$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/3137322e39392e32322e302f32342d3234203d3e20383334.roa File: 3137322e39392e32322e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: cQjYK6wcQpRAsRJA7tBoXBA5aSSGNXNI/dbOy9a2vg8= Subject key identifier: 28:1B:3B:53:2A:0E:B3:8C:62:58:4E:3A:68:53:22:BA:64:DA:F9:7D Certificate issuer: /CN=8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe Certificate serial: 38F72B5742EFD6F0BB862122D377B8B5963AF57B Authority key identifier: 4A:65:9D:2B:D2:0D:70:6E:89:F0:E9:C8:A1:E8:22:F2:DD:AE:BE:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/946afd34-6971-423f-b22a-575e2c73ab27/8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/3137322e39392e32322e302f32342d3234203d3e20383334.roa Signing time: Sat 06 Apr 2024 00:02:45 +0000 ROA not before: Fri 05 Apr 2024 23:57:45 +0000 ROA not after: Sat 05 Apr 2025 00:02:45 +0000 asID: 834 IP address blocks: 172.99.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/4A659D2BD20D706E89F0E9C8A1E822F2DDAEBE1F.crl rsync://rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/4A659D2BD20D706E89F0E9C8A1E822F2DDAEBE1F.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/946afd34-6971-423f-b22a-575e2c73ab27/8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/946afd34-6971-423f-b22a-575e2c73ab27/946afd34-6971-423f-b22a-575e2c73ab27.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/946afd34-6971-423f-b22a-575e2c73ab27/946afd34-6971-423f-b22a-575e2c73ab27.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/946afd34-6971-423f-b22a-575e2c73ab27.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 01:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:f7:2b:57:42:ef:d6:f0:bb:86:21:22:d3:77:b8:b5:96:3a:f5:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe Validity Not Before: Apr 5 23:57:45 2024 GMT Not After : Apr 5 00:02:45 2025 GMT Subject: CN=281B3B532A0EB38C62584E3A685322BA64DAF97D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:71:27:10:bd:8d:5a:50:90:2e:1d:5b:2f:c9: ab:83:39:69:52:8c:3b:a2:88:92:54:f3:60:50:6c: c0:7c:bd:bc:5e:91:82:3f:9f:bb:4d:d6:42:8e:fc: d6:92:f2:b8:12:fb:ab:69:34:d6:7e:14:9b:1c:4f: 3c:c2:d0:a3:d4:34:46:51:86:4f:e7:c5:25:7e:96: 20:ba:33:68:91:c0:b3:66:0f:35:f5:ad:0e:2a:11: 85:e5:51:34:0b:15:aa:49:2b:72:8d:85:71:fc:32: d7:fb:8d:e1:2b:d0:64:0c:d0:1e:85:75:c3:9d:93: 32:a7:10:42:93:4f:b3:24:b2:0c:06:b3:fe:9a:36: 76:7f:d8:dd:6f:a8:4a:69:38:bd:3d:20:2f:03:16: 4e:8a:a2:eb:eb:b4:94:24:d9:61:18:84:d0:67:72: d1:9c:a1:38:0b:4e:46:c6:0b:da:1d:3d:83:0f:09: 8d:15:ee:48:8d:f3:30:0e:b7:bc:48:e0:8f:af:b3: 96:6c:52:85:c8:9f:7c:a8:91:72:88:24:3d:bc:ee: b1:d7:c6:e7:d2:8e:3a:38:15:91:22:93:d9:91:a3: 00:aa:0b:47:6d:0a:88:22:74:3c:2c:7e:2c:93:45: 01:51:40:5a:b9:98:af:bd:a3:5d:b7:f4:c8:50:12: 5b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:1B:3B:53:2A:0E:B3:8C:62:58:4E:3A:68:53:22:BA:64:DA:F9:7D X509v3 Authority Key Identifier: keyid:4A:65:9D:2B:D2:0D:70:6E:89:F0:E9:C8:A1:E8:22:F2:DD:AE:BE:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/4A659D2BD20D706E89F0E9C8A1E822F2DDAEBE1F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/946afd34-6971-423f-b22a-575e2c73ab27/8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/3137322e39392e32322e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.99.22.0/24 Signature Algorithm: sha256WithRSAEncryption 29:c8:2b:99:53:58:65:e6:3c:67:cd:37:28:0c:8f:14:df:4a: b3:ba:85:23:f5:e8:21:af:3d:cc:84:35:92:8e:7d:83:39:fd: 61:ed:29:cf:cb:b5:4e:f3:a4:c8:87:5a:0e:b2:45:45:75:b3: 3c:51:84:d7:35:5d:5c:89:9e:90:fb:2d:45:76:f5:4f:ba:15: 27:a6:f2:42:87:75:8e:99:6c:ac:c5:07:8a:3c:6b:04:32:9c: 43:b1:7d:f0:78:74:4c:ae:cf:fe:a3:05:6e:fd:5c:e4:cf:83: c8:f6:10:0b:80:12:d9:1d:bd:43:88:0a:f4:ee:04:81:c4:5f: 5a:8f:51:79:b1:e9:0c:34:a0:52:5d:45:42:0b:db:58:4d:86: 3b:cc:62:c5:af:4f:d3:0b:3b:c3:37:9c:f6:7e:89:37:07:6a: 80:37:34:2e:52:bd:08:d2:f6:c4:2a:e9:45:6e:01:57:fd:3f: c3:88:b1:24:92:fa:22:e6:b2:72:3f:e1:e6:55:64:ca:f9:f4: 8a:e0:ff:18:99:4f:81:c7:ba:b3:cd:a5:0b:42:c9:95:ca:66: c5:d7:98:7f:e0:97:3d:14:ba:39:31:79:52:f2:9e:b3:04:4b: 1c:22:92:47:56:46:e7:d5:0f:60:06:4e:d2:e3:fc:7f:5c:0a: 3f:d7:0b:a3 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgIUOPcrV0Lv1vC7hiEi03e4tZY69XswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOGFhODAwYTgxNGFmMGRlYjA2NmE5NWY3OTk2ZjgzY2Q3 MjlhNDhkMDc1YjA5NTJmYmUwHhcNMjQwNDA1MjM1NzQ1WhcNMjUwNDA1MDAwMjQ1 WjAzMTEwLwYDVQQDEygyODFCM0I1MzJBMEVCMzhDNjI1ODRFM0E2ODUzMjJCQTY0 REFGOTdEMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3EnEL2NWlCQ Lh1bL8mrgzlpUow7ooiSVPNgUGzAfL28XpGCP5+7TdZCjvzWkvK4EvuraTTWfhSb HE88wtCj1DRGUYZP58UlfpYgujNokcCzZg819a0OKhGF5VE0CxWqSStyjYVx/DLX +43hK9BkDNAehXXDnZMypxBCk0+zJLIMBrP+mjZ2f9jdb6hKaTi9PSAvAxZOiqLr 67SUJNlhGITQZ3LRnKE4C05GxgvaHT2DDwmNFe5IjfMwDre8SOCPr7OWbFKFyJ98 qJFyiCQ9vO6x18bn0o46OBWRIpPZkaMAqgtHbQqIInQ8LH4sk0UBUUBauZivvaNd t/TIUBJbAwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFCgbO1MqDrOMYlhOOmhTIrpk 2vl9MB8GA1UdIwQYMBaAFEplnSvSDXBuifDpyKHoIvLdrr4fMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmOGJhYTY0YTgwMThiYWUwNTg0MGQwNDNiLzAv NEE2NTlEMkJEMjBENzA2RTg5RjBFOUM4QTFFODIyRjJEREFFQkUxRi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvODcxZGE0MGYtNzkzYS00YTQ1LWEwYTktOTc4MTQ4 MzIxYTA3Lzk0NmFmZDM0LTY5NzEtNDIzZi1iMjJhLTU3NWUyYzczYWIyNy84YWE4 MDBhODE0YWYwZGViMDY2YTk1Zjc5OTZmODNjZDcyOWE0OGQwNzViMDk1MmZiZS5j ZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmOGJhYTY0YTgwMThiYWUw NTg0MGQwNDNiLzAvMzEzNzMyMmUzOTM5MmUzMjMyMmUzMDJmMzIzNDJkMzIzNDIw M2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQArGMWMA0GCSqGSIb3DQEBCwUAA4IBAQAp yCuZU1hl5jxnzTcoDI8U30qzuoUj9eghrz3MhDWSjn2DOf1h7SnPy7VO86TIh1oO skVFdbM8UYTXNV1ciZ6Q+y1FdvVPuhUnpvJCh3WOmWysxQeKPGsEMpxDsX3weHRM rs/+owVu/Vzkz4PI9hALgBLZHb1DiAr07gSBxF9aj1F5sekMNKBSXUVCC9tYTYY7 zGLFr0/TCzvDN5z2fok3B2qANzQuUr0I0vbEKulFbgFX/T/DiLEkkvoi5rJyP+Hm VWTK+fSK4P8YmU+Bx7qzzaULQsmVymbF15h/4Jc9FLo5MXlS8p6zBEscIpJHVkbn 1Q9gBk7S4/x/XAo/1wuj -----END CERTIFICATE-----Generated at Thu May 2 01:05:21 2024 by rpki-client on console-fra.rpki-client.org