$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa File: 40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa (raw, json) Hash identifier: NeKYtIvTvpd8UEkNY8MNgRcwG98jUYerXlC5/uZWzUU= Subject key identifier: 14:D6:6C:69:4E:DD:E9:20:22:06:E0:C7:64:1D:6A:A7:A3:C9:CE:39 Certificate issuer: /CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Certificate serial: 010D0C9F43285849ABB4B7E3E40EF43196445D00 Authority key identifier: 86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa Signing time: Mon 28 Apr 2025 01:00:48 +0000 ROA not before: Mon 28 Apr 2025 01:00:48 +0000 ROA not after: Sun 27 Jul 2025 01:00:48 +0000 asID: 20940 IP address blocks: 23.221.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:49:ab:b4:b7:e3:e4:0e:f4:31:96:44:5d:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d9c9ef5-b960-412d-af5e-2df18c21f809 Validity Not Before: Apr 28 01:00:48 2025 GMT Not After : Jul 27 01:00:48 2025 GMT Subject: CN=429ae2dc-dc7a-44ff-b8ca-aabf640a58dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fb:65:d8:e3:f9:de:3c:68:04:8e:eb:eb:cc: b5:f2:5c:45:c0:c2:60:cd:9f:09:d5:55:2b:1e:63: 57:de:26:8d:0f:a9:dd:e8:dc:e8:6f:46:ad:6e:c4: 0f:64:c7:c0:ea:bc:aa:9e:a6:45:da:2e:c7:16:8c: 19:91:06:70:b0:27:69:f1:54:1d:02:c4:90:27:5f: b1:34:a3:0d:98:6a:39:d3:a9:58:65:fb:01:f2:1a: 2b:93:de:f3:a9:54:1a:f2:66:ec:f3:fa:01:37:65: 64:7c:42:bb:99:e9:98:84:5c:d1:ed:a7:1d:03:ea: 33:47:83:6a:a0:3c:51:2d:ab:69:52:08:16:c4:ec: 59:a2:c4:be:a8:b1:ae:c6:6a:9d:9a:13:30:b3:59: d5:8c:b5:99:85:21:6b:cc:be:49:3f:3a:8f:5f:19: 99:98:cd:c1:e7:72:87:41:80:06:a8:3c:1a:44:21: a9:de:90:33:7b:71:77:4a:dd:3e:3b:ca:24:c3:e3: 56:d5:74:21:86:d1:8b:39:de:e6:80:0e:87:e4:a1: 3f:55:22:e6:4f:6e:1a:ab:58:c1:24:81:8c:06:8b: 4e:a2:b9:d3:c6:ff:47:3f:7d:9d:d5:57:22:b2:df: 48:be:fb:b3:7f:1f:d7:80:07:ce:34:e6:78:99:e2: bd:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D6:6C:69:4E:DD:E9:20:22:06:E0:C7:64:1D:6A:A7:A3:C9:CE:39 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/40a389ff-b303-3db9-8ff7-80276a6cf6eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809/5d9c9ef5-b960-412d-af5e-2df18c21f809.crl X509v3 Authority Key Identifier: keyid:86:A4:37:D4:6D:BA:92:7A:E6:8D:9D:6A:F3:35:C6:46:9A:DD:17:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/5d9c9ef5-b960-412d-af5e-2df18c21f809.cer sbgp-ipAddrBlock: critical IPv4: 23.221.25.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 17:3b:40:95:5b:73:37:d2:5e:01:f0:86:e3:eb:88:15:03:a3: e0:85:5b:6c:29:56:de:e6:9a:36:15:1b:45:b1:10:a8:0b:fc: 82:4b:07:46:12:a6:83:ec:a1:c8:19:c8:b5:06:38:f4:af:16: 3c:01:66:fc:94:9e:f4:99:f4:61:91:73:c0:73:39:14:e5:1e: 1b:50:8a:80:f9:60:4e:10:92:48:98:49:d9:66:6a:5c:27:52: 37:cf:13:ca:0a:95:84:46:3f:6d:6f:00:76:3e:31:02:8b:d7: 96:7b:8e:d9:94:2d:36:51:c6:86:54:4e:f1:14:f5:a7:d3:39: e4:af:a4:52:bf:66:79:03:f0:8f:f9:bc:c3:ab:b5:77:ed:0d: 55:4a:23:ec:7a:c0:07:cc:95:1d:dc:39:0b:18:e7:2c:69:40: a3:16:56:b3:50:a2:3c:75:d9:1c:dd:50:b1:cc:39:89:42:f4: 82:e8:bb:6e:b9:22:dd:3d:85:a9:c0:79:69:bc:e3:6b:d1:b5: 40:44:08:14:a7:38:01:a8:15:e1:86:f3:df:87:62:3c:e3:43: 3e:d0:c1:95:c6:cf:e1:c1:bd:d2:ba:1a:16:0e:0d:d3:a3:3a: 6a:f9:82:4c:a6:77:82:0c:28:63:db:d2:86:ab:9a:5b:d3:66: 60:ff:65:4d -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEmrtLfj5A70MZZEXQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWQ5YzllZjUtYjk2MC00MTJkLWFmNWUtMmRmMThjMjFm ODA5MB4XDTI1MDQyODAxMDA0OFoXDTI1MDcyNzAxMDA0OFowLzEtMCsGA1UEAxMk NDI5YWUyZGMtZGM3YS00NGZmLWI4Y2EtYWFiZjY0MGE1OGRjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyftl2OP53jxoBI7r68y18lxFwMJgzZ8J1VUr HmNX3iaND6nd6Nzob0atbsQPZMfA6ryqnqZF2i7HFowZkQZwsCdp8VQdAsSQJ1+x NKMNmGo506lYZfsB8hork97zqVQa8mbs8/oBN2VkfEK7memYhFzR7acdA+ozR4Nq oDxRLatpUggWxOxZosS+qLGuxmqdmhMws1nVjLWZhSFrzL5JPzqPXxmZmM3B53KH QYAGqDwaRCGp3pAze3F3St0+O8okw+NW1XQhhtGLOd7mgA6H5KE/VSLmT24aq1jB JIGMBotOornTxv9HP32d1Vcist9Ivvuzfx/XgAfONOZ4meK9YwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFBTWbGlO3ekgIgbgx2Qdaqejyc45MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS81ZDlj OWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYxOGMyMWY4MDkvNDBhMzg5ZmYtYjMwMy0z ZGI5LThmZjctODAyNzZhNmNmNmViLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNWQ5YzllZjUtYjk2MC00MTJkLWFm NWUtMmRmMThjMjFmODA5LzVkOWM5ZWY1LWI5NjAtNDEyZC1hZjVlLTJkZjE4YzIx ZjgwOS5jcmwwHwYDVR0jBBgwFoAUhqQ31G26knrmjZ1q8zXGRprdF+0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS81ZDljOWVmNS1iOTYwLTQxMmQtYWY1ZS0yZGYx OGMyMWY4MDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF90ZMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBABc7QJVbczfSXgHwhuPriBUDo+CFW2wpVt7mmjYVG0WxEKgL/IJLB0YS poPsocgZyLUGOPSvFjwBZvyUnvSZ9GGRc8BzORTlHhtQioD5YE4QkkiYSdlmalwn UjfPE8oKlYRGP21vAHY+MQKL15Z7jtmULTZRxoZUTvEU9afTOeSvpFK/ZnkD8I/5 vMOrtXftDVVKI+x6wAfMlR3cOQsY5yxpQKMWVrNQojx12RzdULHMOYlC9ILou265 It09hanAeWm842vRtUBECBSnOAGoFeGG89+HYjzjQz7QwZXGz+HBvdK6GhYODdOj Omr5gkymd4IMKGPb0oarmlvTZmD/ZU0= -----END CERTIFICATE-----Generated at Mon May 5 15:11:30 2025 by rpki-client