$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa File: 7332e9a4-0787-3148-ac49-59abb3ffcd35.roa (raw, json) Hash identifier: rwV4OgL3li2gegNBKPyHms7tY+U1JvVGUJHtEiPAfto= Subject key identifier: D0:35:F0:D8:97:2C:08:18:B2:4C:41:6B:51:CC:21:FB:72:58:D9:08 Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F4328584A173009295F28A1C668FEFB80 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa Signing time: Thu 05 Jun 2025 13:01:03 +0000 ROA not before: Thu 05 Jun 2025 13:01:03 +0000 ROA not after: Wed 03 Sep 2025 13:01:03 +0000 asID: 398210 IP address blocks: 168.220.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:17:30:09:29:5f:28:a1:c6:68:fe:fb:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Jun 5 13:01:03 2025 GMT Not After : Sep 3 13:01:03 2025 GMT Subject: CN=3586213e-6983-447c-a73c-3d90280f7149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:05:3b:20:f3:e6:9c:ee:b3:73:1f:e5:22:7d: 19:4c:03:e5:c3:1f:fe:1e:3e:e1:ee:3e:f5:a2:d6: e5:c0:ca:ad:c4:01:61:d5:6d:5a:56:5e:48:f7:58: 14:3d:6b:02:c3:0a:58:e8:e2:34:22:02:4d:2c:2d: 53:9e:92:38:43:ac:30:80:49:11:88:f9:97:cd:a1: ab:c3:b3:14:3e:7b:8c:3e:08:bd:1b:ea:25:b7:c7: 8a:e0:5b:93:de:52:fd:0b:0e:25:47:d0:b6:43:7f: cd:51:07:ee:de:e8:20:b4:33:46:cd:2b:fb:b3:f4: 3c:26:f2:0d:c6:fa:14:fc:95:58:c2:0d:28:7a:78: 23:58:1a:61:65:a0:b2:aa:fa:77:01:f3:d6:7e:5e: 82:0f:82:d0:ff:c7:c7:5d:18:48:d3:84:10:de:b4: b4:3c:e4:57:1f:32:bb:6a:98:4d:c8:ba:c8:8e:49: 0c:6d:bd:cc:c5:e7:77:85:a7:36:ac:b6:8f:5b:7a: 6a:c5:b8:2d:46:17:80:4e:d6:a8:c2:59:98:e1:ac: 26:43:dd:9c:e6:a6:a4:58:59:90:c2:88:60:91:e4: b9:c3:32:34:50:0d:40:44:3d:af:ce:80:a4:70:6d: 26:6f:c1:1b:e0:67:ff:49:de:f0:5a:cf:1d:f0:88: d6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:35:F0:D8:97:2C:08:18:B2:4C:41:6B:51:CC:21:FB:72:58:D9:08 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/7332e9a4-0787-3148-ac49-59abb3ffcd35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.168.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0e:cb:0f:b8:94:d9:1d:f7:0a:45:41:d1:bc:0c:70:14:4d:2f: 13:e4:f2:53:6f:67:d4:3c:b6:f6:80:be:f8:ef:eb:89:21:24: 72:ed:c4:7a:5f:07:48:41:59:37:b4:18:a5:a9:89:fa:92:b9: 70:3a:f5:44:09:27:98:06:51:b2:c7:a2:08:db:52:d7:21:06: d7:4f:1e:61:10:d2:20:c3:54:d3:34:55:5c:fb:33:28:a3:8d: 73:ce:97:4f:23:fd:2e:c4:be:cc:b8:eb:22:e8:5c:f2:6a:ed: df:4d:3b:43:67:cb:f7:cc:0f:e7:2f:dd:bf:66:db:f9:b3:1c: fb:82:8c:e8:0e:bc:43:10:c6:f5:81:d2:52:3f:fd:f8:bb:a4: d6:14:e8:6a:2f:8f:84:75:6e:d7:d6:32:a0:2e:ce:03:c5:34: 2d:83:82:16:68:33:9c:9d:1c:91:c8:02:cb:0e:93:62:df:1f: 3d:d2:e3:28:de:ae:cc:c0:e6:d8:2b:53:01:98:91:d4:49:73: 57:b1:83:2d:6c:91:4e:59:c1:0a:99:cd:b1:95:3f:5f:70:5a: 44:f0:54:8e:7f:e3:63:e7:1a:0c:e0:83:ac:a6:30:be:7e:fa: 95:3a:d3:4f:a0:0e:48:f3:01:cc:bc:4a:98:e3:c0:92:01:0d: eb:97:dd:05 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEoXMAkpXyihxmj++4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI1MDYwNTEzMDEwM1oXDTI1MDkwMzEzMDEwM1owLzEtMCsGA1UEAxMk MzU4NjIxM2UtNjk4My00NDdjLWE3M2MtM2Q5MDI4MGY3MTQ5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhQU7IPPmnO6zcx/lIn0ZTAPlwx/+Hj7h7j71 otblwMqtxAFh1W1aVl5I91gUPWsCwwpY6OI0IgJNLC1TnpI4Q6wwgEkRiPmXzaGr w7MUPnuMPgi9G+olt8eK4FuT3lL9Cw4lR9C2Q3/NUQfu3uggtDNGzSv7s/Q8JvIN xvoU/JVYwg0oengjWBphZaCyqvp3AfPWfl6CD4LQ/8fHXRhI04QQ3rS0PORXHzK7 aphNyLrIjkkMbb3Mxed3hac2rLaPW3pqxbgtRheATtaowlmY4awmQ92c5qakWFmQ wohgkeS5wzI0UA1ARD2vzoCkcG0mb8Eb4Gf/Sd7wWs8d8IjWJwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNA18NiXLAgYskxBa1HMIftyWNkIMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvNzMzMmU5YTQtMDc4Ny0z MTQ4LWFjNDktNTlhYmIzZmZjZDM1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNyoMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAA7LD7iU2R33CkVB0bwMcBRNLxPk8lNvZ9Q8tvaAvvjv64khJHLtxHpf B0hBWTe0GKWpifqSuXA69UQJJ5gGUbLHogjbUtchBtdPHmEQ0iDDVNM0VVz7Myij jXPOl08j/S7Evsy46yLoXPJq7d9NO0Nny/fMD+cv3b9m2/mzHPuCjOgOvEMQxvWB 0lI//fi7pNYU6Govj4R1btfWMqAuzgPFNC2DghZoM5ydHJHIAssOk2LfHz3S4yje rszA5tgrUwGYkdRJc1exgy1skU5ZwQqZzbGVP19wWkTwVI5/42PnGgzgg6ymML5+ +pU600+gDkjzAcy8SpjjwJIBDeuX3QU= -----END CERTIFICATE-----Generated at Tue Jul 1 17:08:01 2025 by rpki-client