$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa File: 686c395c-54ad-31c1-96df-b204d2205313.roa (raw, json) Hash identifier: kPmpvCRb3lZuokeejjsiblSNVdcO6ih1qj5YA63wDV4= Subject key identifier: 76:E4:EF:EB:AB:6B:0C:90:D0:3E:62:7E:16:E8:FA:08:4D:8D:FB:BB Certificate issuer: /CN=dd3e6032-a6af-4662-8b07-848eeecc3995 Certificate serial: 010D0C9F432858499829D0FA6F594C65486E9CA0 Authority key identifier: 67:05:BA:E6:0C:E6:EC:BA:69:B6:2B:17:EB:42:FF:2F:6F:4E:02:2D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa Signing time: Mon 21 Apr 2025 01:00:47 +0000 ROA not before: Mon 21 Apr 2025 01:00:47 +0000 ROA not after: Sun 20 Jul 2025 01:00:47 +0000 asID: 965 IP address blocks: 23.172.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:98:29:d0:fa:6f:59:4c:65:48:6e:9c:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd3e6032-a6af-4662-8b07-848eeecc3995 Validity Not Before: Apr 21 01:00:47 2025 GMT Not After : Jul 20 01:00:47 2025 GMT Subject: CN=22b14a50-7e12-4c4a-b837-f0c2eea0abff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0e:cb:97:d8:b0:f7:e4:0c:bf:d7:d9:e5:ae: b2:25:6a:2a:5d:37:99:5e:0a:5c:de:ec:79:a0:b3: e8:94:10:1b:ac:db:4b:89:50:cf:c8:f2:e0:70:8d: c0:31:17:e3:52:53:d6:c5:78:17:6b:d2:a3:f7:19: 36:56:5e:bc:95:3c:bd:39:01:19:f9:62:c9:c4:5c: 15:d9:cd:9d:a8:56:de:9e:8f:68:91:46:10:eb:04: bb:d1:71:d0:06:83:48:0f:aa:41:d4:17:20:f5:19: 1f:0a:3a:ea:e9:b7:17:dc:20:5b:2a:14:1c:d3:57: 99:9a:9c:31:0d:c9:cc:de:7b:2b:b3:45:ec:21:fb: 63:77:51:2f:5c:a3:c2:cb:b6:61:a0:77:1b:0d:a2: f9:78:ab:b9:da:c9:1c:16:8c:ee:98:c2:6b:7c:67: 4c:00:78:14:65:a8:58:22:d0:1b:df:06:30:11:31: f8:70:d6:10:f6:75:ac:5f:7b:1d:87:19:16:04:a9: b6:86:33:e5:88:53:00:6a:33:d4:17:4e:59:95:b9: 45:61:c1:1c:d0:43:02:dd:22:9b:a5:08:9e:02:24: 5f:08:7a:0a:e4:9c:fb:45:0b:f1:06:a7:31:a5:00: be:71:a1:5d:4e:93:4b:43:56:7d:fc:72:61:cd:19: a6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E4:EF:EB:AB:6B:0C:90:D0:3E:62:7E:16:E8:FA:08:4D:8D:FB:BB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/686c395c-54ad-31c1-96df-b204d2205313.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995/dd3e6032-a6af-4662-8b07-848eeecc3995.crl X509v3 Authority Key Identifier: keyid:67:05:BA:E6:0C:E6:EC:BA:69:B6:2B:17:EB:42:FF:2F:6F:4E:02:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dd3e6032-a6af-4662-8b07-848eeecc3995.cer sbgp-ipAddrBlock: critical IPv4: 23.172.136.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 02:96:a2:fb:e8:fe:a7:83:e1:16:2d:31:fe:23:69:8b:24:f7: d6:05:b3:82:dc:68:b9:ff:74:30:69:da:3e:df:a6:94:d6:cc: bf:c1:07:7a:63:7b:62:7b:40:34:0f:87:fd:e0:c5:ba:61:18: f3:ba:7f:88:40:c0:f6:20:fd:e2:c9:18:2f:37:18:7d:e8:f1: 30:6e:ee:08:75:e6:35:89:9d:92:01:dc:20:ae:00:78:40:da: 83:c9:72:b4:64:be:aa:f5:5d:a5:16:b7:6f:92:d3:0f:e9:50: 88:63:7d:38:61:ef:3d:b1:cf:fd:49:71:81:4d:a4:50:1d:64: 4e:a2:b6:3a:23:d8:d9:76:f3:35:47:b1:b0:cd:63:dd:c8:25: 07:0b:9e:b3:29:17:69:dc:70:87:5f:39:4c:9d:51:a8:d4:05: 69:e7:5b:53:ef:53:78:62:cf:b1:a5:ab:ac:e9:66:aa:b9:3d: 84:3f:48:c2:3d:be:2c:c0:dd:e2:a4:3a:4b:8c:bf:4c:50:e0: 5c:52:fe:50:2f:b8:e4:19:8b:10:d3:c4:9a:a0:cd:92:3d:91: 7a:cb:9e:1c:08:45:0e:51:f9:98:04:5c:cb:c0:03:6e:df:eb: 5b:56:93:0b:40:bf:da:17:b8:4a:15:29:d4:f8:60:ce:fb:e4: 81:4d:86:98 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEmYKdD6b1lMZUhunKAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGQzZTYwMzItYTZhZi00NjYyLThiMDctODQ4ZWVlY2Mz OTk1MB4XDTI1MDQyMTAxMDA0N1oXDTI1MDcyMDAxMDA0N1owLzEtMCsGA1UEAxMk MjJiMTRhNTAtN2UxMi00YzRhLWI4MzctZjBjMmVlYTBhYmZmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQ7Ll9iw9+QMv9fZ5a6yJWoqXTeZXgpc3ux5 oLPolBAbrNtLiVDPyPLgcI3AMRfjUlPWxXgXa9Kj9xk2Vl68lTy9OQEZ+WLJxFwV 2c2dqFbeno9okUYQ6wS70XHQBoNID6pB1Bcg9RkfCjrq6bcX3CBbKhQc01eZmpwx DcnM3nsrs0XsIftjd1EvXKPCy7ZhoHcbDaL5eKu52skcFozumMJrfGdMAHgUZahY ItAb3wYwETH4cNYQ9nWsX3sdhxkWBKm2hjPliFMAajPUF05ZlblFYcEc0EMC3SKb pQieAiRfCHoK5Jz7RQvxBqcxpQC+caFdTpNLQ1Z9/HJhzRmmgQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHbk7+urawyQ0D5ifhbo+ghNjfu7MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9kZDNl NjAzMi1hNmFmLTQ2NjItOGIwNy04NDhlZWVjYzM5OTUvNjg2YzM5NWMtNTRhZC0z MWMxLTk2ZGYtYjIwNGQyMjA1MzEzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvZGQzZTYwMzItYTZhZi00NjYyLThi MDctODQ4ZWVlY2MzOTk1L2RkM2U2MDMyLWE2YWYtNDY2Mi04YjA3LTg0OGVlZWNj Mzk5NS5jcmwwHwYDVR0jBBgwFoAUZwW65gzm7LpptisX60L/L29OAi0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9kZDNlNjAzMi1hNmFmLTQ2NjItOGIwNy04NDhl ZWVjYzM5OTUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCF6yIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAKWovvo/qeD4RYtMf4jaYsk99YFs4LcaLn/dDBp2j7fppTWzL/BB3pj e2J7QDQPh/3gxbphGPO6f4hAwPYg/eLJGC83GH3o8TBu7gh15jWJnZIB3CCuAHhA 2oPJcrRkvqr1XaUWt2+S0w/pUIhjfThh7z2xz/1JcYFNpFAdZE6itjoj2Nl28zVH sbDNY93IJQcLnrMpF2nccIdfOUydUajUBWnnW1PvU3hiz7Glq6zpZqq5PYQ/SMI9 vizA3eKkOkuMv0xQ4FxS/lAvuOQZixDTxJqgzZI9kXrLnhwIRQ5R+ZgEXMvAA27f 61tWkwtAv9oXuEoVKdT4YM775IFNhpg= -----END CERTIFICATE-----Generated at Mon May 12 11:03:31 2025 by rpki-client