025 11:17:24 +0000 asID: 12041 IP address blocks: 199.182.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/f49fab42-831a-40b8-9fab-60e159c0409a.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/f49fab42-831a-40b8-9fab-60e159c0409a.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 01 May 2025 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:a1:bb:d1:9e:43:7b:73:d8:42:c7:47:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f49fab42-831a-40b8-9fab-60e159c0409a Validity Not Before: Apr 24 11:17:24 2025 GMT Not After : Jul 23 11:17:24 2025 GMT Subject: CN=119d2cd4-d6c5-4a05-a61e-d63627d5b231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:75:c5:6f:b3:08:32:03:21:2a:40:88:3e:ff: d1:1a:ca:75:25:28:b2:46:ec:2a:95:a5:bd:d1:2e: 71:1f:bb:aa:19:22:46:3d:94:80:ee:df:93:f8:63: 3b:0c:50:5f:e1:df:a3:16:a9:91:91:33:65:18:cd: a6:9e:74:05:ec:19:3c:39:23:96:b0:8f:8e:b2:61: 95:4d:22:9e:36:cc:1e:9b:f2:97:30:85:4c:b9:bf: df:d9:30:76:bd:e2:c7:dd:4f:b4:86:67:e3:cd:25: 6d:29:19:01:a2:71:d2:24:81:06:e3:a6:8f:59:1a: 20:c7:e7:ac:55:58:7c:32:78:49:ff:1e:62:a1:dc: d6:4b:70:fb:ab:4e:7d:69:23:41:c9:f7:e1:e9:1a: 11:30:03:e3:bd:60:0b:69:86:4b:60:4c:66:12:87: 1c:de:1f:b3:63:d8:7e:39:e3:4e:9c:89:1a:71:26: c0:0d:43:5e:b0:f7:5c:3c:b2:a4:43:32:76:75:68: e9:a3:52:34:9d:d4:0a:c5:97:24:73:bf:a1:33:5a: 2d:c5:2c:72:d4:84:f0:0c:a9:88:92:d7:ae:37:ce: 02:1e:1e:66:e0:4a:17:d1:4d:06:be:7e:6b:db:3f: 17:91:75:e9:65:f8:22:86:dd:88:45:5e:29:e2:02: f8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:74:2C:FD:04:A9:13:19:CA:33:CD:B6:62:A1:9C:4E:A9:90:FF:56 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/b59db570-05e4-3a87-bf9b-7ee8db5a1156.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a/f49fab42-831a-40b8-9fab-60e159c0409a.crl X509v3 Authority Key Identifier: keyid:A0:55:C7:8F:E0:85:7D:B8:95:44:FE:6E:4A:33:BF:3A:B1:68:26:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/f49fab42-831a-40b8-9fab-60e159c0409a.cer sbgp-ipAddrBlock: critical IPv4: 199.182.28.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 79:43:37:a2:8b:04:62:80:8e:a3:71:65:64:4c:83:f3:d4:16: 31:15:0f:da:42:e2:2a:58:4f:43:dd:f2:fd:21:7b:94:26:ae: 9f:66:54:21:d1:20:69:0f:95:91:9c:15:ba:2b:26:ea:30:90: 57:70:06:9a:8e:ba:3b:6a:75:cc:ab:94:71:10:97:b3:71:a5: 92:e4:5a:3f:b6:bc:d7:af:40:89:13:32:59:d0:d1:b3:f2:36: aa:e5:71:1b:7f:87:5a:54:13:c5:93:9b:5d:87:62:70:2c:95: 32:58:1e:bf:9c:b5:26:4e:15:19:90:5d:ad:95:51:12:62:d6: 9b:28:5a:85:28:8f:43:68:be:0d:2b:dd:81:05:c7:4b:9e:c3: c0:ca:00:43:cd:df:7f:82:7c:b7:13:78:74:28:b8:5f:e4:b1: 02:e3:c5:a8:56:92:7d:ad:55:9a:76:8e:8f:75:19:54:61:ae: 2b:d9:14:0b:aa:08:42:1e:e9:94:7e:06:0e:80:3b:6e:f3:70: 41:d0:13:fd:f9:28:92:df:af:90:12:9c:1d:bd:41:a6:1c:75: c9:3b:f7:77:37:40:34:1f:8c:3b:cc:25:92:e5:72:45:13:4e: 76:d1:ea:3c:31:69:87:9e:78:b4:09:07:be:13:24:3b:a0:41: 50:e1:9c:46 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEmhu9GeQ3tz2ELHR2AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZjQ5ZmFiNDItODMxYS00MGI4LTlmYWItNjBlMTU5YzA0 MDlhMB4XDTI1MDQyNDExMTcyNFoXDTI1MDcyMzExMTcyNFowLzEtMCsGA1UEAxMk MTE5ZDJjZDQtZDZjNS00YTA1LWE2MWUtZDYzNjI3ZDViMjMxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXXFb7MIMgMhKkCIPv/RGsp1JSiyRuwqlaW9 0S5xH7uqGSJGPZSA7t+T+GM7DFBf4d+jFqmRkTNlGM2mnnQF7Bk8OSOWsI+OsmGV TSKeNswem/KXMIVMub/f2TB2veLH3U+0hmfjzSVtKRkBonHSJIEG46aPWRogx+es VVh8MnhJ/x5iodzWS3D7q059aSNByffh6RoRMAPjvWALaYZLYExmEocc3h+zY9h+ OeNOnIkacSbADUNesPdcPLKkQzJ2dWjpo1I0ndQKxZckc7+hM1otxSxy1ITwDKmI kteuN84CHh5m4EoX0U0Gvn5r2z8XkXXpZfgiht2IRV4p4gL4OwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFt0LP0EqRMZyjPNtmKhnE6pkP9WMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9mNDlm YWI0Mi04MzFhLTQwYjgtOWZhYi02MGUxNTljMDQwOWEvYjU5ZGI1NzAtMDVlNC0z YTg3LWJmOWItN2VlOGRiNWExMTU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvZjQ5ZmFiNDItODMxYS00MGI4LTlm YWItNjBlMTU5YzA0MDlhL2Y0OWZhYjQyLTgzMWEtNDBiOC05ZmFiLTYwZTE1OWMw NDA5YS5jcmwwHwYDVR0jBBgwFoAUoFXHj+CFfbiVRP5uSjO/OrFoJhAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9mNDlmYWI0Mi04MzFhLTQwYjgtOWZhYi02MGUx NTljMDQwOWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAx7YcMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHlDN6KLBGKAjqNxZWRMg/PUFjEVD9pC4ipYT0Pd8v0he5Qmrp9mVCHR IGkPlZGcFborJuowkFdwBpqOujtqdcyrlHEQl7NxpZLkWj+2vNevQIkTMlnQ0bPy NqrlcRt/h1pUE8WTm12HYnAslTJYHr+ctSZOFRmQXa2VURJi1psoWoUoj0Novg0r 3YEFx0uew8DKAEPN33+CfLcTeHQouF/ksQLjxahWkn2tVZp2jo91GVRhrivZFAuq CEIe6ZR+Bg6AO27zcEHQE/35KJLfr5ASnB29QaYcdck793c3QDQfjDvMJZLlckUT TnbR6jwxaYeeeLQJB74TJDugQVDhnEY= -----END CERTIFICATE-----Generated at Tue Apr 29 16:23:20 2025 by rpki-client