$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa File: 74043b36-4da5-3e84-b21c-ebd4075cbecb.roa (raw, json) Hash identifier: Y3fgXkT6LP9AMqzSTAtDMvc0wLzI/hfRDQzjPiCO1UU= Subject key identifier: 5D:B5:AD:CA:5F:38:C0:5B:7B:02:41:77:0A:AD:7A:3E:61:0A:A1:7A Certificate issuer: /CN=86fea470-b380-45c0-9f6b-033b7d884388 Certificate serial: 010D0C9F43285849C904F5794031432739C63340 Authority key identifier: 08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa Signing time: Thu 08 May 2025 13:01:00 +0000 ROA not before: Thu 08 May 2025 13:01:00 +0000 ROA not after: Wed 06 Aug 2025 13:01:00 +0000 asID: 33333 IP address blocks: 67.220.64.0/19 maxlen: 24 68.168.16.0/20 maxlen: 24 69.42.208.0/20 maxlen: 24 186.190.208.0/20 maxlen: 24 2607:3b40::/32 maxlen: 48 2607:f5a0::/32 maxlen: 48 2607:ffd8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:c9:04:f5:79:40:31:43:27:39:c6:33:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86fea470-b380-45c0-9f6b-033b7d884388 Validity Not Before: May 8 13:01:00 2025 GMT Not After : Aug 6 13:01:00 2025 GMT Subject: CN=05179de7-6671-44e3-a74f-8e0cba97dbb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:fd:44:24:1d:95:a8:96:fe:97:58:40:c4:b5: 6f:2c:f8:47:7b:27:e5:27:c2:c1:ef:46:d9:97:9e: 5f:3f:8e:80:a1:27:d2:95:38:aa:87:ee:29:7a:6e: a0:c0:9d:d5:84:94:03:66:99:18:17:fa:96:32:57: 50:6e:ed:92:cc:cf:42:f0:27:dc:e5:8a:b7:d5:11: 09:1e:e8:ae:5d:a5:61:7f:63:e3:d4:e8:9d:09:54: 28:cf:ca:d7:9c:3f:5a:f3:3c:ec:e7:98:ea:09:e0: 45:c6:7f:6d:33:21:ce:38:12:18:ed:fc:94:36:83: 5a:14:c1:36:cb:b2:70:9c:67:b0:6e:1e:bc:f4:b9: 64:22:cf:4b:fe:b6:d2:0f:91:88:84:65:4a:39:9e: 01:0f:60:0f:1f:3e:06:cc:b0:01:ae:2f:10:7f:d2: bc:e6:83:ca:2c:f7:92:f0:d6:3b:3e:bb:e6:de:10: 93:bf:2b:14:8c:42:a6:8b:d6:d5:b4:6b:55:e9:3f: db:39:31:6f:c7:8d:78:3b:37:7a:99:0f:f5:ed:2c: a7:b5:50:1c:49:42:84:aa:46:32:84:b3:ee:64:2a: b0:30:91:96:10:6b:8c:07:f0:47:27:9c:64:00:a5: 0d:dd:c7:9a:d0:ec:8c:d3:47:fb:a7:86:de:25:61: 5c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B5:AD:CA:5F:38:C0:5B:7B:02:41:77:0A:AD:7A:3E:61:0A:A1:7A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/74043b36-4da5-3e84-b21c-ebd4075cbecb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl X509v3 Authority Key Identifier: keyid:08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer sbgp-ipAddrBlock: critical IPv4: 67.220.64.0/19 68.168.16.0/20 69.42.208.0/20 186.190.208.0/20 IPv6: 2607:3b40::/32 2607:f5a0::/32 2607:ffd8::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption ae:8f:d7:56:44:86:76:f7:40:3d:f0:a7:17:09:10:5d:7e:08: aa:f2:3c:06:78:e8:31:7d:13:fc:af:90:3f:61:59:f0:2c:73: a8:10:95:a1:6a:9c:74:95:92:07:c4:9a:7c:b4:ff:c0:76:2b: 16:f8:4c:2a:fb:d7:32:7b:3d:7e:23:c5:d0:da:6f:d2:4e:a3: 5b:55:83:ce:09:b4:0b:e8:69:f4:ff:58:ff:8b:b2:27:9d:74: 6c:43:6d:7c:a0:b9:f0:f0:c0:31:5f:6f:19:3b:b1:e5:5e:c0: b7:1c:24:c7:16:e8:b9:96:a2:13:2a:b6:4c:55:1e:0a:81:4f: d0:16:03:da:25:c6:a5:83:7f:de:ab:a0:a8:94:e1:88:34:d0: 85:7a:89:d5:c4:b9:4e:2c:c6:1b:62:63:39:a7:40:4d:5b:de: 08:37:2b:e0:5f:b3:9e:7d:24:c1:7d:3b:ad:48:05:f3:78:49: 25:35:90:29:d5:d7:3f:84:92:a2:c1:7c:00:0b:60:a2:ad:11: 0c:61:a9:71:02:e6:f8:bd:c4:71:01:e9:08:4a:ee:98:1d:eb: 7d:cf:ec:47:af:2c:ba:0b:21:82:c3:ba:92:13:60:40:2e:d5: 25:40:56:5c:a4:de:fd:0b:6c:0f:61:ef:78:15:cf:62:db:8e: 5c:59:b7:9e -----BEGIN CERTIFICATE----- MIIGcjCCBVqgAwIBAgIUAQ0Mn0MoWEnJBPV5QDFDJznGM0AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkODZmZWE0NzAtYjM4MC00NWMwLTlmNmItMDMzYjdkODg0 Mzg4MB4XDTI1MDUwODEzMDEwMFoXDTI1MDgwNjEzMDEwMFowLzEtMCsGA1UEAxMk MDUxNzlkZTctNjY3MS00NGUzLWE3NGYtOGUwY2JhOTdkYmIxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiv1EJB2VqJb+l1hAxLVvLPhHeyflJ8LB70bZ l55fP46AoSfSlTiqh+4pem6gwJ3VhJQDZpkYF/qWMldQbu2SzM9C8Cfc5Yq31REJ HuiuXaVhf2Pj1OidCVQoz8rXnD9a8zzs55jqCeBFxn9tMyHOOBIY7fyUNoNaFME2 y7JwnGewbh689LlkIs9L/rbSD5GIhGVKOZ4BD2APHz4GzLABri8Qf9K85oPKLPeS 8NY7Prvm3hCTvysUjEKmi9bVtGtV6T/bOTFvx414Ozd6mQ/17SyntVAcSUKEqkYy hLPuZCqwMJGWEGuMB/BHJ5xkAKUN3cea0OyM00f7p4beJWFcWwIDAQABo4IDhDCC A4AwHQYDVR0OBBYEFF21rcpfOMBbewJBdwqtej5hCqF6MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS84NmZl YTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNiN2Q4ODQzODgvNzQwNDNiMzYtNGRhNS0z ZTg0LWIyMWMtZWJkNDA3NWNiZWNiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy82OWZkMDE1Ni1i YjFmLTQ4YjYtYmYzMi1jOTQ5MjI4NmYxOTUvODZmZWE0NzAtYjM4MC00NWMwLTlm NmItMDMzYjdkODg0Mzg4Lzg2ZmVhNDcwLWIzODAtNDVjMC05ZjZiLTAzM2I3ZDg4 NDM4OC5jcmwwHwYDVR0jBBgwFoAUCHSKMQk8LElEoS6K1lyekgQBzxYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhi Ni1iZjMyLWM5NDkyMjg2ZjE5NS84NmZlYTQ3MC1iMzgwLTQ1YzAtOWY2Yi0wMzNi N2Q4ODQzODguY2VyME4GCCsGAQUFBwEHAQH/BD8wPTAeBAIAATAYAwQFQ9xAAwQE RKgQAwQERSrQAwQEur7QMBsEAgACMBUDBQAmBztAAwUAJgf1oAMFACYH/9gwVAYD VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3 dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF AAOCAQEAro/XVkSGdvdAPfCnFwkQXX4IqvI8BnjoMX0T/K+QP2FZ8CxzqBCVoWqc dJWSB8SafLT/wHYrFvhMKvvXMns9fiPF0Npv0k6jW1WDzgm0C+hp9P9Y/4uyJ510 bENtfKC58PDAMV9vGTux5V7AtxwkxxbouZaiEyq2TFUeCoFP0BYD2iXGpYN/3qug qJThiDTQhXqJ1cS5TizGG2JjOadATVveCDcr4F+znn0kwX07rUgF83hJJTWQKdXX P4SSosF8AAtgoq0RDGGpcQLm+L3EcQHpCErumB3rfc/sR68sugshgsO6khNgQC7V JUBWXKTe/QtsD2HveBXPYtuOXFm3ng== -----END CERTIFICATE-----Generated at Mon May 12 17:45:40 2025 by rpki-client