$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/969933aa-bc02-357d-875f-85af16f668ef.roa File: 969933aa-bc02-357d-875f-85af16f668ef.roa (raw, json) Hash identifier: MEPaAa/KcmdYZrOO9GJzkKhnyNlUDwE5nKN2NxB8WCo= Subject key identifier: 43:AA:BE:BE:AE:E9:F0:66:4B:23:BB:CA:90:F7:5F:44:08:AF:F3:E3 Certificate issuer: /CN=68b287f4-51cf-421c-923b-f0e384de5eea Certificate serial: 010D0C9F432858497C3EF42CDC4A999577790000 Authority key identifier: 35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/969933aa-bc02-357d-875f-85af16f668ef.roa Signing time: Fri 11 Apr 2025 01:00:48 +0000 ROA not before: Fri 11 Apr 2025 01:00:48 +0000 ROA not after: Thu 10 Jul 2025 01:00:48 +0000 asID: 8069 IP address blocks: 20.33.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 29 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:7c:3e:f4:2c:dc:4a:99:95:77:79:00:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68b287f4-51cf-421c-923b-f0e384de5eea Validity Not Before: Apr 11 01:00:48 2025 GMT Not After : Jul 10 01:00:48 2025 GMT Subject: CN=f9c70532-f587-4231-a966-b83327d7c556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:48:1b:96:38:f7:7d:d8:9a:34:87:4c:1d:d0: e5:da:40:12:16:ee:02:d9:71:a8:89:8f:53:18:0f: bd:56:09:0c:6e:aa:6d:b9:59:38:79:66:5b:35:da: 5b:f9:b1:1b:62:de:45:78:9f:50:b5:17:f2:6e:00: df:73:45:70:97:79:86:ba:45:d0:ff:41:b7:95:dd: 0f:d7:5a:bb:54:9e:c2:db:53:cb:22:e9:40:9e:51: 7b:98:59:9b:c1:37:76:30:47:3f:82:2b:4e:d9:9b: 99:f6:b0:a2:14:3d:3d:9c:cd:db:8a:c6:de:24:c1: d4:8f:7f:0e:35:56:2f:28:45:d1:63:d2:fd:45:ea: 3b:6d:91:7a:c8:29:90:43:8a:56:73:11:29:41:63: 23:d5:b8:db:96:56:38:f3:53:98:b8:a1:c5:e2:f5: ea:0a:c4:fa:f4:a9:e0:7b:45:38:39:b2:40:4f:01: 4d:54:73:b6:dd:fe:eb:6e:1c:d9:fc:df:2f:e5:a4: cc:a4:b4:b3:73:54:1e:24:e4:b6:52:17:30:1e:74: 94:e8:74:cd:b3:09:72:a9:38:3f:cb:29:e0:2b:99: cc:a2:41:24:43:7b:94:a8:33:98:a7:0c:1a:fd:91: b0:ae:13:59:af:15:d3:20:7b:0f:54:69:49:cc:21: 26:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AA:BE:BE:AE:E9:F0:66:4B:23:BB:CA:90:F7:5F:44:08:AF:F3:E3 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/969933aa-bc02-357d-875f-85af16f668ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea/68b287f4-51cf-421c-923b-f0e384de5eea.crl X509v3 Authority Key Identifier: keyid:35:7E:4F:98:41:25:A3:72:03:F5:E2:BA:41:43:AE:4A:FA:E0:BC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/68b287f4-51cf-421c-923b-f0e384de5eea.cer sbgp-ipAddrBlock: critical IPv4: 20.33.91.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 1d:da:05:fd:4e:65:ea:27:b3:05:92:51:90:1a:a7:78:7a:30: 5e:94:af:aa:92:ac:3f:b0:c1:58:cc:40:0b:95:ae:91:76:7d: 9c:14:86:5a:9b:51:3c:84:1a:aa:08:18:95:a1:ca:dc:83:6d: 3e:a1:cb:22:c5:fa:29:8b:ee:bd:5d:90:5f:e6:b5:44:1d:a2: a2:00:8d:00:6c:0a:95:69:4d:97:42:db:b5:6f:41:77:68:b5: 36:53:05:c1:ed:3b:d0:fb:e7:fa:85:b5:b1:89:c0:39:2c:a9: 3d:4b:e8:88:b3:bd:2d:70:ae:b9:09:7c:a7:dc:ba:1c:23:aa: 9d:68:9e:3e:ca:b5:a5:da:51:3a:b0:55:d5:50:a0:f5:60:8b: 7f:3f:27:02:8b:d4:bd:3f:70:0a:77:12:16:b6:ba:20:22:3e: ba:6f:25:c4:fb:0e:75:5f:51:8b:25:ee:d4:80:5e:8a:f8:9f: f1:8a:b8:fe:a0:c5:a9:28:40:b8:f7:5c:65:a9:1c:22:81:cb: 58:af:85:21:5e:51:82:f4:a4:1b:d7:2e:61:62:90:bf:7c:56: f5:6c:6a:b7:93:c8:a7:83:ef:34:5a:3f:a0:c3:fb:99:98:34: 31:e7:62:27:1d:cf:52:a9:8b:a5:19:8f:5e:ce:1a:75:9c:06: 76:6a:53:e0 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEl8PvQs3EqZlXd5AAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjhiMjg3ZjQtNTFjZi00MjFjLTkyM2ItZjBlMzg0ZGU1 ZWVhMB4XDTI1MDQxMTAxMDA0OFoXDTI1MDcxMDAxMDA0OFowLzEtMCsGA1UEAxMk ZjljNzA1MzItZjU4Ny00MjMxLWE5NjYtYjgzMzI3ZDdjNTU2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEgbljj3fdiaNIdMHdDl2kASFu4C2XGoiY9T GA+9VgkMbqptuVk4eWZbNdpb+bEbYt5FeJ9QtRfybgDfc0Vwl3mGukXQ/0G3ld0P 11q7VJ7C21PLIulAnlF7mFmbwTd2MEc/gitO2ZuZ9rCiFD09nM3bisbeJMHUj38O NVYvKEXRY9L9Reo7bZF6yCmQQ4pWcxEpQWMj1bjbllY481OYuKHF4vXqCsT69Kng e0U4ObJATwFNVHO23f7rbhzZ/N8v5aTMpLSzc1QeJOS2UhcwHnSU6HTNswlyqTg/ yyngK5nMokEkQ3uUqDOYpwwa/ZGwrhNZrxXTIHsPVGlJzCEmHQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFEOqvr6u6fBmSyO7ypD3X0QIr/PjMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS82OGIy ODdmNC01MWNmLTQyMWMtOTIzYi1mMGUzODRkZTVlZWEvOTY5OTMzYWEtYmMwMi0z NTdkLTg3NWYtODVhZjE2ZjY2OGVmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNjhiMjg3ZjQtNTFjZi00MjFjLTky M2ItZjBlMzg0ZGU1ZWVhLzY4YjI4N2Y0LTUxY2YtNDIxYy05MjNiLWYwZTM4NGRl NWVlYS5jcmwwHwYDVR0jBBgwFoAUNX5PmEElo3ID9eK6QUOuSvrgvB0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS82OGIyODdmNC01MWNmLTQyMWMtOTIzYi1mMGUz ODRkZTVlZWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAFCFbMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAB3aBf1OZeonswWSUZAap3h6MF6Ur6qSrD+wwVjMQAuVrpF2fZwUhlqb UTyEGqoIGJWhytyDbT6hyyLF+imL7r1dkF/mtUQdoqIAjQBsCpVpTZdC27VvQXdo tTZTBcHtO9D75/qFtbGJwDksqT1L6IizvS1wrrkJfKfcuhwjqp1onj7KtaXaUTqw VdVQoPVgi38/JwKL1L0/cAp3Eha2uiAiPrpvJcT7DnVfUYsl7tSAXor4n/GKuP6g xakoQLj3XGWpHCKBy1ivhSFeUYL0pBvXLmFikL98VvVsareTyKeD7zRaP6DD+5mY NDHnYicdz1Kpi6UZj17OGnWcBnZqU+A= -----END CERTIFICATE-----Generated at Sun Apr 27 23:01:54 2025 by rpki-client