$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa File: df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa (raw, json) Hash identifier: 1EiW5rUA2ztkFv+8seUoay3zD4HQLjAww2Gcvx5nE6U= Subject key identifier: 24:8D:A7:30:5B:9E:4D:7E:E2:C7:3C:F4:6E:11:A4:B2:EB:68:9D:FC Certificate issuer: /CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Certificate serial: 010D0C9F43285849EA852A730C87BF71EA05AEC0 Authority key identifier: 29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa Signing time: Tue 20 May 2025 13:01:05 +0000 ROA not before: Tue 20 May 2025 13:01:05 +0000 ROA not after: Mon 18 Aug 2025 13:01:05 +0000 asID: 701 IP address blocks: 72.89.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:ea:85:2a:73:0c:87:bf:71:ea:05:ae:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73298062-bd8b-4b9f-8613-deb6e9c20878 Validity Not Before: May 20 13:01:05 2025 GMT Not After : Aug 18 13:01:05 2025 GMT Subject: CN=c16b51b1-6b2c-44eb-a305-8952bc9eec97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b8:cb:07:dd:42:54:e5:32:f4:98:df:46:a3: 5f:32:8c:0c:62:2c:bc:44:5d:f5:fa:7b:4e:ea:c7: 5e:6b:8a:c9:18:9a:3b:ec:f8:90:25:de:54:d5:29: cb:bb:13:71:92:4a:5b:bd:ef:79:4e:27:0c:c5:05: 3b:9b:45:68:57:ed:88:a4:19:47:81:ab:a3:4d:90: b7:f6:73:83:de:9d:3c:75:ce:95:98:66:25:78:90: a8:85:57:75:46:e5:97:b6:91:fb:bd:e2:f0:ff:36: 96:54:be:c2:96:24:84:44:cb:5b:0e:0f:0a:94:b5: d5:12:ff:01:5f:ba:51:2f:d0:14:8b:1c:db:54:2e: ce:1f:bb:c9:cd:f4:6a:02:f2:d2:85:0f:a8:36:8f: 3c:f3:4c:9d:85:fe:c3:35:29:29:ac:16:b3:8f:b9: 5c:81:c8:95:cc:a2:56:eb:23:ab:e4:aa:c9:ee:61: 02:66:b0:f8:e0:81:08:b5:83:1b:bf:74:fe:41:4b: 5f:e2:85:69:65:6b:8e:ba:80:96:03:c3:d5:bd:af: 18:18:4a:59:04:36:32:3d:8f:f6:91:17:32:31:95: 73:ca:1f:33:6f:b7:26:3e:5b:1b:11:9f:a6:f6:40: 2e:29:69:74:6d:9b:af:b4:bf:85:f1:34:a4:1c:11: ee:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:8D:A7:30:5B:9E:4D:7E:E2:C7:3C:F4:6E:11:A4:B2:EB:68:9D:FC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/df4dc9b7-7406-3ad8-a924-0f8a8606a9bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878/73298062-bd8b-4b9f-8613-deb6e9c20878.crl X509v3 Authority Key Identifier: keyid:29:92:C2:35:B0:89:40:BE:8D:AD:31:CA:CF:13:A4:BB:5F:58:EA:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/73298062-bd8b-4b9f-8613-deb6e9c20878.cer sbgp-ipAddrBlock: critical IPv4: 72.89.0.0/17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0e:df:d6:1e:aa:c0:6c:86:65:18:3f:f5:7d:62:bc:48:15:36: 7e:ff:cd:58:80:0c:71:bf:07:db:a4:4a:c6:e3:40:1f:9f:73: 2c:69:36:12:47:31:9c:d0:3a:64:64:45:91:d1:17:06:f9:c2: 4c:3e:b0:3b:94:f2:df:e4:cd:49:49:9e:1a:83:5d:9f:ae:08: 92:ec:bd:32:ee:de:58:04:00:a1:a1:d0:4f:5a:84:d6:77:01: 82:c4:bd:8b:88:70:18:8f:ec:02:7a:6e:da:3c:4e:07:01:d3: 64:64:4e:c2:48:00:f5:90:f3:06:9c:45:11:45:ac:9a:4d:2a: ec:8b:a7:d9:04:86:61:ff:29:85:a7:91:64:52:53:49:eb:66: f7:13:4e:62:38:ab:e4:ab:98:80:46:e2:bb:46:17:6e:86:06: 5b:cf:36:17:3b:12:c5:9e:04:8a:c9:de:1f:85:df:0a:60:3c: cc:3d:97:23:3c:1b:19:1e:b6:6a:7a:f1:20:0c:c3:7f:3b:05: 37:3d:fb:f3:ef:0d:7e:f5:d3:f5:67:9c:cb:db:67:0f:ad:99: fa:aa:bf:02:de:51:97:86:6e:bc:dc:61:e5:72:8e:c4:e7:68: 31:29:e2:1f:4f:b7:21:7f:7a:75:06:6d:3b:7b:7e:d7:45:55: aa:4e:28:61 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEnqhSpzDIe/ceoFrsAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNzMyOTgwNjItYmQ4Yi00YjlmLTg2MTMtZGViNmU5YzIw ODc4MB4XDTI1MDUyMDEzMDEwNVoXDTI1MDgxODEzMDEwNVowLzEtMCsGA1UEAxMk YzE2YjUxYjEtNmIyYy00NGViLWEzMDUtODk1MmJjOWVlYzk3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorjLB91CVOUy9JjfRqNfMowMYiy8RF31+ntO 6sdea4rJGJo77PiQJd5U1SnLuxNxkkpbve95TicMxQU7m0VoV+2IpBlHgaujTZC3 9nOD3p08dc6VmGYleJCohVd1RuWXtpH7veLw/zaWVL7CliSERMtbDg8KlLXVEv8B X7pRL9AUixzbVC7OH7vJzfRqAvLShQ+oNo8880ydhf7DNSkprBazj7lcgciVzKJW 6yOr5KrJ7mECZrD44IEItYMbv3T+QUtf4oVpZWuOuoCWA8PVva8YGEpZBDYyPY/2 kRcyMZVzyh8zb7cmPlsbEZ+m9kAuKWl0bZuvtL+F8TSkHBHuZwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCSNpzBbnk1+4sc89G4RpLLraJ38MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5 ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2ZTljMjA4NzgvZGY0ZGM5YjctNzQwNi0z YWQ4LWE5MjQtMGY4YTg2MDZhOWJjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNzMyOTgwNjItYmQ4Yi00YjlmLTg2 MTMtZGViNmU5YzIwODc4LzczMjk4MDYyLWJkOGItNGI5Zi04NjEzLWRlYjZlOWMy MDg3OC5jcmwwHwYDVR0jBBgwFoAUKZLCNbCJQL6NrTHKzxOku19Y6uYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS83MzI5ODA2Mi1iZDhiLTRiOWYtODYxMy1kZWI2 ZTljMjA4NzguY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHSFkAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAA7f1h6qwGyGZRg/9X1ivEgVNn7/zViADHG/B9ukSsbjQB+fcyxpNhJH MZzQOmRkRZHRFwb5wkw+sDuU8t/kzUlJnhqDXZ+uCJLsvTLu3lgEAKGh0E9ahNZ3 AYLEvYuIcBiP7AJ6bto8TgcB02RkTsJIAPWQ8wacRRFFrJpNKuyLp9kEhmH/KYWn kWRSU0nrZvcTTmI4q+SrmIBG4rtGF26GBlvPNhc7EsWeBIrJ3h+F3wpgPMw9lyM8 Gxketmp68SAMw387BTc9+/PvDX710/VnnMvbZw+tmfqqvwLeUZeGbrzcYeVyjsTn aDEp4h9PtyF/enUGbTt7ftdFVapOKGE= -----END CERTIFICATE-----Generated at Mon Jun 16 13:13:48 2025 by rpki-client