$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/fdfb5184-61d0-3a3d-93b7-6a34a00328a7.roa File: fdfb5184-61d0-3a3d-93b7-6a34a00328a7.roa (raw, json) Hash identifier: 5vwEuoTjUZPDVuGONeWBI30P20z8Es76o7utKee4u9w= Subject key identifier: 82:77:8F:D3:92:26:F2:11:D2:AA:E6:E5:2C:09:F7:29:21:09:0C:4D Certificate issuer: /CN=bad5af20-8385-44d4-815f-bb83497d4a0e Certificate serial: 010D0C9F4328584A49706B11C22CDCDC3C767A80 Authority key identifier: 11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/fdfb5184-61d0-3a3d-93b7-6a34a00328a7.roa Signing time: Mon 23 Jun 2025 13:01:03 +0000 ROA not before: Mon 23 Jun 2025 13:01:03 +0000 ROA not after: Sun 21 Sep 2025 13:01:03 +0000 asID: 21777 IP address blocks: 199.189.28.0/23 maxlen: 24 207.174.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:49:70:6b:11:c2:2c:dc:dc:3c:76:7a:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bad5af20-8385-44d4-815f-bb83497d4a0e Validity Not Before: Jun 23 13:01:03 2025 GMT Not After : Sep 21 13:01:03 2025 GMT Subject: CN=e2d47b34-431a-4dcb-a7e5-be2a2eac80e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:69:32:a2:38:0f:a2:c8:07:4d:6c:f7:d1:00: 97:44:07:51:e3:16:0f:00:57:b9:d0:d7:03:73:73: d9:5b:06:fa:97:b0:a3:28:72:6a:07:64:02:08:1a: 32:c1:94:97:5f:60:dc:b6:77:e8:af:b4:fa:56:e4: c0:75:b4:10:21:11:f8:39:bd:22:a0:cb:6d:3e:78: 32:7f:fe:b5:c8:b6:3a:ef:6d:5b:7e:70:f5:d2:39: 5b:b3:2b:6e:a4:b4:e4:d6:b3:6a:a7:74:2a:4a:eb: 8d:23:7f:62:38:b6:41:2b:60:25:01:7d:a3:11:8c: 8b:79:17:74:fb:22:01:da:2e:fb:88:58:e8:bc:9c: d3:ac:c2:b7:c9:bf:34:ff:43:e4:0d:7b:ec:bb:64: 65:0f:0d:ab:e9:90:24:9c:e3:80:f6:c9:07:0d:53: 53:67:64:15:5a:ff:c8:f7:ee:6c:55:e5:8a:8c:6d: 56:bb:ed:79:82:e3:7f:ce:1c:dc:e9:9c:c0:f7:fc: 39:8b:6c:7a:7e:64:16:ea:ec:79:fc:40:de:39:31: 11:7a:0e:88:04:c5:e3:7e:2f:69:8c:77:bd:6c:49: 76:46:eb:ec:51:12:1f:ab:09:a8:e9:2e:64:d0:9e: 73:d3:99:0d:22:90:1d:55:d9:04:3a:96:37:85:ae: 2a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:77:8F:D3:92:26:F2:11:D2:AA:E6:E5:2C:09:F7:29:21:09:0C:4D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/fdfb5184-61d0-3a3d-93b7-6a34a00328a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl X509v3 Authority Key Identifier: keyid:11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer sbgp-ipAddrBlock: critical IPv4: 199.189.28.0/23 207.174.110.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 24:ba:14:3a:60:96:9f:a1:33:5e:c4:0c:f6:bd:93:79:92:16: 40:24:75:53:c6:63:31:0f:3b:da:ad:ab:07:6c:b1:cc:8c:00: 1d:00:a2:74:fe:d7:8d:6e:48:d3:0a:4b:7f:26:f0:3c:f9:c1: 13:4e:bc:f9:69:36:33:29:1e:36:76:75:0a:e3:26:53:69:bf: 2e:4e:53:04:ec:1a:94:1e:82:44:08:aa:44:4c:79:0b:3d:6d: 65:e3:1d:da:86:d6:43:e6:9e:1f:62:ee:d2:56:c3:84:23:a9: f8:f8:04:60:fe:82:a7:4a:de:b3:c2:8d:b4:b9:d8:34:bc:c9: 4c:af:d5:9f:0a:ed:17:6d:c7:af:95:50:3b:e4:65:0a:ea:cb: 0a:59:a8:29:bf:37:4e:d0:18:7c:10:3a:e3:db:8b:68:fa:05: bd:b7:a2:22:c2:95:15:3a:55:e4:19:9c:a7:5d:fa:ea:97:37: 07:3b:c4:9e:18:77:5f:bd:25:48:93:0c:f3:b7:14:76:9b:8f: 91:07:6f:97:ba:13:d2:b9:13:7a:d7:32:28:37:4f:5e:c2:59: 6d:d7:1e:05:f4:f6:02:64:57:47:14:69:bf:6f:38:54:14:a3: 4e:5c:ef:56:08:d3:5c:1a:fb:e2:a6:48:dd:ad:6a:4c:24:a5: 61:c8:a7:d9 -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWEpJcGsRwizc3Dx2eoAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmFkNWFmMjAtODM4NS00NGQ0LTgxNWYtYmI4MzQ5N2Q0 YTBlMB4XDTI1MDYyMzEzMDEwM1oXDTI1MDkyMTEzMDEwM1owLzEtMCsGA1UEAxMk ZTJkNDdiMzQtNDMxYS00ZGNiLWE3ZTUtYmUyYTJlYWM4MGU2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhWkyojgPosgHTWz30QCXRAdR4xYPAFe50NcD c3PZWwb6l7CjKHJqB2QCCBoywZSXX2Dctnfor7T6VuTAdbQQIRH4Ob0ioMttPngy f/61yLY6721bfnD10jlbsytupLTk1rNqp3QqSuuNI39iOLZBK2AlAX2jEYyLeRd0 +yIB2i77iFjovJzTrMK3yb80/0PkDXvsu2RlDw2r6ZAknOOA9skHDVNTZ2QVWv/I 9+5sVeWKjG1Wu+15guN/zhzc6ZzA9/w5i2x6fmQW6ux5/EDeOTEReg6IBMXjfi9p jHe9bEl2RuvsURIfqwmo6S5k0J5z05kNIpAdVdkEOpY3ha4qLQIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFIJ3j9OSJvIR0qrm5SwJ9ykhCQxNMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1 YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgzNDk3ZDRhMGUvZmRmYjUxODQtNjFkMC0z YTNkLTkzYjctNmEzNGEwMDMyOGE3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvYmFkNWFmMjAtODM4NS00NGQ0LTgx NWYtYmI4MzQ5N2Q0YTBlL2JhZDVhZjIwLTgzODUtNDRkNC04MTVmLWJiODM0OTdk NGEwZS5jcmwwHwYDVR0jBBgwFoAUEapw8wRQo6yCOXMUtq3WNdHdOZQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgz NDk3ZDRhMGUuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBx70cAwQB z65uMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBACS6FDpglp+hM17EDPa9k3mSFkAkdVPGYzEPO9qtqwdsscyM AB0AonT+141uSNMKS38m8Dz5wRNOvPlpNjMpHjZ2dQrjJlNpvy5OUwTsGpQegkQI qkRMeQs9bWXjHdqG1kPmnh9i7tJWw4Qjqfj4BGD+gqdK3rPCjbS52DS8yUyv1Z8K 7Rdtx6+VUDvkZQrqywpZqCm/N07QGHwQOuPbi2j6Bb23oiLClRU6VeQZnKdd+uqX Nwc7xJ4Yd1+9JUiTDPO3FHabj5EHb5e6E9K5E3rXMig3T17CWW3XHgX09gJkV0cU ab9vOFQUo05c71YI01wa++KmSN2takwkpWHIp9k= -----END CERTIFICATE-----Generated at Thu Jul 3 06:50:43 2025 by rpki-client