$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/3d884570-87a9-34e5-b8d7-d777763d0b30.roa File: 3d884570-87a9-34e5-b8d7-d777763d0b30.roa (raw, json) Hash identifier: hXey+GcYq8aN3CSGI78VHTZHkyDY3We+Utg3f5kqeJ0= Subject key identifier: F2:FD:D6:FF:EC:D6:F0:8B:68:7D:33:70:2C:4B:44:20:4A:05:DD:F4 Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F432858499AF486E840C638907BD1DF00 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/3d884570-87a9-34e5-b8d7-d777763d0b30.roa Signing time: Tue 22 Apr 2025 01:00:47 +0000 ROA not before: Tue 22 Apr 2025 01:00:47 +0000 ROA not after: Mon 21 Jul 2025 01:00:47 +0000 asID: 394437 IP address blocks: 72.20.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 05:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:9a:f4:86:e8:40:c6:38:90:7b:d1:df:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Apr 22 01:00:47 2025 GMT Not After : Jul 21 01:00:47 2025 GMT Subject: CN=31f0fd11-4a2e-4a44-8aff-995e90e5fff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2c:26:9f:9c:e2:01:b2:fb:a6:99:19:b2:19: 80:95:4a:aa:e5:d3:d6:c6:a3:8b:ee:5a:88:42:37: 31:f2:59:f5:82:f6:cb:57:96:4b:4c:49:20:74:aa: 36:37:1c:48:87:b3:3f:e5:21:ba:c9:52:23:b9:38: 48:19:ca:a7:00:ee:ba:7e:54:44:70:47:62:f7:8b: 8a:4b:d0:7a:dc:01:66:00:fe:9c:ba:45:dc:c6:23: 57:ac:c3:98:b7:1a:9e:be:87:13:e1:ae:7d:06:c5: 64:79:a9:74:1e:4a:e3:23:30:4d:a4:b2:00:7d:26: 78:0f:fa:33:72:7b:cc:72:43:22:93:4e:a4:8c:83: 71:73:df:d1:9a:5b:57:00:11:f0:72:b2:6b:6f:9c: 17:d3:9b:e4:fd:28:ab:94:88:22:d1:85:d3:d1:b1: 60:38:76:c7:b7:b8:c1:07:ef:e2:2a:f9:39:bc:f7: b7:68:1e:ed:69:13:1c:7b:59:98:84:f2:7b:4f:e2: d2:00:b4:42:de:62:3a:0b:99:54:a9:61:1b:63:4a: c7:db:93:5f:40:2a:6f:a0:78:c2:64:78:f7:6c:6d: db:13:2d:0c:37:e6:a0:d9:61:22:41:4a:90:02:f2: ed:36:af:52:3b:5f:45:c8:50:f0:39:ab:c9:eb:ec: a5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FD:D6:FF:EC:D6:F0:8B:68:7D:33:70:2C:4B:44:20:4A:05:DD:F4 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/3d884570-87a9-34e5-b8d7-d777763d0b30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 72.20.133.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7e:b8:86:54:13:af:af:ed:56:9c:72:21:d4:39:40:09:3f:74: d3:15:5a:42:b5:46:34:29:0a:8d:13:2e:ac:68:c1:c7:31:c7: 25:9d:4a:a1:e7:7f:98:3c:35:6f:3a:a9:77:b6:6b:4a:90:a4: bd:3a:e9:0e:49:d7:e2:a5:84:f0:5a:3b:1d:a7:1a:d5:3d:5e: b8:15:b5:b4:c9:00:e0:19:29:11:59:aa:81:58:42:c3:2d:4e: ed:32:fe:38:f5:38:bb:72:6b:23:83:b4:47:ce:df:40:73:a6: 32:a0:9c:fe:71:18:b2:b3:75:69:8b:00:ed:23:ae:d8:ec:90: 80:40:de:e1:78:0a:e0:92:e8:fe:5c:00:05:00:0b:7a:db:66: 1a:95:f6:32:f7:23:8d:66:e6:d0:cb:34:30:26:97:50:af:03: c3:30:c0:bf:bf:2f:5e:dd:e9:0b:7a:fb:9c:46:ee:65:53:a0: 0a:82:db:0c:5b:c2:c1:a1:e3:7c:5d:4d:92:9a:ba:19:fb:55: 25:b5:95:1f:c5:b5:7f:3b:33:65:8b:08:f4:21:86:13:ac:ac: 0b:72:82:7b:23:27:bb:51:c6:9f:66:13:fc:16:a7:d5:81:7d: 1d:c5:18:d6:fa:05:e0:8d:4c:d8:ea:ad:c7:a0:5d:5d:eb:bd: 9d:e8:ab:a3 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEma9IboQMY4kHvR3wAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI1MDQyMjAxMDA0N1oXDTI1MDcyMTAxMDA0N1owLzEtMCsGA1UEAxMk MzFmMGZkMTEtNGEyZS00YTQ0LThhZmYtOTk1ZTkwZTVmZmY4MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSwmn5ziAbL7ppkZshmAlUqq5dPWxqOL7lqI Qjcx8ln1gvbLV5ZLTEkgdKo2NxxIh7M/5SG6yVIjuThIGcqnAO66flREcEdi94uK S9B63AFmAP6cukXcxiNXrMOYtxqevocT4a59BsVkeal0HkrjIzBNpLIAfSZ4D/oz cnvMckMik06kjINxc9/RmltXABHwcrJrb5wX05vk/SirlIgi0YXT0bFgOHbHt7jB B+/iKvk5vPe3aB7taRMce1mYhPJ7T+LSALRC3mI6C5lUqWEbY0rH25NfQCpvoHjC ZHj3bG3bEy0MN+ag2WEiQUqQAvLtNq9SO19FyFDwOavJ6+yloQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFPL91v/s1vCLaH0zcCxLRCBKBd30MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvM2Q4ODQ1NzAtODdhOS0z NGU1LWI4ZDctZDc3Nzc2M2QwYjMwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSFMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAH64hlQTr6/tVpxyIdQ5QAk/dNMVWkK1RjQpCo0TLqxowccxxyWdSqHn f5g8NW86qXe2a0qQpL066Q5J1+KlhPBaOx2nGtU9XrgVtbTJAOAZKRFZqoFYQsMt Tu0y/jj1OLtyayODtEfO30BzpjKgnP5xGLKzdWmLAO0jrtjskIBA3uF4CuCS6P5c AAUAC3rbZhqV9jL3I41m5tDLNDAml1CvA8MwwL+/L17d6Qt6+5xG7mVToAqC2wxb wsGh43xdTZKauhn7VSW1lR/FtX87M2WLCPQhhhOsrAtygnsjJ7tRxp9mE/wWp9WB fR3FGNb6BeCNTNjqrcegXV3rvZ3oq6M= -----END CERTIFICATE-----Generated at Mon May 12 02:23:07 2025 by rpki-client