$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/5339e6b4-20a4-3e12-b267-e7013b1ce0d7.roa File: 5339e6b4-20a4-3e12-b267-e7013b1ce0d7.roa (raw, json) Hash identifier: ZU3Ftt+Jw8ebNVMWkjYXTyJ4MwCflZQb9XK1X6pvj84= Subject key identifier: 12:A0:ED:45:AA:22:52:B4:0F:59:72:93:8D:34:2E:D5:A8:7D:BC:92 Certificate issuer: /CN=8583e379-1578-4044-8426-ddcb4a4a8192 Certificate serial: 010D0C9F432858497C3EEF4B4EB7737B570D2260 Authority key identifier: 89:C7:5F:3F:CE:A7:5D:0D:C3:10:F9:23:2C:65:92:27:0C:63:1D:62 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/5339e6b4-20a4-3e12-b267-e7013b1ce0d7.roa Signing time: Fri 11 Apr 2025 01:00:48 +0000 ROA not before: Fri 11 Apr 2025 01:00:48 +0000 ROA not after: Thu 10 Jul 2025 01:00:48 +0000 asID: 64200 IP address blocks: 67.21.34.0/23 maxlen: 24 192.154.192.0/21 maxlen: 24 192.154.208.0/22 maxlen: 24 192.154.212.0/24 maxlen: 24 192.154.215.0/24 maxlen: 24 192.154.216.0/21 maxlen: 24 192.154.232.0/21 maxlen: 24 192.154.240.0/24 maxlen: 24 192.154.242.0/23 maxlen: 24 192.154.244.0/22 maxlen: 24 192.154.249.0/24 maxlen: 24 192.154.251.0/24 maxlen: 24 192.154.252.0/24 maxlen: 24 199.188.88.0/21 maxlen: 24 2604:8180::/31 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/8583e379-1578-4044-8426-ddcb4a4a8192.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/8583e379-1578-4044-8426-ddcb4a4a8192.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:7c:3e:ef:4b:4e:b7:73:7b:57:0d:22:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8583e379-1578-4044-8426-ddcb4a4a8192 Validity Not Before: Apr 11 01:00:48 2025 GMT Not After : Jul 10 01:00:48 2025 GMT Subject: CN=48ee1f23-7106-4cbc-a392-deb4188be24b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:56:61:9b:3f:44:b9:31:dc:9e:e1:7f:db:3e: d7:3b:4b:82:10:6b:52:94:9c:df:c2:50:80:5a:a8: df:0b:2e:06:a7:8d:76:28:07:7c:df:f2:53:45:51: 48:b4:05:25:b2:38:10:83:06:77:79:c5:87:ae:00: 01:d5:6c:22:82:8c:88:18:9c:e0:e3:ea:e6:cf:aa: 0e:fc:38:8e:eb:af:12:ca:56:d4:e6:69:e4:b2:77: c0:b6:e0:20:ae:3a:76:71:9d:d4:90:d8:00:89:16: b5:1b:66:a1:20:45:06:d4:c6:34:fc:47:18:07:37: f1:8c:59:6e:4d:9c:51:6a:13:98:85:c1:0c:94:17: 11:6d:d9:28:43:46:02:c6:ae:87:8c:d4:70:7e:55: 91:3d:1d:f9:e0:56:b8:ac:b1:95:f0:d0:f5:9a:3c: 33:9d:51:38:43:d7:d0:0a:a6:4b:2c:7b:d6:21:37: c3:92:0a:b2:99:0d:0e:1f:60:77:ba:54:b9:e7:61: 93:b3:a3:27:a7:91:9d:be:8d:b0:2f:22:a2:2b:00: a1:54:73:47:21:b9:48:03:62:c6:0a:71:79:2b:03: 5d:eb:34:5f:3b:80:b4:8f:44:dd:99:c6:45:30:99: c6:e1:be:d2:87:33:3d:2f:dd:a2:e3:2e:97:51:6a: e5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A0:ED:45:AA:22:52:B4:0F:59:72:93:8D:34:2E:D5:A8:7D:BC:92 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/5339e6b4-20a4-3e12-b267-e7013b1ce0d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/8583e379-1578-4044-8426-ddcb4a4a8192.crl X509v3 Authority Key Identifier: keyid:89:C7:5F:3F:CE:A7:5D:0D:C3:10:F9:23:2C:65:92:27:0C:63:1D:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192.cer sbgp-ipAddrBlock: critical IPv4: 67.21.34.0/23 192.154.192.0/21 192.154.208.0-192.154.212.255 192.154.215.0-192.154.223.255 192.154.232.0-192.154.240.255 192.154.242.0-192.154.247.255 192.154.249.0/24 192.154.251.0-192.154.252.255 199.188.88.0/21 IPv6: 2604:8180::/31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 03:41:33:74:b4:72:bd:7e:c6:65:29:41:2f:a0:5f:84:2b:3c: e9:54:dc:32:1b:2c:1a:16:f6:2b:52:c1:bd:63:f0:de:ee:9e: 60:86:8c:53:4c:51:a5:d2:49:ab:c9:39:d6:e8:b9:7b:d9:19: e0:d6:b0:e3:ba:ef:99:8f:ff:d8:43:ae:36:e0:5d:a6:30:82: b1:f0:68:02:b3:8f:78:12:80:f5:33:bc:3c:48:7e:93:21:d1: 59:c9:34:81:21:26:b9:ab:98:72:9d:93:87:63:b7:f8:c4:81: 8a:f1:9a:70:5c:eb:b5:f9:9d:86:0e:37:52:c6:5f:79:68:18: 43:75:16:ac:5a:01:9c:93:73:d6:a3:79:57:93:80:c5:3f:ac: eb:62:d2:d3:da:25:57:0f:cf:03:c6:7b:d3:5f:88:5c:f9:17: 9b:3e:2e:5b:95:ee:f8:60:f2:c4:6d:fd:a0:a6:4e:b7:64:bb: 97:b0:c5:da:ad:88:4a:3a:78:72:62:cb:de:a3:3c:95:ce:af: af:ec:fe:23:9b:de:cd:73:61:c1:84:9b:9a:b5:a6:dd:a9:dc: 26:b1:f8:f2:41:35:ce:01:d6:66:54:81:d4:1f:8d:3b:25:3b: 5f:8c:00:b1:9b:c7:f0:1b:99:f0:80:40:ea:c9:69:e3:02:e1: 62:d1:77:f5 -----BEGIN CERTIFICATE----- MIIGqzCCBZOgAwIBAgIUAQ0Mn0MoWEl8Pu9LTrdze1cNImAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkODU4M2UzNzktMTU3OC00MDQ0LTg0MjYtZGRjYjRhNGE4 MTkyMB4XDTI1MDQxMTAxMDA0OFoXDTI1MDcxMDAxMDA0OFowLzEtMCsGA1UEAxMk NDhlZTFmMjMtNzEwNi00Y2JjLWEzOTItZGViNDE4OGJlMjRiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhFZhmz9EuTHcnuF/2z7XO0uCEGtSlJzfwlCA WqjfCy4Gp412KAd83/JTRVFItAUlsjgQgwZ3ecWHrgAB1WwigoyIGJzg4+rmz6oO /DiO668SylbU5mnksnfAtuAgrjp2cZ3UkNgAiRa1G2ahIEUG1MY0/EcYBzfxjFlu TZxRahOYhcEMlBcRbdkoQ0YCxq6HjNRwflWRPR354Fa4rLGV8ND1mjwznVE4Q9fQ CqZLLHvWITfDkgqymQ0OH2B3ulS552GTs6Mnp5Gdvo2wLyKiKwChVHNHIblIA2LG CnF5KwNd6zRfO4C0j0TdmcZFMJnG4b7ShzM9L92i4y6XUWrlBwIDAQABo4IDvTCC A7kwHQYDVR0OBBYEFBKg7UWqIlK0D1lyk400LtWofbySMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS84NTgz ZTM3OS0xNTc4LTQwNDQtODQyNi1kZGNiNGE0YTgxOTIvNTMzOWU2YjQtMjBhNC0z ZTEyLWIyNjctZTcwMTNiMWNlMGQ3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvODU4M2UzNzktMTU3OC00MDQ0LTg0 MjYtZGRjYjRhNGE4MTkyLzg1ODNlMzc5LTE1NzgtNDA0NC04NDI2LWRkY2I0YTRh ODE5Mi5jcmwwHwYDVR0jBBgwFoAUicdfP86nXQ3DEPkjLGWSJwxjHWIwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS84NTgzZTM3OS0xNTc4LTQwNDQtODQyNi1kZGNi NGE0YTgxOTIuY2VyMIGGBggrBgEFBQcBBwEB/wR3MHUwZAQCAAEwXgMEAUMVIgME A8CawDAMAwQEwJrQAwQAwJrUMAwDBADAmtcDBAXAmsAwDAMEA8Ca6AMEAMCa8DAM AwQBwJryAwQDwJrwAwQAwJr5MAwDBADAmvsDBADAmvwDBAPHvFgwDQQCAAIwBwMF ASYEgYAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixo dHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkq hkiG9w0BAQsFAAOCAQEAA0EzdLRyvX7GZSlBL6BfhCs86VTcMhssGhb2K1LBvWPw 3u6eYIaMU0xRpdJJq8k51ui5e9kZ4Naw47rvmY//2EOuNuBdpjCCsfBoArOPeBKA 9TO8PEh+kyHRWck0gSEmuauYcp2Th2O3+MSBivGacFzrtfmdhg43UsZfeWgYQ3UW rFoBnJNz1qN5V5OAxT+s62LS09olVw/PA8Z701+IXPkXmz4uW5Xu+GDyxG39oKZO t2S7l7DF2q2ISjp4cmLL3qM8lc6vr+z+I5vezXNhwYSbmrWm3ancJrH48kE1zgHW ZlSB1B+NOyU7X4wAsZvH8BuZ8IBA6slp4wLhYtF39Q== -----END CERTIFICATE-----Generated at Mon May 12 11:22:45 2025 by rpki-client