$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff/524b77c2-e79e-3a16-a843-947a161df571.roa File: 524b77c2-e79e-3a16-a843-947a161df571.roa (raw, json) Hash identifier: W/YbSWl5ySJbhwFOmjVxnsKuQFdt1Y3zjU7ZO70FUIk= Subject key identifier: 6A:C7:2F:A7:E9:BF:EC:79:51:56:8F:32:30:1B:24:4E:A9:FB:D8:01 Certificate issuer: /CN=8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff Certificate serial: 010D0C9F4328584A480AE8111499A9127772A480 Authority key identifier: 61:A2:CD:53:94:CD:6E:75:69:56:72:39:F6:0B:34:15:6C:1C:75:87 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff/524b77c2-e79e-3a16-a843-947a161df571.roa Signing time: Mon 23 Jun 2025 01:00:49 +0000 ROA not before: Mon 23 Jun 2025 01:00:49 +0000 ROA not after: Sun 21 Sep 2025 01:00:49 +0000 asID: 13737 IP address blocks: 68.233.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:4a:48:0a:e8:11:14:99:a9:12:77:72:a4:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff Validity Not Before: Jun 23 01:00:49 2025 GMT Not After : Sep 21 01:00:49 2025 GMT Subject: CN=a08314c3-1b75-4c7c-901d-e0e5a4cc470b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:74:2f:a7:49:16:e6:40:7c:23:0d:cd:97:c7: 6f:65:6c:17:d7:2c:06:0c:56:49:d5:b6:8f:b5:f5: 7d:03:d8:7c:c2:88:be:2b:b4:10:78:d2:79:c1:29: ca:46:af:b7:00:1e:df:11:06:f0:e9:7e:da:f9:8d: ee:7e:41:35:5a:e2:f6:f4:b2:4c:ba:28:88:1e:86: 24:30:31:4e:09:f4:ba:e7:a7:d4:b4:9b:7d:75:7b: b1:18:7a:4a:d3:b3:4f:f5:bd:e6:9f:23:4a:66:98: cc:a1:eb:ed:2a:ba:4f:c8:b0:ba:92:d7:56:16:5d: 9b:d9:8d:53:84:fa:b1:10:13:16:a2:e4:e2:b5:c6: f4:1b:e6:de:69:8a:ac:d2:99:6f:84:73:f8:9b:fb: 97:01:77:1a:1b:25:3b:77:89:f1:ea:69:14:e1:c8: a0:cb:15:c9:e7:f0:1a:67:66:8a:f2:cb:f0:74:e1: 61:e9:cd:7e:27:dd:e3:30:10:cc:46:5c:1b:d2:3f: 94:27:ca:05:80:b8:2b:14:91:31:4c:af:a8:ad:ea: 45:5d:0a:80:22:09:40:d8:82:cc:b7:ec:1d:54:6c: 06:ae:c6:71:79:3f:67:d3:3f:3c:43:22:d7:25:ba: 53:c2:55:7d:4e:83:91:47:6b:24:da:30:49:40:a3: d7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C7:2F:A7:E9:BF:EC:79:51:56:8F:32:30:1B:24:4E:A9:FB:D8:01 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff/524b77c2-e79e-3a16-a843-947a161df571.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff.crl X509v3 Authority Key Identifier: keyid:61:A2:CD:53:94:CD:6E:75:69:56:72:39:F6:0B:34:15:6C:1C:75:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8bd5bc1a-5f48-4ce7-b952-b94b8ece87ff.cer sbgp-ipAddrBlock: critical IPv4: 68.233.36.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 61:df:60:49:3e:ea:e6:1d:96:e9:e1:5c:4b:b9:85:71:6b:fc: cc:70:c1:3b:17:fc:90:9e:7f:62:ad:42:1e:8b:17:13:51:b5: e9:8c:df:bf:be:0e:38:fb:61:fd:f4:f8:9b:fc:65:97:76:23: 71:e6:9c:27:83:c1:c4:24:2e:17:01:3b:fe:68:0f:b6:d7:59: a4:81:c9:51:b8:b5:0c:1f:c9:87:47:86:c1:1b:48:73:92:54: 24:23:7a:b7:88:b5:a8:7c:c9:71:fc:12:73:09:a2:49:29:50: 24:cd:25:0d:3d:bc:43:46:83:f1:4b:dd:8d:ca:68:45:11:ce: 42:ab:b5:a4:55:17:9d:a7:71:4c:5b:d3:2a:90:d7:0c:73:2a: 2b:95:9a:dc:f3:f2:87:cc:fe:40:6d:a7:7c:85:af:6d:95:ee: d3:9e:df:dd:a1:d9:0b:b9:40:c9:2a:c5:81:1a:35:74:76:82: 53:dd:7b:2e:6b:7d:d3:c0:6e:17:f1:30:7b:89:94:33:a8:57: a8:da:13:43:80:40:e4:85:8b:0c:ed:1f:ec:28:e8:7b:66:bf: af:a9:cf:3e:61:b1:2f:66:51:0a:e5:64:24:d7:b9:1e:1e:0b: 9f:84:a0:da:a5:31:72:7e:35:27:33:e8:41:86:94:6d:89:6d: e4:d6:1c:a2 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEpICugRFJmpEndypIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkOGJkNWJjMWEtNWY0OC00Y2U3LWI5NTItYjk0YjhlY2U4 N2ZmMB4XDTI1MDYyMzAxMDA0OVoXDTI1MDkyMTAxMDA0OVowLzEtMCsGA1UEAxMk YTA4MzE0YzMtMWI3NS00YzdjLTkwMWQtZTBlNWE0Y2M0NzBiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13Qvp0kW5kB8Iw3Nl8dvZWwX1ywGDFZJ1baP tfV9A9h8woi+K7QQeNJ5wSnKRq+3AB7fEQbw6X7a+Y3ufkE1WuL29LJMuiiIHoYk MDFOCfS656fUtJt9dXuxGHpK07NP9b3mnyNKZpjMoevtKrpPyLC6ktdWFl2b2Y1T hPqxEBMWouTitcb0G+beaYqs0plvhHP4m/uXAXcaGyU7d4nx6mkU4cigyxXJ5/Aa Z2aK8svwdOFh6c1+J93jMBDMRlwb0j+UJ8oFgLgrFJExTK+orepFXQqAIglA2ILM t+wdVGwGrsZxeT9n0z88QyLXJbpTwlV9ToORR2sk2jBJQKPX9wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFGrHL6fpv+x5UVaPMjAbJE6p+9gBMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS84YmQ1 YmMxYS01ZjQ4LTRjZTctYjk1Mi1iOTRiOGVjZTg3ZmYvNTI0Yjc3YzItZTc5ZS0z YTE2LWE4NDMtOTQ3YTE2MWRmNTcxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvOGJkNWJjMWEtNWY0OC00Y2U3LWI5 NTItYjk0YjhlY2U4N2ZmLzhiZDViYzFhLTVmNDgtNGNlNy1iOTUyLWI5NGI4ZWNl ODdmZi5jcmwwHwYDVR0jBBgwFoAUYaLNU5TNbnVpVnI59gs0FWwcdYcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS84YmQ1YmMxYS01ZjQ4LTRjZTctYjk1Mi1iOTRi OGVjZTg3ZmYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAROkkMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAGHfYEk+6uYdlunhXEu5hXFr/MxwwTsX/JCef2KtQh6LFxNRtemM37++ Djj7Yf30+Jv8ZZd2I3HmnCeDwcQkLhcBO/5oD7bXWaSByVG4tQwfyYdHhsEbSHOS VCQjereItah8yXH8EnMJokkpUCTNJQ09vENGg/FL3Y3KaEURzkKrtaRVF52ncUxb 0yqQ1wxzKiuVmtzz8ofM/kBtp3yFr22V7tOe392h2Qu5QMkqxYEaNXR2glPdey5r fdPAbhfxMHuJlDOoV6jaE0OAQOSFiwztH+wo6Htmv6+pzz5hsS9mUQrlZCTXuR4e C5+EoNqlMXJ+NScz6EGGlG2JbeTWHKI= -----END CERTIFICATE-----Generated at Mon Jun 30 09:55:11 2025 by rpki-client