$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34322e302f32332d3234203d3e20393435.roa File: 3130342e33372e34322e302f32332d3234203d3e20393435.roa (raw, json) Hash identifier: 15ZkZ3TfYDgn/2NuUygkkJxkxZnGlbkkKGi5Yto7PDI= Subject key identifier: 4A:FF:40:51:F1:A6:71:D2:7C:5E:CF:E1:33:82:4E:35:82:09:CD:CA Certificate issuer: /CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Certificate serial: 35529E78D529E2FA38A2AFB5F32734B62D48BDEE Authority key identifier: 7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34322e302f32332d3234203d3e20393435.roa Signing time: Sat 14 Sep 2024 16:50:50 +0000 ROA not before: Sat 14 Sep 2024 16:45:50 +0000 ROA not after: Sat 13 Sep 2025 16:50:50 +0000 asID: 945 IP address blocks: 104.37.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 11:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:52:9e:78:d5:29:e2:fa:38:a2:af:b5:f3:27:34:b6:2d:48:bd:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Validity Not Before: Sep 14 16:45:50 2024 GMT Not After : Sep 13 16:50:50 2025 GMT Subject: CN=4AFF4051F1A671D27C5ECFE133824E358209CDCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:63:b1:6e:75:05:3e:10:29:a5:60:68:f3:ef: c8:2b:34:bd:97:aa:4b:4d:c5:20:d5:52:09:8e:30: 4f:ac:b3:55:b6:5a:07:e8:93:f8:38:9f:95:be:28: ce:8f:34:98:5c:91:8b:ab:e4:a8:af:a9:83:5e:3e: 28:6f:38:63:24:b8:3f:08:61:3c:55:0f:ba:b7:05: d6:27:5d:93:c2:a1:cd:92:ce:30:0b:57:89:6f:26: 18:74:7a:55:cc:85:36:ff:8e:d6:b4:87:39:c0:ec: 18:7c:b9:66:f6:22:29:54:dc:3e:67:8f:b1:d0:19: 82:bf:d1:b0:f6:99:09:e1:4d:39:b4:89:6c:a1:d3: 2c:ea:cf:46:0d:07:c3:4e:7c:73:38:87:51:fc:3f: 00:7a:94:32:11:bc:7e:ee:be:09:49:15:c0:a9:f3: f3:69:22:4d:cb:25:7d:10:b7:40:e4:2b:9a:ba:04: 72:cb:fa:fe:6c:50:bd:6d:5d:0d:22:fe:31:98:d4: 7d:02:06:44:de:77:f5:2f:ea:55:d3:4a:1e:73:6c: 81:06:6d:4c:8e:43:79:5d:37:1c:25:22:4d:c4:31: fd:68:a6:e8:24:93:b7:70:8f:ce:2f:ae:e4:6e:78: 38:7e:84:64:dc:f4:db:6a:42:15:b7:08:7b:d4:6e: 0f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FF:40:51:F1:A6:71:D2:7C:5E:CF:E1:33:82:4E:35:82:09:CD:CA X509v3 Authority Key Identifier: keyid:7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject Information Access: Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34322e302f32332d3234203d3e20393435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.37.42.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:20:8d:6c:9f:c5:11:da:44:97:b0:03:36:de:6a:23:07:3c: b3:d2:e5:a1:29:34:c6:9c:a9:2b:e9:05:33:31:80:3f:ed:f8: 8c:1a:d3:17:59:c6:cf:56:e7:e2:7f:57:d5:e4:42:75:9c:44: 8b:c2:90:91:1d:ad:13:a0:a0:19:a6:54:34:c3:34:32:eb:6f: 6f:18:56:d5:a0:5c:7a:d2:b0:85:b7:a8:d7:6e:66:ce:90:51: 79:a1:ca:e5:4c:8e:05:fe:e5:ad:b4:07:64:81:20:8e:47:22: d4:61:d7:e5:29:5e:6b:2b:02:1a:75:ce:cb:c5:61:86:eb:bf: e8:20:25:c6:0a:dc:60:f5:de:56:e8:1b:4d:11:77:1d:8d:4a: bf:21:6a:fe:7e:2d:bb:76:5f:ff:64:e5:53:9d:fa:35:ee:f0: cc:dd:7e:a4:f9:cb:2d:93:8e:18:51:ca:5f:08:2a:c9:3b:0d: d0:93:6e:9d:65:eb:61:48:e8:fe:32:e3:f7:00:a3:ef:13:ef: 19:0c:1a:73:c0:35:f5:49:c1:1b:1c:7f:2f:9e:4b:09:b5:9f: d7:8e:86:71:96:60:9e:19:50:60:c9:15:8d:de:fa:5d:8f:91: d7:4b:7b:6f:66:fa:32:9c:e7:cc:5b:38:ef:8d:51:f7:65:57: c3:b6:1a:93 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUNVKeeNUp4vo4oq+18yc0ti1Ive4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5 YzA1ODliOTk1NmM1MWUzNTEwHhcNMjQwOTE0MTY0NTUwWhcNMjUwOTEzMTY1MDUw WjAzMTEwLwYDVQQDEyg0QUZGNDA1MUYxQTY3MUQyN0M1RUNGRTEzMzgyNEUzNTgy MDlDRENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2OxbnUFPhAp pWBo8+/IKzS9l6pLTcUg1VIJjjBPrLNVtloH6JP4OJ+VvijOjzSYXJGLq+Sor6mD Xj4obzhjJLg/CGE8VQ+6twXWJ12TwqHNks4wC1eJbyYYdHpVzIU2/47WtIc5wOwY fLlm9iIpVNw+Z4+x0BmCv9Gw9pkJ4U05tIlsodMs6s9GDQfDTnxzOIdR/D8AepQy Ebx+7r4JSRXAqfPzaSJNyyV9ELdA5CuaugRyy/r+bFC9bV0NIv4xmNR9AgZE3nf1 L+pV00oec2yBBm1MjkN5XTccJSJNxDH9aKboJJO3cI/OL67kbng4foRk3PTbakIV twh71G4PYwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFEr/QFHxpnHSfF7P4TOCTjWC Cc3KMB8GA1UdIwQYMBaAFH7JtdIlCMAjHBXava9RNZkLZr/tMA4GA1UdDwEB/wQE AwIHgDBmBgNVHR8EXzBdMFugWaBXhlVyc3luYzovL3JlcG8ua2FnbC5tZS9ycGtp L0tlYXRvbkFHTGFpci8wLzdFQzlCNUQyMjUwOEMwMjMxQzE1REFCREFGNTEzNTk5 MEI2NkJGRUQuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEt NDViZi05NTg2LTkyZGQ0OWVmMzIyMy8zOTA2NWFjYy1iZWVkLTQxMTUtYmM2Yy02 M2RlMjMyZjJhMDQvMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5YzA1 ODliOTk1NmM1MWUzNTEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4Zd cnN5bmM6Ly9yZXBvLmthZ2wubWUvcnBraS9LZWF0b25BR0xhaXIvMC8zMTMwMzQy ZTMzMzcyZTM0MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzOTM0MzUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFoJSowDQYJKoZIhvcNAQELBQADggEBAD8gjWyfxRHaRJewAzbeaiMHPLPS 5aEpNMacqSvpBTMxgD/t+Iwa0xdZxs9W5+J/V9XkQnWcRIvCkJEdrROgoBmmVDTD NDLrb28YVtWgXHrSsIW3qNduZs6QUXmhyuVMjgX+5a20B2SBII5HItRh1+UpXmsr Ahp1zsvFYYbrv+ggJcYK3GD13lboG00Rdx2NSr8hav5+Lbt2X/9k5VOd+jXu8Mzd fqT5yy2TjhhRyl8IKsk7DdCTbp1l62FI6P4y4/cAo+8T7xkMGnPANfVJwRscfy+e Swm1n9eOhnGWYJ4ZUGDJFY3e+l2PkddLe29m+jKc58xbOO+NUfdlV8O2GpM= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org