$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496/25dcf021-d643-33d2-b7c8-9a3520f1b453.roa File: 25dcf021-d643-33d2-b7c8-9a3520f1b453.roa (raw, json) Hash identifier: sIM6oyfqsYKIXBCqnyvqWZacrppikTZe3dJb6bQak7M= Subject key identifier: 02:B5:6F:CE:4C:CD:30:0F:DE:1D:76:81:A9:37:D0:D7:8E:11:C9:EA Certificate issuer: /CN=90867e5c-2c8f-4999-a134-dc9418f84496 Certificate serial: 010D0C9F43285849AE2D8A698623E0F07B8F0100 Authority key identifier: 7F:CC:4B:3E:97:1E:B5:00:F6:7A:41:32:9C:50:6F:B0:B7:61:9D:2C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496/25dcf021-d643-33d2-b7c8-9a3520f1b453.roa Signing time: Mon 28 Apr 2025 22:16:14 +0000 ROA not before: Mon 28 Apr 2025 22:16:14 +0000 ROA not after: Sun 27 Jul 2025 22:16:14 +0000 asID: 40623 IP address blocks: 140.208.0.0/18 maxlen: 18 140.208.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496/90867e5c-2c8f-4999-a134-dc9418f84496.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496/90867e5c-2c8f-4999-a134-dc9418f84496.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:ae:2d:8a:69:86:23:e0:f0:7b:8f:01:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90867e5c-2c8f-4999-a134-dc9418f84496 Validity Not Before: Apr 28 22:16:14 2025 GMT Not After : Jul 27 22:16:14 2025 GMT Subject: CN=70696042-0d9d-44ec-a639-2eb61598f0de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d8:c7:8a:5a:c6:7d:5f:8e:4b:4a:d2:26:7a: a5:62:8d:7c:0b:9c:85:86:53:7a:a4:8d:56:21:53: 0d:63:21:58:42:a2:af:e4:07:b4:18:a1:12:f6:be: 1e:1b:53:01:6b:98:0d:3b:c1:f2:1d:e1:ba:fb:cd: 82:94:c3:4e:fb:3a:4b:c4:91:45:bc:f3:45:c8:7c: ae:2b:e5:1b:87:c6:39:c1:f1:07:2e:9e:3e:23:eb: 8b:db:18:79:7e:59:2d:6f:f4:c7:94:17:11:f5:6a: 20:b1:83:76:3a:a9:a6:de:db:fe:69:8c:67:4d:3b: 08:82:63:4a:c8:65:f6:01:bb:aa:db:84:0f:8f:8e: 40:11:d4:01:db:c0:36:e2:ad:32:3e:5e:cc:d3:ef: 41:12:b5:12:7b:e0:b6:59:0c:6a:71:89:f2:74:a9: dc:e3:bb:44:af:9d:71:5f:f5:a5:78:56:c8:52:95: 32:cf:df:04:08:a3:94:04:f1:ae:2e:98:d3:cd:0e: 68:25:83:61:0a:ef:5f:55:f7:2d:29:10:78:ce:b3: 7b:a7:cf:2d:b8:e3:45:ff:50:36:90:7e:3f:c5:c8: e9:8e:59:90:12:5f:d0:79:22:7b:f8:18:34:d2:05: 41:50:d4:7f:1e:ae:ae:f7:bf:25:db:81:68:39:f1: 8c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B5:6F:CE:4C:CD:30:0F:DE:1D:76:81:A9:37:D0:D7:8E:11:C9:EA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496/25dcf021-d643-33d2-b7c8-9a3520f1b453.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496/90867e5c-2c8f-4999-a134-dc9418f84496.crl X509v3 Authority Key Identifier: keyid:7F:CC:4B:3E:97:1E:B5:00:F6:7A:41:32:9C:50:6F:B0:B7:61:9D:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/90867e5c-2c8f-4999-a134-dc9418f84496.cer sbgp-ipAddrBlock: critical IPv4: 140.208.0.0/18 140.208.144.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 4b:a3:79:56:e9:76:68:38:78:ad:f2:a7:d3:82:31:b3:64:0d: 34:dc:49:cc:0e:8a:45:b1:2f:b7:e0:2c:30:bd:66:e7:8e:ce: c0:c5:71:4c:62:17:1b:7d:3e:4a:3c:51:8c:7b:a7:b2:b6:e7: fd:a0:13:ce:7b:51:42:c8:0f:20:a5:1c:9f:c8:46:0c:0d:cd: cf:77:83:fc:f7:a7:7b:41:90:57:e9:b2:05:ca:20:84:b2:20: cc:b6:ed:1e:ef:72:e2:ee:95:bd:1b:fc:37:21:45:ac:be:a0: 7b:45:00:fe:c2:8d:39:c8:99:f1:ad:84:c6:cb:39:10:94:81: 03:74:9d:8a:a7:1a:87:a2:6d:3c:9b:ed:28:70:cf:03:cc:dd: 87:af:cf:c6:60:4f:fc:0e:f9:89:2a:ed:8c:94:95:b5:67:b1: fe:b5:4f:24:25:6e:21:49:c4:81:64:fa:a5:db:21:71:f7:d1: 93:a4:01:38:03:0b:95:99:85:43:be:45:87:77:4c:05:e7:99: a6:9e:45:d4:a6:4d:59:8d:28:ec:33:e3:16:b6:13:9e:a4:14: 7b:93:39:56:6a:95:49:22:00:f3:d2:4b:a1:7a:be:f6:52:74: 4b:20:b3:2d:b3:66:0d:7f:18:46:6e:9f:7f:9b:3a:36:b4:bc: f9:f4:40:28 -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWEmuLYpphiPg8HuPAQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkOTA4NjdlNWMtMmM4Zi00OTk5LWExMzQtZGM5NDE4Zjg0 NDk2MB4XDTI1MDQyODIyMTYxNFoXDTI1MDcyNzIyMTYxNFowLzEtMCsGA1UEAxMk NzA2OTYwNDItMGQ5ZC00NGVjLWE2MzktMmViNjE1OThmMGRlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NjHilrGfV+OS0rSJnqlYo18C5yFhlN6pI1W IVMNYyFYQqKv5Ae0GKES9r4eG1MBa5gNO8HyHeG6+82ClMNO+zpLxJFFvPNFyHyu K+Ubh8Y5wfEHLp4+I+uL2xh5flktb/THlBcR9WogsYN2Oqmm3tv+aYxnTTsIgmNK yGX2Abuq24QPj45AEdQB28A24q0yPl7M0+9BErUSe+C2WQxqcYnydKnc47tEr51x X/WleFbIUpUyz98ECKOUBPGuLpjTzQ5oJYNhCu9fVfctKRB4zrN7p88tuONF/1A2 kH4/xcjpjlmQEl/QeSJ7+Bg00gVBUNR/Hq6u978l24FoOfGMMQIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFAK1b85MzTAP3h12gak30NeOEcnqMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS85MDg2 N2U1Yy0yYzhmLTQ5OTktYTEzNC1kYzk0MThmODQ0OTYvMjVkY2YwMjEtZDY0My0z M2QyLWI3YzgtOWEzNTIwZjFiNDUzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvOTA4NjdlNWMtMmM4Zi00OTk5LWEx MzQtZGM5NDE4Zjg0NDk2LzkwODY3ZTVjLTJjOGYtNDk5OS1hMTM0LWRjOTQxOGY4 NDQ5Ni5jcmwwHwYDVR0jBBgwFoAUf8xLPpcetQD2ekEynFBvsLdhnSwwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS85MDg2N2U1Yy0yYzhmLTQ5OTktYTEzNC1kYzk0 MThmODQ0OTYuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQGjNAAAwQE jNCQMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBAEujeVbpdmg4eK3yp9OCMbNkDTTcScwOikWxL7fgLDC9ZueO zsDFcUxiFxt9Pko8UYx7p7K25/2gE857UULIDyClHJ/IRgwNzc93g/z3p3tBkFfp sgXKIISyIMy27R7vcuLulb0b/DchRay+oHtFAP7CjTnImfGthMbLORCUgQN0nYqn GoeibTyb7ShwzwPM3Yevz8ZgT/wO+Ykq7YyUlbVnsf61TyQlbiFJxIFk+qXbIXH3 0ZOkATgDC5WZhUO+RYd3TAXnmaaeRdSmTVmNKOwz4xa2E56kFHuTOVZqlUkiAPPS S6F6vvZSdEsgsy2zZg1/GEZun3+bOja0vPn0QCg= -----END CERTIFICATE-----Generated at Sat May 10 10:13:08 2025 by rpki-client