$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34302e302f32342d3234203d3e20393730.roa File: 3130342e33372e34302e302f32342d3234203d3e20393730.roa (raw, json) Hash identifier: nQN+4wOuwotL/QEiaZ7hL2BRDxbM05YmppHCrNkMcGw= Subject key identifier: 92:82:4F:93:D1:AB:8D:46:5E:E6:10:5B:8A:83:7E:45:27:95:7B:BC Certificate issuer: /CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Certificate serial: 22E3B6C78AF1CEB0FDF931E20F77004D7C992E85 Authority key identifier: 7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34302e302f32342d3234203d3e20393730.roa Signing time: Mon 11 Mar 2024 07:12:38 +0000 ROA not before: Mon 11 Mar 2024 07:07:38 +0000 ROA not after: Mon 10 Mar 2025 07:12:38 +0000 asID: 970 IP address blocks: 104.37.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 28 Apr 2024 19:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:e3:b6:c7:8a:f1:ce:b0:fd:f9:31:e2:0f:77:00:4d:7c:99:2e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Validity Not Before: Mar 11 07:07:38 2024 GMT Not After : Mar 10 07:12:38 2025 GMT Subject: CN=92824F93D1AB8D465EE6105B8A837E4527957BBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:f3:f0:cf:10:c2:24:1e:63:c8:90:33:b3:7f: 99:35:f2:4c:a2:46:f8:22:9c:e5:31:93:7d:0b:4a: 57:01:6a:e0:ba:46:94:f3:02:0d:9f:7a:88:c3:1a: 83:e9:b1:18:7d:e7:0d:8e:e4:f2:c6:4c:d9:31:ac: a1:c1:ed:43:50:6f:1b:51:41:ba:60:97:47:79:50: e5:eb:1e:8c:f0:cf:99:52:a9:37:c6:ea:2e:73:b5: c6:8a:c3:c5:76:96:e1:39:62:7e:ba:49:91:9d:eb: 4c:00:77:e0:00:36:3e:05:4f:71:10:7b:0c:e0:e1: b1:10:a6:c9:2f:cf:8e:94:50:6f:aa:20:7b:a0:d6: aa:cc:1a:a2:e9:0f:6f:c9:f9:f1:3a:82:ee:2c:7a: 57:03:60:ee:cd:8c:da:a2:92:60:1d:84:c6:d7:56: 8a:ae:ae:c8:d3:b3:73:e5:5b:4d:8b:e7:f3:17:f3: 73:64:6b:ee:fe:ed:85:12:47:fa:9a:8f:d8:49:0b: 25:e5:e4:b7:eb:54:b9:89:6e:c8:22:30:1d:05:08: eb:12:bd:7d:07:0f:0c:33:1f:29:eb:66:b9:37:a7: c2:cd:4b:dc:79:49:ba:59:4c:cd:a4:98:55:ec:e1: a8:49:78:29:f7:93:0f:ca:03:84:c0:42:32:cf:bc: ff:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:82:4F:93:D1:AB:8D:46:5E:E6:10:5B:8A:83:7E:45:27:95:7B:BC X509v3 Authority Key Identifier: keyid:7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject Information Access: Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34302e302f32342d3234203d3e20393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.37.40.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:2b:12:03:06:ae:01:f4:ac:4f:d2:95:cf:84:2c:de:a9:ce: 78:1a:5e:02:02:1f:c9:1a:ef:48:e7:74:e8:e2:ba:5b:ad:0d: 95:05:47:50:76:24:fd:4a:ee:51:03:79:c6:54:ac:9a:25:90: 38:34:04:01:ce:02:ab:b5:65:2d:52:ce:0f:e9:81:9c:0f:69: fa:93:f3:1c:88:d7:a2:d8:78:51:42:bb:3b:40:84:0e:97:77: 96:b2:2b:81:a6:1f:1e:0b:b5:df:bb:73:a5:ab:20:df:ed:2f: 9e:cf:e5:e3:e4:3f:a4:76:30:2f:da:9f:1f:e2:c2:bd:0b:0e: 6f:0e:3d:ee:bd:8a:4b:6f:09:c7:c0:11:ab:56:25:fa:2f:aa: f8:2b:d8:0d:1f:3f:79:14:cd:f5:3d:7e:b2:81:e5:2a:93:64: ac:1a:c7:cb:52:ce:03:60:d6:c0:09:61:d8:c8:90:6b:c8:0e: db:6a:f0:11:02:5f:2a:1d:ea:f6:98:c3:7f:a0:41:fb:24:9f: c7:8e:cd:b1:52:b2:26:a7:df:35:80:b3:2c:2a:28:b2:6d:2f: f2:f9:94:83:39:4d:4b:72:34:2d:9f:35:c7:4f:75:2d:53:35: 54:d3:5e:79:da:89:fa:65:f4:47:96:45:40:a4:57:52:d9:a2: fc:7c:1e:57 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUIuO2x4rxzrD9+THiD3cATXyZLoUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5 YzA1ODliOTk1NmM1MWUzNTEwHhcNMjQwMzExMDcwNzM4WhcNMjUwMzEwMDcxMjM4 WjAzMTEwLwYDVQQDEyg5MjgyNEY5M0QxQUI4RDQ2NUVFNjEwNUI4QTgzN0U0NTI3 OTU3QkJDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj/PwzxDCJB5j yJAzs3+ZNfJMokb4IpzlMZN9C0pXAWrgukaU8wINn3qIwxqD6bEYfecNjuTyxkzZ Mayhwe1DUG8bUUG6YJdHeVDl6x6M8M+ZUqk3xuouc7XGisPFdpbhOWJ+ukmRnetM AHfgADY+BU9xEHsM4OGxEKbJL8+OlFBvqiB7oNaqzBqi6Q9vyfnxOoLuLHpXA2Du zYzaopJgHYTG11aKrq7I07Nz5VtNi+fzF/NzZGvu/u2FEkf6mo/YSQsl5eS361S5 iW7IIjAdBQjrEr19Bw8MMx8p62a5N6fCzUvceUm6WUzNpJhV7OGoSXgp95MPygOE wEIyz7z/PwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFJKCT5PRq41GXuYQW4qDfkUn lXu8MB8GA1UdIwQYMBaAFH7JtdIlCMAjHBXava9RNZkLZr/tMA4GA1UdDwEB/wQE AwIHgDBmBgNVHR8EXzBdMFugWaBXhlVyc3luYzovL3JlcG8ua2FnbC5tZS9ycGtp L0tlYXRvbkFHTGFpci8wLzdFQzlCNUQyMjUwOEMwMjMxQzE1REFCREFGNTEzNTk5 MEI2NkJGRUQuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEt NDViZi05NTg2LTkyZGQ0OWVmMzIyMy8zOTA2NWFjYy1iZWVkLTQxMTUtYmM2Yy02 M2RlMjMyZjJhMDQvMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5YzA1 ODliOTk1NmM1MWUzNTEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4Zd cnN5bmM6Ly9yZXBvLmthZ2wubWUvcnBraS9LZWF0b25BR0xhaXIvMC8zMTMwMzQy ZTMzMzcyZTM0MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzOTM3MzAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABoJSgwDQYJKoZIhvcNAQELBQADggEBAAorEgMGrgH0rE/Slc+ELN6pznga XgICH8ka70jndOjiulutDZUFR1B2JP1K7lEDecZUrJolkDg0BAHOAqu1ZS1Szg/p gZwPafqT8xyI16LYeFFCuztAhA6Xd5ayK4GmHx4Ltd+7c6WrIN/tL57P5ePkP6R2 MC/anx/iwr0LDm8OPe69iktvCcfAEatWJfovqvgr2A0fP3kUzfU9frKB5SqTZKwa x8tSzgNg1sAJYdjIkGvIDttq8BECXyod6vaYw3+gQfskn8eOzbFSsian3zWAsywq KLJtL/L5lIM5TUtyNC2fNcdPdS1TNVTTXnnaifpl9EeWRUCkV1LZovx8Hlc= -----END CERTIFICATE-----Generated at Sat Apr 27 17:53:16 2024 by rpki-client on console-ams.rpki-client.org