$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34322e302f32332d3234203d3e20393435.roa File: 3130342e33372e34322e302f32332d3234203d3e20393435.roa (raw, json) Hash identifier: xw3XOfvRZUaoz642di+XOyW27hy/wOxkel4XrTakyVI= Subject key identifier: C5:2F:1B:EE:4F:86:2A:09:FD:7C:80:85:68:E2:37:31:2D:1A:AC:A9 Certificate issuer: /CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Certificate serial: 22BEA19043DB8D8A66E4E24214B2E9A8045EA512 Authority key identifier: 7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34322e302f32332d3234203d3e20393435.roa Signing time: Sat 14 Oct 2023 16:23:43 +0000 ROA not before: Sat 14 Oct 2023 16:18:43 +0000 ROA not after: Sat 12 Oct 2024 16:23:43 +0000 asID: 945 IP address blocks: 104.37.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/39065acc-beed-4115-bc6c-63de232f2a04.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 29 Apr 2024 12:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:be:a1:90:43:db:8d:8a:66:e4:e2:42:14:b2:e9:a8:04:5e:a5:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351 Validity Not Before: Oct 14 16:18:43 2023 GMT Not After : Oct 12 16:23:43 2024 GMT Subject: CN=C52F1BEE4F862A09FD7C808568E237312D1AACA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:6f:03:e6:4d:65:d8:59:f4:d6:0b:e4:e3: f7:da:54:61:3a:a1:63:45:26:39:c7:b8:33:0a:85: 8d:d6:31:26:04:a5:46:47:ef:7a:c8:c9:b3:f7:8a: e5:d7:54:01:6a:d5:b9:92:6c:49:10:f5:27:e0:3d: e6:cd:90:03:6e:81:0c:f1:aa:ff:c7:05:5a:7c:d8: 91:99:aa:57:e3:7c:9c:15:a8:8d:5f:d7:58:68:5d: 4d:c4:a6:04:60:ae:83:a2:39:46:02:95:42:a6:a7: 1e:bb:f5:4d:e8:4c:5a:fc:df:4d:79:7b:9d:3e:d3: ee:85:f0:e0:8f:8c:f8:3f:b1:ca:e2:d5:20:e8:32: b6:c7:88:bb:6c:73:df:8d:44:e5:3d:a5:de:eb:ee: 22:57:5c:00:1f:4f:74:71:25:6a:8f:98:67:06:1b: a2:60:07:83:d0:c5:97:82:40:8a:94:e0:a0:fc:28: 64:3c:37:84:11:c8:bd:c9:73:03:80:d4:2c:22:b3: 7d:18:e1:2c:66:12:78:61:3d:85:d7:1a:1c:a5:81: c1:0b:5b:83:38:1c:e3:ae:2f:88:91:bf:7b:6a:4b: 78:6a:d0:02:c3:86:62:84:45:0c:7a:09:9c:14:21: 3a:95:94:81:87:d2:24:0b:e2:27:a7:1a:d2:8f:a8: de:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:2F:1B:EE:4F:86:2A:09:FD:7C:80:85:68:E2:37:31:2D:1A:AC:A9 X509v3 Authority Key Identifier: keyid:7E:C9:B5:D2:25:08:C0:23:1C:15:DA:BD:AF:51:35:99:0B:66:BF:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/7EC9B5D22508C0231C15DABDAF5135990B66BFED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/39065acc-beed-4115-bc6c-63de232f2a04/02ba3f5254b88681ec6c5450a38717479c0589b9956c51e351.cer Subject Information Access: Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/3130342e33372e34322e302f32332d3234203d3e20393435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.37.42.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:38:f7:3f:49:5c:3e:1d:2c:a5:bd:2e:0c:ce:f6:09:af:90: 33:b1:13:66:17:ef:e9:7e:f2:2a:f9:08:9a:2b:09:b2:c8:94: 2c:39:2d:68:56:d0:13:41:83:e1:22:65:cc:41:1c:a8:5c:51: dd:72:97:8d:f4:ed:e5:9f:71:20:e0:2c:30:45:3d:df:bd:f0: a8:9f:cd:f7:6c:4f:91:e0:af:b4:c3:5a:bb:24:36:a4:aa:84: 53:0a:8c:f0:82:de:91:76:d5:2f:37:a3:70:8f:a6:a0:13:12: dc:f5:09:ce:a3:72:76:ce:5b:46:11:d7:92:bf:e0:be:fd:ff: 0a:06:70:8c:06:c8:7d:ff:13:32:e0:df:a7:7e:7d:11:81:59: 35:ed:90:9d:a9:af:d3:c1:f0:ad:54:90:20:db:02:f9:d5:4f: 66:01:f1:54:ca:33:cd:2f:ba:90:a7:d9:89:3d:c0:74:ab:9b: af:22:64:cb:33:a0:ea:3c:2b:2f:fd:d5:7f:ac:46:0f:5a:06: 19:9b:6d:07:14:c7:04:be:6f:25:47:1c:2a:6c:bf:51:8d:08: b1:f0:7c:02:2b:50:10:87:b2:20:15:67:1d:09:2a:e4:72:fd: f0:0c:39:82:63:46:b7:88:0d:7a:0e:5d:1f:fc:b7:4e:18:2d: 6e:2b:83:35 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUIr6hkEPbjYpm5OJCFLLpqARepRIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5 YzA1ODliOTk1NmM1MWUzNTEwHhcNMjMxMDE0MTYxODQzWhcNMjQxMDEyMTYyMzQz WjAzMTEwLwYDVQQDEyhDNTJGMUJFRTRGODYyQTA5RkQ3QzgwODU2OEUyMzczMTJE MUFBQ0E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyd1vA+ZNZdhZ 9NYL5OP32lRhOqFjRSY5x7gzCoWN1jEmBKVGR+96yMmz94rl11QBatW5kmxJEPUn 4D3mzZADboEM8ar/xwVafNiRmapX43ycFaiNX9dYaF1NxKYEYK6DojlGApVCpqce u/VN6Exa/N9NeXudPtPuhfDgj4z4P7HK4tUg6DK2x4i7bHPfjUTlPaXe6+4iV1wA H090cSVqj5hnBhuiYAeD0MWXgkCKlOCg/ChkPDeEEci9yXMDgNQsIrN9GOEsZhJ4 YT2F1xocpYHBC1uDOBzjri+Ikb97akt4atACw4ZihEUMegmcFCE6lZSBh9IkC+In pxrSj6je1wIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFMUvG+5PhioJ/XyAhWjiNzEt GqypMB8GA1UdIwQYMBaAFH7JtdIlCMAjHBXava9RNZkLZr/tMA4GA1UdDwEB/wQE AwIHgDBmBgNVHR8EXzBdMFugWaBXhlVyc3luYzovL3JlcG8ua2FnbC5tZS9ycGtp L0tlYXRvbkFHTGFpci8wLzdFQzlCNUQyMjUwOEMwMjMxQzE1REFCREFGNTEzNTk5 MEI2NkJGRUQuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEt NDViZi05NTg2LTkyZGQ0OWVmMzIyMy8zOTA2NWFjYy1iZWVkLTQxMTUtYmM2Yy02 M2RlMjMyZjJhMDQvMDJiYTNmNTI1NGI4ODY4MWVjNmM1NDUwYTM4NzE3NDc5YzA1 ODliOTk1NmM1MWUzNTEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4Zd cnN5bmM6Ly9yZXBvLmthZ2wubWUvcnBraS9LZWF0b25BR0xhaXIvMC8zMTMwMzQy ZTMzMzcyZTM0MzIyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzOTM0MzUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFoJSowDQYJKoZIhvcNAQELBQADggEBAHo49z9JXD4dLKW9LgzO9gmvkDOx E2YX7+l+8ir5CJorCbLIlCw5LWhW0BNBg+EiZcxBHKhcUd1yl4307eWfcSDgLDBF Pd+98KifzfdsT5Hgr7TDWrskNqSqhFMKjPCC3pF21S83o3CPpqATEtz1Cc6jcnbO W0YR15K/4L79/woGcIwGyH3/EzLg36d+fRGBWTXtkJ2pr9PB8K1UkCDbAvnVT2YB 8VTKM80vupCn2Yk9wHSrm68iZMszoOo8Ky/91X+sRg9aBhmbbQcUxwS+byVHHCps v1GNCLHwfAIrUBCHsiAVZx0JKuRy/fAMOYJjRreIDXoOXR/8t04YLW4rgzU= -----END CERTIFICATE-----Generated at Sun Apr 28 12:09:42 2024 by rpki-client on console-ams.rpki-client.org