$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/2f4c4963-ede1-38bf-9888-ad5fdeecbd33.roa File: 2f4c4963-ede1-38bf-9888-ad5fdeecbd33.roa (raw, json) Hash identifier: BNfevfDTKbciuNSnaA5KJGsmNVnaYFS/l9awZy9+mGI= Subject key identifier: 22:E3:E9:CB:F5:CC:BD:CD:FE:29:A2:CD:44:8C:BE:D6:22:BE:B3:48 Certificate issuer: /CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Certificate serial: 010D0C9F43285849CBCF9286FC3A7BC785ED1B00 Authority key identifier: 86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/2f4c4963-ede1-38bf-9888-ad5fdeecbd33.roa Signing time: Fri 09 May 2025 13:01:00 +0000 ROA not before: Fri 09 May 2025 13:01:00 +0000 ROA not after: Thu 07 Aug 2025 13:01:00 +0000 asID: 32787 IP address blocks: 72.52.20.0/22 maxlen: 22 72.52.20.0/24 maxlen: 24 72.52.21.0/24 maxlen: 24 72.52.22.0/24 maxlen: 24 72.52.60.0/23 maxlen: 23 72.52.60.0/24 maxlen: 24 72.52.61.0/24 maxlen: 24 209.200.158.0/23 maxlen: 23 209.200.158.0/24 maxlen: 24 209.200.159.0/24 maxlen: 24 209.200.161.0/24 maxlen: 24 209.200.162.0/24 maxlen: 24 209.200.163.0/24 maxlen: 24 209.200.176.0/24 maxlen: 24 209.200.179.0/24 maxlen: 24 209.200.180.0/24 maxlen: 24 209.200.181.0/24 maxlen: 24 209.200.182.0/24 maxlen: 24 209.200.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:cb:cf:92:86:fc:3a:7b:c7:85:ed:1b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Validity Not Before: May 9 13:01:00 2025 GMT Not After : Aug 7 13:01:00 2025 GMT Subject: CN=dbc4d4ae-fc71-47a6-a4a9-8aa3b2951889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a0:6a:4a:bd:6c:54:40:3e:48:78:95:23:65: e0:c5:d3:3d:50:6e:c7:80:07:43:c2:21:d4:78:8a: 2e:43:d2:06:b6:e2:e6:9c:6c:04:c4:df:6f:3c:73: db:9e:64:8d:72:18:64:03:8a:4e:e8:4b:c7:65:f6: 61:cc:58:c3:c0:15:d2:9d:91:1b:d5:ae:ea:bf:f3: 62:d9:1f:c7:2e:9a:50:a2:50:17:51:2a:6e:1b:f1: a9:0a:3d:1c:eb:bc:4a:91:9d:c2:2b:31:87:5d:04: 7c:a5:37:3e:c7:9b:99:f3:9b:9e:dd:46:f4:2a:65: e9:21:d6:82:4a:4d:23:d4:f0:a0:43:4d:41:3f:bd: 91:f3:d8:7f:98:9c:02:4d:1b:1b:bc:16:bb:a2:21: a3:b8:21:87:cd:29:19:4b:a4:89:f8:ce:8d:cc:1e: 26:2c:8a:20:c3:95:42:f5:97:a4:ad:8f:02:fc:5e: 92:b4:59:ef:4c:d5:7a:b3:ff:d7:6c:e8:66:72:02: 89:c4:2d:95:8a:76:39:ac:19:4b:1b:9e:fd:84:c5: a0:0c:22:ca:30:c2:da:4c:6f:65:cf:db:d9:94:da: 71:1a:2b:fa:06:0b:bb:2e:d8:60:93:59:54:a6:83: b9:83:a6:84:15:86:73:5e:d3:a1:91:0c:f4:0d:cc: 25:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E3:E9:CB:F5:CC:BD:CD:FE:29:A2:CD:44:8C:BE:D6:22:BE:B3:48 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/2f4c4963-ede1-38bf-9888-ad5fdeecbd33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl X509v3 Authority Key Identifier: keyid:86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer sbgp-ipAddrBlock: critical IPv4: 72.52.20.0/22 72.52.60.0/23 209.200.158.0/23 209.200.161.0-209.200.163.255 209.200.176.0/24 209.200.179.0-209.200.183.255 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7b:48:bb:36:83:87:cb:45:78:5f:9c:33:dc:b8:29:6a:83:a1: 32:70:74:ab:72:f5:ef:da:76:ee:16:29:7f:02:b2:d0:c1:fe: c4:cf:1b:6d:88:ae:fc:6c:21:99:57:46:c9:0f:7f:a8:91:68: ef:3f:56:97:5b:d7:cc:4f:37:fd:a4:a4:9a:85:ea:4e:45:b9: ee:aa:26:cb:68:70:b3:e2:8c:a4:20:1e:ab:69:c8:b9:01:e0: 0b:9a:b4:fa:36:a2:b0:94:b6:44:2f:79:6f:04:0a:72:2f:40: 40:11:fb:d7:3b:ae:ee:39:48:17:39:18:40:fe:0a:82:e3:bd: 42:b9:85:b2:d2:ed:2d:ad:51:6b:3e:90:97:86:22:d0:78:e8: 5d:07:59:d6:03:e2:34:63:4f:6f:74:56:9f:c8:9a:97:7b:63: 07:0b:1f:28:48:70:a5:1a:b9:95:d1:e4:49:86:3d:8a:ba:04: 0c:e1:2d:75:26:f7:28:a7:90:ef:94:23:d3:ea:c3:ff:5a:7d: 60:a4:a4:27:2d:0a:a0:de:22:f4:2f:07:c4:49:1f:95:d8:2e: b2:92:08:31:49:0c:24:f6:be:85:a7:1b:83:f8:5e:47:04:6c: f7:69:13:b3:59:61:94:30:e6:b1:47:56:b7:02:13:73:6f:47: 7c:d5:40:dc -----BEGIN CERTIFICATE----- MIIGcTCCBVmgAwIBAgIUAQ0Mn0MoWEnLz5KG/Dp7x4XtGwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWQ5YzllZjUtYjk2MC00MTJkLWFmNWUtMmRmMThjMjFm ODA5MB4XDTI1MDUwOTEzMDEwMFoXDTI1MDgwNzEzMDEwMFowLzEtMCsGA1UEAxMk ZGJjNGQ0YWUtZmM3MS00N2E2LWE0YTktOGFhM2IyOTUxODg5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6BqSr1sVEA+SHiVI2XgxdM9UG7HgAdDwiHU eIouQ9IGtuLmnGwExN9vPHPbnmSNchhkA4pO6EvHZfZhzFjDwBXSnZEb1a7qv/Ni 2R/HLppQolAXUSpuG/GpCj0c67xKkZ3CKzGHXQR8pTc+x5uZ85ue3Ub0KmXpIdaC Sk0j1PCgQ01BP72R89h/mJwCTRsbvBa7oiGjuCGHzSkZS6SJ+M6NzB4mLIogw5VC 9ZekrY8C/F6StFnvTNV6s//XbOhmcgKJxC2VinY5rBlLG579hMWgDCLKMMLaTG9l z9vZlNpxGiv6Bgu7Lthgk1lUpoO5g6aEFYZzXtOhkQz0Dcwl6wIDAQABo4IDgzCC A38wHQYDVR0OBBYEFCLj6cv1zL3N/imizUSMvtYivrNIMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS81ZDlj OWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYxOGMyMWY4MDkvMmY0YzQ5NjMtZWRlMS0z OGJmLTk4ODgtYWQ1ZmRlZWNiZDMzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNWQ5YzllZjUtYjk2MC00MTJkLWFm NWUtMmRmMThjMjFmODA5LzVkOWM5ZWY1LWI5NjAtNDEyZC1hZjVlLTJkZjE4YzIx ZjgwOS5jcmwwHwYDVR0jBBgwFoAUhqQ31G26knrmjZ1q8zXGRprdF+0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS81ZDljOWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYx OGMyMWY4MDkuY2VyME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0AwQCSDQUAwQB SDQ8AwQB0cieMAwDBADRyKEDBALRyKADBADRyLAwDAMEANHIswMEA9HIsDBUBgNV HSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3 LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUA A4IBAQB7SLs2g4fLRXhfnDPcuClqg6EycHSrcvXv2nbuFil/ArLQwf7EzxttiK78 bCGZV0bJD3+okWjvP1aXW9fMTzf9pKSahepORbnuqibLaHCz4oykIB6raci5AeAL mrT6NqKwlLZEL3lvBApyL0BAEfvXO67uOUgXORhA/gqC471CuYWy0u0trVFrPpCX hiLQeOhdB1nWA+I0Y09vdFafyJqXe2MHCx8oSHClGrmV0eRJhj2KugQM4S11Jvco p5DvlCPT6sP/Wn1gpKQnLQqg3iL0LwfESR+V2C6ykggxSQwk9r6FpxuD+F5HBGz3 aROzWWGUMOaxR1a3AhNzb0d81UDc -----END CERTIFICATE-----Generated at Mon Jun 16 05:23:43 2025 by rpki-client