$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7/3c409e41-d323-31d5-a911-7b39aeda505c.roa File: 3c409e41-d323-31d5-a911-7b39aeda505c.roa (raw, json) Hash identifier: IMgyMDzrqlEBOOTjTrie9Y5kUTk5207Y4uD6h7SxyB0= Subject key identifier: 18:BB:08:F4:80:0B:7D:5A:7A:F0:AF:96:C2:5A:DD:E8:88:17:54:CD Certificate issuer: /CN=da370214-1d61-48bf-84a0-a60096ccaae7 Certificate serial: 010D0C9F43285849D62394B60E91393A87806000 Authority key identifier: F2:73:37:4B:91:7B:C5:74:1F:84:B3:34:D0:70:D8:A3:96:B9:6E:DB Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7/3c409e41-d323-31d5-a911-7b39aeda505c.roa Signing time: Tue 13 May 2025 05:48:30 +0000 ROA not before: Tue 13 May 2025 05:48:30 +0000 ROA not after: Mon 11 Aug 2025 05:48:30 +0000 asID: 174 IP address blocks: 72.13.227.0/24 maxlen: 24 72.13.232.0/24 maxlen: 24 72.13.241.0/24 maxlen: 24 72.13.243.0/24 maxlen: 24 72.13.246.0/24 maxlen: 24 72.13.249.0/24 maxlen: 24 72.13.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7/da370214-1d61-48bf-84a0-a60096ccaae7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7/da370214-1d61-48bf-84a0-a60096ccaae7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 15 May 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:d6:23:94:b6:0e:91:39:3a:87:80:60:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da370214-1d61-48bf-84a0-a60096ccaae7 Validity Not Before: May 13 05:48:30 2025 GMT Not After : Aug 11 05:48:30 2025 GMT Subject: CN=8fa4c310-80bd-4506-9ec1-d54c36f18062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:01:63:51:40:3a:38:c5:3f:78:95:81:c5:5f: 45:ae:c6:21:ee:54:45:95:42:61:dc:5c:9f:8f:01: 4e:e4:eb:0b:32:30:f6:f9:e6:37:66:10:a1:c8:49: 9d:a5:1a:90:0e:e1:1b:83:35:29:de:78:df:67:da: 00:88:e5:fa:a0:3b:72:11:a8:2d:62:f8:74:60:f1: b6:4b:46:8e:30:fb:00:ef:6d:fe:70:c4:da:c4:5d: d5:22:01:27:79:6a:06:e2:78:21:88:59:5e:0a:8c: 34:4a:ea:c5:a3:3b:6d:ef:3f:5a:34:34:73:83:1d: e1:27:fc:dd:44:74:7d:82:52:97:82:8a:03:55:8f: 1b:af:24:75:1e:75:17:03:9e:60:63:ce:37:75:fe: 4d:ff:10:ce:44:6c:2f:b7:98:b5:89:06:f1:21:27: 20:8d:f9:ab:fb:88:87:46:ff:bf:70:e4:b4:a5:7a: b6:c8:50:fd:1e:51:56:af:ae:50:54:73:1d:51:8b: 9b:91:73:77:0d:ba:d2:51:2e:a5:43:b8:3f:12:a2: d5:73:1c:e4:65:05:73:16:6c:ef:7b:b1:e7:5b:83: 5e:0c:25:fa:19:07:52:d8:fd:a2:c6:a3:22:4a:b9: d5:72:43:34:54:00:9f:db:67:fa:fa:7e:ee:98:36: b7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BB:08:F4:80:0B:7D:5A:7A:F0:AF:96:C2:5A:DD:E8:88:17:54:CD Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7/3c409e41-d323-31d5-a911-7b39aeda505c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7/da370214-1d61-48bf-84a0-a60096ccaae7.crl X509v3 Authority Key Identifier: keyid:F2:73:37:4B:91:7B:C5:74:1F:84:B3:34:D0:70:D8:A3:96:B9:6E:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/da370214-1d61-48bf-84a0-a60096ccaae7.cer sbgp-ipAddrBlock: critical IPv4: 72.13.227.0/24 72.13.232.0/24 72.13.241.0/24 72.13.243.0/24 72.13.246.0/24 72.13.249.0/24 72.13.252.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6c:d0:3f:59:4d:8a:13:dc:d9:8a:fa:9c:8b:28:e0:f4:f3:83: c2:20:c3:f9:45:dc:23:33:29:3e:34:b9:53:0e:9a:06:95:29: 08:b8:a6:4f:58:f5:46:9d:9b:05:3c:65:9c:09:9a:8f:23:46: ac:5a:6f:37:a9:bf:ca:d8:20:17:1e:99:9b:90:34:71:9e:b8: 51:13:75:b1:e6:b9:cc:c1:0f:98:f2:a9:ec:25:9a:7a:6c:96: 52:6d:44:74:b7:21:f7:31:e0:5a:0f:5c:30:08:52:05:70:f4: 70:56:82:58:db:34:e7:8e:6f:71:35:71:08:bd:04:eb:1f:3b: 3d:d2:7d:4e:1f:7d:01:a4:b1:2d:31:97:2b:0d:7f:0e:da:c0: 4f:f4:6c:63:23:ca:c8:68:58:1a:15:79:cc:fc:37:5a:b8:47: 67:18:75:fe:37:00:26:98:cf:95:95:e2:83:94:ac:57:69:0a: 6b:2b:56:31:b3:c8:d4:69:34:2f:cf:f2:cf:fb:66:46:b4:e3: 48:1e:22:7a:00:78:97:c3:6d:0d:29:4a:a0:e8:00:4f:87:a3: 1c:f4:e4:32:8f:12:c1:77:df:85:cf:0e:ea:26:bd:fa:a2:bb: 80:a9:ff:a0:16:ee:18:4c:2c:67:cd:ba:25:9e:ed:c4:ae:a7: 92:4e:65:25 -----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgIUAQ0Mn0MoWEnWI5S2DpE5OoeAYAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGEzNzAyMTQtMWQ2MS00OGJmLTg0YTAtYTYwMDk2Y2Nh YWU3MB4XDTI1MDUxMzA1NDgzMFoXDTI1MDgxMTA1NDgzMFowLzEtMCsGA1UEAxMk OGZhNGMzMTAtODBiZC00NTA2LTllYzEtZDU0YzM2ZjE4MDYyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgwFjUUA6OMU/eJWBxV9FrsYh7lRFlUJh3Fyf jwFO5OsLMjD2+eY3ZhChyEmdpRqQDuEbgzUp3njfZ9oAiOX6oDtyEagtYvh0YPG2 S0aOMPsA723+cMTaxF3VIgEneWoG4nghiFleCow0SurFoztt7z9aNDRzgx3hJ/zd RHR9glKXgooDVY8bryR1HnUXA55gY843df5N/xDORGwvt5i1iQbxIScgjfmr+4iH Rv+/cOS0pXq2yFD9HlFWr65QVHMdUYubkXN3DbrSUS6lQ7g/EqLVcxzkZQVzFmzv e7HnW4NeDCX6GQdS2P2ixqMiSrnVckM0VACf22f6+n7umDa3VwIDAQABo4IDeTCC A3UwHQYDVR0OBBYEFBi7CPSAC31aevCvlsJa3eiIF1TNMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9kYTM3 MDIxNC0xZDYxLTQ4YmYtODRhMC1hNjAwOTZjY2FhZTcvM2M0MDllNDEtZDMyMy0z MWQ1LWE5MTEtN2IzOWFlZGE1MDVjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kNmI1YWQyOC0x Y2JjLTQ3YWItOTA0ZS00NTM2MWE1NDg3YzMvZGEzNzAyMTQtMWQ2MS00OGJmLTg0 YTAtYTYwMDk2Y2NhYWU3L2RhMzcwMjE0LTFkNjEtNDhiZi04NGEwLWE2MDA5NmNj YWFlNy5jcmwwHwYDVR0jBBgwFoAU8nM3S5F7xXQfhLM00HDYo5a5btswDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q2YjVhZDI4LTFjYmMtNDdh Yi05MDRlLTQ1MzYxYTU0ODdjMy9kYTM3MDIxNC0xZDYxLTQ4YmYtODRhMC1hNjAw OTZjY2FhZTcuY2VyMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQASA3jAwQA SA3oAwQASA3xAwQASA3zAwQASA32AwQASA35AwQASA38MFQGA1UdIAEB/wRKMEgw RgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQv cmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBAGzQP1lN ihPc2Yr6nIso4PTzg8Igw/lF3CMzKT40uVMOmgaVKQi4pk9Y9UadmwU8ZZwJmo8j Rqxabzepv8rYIBcemZuQNHGeuFETdbHmuczBD5jyqewlmnpsllJtRHS3Ifcx4FoP XDAIUgVw9HBWgljbNOeOb3E1cQi9BOsfOz3SfU4ffQGksS0xlysNfw7awE/0bGMj yshoWBoVecz8N1q4R2cYdf43ACaYz5WV4oOUrFdpCmsrVjGzyNRpNC/P8s/7Zka0 40geInoAeJfDbQ0pSqDoAE+Hoxz05DKPEsF334XPDuomvfqiu4Cp/6AW7hhMLGfN uiWe7cSup5JOZSU= -----END CERTIFICATE-----Generated at Wed May 14 12:47:38 2025 by rpki-client