$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa File: 40be57dc-7156-3f97-b77b-4e30e5469063.roa (raw, json) Hash identifier: gFTr9x6mAXXp/SKy2r3q/7r8jAb9ahk9Bn5/lgPNiCQ= Subject key identifier: D3:F9:2E:D1:32:A3:BE:72:CC:15:89:AD:B7:CF:4E:FB:26:30:26:63 Certificate issuer: /CN=5bb89f91-a9a1-4d88-b9d0-f7882ea134a9 Certificate serial: 010D0C9F43285849BDDA24214428DCE6B6ABD040 Authority key identifier: CE:3A:6A:1D:7B:CD:04:74:BB:B3:D6:43:72:CF:AE:22:23:D4:A8:74 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa Signing time: Sun 04 May 2025 13:01:00 +0000 ROA not before: Sun 04 May 2025 13:01:00 +0000 ROA not after: Sat 02 Aug 2025 13:01:00 +0000 asID: 54911 IP address blocks: 104.171.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:bd:da:24:21:44:28:dc:e6:b6:ab:d0:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bb89f91-a9a1-4d88-b9d0-f7882ea134a9 Validity Not Before: May 4 13:01:00 2025 GMT Not After : Aug 2 13:01:00 2025 GMT Subject: CN=eb35de7e-de1c-4524-9bcf-627540bbb6b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:8e:0e:fa:05:63:38:18:ac:77:d6:bb:17:ac: 6e:31:6f:a8:88:ad:c0:e9:9f:03:bc:9c:4d:15:27: 7a:f1:2a:d0:a3:cd:43:26:d4:ed:15:e8:10:11:98: a9:11:3e:bb:0f:d7:73:87:b7:3e:72:4d:07:81:3d: 70:7c:e4:6e:58:db:37:84:3c:16:bb:bb:da:65:11: ec:9b:44:9d:fd:da:a9:f7:d7:0b:91:c0:64:db:02: fb:cf:57:0e:c6:88:f7:50:97:98:42:01:b0:98:df: 5e:da:1c:51:a1:e8:b1:4b:64:35:43:70:4a:e3:d1: 9d:dd:1d:86:a8:13:c8:85:b0:ac:49:24:72:24:3f: d9:57:7e:e4:27:e7:2d:ce:31:6b:67:02:ba:0e:93: 39:43:55:c9:1c:7f:b5:8a:6e:e3:2c:66:67:3e:67: 54:60:57:10:29:af:3c:46:0e:b4:6d:f3:db:cc:4d: 03:ff:4b:a2:d3:f2:45:bb:51:fd:b4:ef:99:bc:56: 23:d5:f4:bd:e8:dd:5b:74:17:f3:f5:af:e6:f2:ca: 74:f1:3b:b3:98:2e:fe:2c:6a:06:3e:96:2b:8c:b5: 25:e0:75:34:33:de:43:6e:d1:53:33:76:3b:02:ef: b7:4c:7b:31:c8:0a:f8:4b:a8:16:10:6f:a0:1a:6b: d5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F9:2E:D1:32:A3:BE:72:CC:15:89:AD:B7:CF:4E:FB:26:30:26:63 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/40be57dc-7156-3f97-b77b-4e30e5469063.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.crl X509v3 Authority Key Identifier: keyid:CE:3A:6A:1D:7B:CD:04:74:BB:B3:D6:43:72:CF:AE:22:23:D4:A8:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5bb89f91-a9a1-4d88-b9d0-f7882ea134a9.cer sbgp-ipAddrBlock: critical IPv4: 104.171.32.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8f:eb:95:a2:ab:34:49:6e:97:ad:07:4d:63:9a:e0:46:bb:70: 34:08:d2:0d:aa:c2:97:63:66:21:1d:6a:6f:d5:ba:c5:6a:1e: a8:77:96:b6:53:f2:a1:2e:56:4c:29:15:e4:a9:12:a5:f7:71: 4a:19:b7:e0:bf:30:9e:53:15:83:01:90:08:fd:9b:3c:f8:b0: 75:94:e8:2b:68:74:ff:e0:ed:db:e7:3f:95:d3:14:d3:5b:04: 4f:9f:77:e0:76:07:b0:98:e7:b4:6d:f5:2c:4e:cc:79:6c:60: d0:80:97:ca:fe:58:d2:83:f3:db:ef:02:31:68:ca:00:98:fe: c5:e1:a0:03:1a:1a:3f:6a:ba:d2:19:9c:ce:36:1b:14:7b:6d: 2e:5a:73:ac:92:8f:55:29:92:ea:5f:01:24:3c:43:c1:5a:ce: 6f:93:2a:bd:f7:26:2c:4e:eb:b3:fb:15:c5:3a:86:c6:68:b6: 03:74:86:91:75:0c:6f:53:91:ae:8a:8d:4b:ee:54:40:ed:cb: 74:ca:39:f0:42:3f:0b:f0:89:d3:d7:48:f0:2d:ae:39:a2:65: 83:49:1e:08:5b:2b:be:be:22:49:ce:d9:0a:a2:94:25:cf:cf: ea:d1:c6:cd:dd:01:ae:03:15:3a:f0:49:05:d0:33:f3:b8:a8: 8d:6b:91:11 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEm92iQhRCjc5rar0EAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWJiODlmOTEtYTlhMS00ZDg4LWI5ZDAtZjc4ODJlYTEz NGE5MB4XDTI1MDUwNDEzMDEwMFoXDTI1MDgwMjEzMDEwMFowLzEtMCsGA1UEAxMk ZWIzNWRlN2UtZGUxYy00NTI0LTliY2YtNjI3NTQwYmJiNmIxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjI4O+gVjOBisd9a7F6xuMW+oiK3A6Z8DvJxN FSd68SrQo81DJtTtFegQEZipET67D9dzh7c+ck0HgT1wfORuWNs3hDwWu7vaZRHs m0Sd/dqp99cLkcBk2wL7z1cOxoj3UJeYQgGwmN9e2hxRoeixS2Q1Q3BK49Gd3R2G qBPIhbCsSSRyJD/ZV37kJ+ctzjFrZwK6DpM5Q1XJHH+1im7jLGZnPmdUYFcQKa88 Rg60bfPbzE0D/0ui0/JFu1H9tO+ZvFYj1fS96N1bdBfz9a/m8sp08TuzmC7+LGoG PpYrjLUl4HU0M95DbtFTM3Y7Au+3THsxyAr4S6gWEG+gGmvVIwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNP5LtEyo75yzBWJrbfPTvsmMCZjMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi81YmI4 OWY5MS1hOWExLTRkODgtYjlkMC1mNzg4MmVhMTM0YTkvNDBiZTU3ZGMtNzE1Ni0z Zjk3LWI3N2ItNGUzMGU1NDY5MDYzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNWJiODlmOTEtYTlhMS00ZDg4LWI5 ZDAtZjc4ODJlYTEzNGE5LzViYjg5ZjkxLWE5YTEtNGQ4OC1iOWQwLWY3ODgyZWEx MzRhOS5jcmwwHwYDVR0jBBgwFoAUzjpqHXvNBHS7s9ZDcs+uIiPUqHQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi81YmI4OWY5MS1hOWExLTRkODgtYjlkMC1mNzg4 MmVhMTM0YTkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEaKsgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAI/rlaKrNElul60HTWOa4Ea7cDQI0g2qwpdjZiEdam/VusVqHqh3lrZT 8qEuVkwpFeSpEqX3cUoZt+C/MJ5TFYMBkAj9mzz4sHWU6CtodP/g7dvnP5XTFNNb BE+fd+B2B7CY57Rt9SxOzHlsYNCAl8r+WNKD89vvAjFoygCY/sXhoAMaGj9qutIZ nM42GxR7bS5ac6ySj1UpkupfASQ8Q8Fazm+TKr33JixO67P7FcU6hsZotgN0hpF1 DG9Tka6KjUvuVEDty3TKOfBCPwvwidPXSPAtrjmiZYNJHghbK76+IknO2QqilCXP z+rRxs3dAa4DFTrwSQXQM/O4qI1rkRE= -----END CERTIFICATE-----Generated at Sun May 11 01:30:10 2025 by rpki-client