$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa File: 3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa (raw, json) Hash identifier: HJz1zw1JLGSYKoMaVtWKhhj3EW96CGUbi1mCHSu9M78= Subject key identifier: 02:88:2C:BB:EF:5D:E6:A2:FE:CE:22:59:3D:67:14:62:A7:2F:24:2F Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F43285849D430900C07A9017FFC262400 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa Signing time: Mon 12 May 2025 13:01:00 +0000 ROA not before: Mon 12 May 2025 13:01:00 +0000 ROA not after: Sun 10 Aug 2025 13:01:00 +0000 asID: 33668 IP address blocks: 68.36.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 10:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:d4:30:90:0c:07:a9:01:7f:fc:26:24:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: May 12 13:01:00 2025 GMT Not After : Aug 10 13:01:00 2025 GMT Subject: CN=641e46c9-e7c8-4cb5-a88c-e5b857980c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:f9:13:2e:cb:7e:fd:b7:6b:64:2b:fc:c7:4a: a5:39:92:72:ee:71:78:a9:9d:f4:25:74:05:ce:c1: 33:54:7d:1e:c6:65:82:4b:f9:e4:e7:3d:8f:78:75: 56:ea:e8:da:94:76:76:16:df:e8:25:2a:3d:38:f2: 39:06:ee:60:5f:84:8b:d9:30:3a:57:48:db:45:48: e2:7c:1b:0c:73:8c:7c:bb:2d:5f:1c:00:b6:2d:5d: 97:61:12:a8:e2:09:6f:66:04:4d:8a:e0:56:36:7d: a9:cc:ec:ba:84:a3:1a:73:8f:1f:bf:bb:98:d5:ed: d4:d5:18:e4:16:6b:dc:04:47:42:32:55:09:82:d7: e1:16:57:8b:f5:9b:f7:39:29:59:52:54:9d:10:5c: 7c:de:07:ea:b8:a4:98:4f:69:32:03:8d:02:f5:b5: fc:cd:06:6f:49:01:73:af:a1:4a:66:49:f4:69:06: bb:46:58:5a:07:7b:aa:11:10:d2:24:26:b8:fc:26: 3a:46:76:95:5e:1a:5a:d4:04:9c:70:57:7a:e0:28: fd:f8:43:64:04:10:52:f7:31:ad:cf:48:95:5d:7c: 1a:14:19:b3:d5:65:18:a8:34:e6:0b:0e:a3:4a:be: de:1c:af:fe:33:40:07:94:99:cc:3c:7d:31:1a:86: 09:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:88:2C:BB:EF:5D:E6:A2:FE:CE:22:59:3D:67:14:62:A7:2F:24:2F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/3888c3b6-c488-3aa8-b8f0-84da5b5c6b8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.36.220.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 96:b4:73:98:d0:d4:3b:43:35:86:dc:c1:32:fd:35:bb:2c:5c: 59:52:59:06:a3:b6:96:4c:de:38:32:e1:3e:ab:e3:65:dc:2d: 05:da:36:88:c0:ab:9d:78:d9:f6:ea:c9:51:8d:10:db:9b:89: 9b:f9:6c:01:bb:df:2f:7c:34:23:fa:eb:18:67:b8:02:1c:5c: a8:f8:ba:ea:f1:3f:7d:26:c3:ba:a5:72:89:0e:56:86:bf:25: a7:a9:54:f1:a8:30:ee:ce:bc:52:a9:17:3e:2a:c7:76:f1:a9: 4c:f6:26:ba:e7:9f:d9:d9:f9:cb:e1:c5:a0:f6:02:a5:1b:2d: 8d:20:6c:de:33:52:2e:2e:4c:90:64:24:e6:12:79:b4:d5:c2: 41:5c:6b:82:52:1f:1e:2e:94:cc:0f:4e:70:03:28:e1:0c:b9: a3:5f:79:13:5c:9d:24:d3:5f:1d:da:30:bc:69:48:e3:1a:92: 8d:a8:b9:f5:36:1b:bb:c9:3e:89:ff:79:0a:db:33:dc:5c:df: f8:ae:79:14:d6:84:7f:4f:7f:80:68:c7:9a:a4:28:f4:98:fc: 68:a4:74:d7:cc:83:3c:13:48:12:dc:7d:ec:5c:d4:1b:54:e6: d8:71:e2:2e:72:d6:6b:37:2c:1e:25:82:48:54:1c:6e:40:c9: a3:b4:36:21 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEnUMJAMB6kBf/wmJAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI1MDUxMjEzMDEwMFoXDTI1MDgxMDEzMDEwMFowLzEtMCsGA1UEAxMk NjQxZTQ2YzktZTdjOC00Y2I1LWE4OGMtZTViODU3OTgwYzg5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifkTLst+/bdrZCv8x0qlOZJy7nF4qZ30JXQF zsEzVH0exmWCS/nk5z2PeHVW6ujalHZ2Ft/oJSo9OPI5Bu5gX4SL2TA6V0jbRUji fBsMc4x8uy1fHAC2LV2XYRKo4glvZgRNiuBWNn2pzOy6hKMac48fv7uY1e3U1Rjk FmvcBEdCMlUJgtfhFleL9Zv3OSlZUlSdEFx83gfquKSYT2kyA40C9bX8zQZvSQFz r6FKZkn0aQa7RlhaB3uqERDSJCa4/CY6RnaVXhpa1ASccFd64Cj9+ENkBBBS9zGt z0iVXXwaFBmz1WUYqDTmCw6jSr7eHK/+M0AHlJnMPH0xGoYJfQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFAKILLvvXeai/s4iWT1nFGKnLyQvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvMzg4OGMzYjYtYzQ4OC0z YWE4LWI4ZjAtODRkYTViNWM2YjhiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCRCTcMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJa0c5jQ1DtDNYbcwTL9NbssXFlSWQajtpZM3jgy4T6r42XcLQXaNojA q5142fbqyVGNENubiZv5bAG73y98NCP66xhnuAIcXKj4uurxP30mw7qlcokOVoa/ JaepVPGoMO7OvFKpFz4qx3bxqUz2Jrrnn9nZ+cvhxaD2AqUbLY0gbN4zUi4uTJBk JOYSebTVwkFca4JSHx4ulMwPTnADKOEMuaNfeRNcnSTTXx3aMLxpSOMako2oufU2 G7vJPon/eQrbM9xc3/iueRTWhH9Pf4Box5qkKPSY/GikdNfMgzwTSBLcfexc1BtU 5thx4i5y1ms3LB4lgkhUHG5AyaO0NiE= -----END CERTIFICATE-----Generated at Mon Jun 30 03:31:36 2025 by rpki-client