$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc/c86274a6-f181-3238-89de-8e2608e8a030.roa File: c86274a6-f181-3238-89de-8e2608e8a030.roa (raw, json) Hash identifier: y1+lOQoNwQK3BQoLImIrD5I/BmOGCxKSFfCc70j8zL0= Subject key identifier: D4:D3:89:B0:3A:8B:0A:F7:9C:E9:EC:44:F8:F2:91:B4:60:82:A3:3E Certificate issuer: /CN=2d6a17c2-b155-4b32-933b-3f7043e2cecc Certificate serial: 010D0C9F432858450ABAD0A0EB66D7FF17525980 Authority key identifier: 0B:75:35:AC:19:65:B0:66:0B:65:F7:2F:F2:E3:7F:C4:7A:A3:03:56 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc/c86274a6-f181-3238-89de-8e2608e8a030.roa Signing time: Wed 28 Feb 2024 14:00:31 +0000 ROA not before: Wed 28 Feb 2024 14:00:31 +0000 ROA not after: Tue 28 May 2024 13:00:31 +0000 asID: 40065 IP address blocks: 68.168.24.0/22 maxlen: 24 68.168.20.0/22 maxlen: 24 67.220.75.0/24 maxlen: 24 67.220.64.0/24 maxlen: 24 68.168.18.0/23 maxlen: 24 68.168.17.0/24 maxlen: 24 67.220.94.0/24 maxlen: 24 67.220.76.0/22 maxlen: 24 67.220.70.0/23 maxlen: 24 68.168.30.0/24 maxlen: 24 67.220.66.0/23 maxlen: 24 68.168.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc/2d6a17c2-b155-4b32-933b-3f7043e2cecc.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc/2d6a17c2-b155-4b32-933b-3f7043e2cecc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 05 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:0a:ba:d0:a0:eb:66:d7:ff:17:52:59:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d6a17c2-b155-4b32-933b-3f7043e2cecc Validity Not Before: Feb 28 14:00:31 2024 GMT Not After : May 28 13:00:31 2024 GMT Subject: CN=5224199c-bd53-4ef2-ae9f-2ad8a83e30bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9e:0a:b0:c1:bc:2b:b7:5c:33:a9:92:e3:41: 2f:84:6b:f8:90:fc:b5:ab:8f:ea:9a:56:c6:88:6e: cb:6f:e4:2c:01:cd:e0:31:40:6c:d1:a5:c9:89:31: 03:24:85:dc:6c:bc:8f:81:a5:db:7a:ce:cd:f0:79: 72:45:bf:c8:38:6b:dd:c4:74:63:f6:56:a8:35:dd: 1b:3a:93:aa:88:a0:92:ee:c4:a0:7d:57:5d:45:17: 97:07:51:b0:c7:f4:0c:e3:a7:ca:42:6c:7c:10:8e: 2b:54:d1:d5:33:b0:36:3b:0f:f3:12:b5:e8:e3:a9: 04:7e:07:54:b4:60:be:a9:01:0d:de:77:81:c8:64: 23:f3:18:4c:c7:29:33:cb:7b:d5:fa:ae:ec:7c:d3: 27:44:bb:5a:7e:8c:61:9f:b5:1e:a3:62:9f:f5:ad: 32:19:6b:0d:82:af:0b:88:ba:e8:10:ef:7d:e6:1f: 14:15:cf:fd:6b:41:b6:fc:d0:66:0f:d0:3e:19:59: fc:2b:ea:21:56:f3:99:16:a1:aa:a3:d4:f5:85:d9: ee:f8:fc:08:2b:39:8f:f0:2d:78:8d:61:b9:00:1f: e9:0c:98:62:8f:9e:e7:9d:50:6a:49:71:4d:ca:ee: f7:f2:fc:60:0e:ea:7d:c5:6c:8b:e2:8a:c7:5f:9e: 04:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D3:89:B0:3A:8B:0A:F7:9C:E9:EC:44:F8:F2:91:B4:60:82:A3:3E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc/c86274a6-f181-3238-89de-8e2608e8a030.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc/2d6a17c2-b155-4b32-933b-3f7043e2cecc.crl X509v3 Authority Key Identifier: keyid:0B:75:35:AC:19:65:B0:66:0B:65:F7:2F:F2:E3:7F:C4:7A:A3:03:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/2d6a17c2-b155-4b32-933b-3f7043e2cecc.cer sbgp-ipAddrBlock: critical IPv4: 67.220.64.0/24 67.220.66.0/23 67.220.70.0/23 67.220.75.0-67.220.79.255 67.220.94.0/24 68.168.17.0-68.168.30.255 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 62:16:ff:ff:4a:76:74:e3:77:7a:34:99:aa:ec:33:0e:9c:40: 01:10:5a:c7:cc:2f:29:5d:c4:e7:42:b3:98:70:ca:70:19:b0: 3b:46:ac:c9:db:b2:12:7f:86:72:26:97:60:b6:8b:5f:83:bb: 71:d5:63:1b:e2:8d:8b:73:83:ab:eb:73:e6:6f:d9:a3:7e:77: 89:8d:d2:b6:4d:83:9c:75:a3:5d:5b:aa:42:82:20:68:e8:f0: 67:57:3f:87:41:db:50:13:4b:12:3c:dc:e0:52:cb:23:a9:01: c4:08:a3:dd:30:e5:79:9f:b2:62:74:25:16:f6:a6:92:71:ef: f3:0f:ca:5e:7c:4b:50:27:0c:6f:70:fb:12:d8:d6:f9:69:89: 87:34:3d:61:d5:0c:f9:25:0a:58:48:4b:cc:8a:70:8f:9b:62: f8:8b:da:af:64:fb:6a:bd:ad:16:6d:5b:b5:bd:96:23:31:0f: 48:b5:8e:a1:26:08:f5:7b:9f:02:e9:39:b5:97:b3:6c:5f:50: 4c:ce:a5:ac:11:7c:af:9f:f5:8c:59:fe:10:5f:30:8b:fd:20: 28:7a:b0:ea:2a:e2:dc:2e:30:c7:9e:64:c1:2c:60:bc:75:93: cd:f1:bc:70:6b:38:42:fa:ed:82:bd:f0:0d:1b:75:2f:31:f1: 2c:85:16:5d -----BEGIN CERTIFICATE----- MIIGcTCCBVmgAwIBAgIUAQ0Mn0MoWEUKutCg62bX/xdSWYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmQ2YTE3YzItYjE1NS00YjMyLTkzM2ItM2Y3MDQzZTJj ZWNjMB4XDTI0MDIyODE0MDAzMVoXDTI0MDUyODEzMDAzMVowLzEtMCsGA1UEAxMk NTIyNDE5OWMtYmQ1My00ZWYyLWFlOWYtMmFkOGE4M2UzMGJjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwp4KsMG8K7dcM6mS40EvhGv4kPy1q4/qmlbG iG7Lb+QsAc3gMUBs0aXJiTEDJIXcbLyPgaXbes7N8HlyRb/IOGvdxHRj9laoNd0b OpOqiKCS7sSgfVddRReXB1Gwx/QM46fKQmx8EI4rVNHVM7A2Ow/zErXo46kEfgdU tGC+qQEN3neByGQj8xhMxykzy3vV+q7sfNMnRLtafoxhn7Ueo2Kf9a0yGWsNgq8L iLroEO995h8UFc/9a0G2/NBmD9A+GVn8K+ohVvOZFqGqo9T1hdnu+PwIKzmP8C14 jWG5AB/pDJhij57nnVBqSXFNyu738vxgDup9xWyL4orHX54EGwIDAQABo4IDgzCC A38wHQYDVR0OBBYEFNTTibA6iwr3nOnsRPjykbRggqM+MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8yZDZh MTdjMi1iMTU1LTRiMzItOTMzYi0zZjcwNDNlMmNlY2MvYzg2Mjc0YTYtZjE4MS0z MjM4LTg5ZGUtOGUyNjA4ZThhMDMwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvMmQ2YTE3YzItYjE1NS00YjMyLTkz M2ItM2Y3MDQzZTJjZWNjLzJkNmExN2MyLWIxNTUtNGIzMi05MzNiLTNmNzA0M2Uy Y2VjYy5jcmwwHwYDVR0jBBgwFoAUC3U1rBllsGYLZfcv8uN/xHqjA1YwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy8yZDZhMTdjMi1iMTU1LTRiMzItOTMzYi0zZjcw NDNlMmNlY2MuY2VyME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAATA0AwQAQ9xAAwQB Q9xCAwQBQ9xGMAwDBABD3EsDBARD3EADBABD3F4wDAMEAESoEQMEAESoHjBUBgNV HSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3 LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUA A4IBAQBiFv//SnZ043d6NJmq7DMOnEABEFrHzC8pXcTnQrOYcMpwGbA7RqzJ27IS f4ZyJpdgtotfg7tx1WMb4o2Lc4Or63Pmb9mjfneJjdK2TYOcdaNdW6pCgiBo6PBn Vz+HQdtQE0sSPNzgUssjqQHECKPdMOV5n7JidCUW9qaSce/zD8pefEtQJwxvcPsS 2Nb5aYmHND1h1Qz5JQpYSEvMinCPm2L4i9qvZPtqva0WbVu1vZYjMQ9ItY6hJgj1 e58C6Tm1l7NsX1BMzqWsEXyvn/WMWf4QXzCL/SAoerDqKuLcLjDHnmTBLGC8dZPN 8bxwazhC+u2CvfANG3UvMfEshRZd -----END CERTIFICATE-----Generated at Sat May 4 02:39:03 2024 by rpki-client on console-fra.rpki-client.org