$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa File: d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa (raw, json) Hash identifier: vJcPbuOElChbr4E4wxdxSny+rwNbZm6jhcdxZ2OzLio= Subject key identifier: 29:6E:4E:D6:9E:70:F5:BA:13:89:49:B3:85:F7:EB:E7:B4:CA:29:A9 Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F43285849C20A2463803A183B6EB01100 Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa Signing time: Tue 06 May 2025 01:00:47 +0000 ROA not before: Tue 06 May 2025 01:00:47 +0000 ROA not after: Mon 04 Aug 2025 01:00:47 +0000 asID: 46687 IP address blocks: 173.44.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:c2:0a:24:63:80:3a:18:3b:6e:b0:11:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: May 6 01:00:47 2025 GMT Not After : Aug 4 01:00:47 2025 GMT Subject: CN=e8aaa9d2-334d-4952-bd4e-ceb5c2e95dc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:72:de:7d:ac:8b:ae:6a:02:44:79:2f:84:c2: df:95:96:74:35:1c:a4:60:39:44:11:aa:f9:d1:50: ae:fb:0b:b5:14:cc:ec:bc:b3:94:30:54:a0:b3:46: d4:59:a2:38:51:6f:b5:61:32:7c:8a:5e:ab:51:59: e5:5d:01:3f:38:b2:02:e1:2c:fe:dc:da:b8:de:93: 7c:b0:9a:c5:a7:7a:9c:e2:20:31:98:67:8b:cd:92: 5f:ba:ff:4a:fd:54:7a:ce:2c:d7:13:0d:3c:3c:8f: a3:eb:aa:de:d9:a8:3c:ee:40:39:e4:b3:88:11:75: e9:9c:49:f3:61:29:38:a9:b4:88:b2:41:19:92:f3: 83:6d:4a:31:bd:0a:a7:94:b8:22:d6:12:81:18:32: fa:a7:57:6a:8a:75:df:d4:f5:59:6c:71:b0:1b:fd: cc:fe:f6:d0:88:85:06:64:08:2f:b4:73:85:32:f5: 7d:33:79:ba:91:01:67:e8:e5:33:d5:0e:b0:4f:16: 4a:a5:dc:7f:db:58:14:14:1c:17:61:fe:b6:29:90: cf:c1:b3:8c:14:50:65:e8:75:b8:2b:4e:c5:ee:03: 7f:c6:f0:20:3b:d2:5e:69:57:d5:8f:78:8d:6f:83: 61:5c:bf:15:e2:e1:fc:37:50:9a:7b:46:12:a3:48: ab:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:6E:4E:D6:9E:70:F5:BA:13:89:49:B3:85:F7:EB:E7:B4:CA:29:A9 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/d2cdcd77-ae31-369b-9f63-ce2a46cc8f62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 173.44.116.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 05:ce:ad:55:88:0f:e9:3e:00:8e:ea:76:60:5a:7e:65:f8:fb: 86:38:ce:72:48:a1:b8:00:19:06:bd:fc:e6:00:04:e8:e1:64: 8f:e8:df:eb:c8:8f:db:7d:c7:d5:40:7e:52:b7:e6:0f:87:89: 9d:d8:8d:61:ff:f7:06:4b:ea:71:0a:cb:d0:7e:49:ae:6e:99: 44:b8:c1:f0:a3:4a:c1:0e:45:be:9a:d1:0e:65:1e:1e:1a:31: 30:9e:ce:5a:4b:45:b7:01:57:88:17:18:8c:f8:26:c0:a4:6d: a8:d2:91:74:3d:4e:8b:38:f2:08:0a:b6:a0:bf:7f:3d:29:fb: 0f:08:29:cd:48:ed:14:44:6f:81:5b:60:32:06:c2:a1:93:6f: f7:99:a0:6f:4e:ee:9f:3f:6c:ea:24:cf:78:56:02:44:1b:0d: 80:ff:42:bf:1a:7e:0f:bc:44:4b:64:81:4b:23:b5:9e:33:77: e1:e2:c4:72:11:43:1c:56:b0:5f:79:db:9d:ed:bb:84:f1:3e: 3f:4f:03:14:95:52:bd:17:1f:37:72:aa:96:a7:16:0c:d4:47: 73:0f:68:17:68:67:08:b1:c0:25:06:b0:60:80:1e:ed:cf:c6: a9:de:fa:f6:07:07:dd:9e:a6:9b:89:37:fd:14:88:30:86:f0: b1:e0:fa:f3 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEnCCiRjgDoYO26wEQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI1MDUwNjAxMDA0N1oXDTI1MDgwNDAxMDA0N1owLzEtMCsGA1UEAxMk ZThhYWE5ZDItMzM0ZC00OTUyLWJkNGUtY2ViNWMyZTk1ZGMxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhXLefayLrmoCRHkvhMLflZZ0NRykYDlEEar5 0VCu+wu1FMzsvLOUMFSgs0bUWaI4UW+1YTJ8il6rUVnlXQE/OLIC4Sz+3Nq43pN8 sJrFp3qc4iAxmGeLzZJfuv9K/VR6zizXEw08PI+j66re2ag87kA55LOIEXXpnEnz YSk4qbSIskEZkvODbUoxvQqnlLgi1hKBGDL6p1dqinXf1PVZbHGwG/3M/vbQiIUG ZAgvtHOFMvV9M3m6kQFn6OUz1Q6wTxZKpdx/21gUFBwXYf62KZDPwbOMFFBl6HW4 K07F7gN/xvAgO9JeaVfVj3iNb4NhXL8V4uH8N1Cae0YSo0irZQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFCluTtaecPW6E4lJs4X36+e0yimpMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvZDJjZGNkNzctYWUzMS0z NjliLTlmNjMtY2UyYTQ2Y2M4ZjYyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCrSx0MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAXOrVWID+k+AI7qdmBafmX4+4Y4znJIobgAGQa9/OYABOjhZI/o3+vI j9t9x9VAflK35g+HiZ3YjWH/9wZL6nEKy9B+Sa5umUS4wfCjSsEORb6a0Q5lHh4a MTCezlpLRbcBV4gXGIz4JsCkbajSkXQ9Tos48ggKtqC/fz0p+w8IKc1I7RREb4Fb YDIGwqGTb/eZoG9O7p8/bOokz3hWAkQbDYD/Qr8afg+8REtkgUsjtZ4zd+HixHIR QxxWsF95253tu4TxPj9PAxSVUr0XHzdyqpanFgzUR3MPaBdoZwixwCUGsGCAHu3P xqne+vYHB92eppuJN/0UiDCG8LHg+vM= -----END CERTIFICATE-----Generated at Mon May 12 03:55:38 2025 by rpki-client