$ rpki-client -vvf rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3730303a3a2f34302d3430203d3e20343031363832.roa File: 323630343a6361303a3730303a3a2f34302d3430203d3e20343031363832.roa (raw, json) Hash identifier: sV0TYLsG4JqEV6/jg7GpzKVM1wAUnC6qfCMpAMZ8RwE= Subject key identifier: F7:1C:DC:0D:CE:CF:E6:DD:C5:86:11:9C:68:63:F2:09:D2:96:EE:7A Certificate issuer: /CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Certificate serial: 4465AE2C3BFEA87FC8F038627D4306F53773AEB5 Authority key identifier: 3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject info access: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3730303a3a2f34302d3430203d3e20343031363832.roa Signing time: Mon 28 Apr 2025 01:48:34 +0000 ROA not before: Mon 28 Apr 2025 01:43:34 +0000 ROA not after: Mon 27 Apr 2026 01:48:34 +0000 asID: 401682 IP address blocks: 2604:ca0:700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/4e962717-1138-4d2b-9442-0332e9060132.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 23:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:65:ae:2c:3b:fe:a8:7f:c8:f0:38:62:7d:43:06:f5:37:73:ae:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959 Validity Not Before: Apr 28 01:43:34 2025 GMT Not After : Apr 27 01:48:34 2026 GMT Subject: CN=F71CDC0DCECFE6DDC586119C6863F209D296EE7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:ca:e1:75:2b:e8:72:39:d1:27:53:73:09: 37:8e:a9:a7:21:ba:3b:18:aa:69:ff:d2:3f:c5:08: 4a:7d:90:30:67:1f:ed:fe:39:f1:d6:01:83:2d:b2: 47:95:5c:1f:30:ce:a9:52:f5:65:f8:dc:f9:a6:8a: 5d:0f:32:4b:e6:89:fe:44:23:01:16:8c:24:fb:21: de:ac:33:29:d9:d5:2c:d7:9e:7f:48:e6:85:e9:49: 5f:94:55:b5:c1:dd:80:30:f9:72:d8:6b:ac:fd:42: 33:62:67:a2:49:1f:39:f4:f7:7e:c7:0a:be:b2:41: 38:f2:09:dc:57:a7:78:e8:f9:f6:91:03:aa:ba:14: 45:94:86:19:a1:f2:7f:b1:dc:85:58:5e:4b:9d:b1: 79:9e:97:2b:7b:d9:a8:96:9a:4e:b2:45:3e:a2:73: b0:89:18:8e:e7:c6:76:3b:3c:b6:f5:96:89:83:39: c4:21:b2:76:21:e1:c6:d5:c8:ac:db:d8:05:82:60: 0b:21:d4:61:32:7b:4d:a6:0c:bc:76:f4:b4:4f:fa: 70:1e:ec:8d:c0:c0:9c:06:0b:7f:93:b0:1c:13:b5: a5:2a:cd:8b:f3:59:03:cc:68:d8:17:23:73:7a:69: 2d:d4:1d:4b:2d:ba:9c:43:1b:25:c9:03:e5:21:a7: 4e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1C:DC:0D:CE:CF:E6:DD:C5:86:11:9C:68:63:F2:09:D2:96:EE:7A X509v3 Authority Key Identifier: keyid:3B:A3:FB:89:3D:83:8A:15:71:8A:5B:C7:15:75:0C:ED:89:9E:FD:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3BA3FB893D838A15718A5BC715750CED899EFD1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/4e962717-1138-4d2b-9442-0332e9060132/e8741ac4f1ff9a0688f1b5bf1355e57883742534612356d959.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/323630343a6361303a3730303a3a2f34302d3430203d3e20343031363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:ca0:700::/40 Signature Algorithm: sha256WithRSAEncryption 86:b9:66:4f:f5:14:32:d5:69:0d:75:80:d9:61:e7:b1:d9:13: 09:44:30:e8:e2:ae:67:0c:63:2b:35:8f:1d:56:53:9e:5a:02: 41:a9:91:f7:3e:13:9c:4e:1c:c6:04:82:77:6d:22:d0:ab:62: 51:0f:d7:e9:63:f7:6c:51:07:59:eb:72:8f:81:af:e8:95:59: bc:9b:9d:e7:df:64:8f:c5:ee:f3:c9:15:76:1a:f4:a5:48:98: 26:0b:e2:99:71:22:d6:4c:19:9e:09:85:0f:f2:27:95:50:92: 57:a7:e1:f4:01:c2:83:d5:83:f9:27:bf:9a:38:bb:db:19:54: 4d:c9:c4:f8:55:4e:42:55:13:55:5a:68:ef:e4:43:d4:f2:6c: 6c:1c:0d:f3:d3:48:0f:7c:00:7c:5e:8a:8e:dc:97:6e:31:3a: ae:ec:19:e4:5f:ea:6a:63:6d:a7:42:d7:99:fa:91:3b:31:57: 5d:1d:49:5b:e7:02:f8:6c:4f:f3:92:5f:e7:4a:c8:d8:3d:14: 65:a7:59:02:53:9b:a6:bb:3f:7b:d6:22:b2:70:96:4f:f2:2d: 45:cf:80:04:74:b8:de:84:ad:30:b4:bd:70:6a:d2:ce:a2:bc: 43:cf:0c:50:e3:b0:6f:a8:c3:54:fa:45:a0:34:85:f2:5f:f4: b8:4e:8c:99 -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgIURGWuLDv+qH/I8DhifUMG9TdzrrUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZTg3NDFhYzRmMWZmOWEwNjg4ZjFiNWJmMTM1NWU1Nzg4 Mzc0MjUzNDYxMjM1NmQ5NTkwHhcNMjUwNDI4MDE0MzM0WhcNMjYwNDI3MDE0ODM0 WjAzMTEwLwYDVQQDEyhGNzFDREMwRENFQ0ZFNkREQzU4NjExOUM2ODYzRjIwOUQy OTZFRTdBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwC3K4XUr6HI5 0SdTcwk3jqmnIbo7GKpp/9I/xQhKfZAwZx/t/jnx1gGDLbJHlVwfMM6pUvVl+Nz5 popdDzJL5on+RCMBFowk+yHerDMp2dUs155/SOaF6UlflFW1wd2AMPly2Gus/UIz YmeiSR859Pd+xwq+skE48gncV6d46Pn2kQOquhRFlIYZofJ/sdyFWF5LnbF5npcr e9molppOskU+onOwiRiO58Z2Ozy29ZaJgznEIbJ2IeHG1cis29gFgmALIdRhMntN pgy8dvS0T/pwHuyNwMCcBgt/k7AcE7WlKs2L81kDzGjYFyNzemkt1B1LLbqcQxsl yQPlIadO0QIDAQABo4ICujCCArYwHQYDVR0OBBYEFPcc3A3Oz+bdxYYRnGhj8gnS lu56MB8GA1UdIwQYMBaAFDuj+4k9g4oVcYpbxxV1DO2Jnv0fMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5L2M1ZGE0MTNlNDQzODRkN2I4N2UwYTc0YjQyY2ExODY3LzAv M0JBM0ZCODkzRDgzOEExNTcxOEE1QkM3MTU3NTBDRUQ4OTlFRkQxRi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZDZiNWFkMjgtMWNiYy00N2FiLTkwNGUtNDUzNjFh NTQ4N2MzLzRlOTYyNzE3LTExMzgtNGQyYi05NDQyLTAzMzJlOTA2MDEzMi9lODc0 MWFjNGYxZmY5YTA2ODhmMWI1YmYxMzU1ZTU3ODgzNzQyNTM0NjEyMzU2ZDk1OS5j ZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS9jNWRhNDEzZTQ0Mzg0ZDdiODdlMGE3 NGI0MmNhMTg2Ny8wLzMyMzYzMDM0M2E2MzYxMzAzYTM3MzAzMDNhM2EyZjM0MzAy ZDM0MzAyMDNkM2UyMDM0MzAzMTM2MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACYEDKAHMA0GCSqG SIb3DQEBCwUAA4IBAQCGuWZP9RQy1WkNdYDZYeex2RMJRDDo4q5nDGMrNY8dVlOe WgJBqZH3PhOcThzGBIJ3bSLQq2JRD9fpY/dsUQdZ63KPga/olVm8m53n32SPxe7z yRV2GvSlSJgmC+KZcSLWTBmeCYUP8ieVUJJXp+H0AcKD1YP5J7+aOLvbGVRNycT4 VU5CVRNVWmjv5EPU8mxsHA3z00gPfAB8XoqO3JduMTqu7BnkX+pqY22nQteZ+pE7 MVddHUlb5wL4bE/zkl/nSsjYPRRlp1kCU5umuz971iKycJZP8i1Fz4AEdLjehK0w tL1watLOorxDzwxQ47BvqMNU+kWgNIXyX/S4ToyZ -----END CERTIFICATE-----Generated at Mon May 12 13:45:33 2025 by rpki-client