$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1c8cfd90-1e45-3ca8-865a-284e8261e043.roa File: 1c8cfd90-1e45-3ca8-865a-284e8261e043.roa (raw, json) Hash identifier: 5+T3K3DjsYM32tn56trOpFsF0JjHlBWCv2dJQ0AWmuE= Subject key identifier: 1A:BC:DC:A9:AC:DB:4B:E1:8A:54:3A:19:C9:56:C9:B3:19:05:F8:44 Certificate issuer: /CN=249140ca-277e-4871-a100-451d066d1c5b Certificate serial: 010D0C9F43285845BD8D48A47110F0CCE73E2BA0 Authority key identifier: 70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1c8cfd90-1e45-3ca8-865a-284e8261e043.roa Signing time: Thu 02 May 2024 15:18:31 +0000 ROA not before: Thu 02 May 2024 15:18:31 +0000 ROA not after: Wed 31 Jul 2024 15:18:31 +0000 asID: 21949 IP address blocks: 199.68.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:bd:8d:48:a4:71:10:f0:cc:e7:3e:2b:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=249140ca-277e-4871-a100-451d066d1c5b Validity Not Before: May 2 15:18:31 2024 GMT Not After : Jul 31 15:18:31 2024 GMT Subject: CN=a2bc847c-b924-4915-ad0d-efc92d2bd4f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a2:fa:83:3a:a2:96:85:9b:6f:02:e5:03:cc: cc:e4:26:ba:95:1c:b9:b1:8c:f2:f3:70:f6:db:ca: 39:24:6b:33:42:2a:b5:ab:20:2e:83:a1:08:e3:56: 74:b9:1e:49:d1:c0:1a:9c:ad:e8:39:5f:3c:e1:ac: b0:32:1c:05:ca:14:99:aa:35:c6:17:a2:af:9d:ab: 92:ab:94:fc:99:98:bf:05:37:5a:d5:cf:51:bd:55: 37:85:14:cf:a3:f2:b0:93:42:a4:6f:56:83:e1:8a: 0e:c2:cd:cf:89:3e:da:3f:50:d6:33:4e:4c:aa:4a: 9f:ba:02:5b:bc:68:f4:b2:92:85:d5:36:a2:1e:c8: 33:12:0d:0d:09:ee:83:00:2c:1a:ba:00:a5:8a:b3: 6c:d3:cd:b8:eb:86:7f:97:e3:69:17:de:d1:3c:a2: 04:ac:a0:cd:d4:e2:82:0a:c9:8b:d2:1a:f9:08:23: be:43:ac:2f:0e:a8:b3:4b:a6:25:7c:bc:a6:c7:fb: b3:ac:a5:f7:c8:55:51:45:ab:3c:1b:ec:77:e6:f8: 5e:4c:25:d6:e4:0c:80:22:98:5c:da:7e:29:f4:d4: e2:db:f1:be:15:65:0e:75:16:e5:39:ca:9d:1f:ab: 3f:a7:be:e4:78:71:2f:f8:28:1c:75:a2:13:8e:28: 99:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BC:DC:A9:AC:DB:4B:E1:8A:54:3A:19:C9:56:C9:B3:19:05:F8:44 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1c8cfd90-1e45-3ca8-865a-284e8261e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl X509v3 Authority Key Identifier: keyid:70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer sbgp-ipAddrBlock: critical IPv4: 199.68.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3e:30:e1:47:12:7f:e6:cf:22:ac:38:e5:79:67:10:04:bb:48: 3c:60:74:be:2a:4e:13:44:cd:0b:0c:95:d4:a7:2c:aa:e5:31: c8:70:65:5c:c8:e3:0b:65:b1:de:89:b4:dc:0b:3c:6b:fa:14: 46:6d:da:6d:2a:78:d8:66:39:2a:b8:82:49:32:2d:1b:3f:19: 7a:24:cc:f7:70:48:e9:68:85:97:61:1d:4d:a4:0c:9c:1a:93: ce:01:c0:bf:a1:c2:06:c2:5d:db:3d:29:09:d6:41:2e:a1:e6: 46:7e:85:6b:44:42:d1:89:71:e2:52:7a:c2:84:96:96:ea:61: 80:4f:8e:cd:01:85:52:3b:15:60:6b:1b:48:d8:fc:cc:81:a7: 7e:4c:5f:48:80:07:6a:7e:41:50:75:4f:74:f4:8c:94:cb:58: 75:45:81:94:eb:b4:f3:57:2d:2c:7b:0e:1a:7c:e1:93:3c:74: f6:ca:84:86:e8:38:a4:23:6c:94:cf:0d:dd:f7:5c:f1:6f:e7: da:6b:54:2c:92:7b:27:1c:75:d3:41:06:4b:dc:5e:14:10:19: 98:e6:41:ee:eb:64:49:b1:e4:d8:51:bf:5e:46:9d:b8:1f:e2: d1:e8:9a:df:b9:8f:18:ff:56:25:97:b6:3d:cd:88:e9:a8:88: 3a:0c:37:5c -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEW9jUikcRDwzOc+K6AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjQ5MTQwY2EtMjc3ZS00ODcxLWExMDAtNDUxZDA2NmQx YzViMB4XDTI0MDUwMjE1MTgzMVoXDTI0MDczMTE1MTgzMVowLzEtMCsGA1UEAxMk YTJiYzg0N2MtYjkyNC00OTE1LWFkMGQtZWZjOTJkMmJkNGYzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqL6gzqiloWbbwLlA8zM5Ca6lRy5sYzy83D2 28o5JGszQiq1qyAug6EI41Z0uR5J0cAanK3oOV884aywMhwFyhSZqjXGF6KvnauS q5T8mZi/BTda1c9RvVU3hRTPo/Kwk0Kkb1aD4YoOws3PiT7aP1DWM05MqkqfugJb vGj0spKF1TaiHsgzEg0NCe6DACwaugClirNs082464Z/l+NpF97RPKIErKDN1OKC CsmL0hr5CCO+Q6wvDqizS6YlfLymx/uzrKX3yFVRRas8G+x35vheTCXW5AyAIphc 2n4p9NTi2/G+FWUOdRblOcqdH6s/p77keHEv+CgcdaITjiiZ5QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFBq83Kms20vhilQ6GclWybMZBfhEMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy8yNDkx NDBjYS0yNzdlLTQ4NzEtYTEwMC00NTFkMDY2ZDFjNWIvMWM4Y2ZkOTAtMWU0NS0z Y2E4LTg2NWEtMjg0ZTgyNjFlMDQzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvMjQ5MTQwY2EtMjc3ZS00ODcxLWEx MDAtNDUxZDA2NmQxYzViLzI0OTE0MGNhLTI3N2UtNDg3MS1hMTAwLTQ1MWQwNjZk MWM1Yi5jcmwwHwYDVR0jBBgwFoAUcCTs3b7y+uva+LVMugLAQ4E9SMkwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy8yNDkxNDBjYS0yNzdlLTQ4NzEtYTEwMC00NTFk MDY2ZDFjNWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDx0R4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAD4w4UcSf+bPIqw45XlnEAS7SDxgdL4qThNEzQsMldSnLKrlMchwZVzI 4wtlsd6JtNwLPGv6FEZt2m0qeNhmOSq4gkkyLRs/GXokzPdwSOlohZdhHU2kDJwa k84BwL+hwgbCXds9KQnWQS6h5kZ+hWtEQtGJceJSesKElpbqYYBPjs0BhVI7FWBr G0jY/MyBp35MX0iAB2p+QVB1T3T0jJTLWHVFgZTrtPNXLSx7Dhp84ZM8dPbKhIbo OKQjbJTPDd33XPFv59prVCySeyccddNBBkvcXhQQGZjmQe7rZEmx5NhRv15Gnbgf 4tHomt+5jxj/ViWXtj3NiOmoiDoMN1w= -----END CERTIFICATE-----Generated at Sat May 18 13:39:49 2024 by rpki-client on console-ams.rpki-client.org