$ rpki-client -vvf rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3330303a3a2f34302d3430203d3e20343031363832.roa File: 323630343a6361303a3330303a3a2f34302d3430203d3e20343031363832.roa (raw, json) Hash identifier: gxjQB85TSk9MR6sdiARWdxgj6HwqXmQjgqDcbEYvtc0= Subject key identifier: 1E:CD:C7:76:78:4D:D5:DE:BD:C8:9C:3A:52:B1:B1:7C:3F:DC:C7:82 Certificate issuer: /CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Certificate serial: 5B8DD579195C75BD5F9D0079FAE6FC8D85932E72 Authority key identifier: 3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject info access: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3330303a3a2f34302d3430203d3e20343031363832.roa Signing time: Mon 28 Apr 2025 01:47:57 +0000 ROA not before: Mon 28 Apr 2025 01:42:57 +0000 ROA not after: Mon 27 Apr 2026 01:47:57 +0000 asID: 401682 IP address blocks: 2604:ca0:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 23:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:8d:d5:79:19:5c:75:bd:5f:9d:00:79:fa:e6:fc:8d:85:93:2e:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Validity Not Before: Apr 28 01:42:57 2025 GMT Not After : Apr 27 01:47:57 2026 GMT Subject: CN=1ECDC776784DD5DEBDC89C3A52B1B17C3FDCC782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:71:d7:d8:3b:a2:80:9a:5f:be:43:b9:49:f4: f6:88:16:d5:78:4a:e1:ce:06:45:38:08:54:e7:e1: 47:32:71:85:b9:e3:04:56:89:31:d5:8b:65:f8:1b: b0:b9:29:d5:88:58:ad:6e:ca:71:fc:f3:3f:3f:1e: 37:4a:8e:cb:b0:67:5d:86:3c:15:7c:47:80:01:24: 24:e6:8c:59:9d:7b:d6:c8:1e:2b:84:8d:9a:0b:4d: 08:77:2d:56:4c:d6:1f:b5:83:46:67:33:18:99:a4: ec:b6:fe:ea:9e:47:3e:8a:52:8f:de:2e:8b:20:6b: 92:da:05:42:82:df:74:87:db:3a:d4:56:2d:7d:3a: ce:73:ed:32:a6:ed:f6:e8:25:03:a8:2b:38:8e:44: 86:45:63:39:a5:c4:df:10:ab:37:2c:03:3f:ba:0d: d4:f3:39:64:91:1f:df:65:8b:dc:b8:94:5a:73:cc: bb:e8:2f:f3:96:42:48:c4:e6:6f:09:40:39:9f:a9: d4:81:15:4e:aa:17:32:e6:5e:57:f5:12:75:9c:87: 74:14:62:8a:ab:07:32:bc:0c:bd:8c:d6:8b:5f:e8: 7b:fb:94:25:c9:d9:b0:aa:ca:66:98:b5:ec:2b:9e: 6c:22:9f:ac:c8:19:75:69:bb:4f:34:0c:47:15:4a: 46:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:CD:C7:76:78:4D:D5:DE:BD:C8:9C:3A:52:B1:B1:7C:3F:DC:C7:82 X509v3 Authority Key Identifier: keyid:3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3330303a3a2f34302d3430203d3e20343031363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:ca0:300::/40 Signature Algorithm: sha256WithRSAEncryption 5b:5c:56:24:d1:06:e1:46:45:55:35:09:89:af:f6:f9:98:88: 55:c4:7b:85:a8:b1:b8:58:ed:23:db:b2:1c:44:e4:cc:36:66: e6:5a:cd:ce:9f:c7:63:ca:bb:00:7c:43:e2:d9:b3:e6:0e:59: 0e:6b:ae:53:2b:73:1d:70:0e:7e:3e:99:81:86:d1:1d:8f:a9: 4a:c8:a1:2f:78:fc:8b:9c:6a:c5:55:f8:7b:3f:30:c0:8c:87: df:04:92:d9:83:27:65:ef:70:ea:b9:84:52:fc:8d:3a:c0:12: 13:3b:82:b2:5d:cb:3c:9f:a2:27:49:51:a8:48:20:03:24:79: 4c:87:9b:fe:90:02:1d:57:c4:59:dd:cd:6d:88:43:16:dd:e4: 0c:48:69:87:9a:51:d1:45:94:81:51:a9:6d:99:74:2f:e0:3c: 07:45:24:ec:02:33:53:a3:4d:a2:c6:c3:1c:1d:c4:47:d6:ff: 10:c3:12:d2:89:8c:04:01:f2:7e:7d:ea:8f:11:04:02:d5:eb: 4c:37:3d:94:c0:59:6b:e9:d0:17:c0:fb:2b:b8:00:15:fa:99: b5:d7:cd:7d:1b:85:ad:69:ce:f3:31:1b:56:90:01:2c:43:4e: 05:84:e2:a9:b1:4b:a7:0e:ec:dd:d1:60:2b:fd:52:b5:ff:7b: d0:09:b3:32 -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIUW43VeRlcdb1fnQB5+ub8jYWTLnIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZTg3NDFhYzRmMWZmOWEwNjg4ZjFiNWJmMTM1NWU1Nzg4 Mzc0MjUzNDYxMjM1NmQ5NTkwHhcNMjUwNDI4MDE0MjU3WhcNMjYwNDI3MDE0NzU3 WjAzMTEwLwYDVQQDEygxRUNEQzc3Njc4NERENURFQkRDODlDM0E1MkIxQjE3QzNG RENDNzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHHX2DuigJpf vkO5SfT2iBbVeErhzgZFOAhU5+FHMnGFueMEVokx1Ytl+BuwuSnViFitbspx/PM/ Px43So7LsGddhjwVfEeAASQk5oxZnXvWyB4rhI2aC00Idy1WTNYftYNGZzMYmaTs tv7qnkc+ilKP3i6LIGuS2gVCgt90h9s61FYtfTrOc+0ypu326CUDqCs4jkSGRWM5 pcTfEKs3LAM/ug3U8zlkkR/fZYvcuJRac8y76C/zlkJIxOZvCUA5n6nUgRVOqhcy 5l5X9RJ1nId0FGKKqwcyvAy9jNaLX+h7+5QlydmwqspmmLXsK55sIp+syBl1abtP NAxHFUpGKwIDAQABo4ICujCCArYwHQYDVR0OBBYEFB7Nx3Z4TdXevcicOlKxsXw/ 3MeCMB8GA1UdIwQYMBaAFDuj+4k9g4oVcYpbxxV1DO2Jnv0fMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5L2M1ZGE0MTNlNDQzODRkN2I4N2UwYTc0YjQyY2ExODY3LzAv M0JBM0ZCODkzRDgzOEExNTcxOEE1QkM3MTU3NTBDRUQ4OTlFRkQxRi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZDZiNWFkMjgtMWNiYy00N2FiLTkwNGUtNDUzNjFh NTQ4N2MzLzRlOTYyNzE3LTExMzgtNGQyYi05NDQyLTAzMzJlOTA2MDEzMi9lODc0 MWFjNGYxZmY5YTA2ODhmMWI1YmYxMzU1ZTU3ODgzNzQyNTM0NjEyMzU2ZDk1OS5j ZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS9jNWRhNDEzZTQ0Mzg0ZDdiODdlMGE3 NGI0MmNhMTg2Ny8wLzMyMzYzMDM0M2E2MzYxMzAzYTMzMzAzMDNhM2EyZjM0MzAy ZDM0MzAyMDNkM2UyMDM0MzAzMTM2MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACYEDKADMA0GCSqG SIb3DQEBCwUAA4IBAQBbXFYk0QbhRkVVNQmJr/b5mIhVxHuFqLG4WO0j27IcROTM NmbmWs3On8djyrsAfEPi2bPmDlkOa65TK3MdcA5+PpmBhtEdj6lKyKEvePyLnGrF Vfh7PzDAjIffBJLZgydl73DquYRS/I06wBITO4KyXcs8n6InSVGoSCADJHlMh5v+ kAIdV8RZ3c1tiEMW3eQMSGmHmlHRRZSBUaltmXQv4DwHRSTsAjNTo02ixsMcHcRH 1v8QwxLSiYwEAfJ+feqPEQQC1etMNz2UwFlr6dAXwPsruAAV+pm11819G4Wtac7z MRtWkAEsQ04FhOKpsUunDuzd0WAr/VK1/3vQCbMy -----END CERTIFICATE-----Generated at Mon May 12 13:44:27 2025 by rpki-client