$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34302e302f32322d3232203d3e2030.roa File: 3130342e33372e34302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: 3Dx9MrwmJlSexiC4AkX+YCkpXccMrukkkSZIGH658cU= Subject key identifier: 79:4F:12:CF:65:3B:B5:A7:93:8C:5D:42:EF:A7:8C:76:0F:D1:F2:89 Certificate issuer: /CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Certificate serial: 792B391F2CF6B4662EE1C27B65310A43A7825AB1 Authority key identifier: 7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34302e302f32322d3232203d3e2030.roa Signing time: Mon 11 Mar 2024 07:12:37 +0000 ROA not before: Mon 11 Mar 2024 07:07:37 +0000 ROA not after: Mon 10 Mar 2025 07:12:37 +0000 asID: 0 IP address blocks: 104.37.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 23:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2b:39:1f:2c:f6:b4:66:2e:e1:c2:7b:65:31:0a:43:a7:82:5a:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Validity Not Before: Mar 11 07:07:37 2024 GMT Not After : Mar 10 07:12:37 2025 GMT Subject: CN=794F12CF653BB5A7938C5D42EFA78C760FD1F289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:90:29:96:7c:df:9b:8c:81:59:60:7a:47:ae: f2:a1:1e:d4:70:32:50:90:c0:6b:fe:07:3c:dc:ae: 02:0b:35:70:02:c0:63:f6:cc:0c:d9:94:d0:00:53: 72:3e:9f:7a:44:08:f3:21:58:5d:9b:c0:d1:2c:83: ed:e5:8d:e4:e8:23:0b:e0:5e:40:3b:ff:a9:1f:82: 54:71:f2:ce:11:ad:7b:b8:17:49:47:bb:99:5d:27: d0:bf:53:a3:58:ad:95:15:47:14:a4:b0:46:56:4e: af:df:55:96:58:53:bc:e7:7e:5a:9b:d4:46:60:53: 4b:63:07:cf:05:1e:28:b8:b3:16:c7:11:a0:d1:da: 6e:1b:75:26:30:d5:ff:6c:f7:52:14:07:35:cd:c6: 75:7f:56:42:76:2f:34:f7:fc:1e:80:84:70:c9:60: 69:8b:9d:fd:07:54:9e:59:29:ae:ae:6a:c0:6f:3b: b9:2e:1a:70:04:b4:64:b8:ce:af:1d:20:67:53:2a: 46:3e:34:01:a6:f3:6d:9b:a1:a3:84:36:4d:b5:6b: 66:be:90:e9:ce:df:6d:f6:d1:0c:dd:c3:99:9d:d0: e8:50:4a:7a:6f:95:2a:18:62:f7:54:b0:11:e9:86: cb:89:68:61:c0:8e:3d:c9:4a:77:b6:64:29:7a:cd: 29:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4F:12:CF:65:3B:B5:A7:93:8C:5D:42:EF:A7:8C:76:0F:D1:F2:89 X509v3 Authority Key Identifier: keyid:7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject Information Access: Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.37.40.0/22 Signature Algorithm: sha256WithRSAEncryption bd:f9:a4:ff:d9:89:93:02:1c:47:ab:90:e6:0e:09:f3:0f:45: 59:e7:d5:79:7f:f7:7f:29:f8:c9:32:1f:a0:91:c5:80:d7:f7: 41:14:bd:3a:e2:36:89:91:9b:4f:56:24:03:9a:ed:12:35:ee: de:80:e9:63:43:d2:d0:4e:fe:46:a9:0f:df:cc:0b:6a:5a:0a: fb:e5:7c:5a:36:0a:40:04:52:20:10:62:fb:0b:82:5a:2d:54: ce:f8:27:27:db:c3:ac:03:45:26:c3:e1:b7:31:ca:64:eb:b2: 1b:ba:37:c0:50:99:ec:e3:2b:eb:b8:02:1e:f8:b0:c1:32:9b: 35:ec:ea:2e:39:c1:e0:b9:48:30:c3:be:2c:94:32:ff:f0:a5: be:7b:37:ba:dc:f1:a7:0b:16:14:a7:df:5c:d7:dd:c5:a8:32: 82:4f:00:eb:1d:62:dc:c2:f5:ef:a8:0b:18:09:93:ad:fa:79: 8f:54:d5:74:94:76:18:be:70:29:36:98:d3:cd:e6:6c:95:12: b6:1a:05:4a:04:78:e2:d1:91:6d:78:2a:03:30:70:f4:f8:d8: 16:bd:3d:d2:82:af:41:0e:0f:78:40:58:8a:37:ce:0b:72:23: 19:0d:3d:52:51:5d:af:07:58:40:16:94:ed:b9:4f:d3:2f:73: 6f:df:03:55 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUeSs5Hyz2tGYu4cJ7ZTEKQ6eCWrEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5 YzA1ODliOTk1NmM1MWUzNTEwHhcNMjQwMzExMDcwNzM3WhcNMjUwMzEwMDcxMjM3 WjAzMTEwLwYDVQQDEyg3OTRGMTJDRjY1M0JCNUE3OTM4QzVENDJFRkE3OEM3NjBG RDFGMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpAplnzfm4yB WWB6R67yoR7UcDJQkMBr/gc83K4CCzVwAsBj9swM2ZTQAFNyPp96RAjzIVhdm8DR LIPt5Y3k6CML4F5AO/+pH4JUcfLOEa17uBdJR7uZXSfQv1OjWK2VFUcUpLBGVk6v 31WWWFO8535am9RGYFNLYwfPBR4ouLMWxxGg0dpuG3UmMNX/bPdSFAc1zcZ1f1ZC di809/wegIRwyWBpi539B1SeWSmurmrAbzu5LhpwBLRkuM6vHSBnUypGPjQBpvNt m6GjhDZNtWtmvpDpzt9t9tEM3cOZndDoUEp6b5UqGGL3VLAR6YbLiWhhwI49yUp3 tmQpes0pSQIDAQABo4ICZDCCAmAwHQYDVR0OBBYEFHlPEs9lO7Wnk4xdQu+njHYP 0fKJMB8GA1UdIwQYMBaAFH7JtdIlCMAjHBXava9RNZkLZr/tMA4GA1UdDwEB/wQE AwIHgDBmBgNVHR8EXzBdMFugWaBXhlVyc3luYzovL3JlcG8ua2FnbC5tZS9ycGtp L0tlYXRvbkFHTGFpci8wLzdFQzlCNUQyMjUwOEMwMjMxQzE1REFCREFGNTEzNTk5 MEI2NkJGRUQuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEt NDViZi05NTg2LTkyZGQ0OWVmMzIyMy8zOTA2NWFjYy1iZWVkLTQxMTUtYmM2Yy02 M2RlMjMyZjJhMDQvMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5YzA1 ODliOTk1NmM1MWUzNTEuY2VyMHUGCCsGAQUFBwELBGkwZzBlBggrBgEFBQcwC4ZZ cnN5bmM6Ly9yZXBvLmthZ2wubWUvcnBraS9LZWF0b25BR0xhaXIvMC8zMTMwMzQy ZTMzMzcyZTM0MzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmglKDANBgkqhkiG9w0BAQsFAAOCAQEAvfmk/9mJkwIcR6uQ5g4J8w9FWefVeX/3 fyn4yTIfoJHFgNf3QRS9OuI2iZGbT1YkA5rtEjXu3oDpY0PS0E7+RqkP38wLaloK ++V8WjYKQARSIBBi+wuCWi1UzvgnJ9vDrANFJsPhtzHKZOuyG7o3wFCZ7OMr67gC HviwwTKbNezqLjnB4LlIMMO+LJQy//Clvns3utzxpwsWFKffXNfdxagygk8A6x1i 3ML176gLGAmTrfp5j1TVdJR2GL5wKTaY083mbJUSthoFSgR44tGRbXgqAzBw9PjY Fr090oKvQQ4PeEBYijfOC3IjGQ09UlFdrwdYQBaU7blP0y9zb98DVQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:13:29 2024 by rpki-client on console-ams.rpki-client.org