$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/2ac3f1e9-5fa1-3480-be7e-6093481625b3.roa File: 2ac3f1e9-5fa1-3480-be7e-6093481625b3.roa (raw, json) Hash identifier: MfdfR/w25jHO1HFgGJkvhFYdvHrbOYgDHTaelLJ3CVU= Subject key identifier: 8F:D5:A7:86:70:6E:3B:C2:C1:CD:66:D2:88:97:A6:C7:DC:65:30:9B Certificate issuer: /CN=b02b5a1e-c575-48d8-ad0e-3a3e1d032110 Certificate serial: 010D0C9F432858478CB67F76094E7957D634B860 Authority key identifier: 2B:8B:68:E9:63:83:9C:CE:62:11:46:CC:6B:97:61:91:F7:0D:EB:B2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/2ac3f1e9-5fa1-3480-be7e-6093481625b3.roa Signing time: Tue 15 Oct 2024 13:00:47 +0000 ROA not before: Tue 15 Oct 2024 13:00:47 +0000 ROA not after: Mon 13 Jan 2025 14:00:47 +0000 asID: 31830 IP address blocks: 192.40.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:8c:b6:7f:76:09:4e:79:57:d6:34:b8:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b02b5a1e-c575-48d8-ad0e-3a3e1d032110 Validity Not Before: Oct 15 13:00:47 2024 GMT Not After : Jan 13 14:00:47 2025 GMT Subject: CN=e32d29d8-bd63-46fc-b305-e644a1cc2f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:93:7d:a0:a2:13:dc:a1:67:23:16:64:71:4e: 71:48:d8:15:fa:e7:01:6f:85:2e:80:d4:23:e5:21: 39:67:7d:66:70:4c:eb:03:21:2c:90:ed:8b:39:a7: 4b:f7:88:cf:f0:fb:7c:b1:64:bf:9c:7c:ce:03:c8: 6a:1a:e6:50:23:77:01:09:62:9d:11:62:8c:41:19: 16:71:d2:65:95:36:c2:05:04:53:6b:76:64:5e:05: db:c1:87:6f:b7:06:9d:c0:84:b6:92:cb:cb:cc:c2: bb:a0:d8:c5:a3:3d:cc:e9:30:16:d3:6a:da:d5:6b: 00:a7:52:bc:22:90:2d:38:55:6e:0d:2d:7c:ca:83: 60:33:8a:82:da:82:40:3c:62:b5:3c:ab:e2:36:c1: e8:07:03:c8:0f:a9:ed:19:3e:55:8e:77:24:be:36: 1f:65:4a:e4:86:ab:2c:ea:61:c2:5b:19:d6:97:47: c5:f5:17:0c:3c:7e:ad:f2:e7:ff:c5:f7:f4:3a:59: 69:89:87:9e:04:b6:f6:64:9a:c8:da:13:e3:9e:87: 3f:27:69:de:92:55:f0:c2:f3:e3:7e:be:3d:4d:59: d7:ee:9e:3a:a3:28:67:dc:b1:3c:0a:f2:58:52:30: c6:5c:eb:d6:e6:ce:8d:80:db:15:0d:ff:13:63:d2: ae:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D5:A7:86:70:6E:3B:C2:C1:CD:66:D2:88:97:A6:C7:DC:65:30:9B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/2ac3f1e9-5fa1-3480-be7e-6093481625b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.crl X509v3 Authority Key Identifier: keyid:2B:8B:68:E9:63:83:9C:CE:62:11:46:CC:6B:97:61:91:F7:0D:EB:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/b02b5a1e-c575-48d8-ad0e-3a3e1d032110.cer sbgp-ipAddrBlock: critical IPv4: 192.40.157.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 21:31:dc:4d:83:d0:f2:3b:53:eb:da:91:0d:8c:f5:f3:73:ed: ab:8a:8c:d7:1c:a0:d8:7f:5b:69:ca:40:da:79:44:32:7d:75: 17:66:b4:df:b3:56:3b:71:40:71:f5:3d:59:b2:20:35:5d:9a: 0f:18:0f:de:cc:c2:d9:10:9a:83:4d:e0:31:7e:db:6e:92:e5: a7:0d:6a:47:88:6c:7b:3f:c7:17:8e:3c:3e:eb:85:22:46:27: ff:e8:52:60:5f:5c:9b:46:25:0b:98:1f:b4:8f:78:34:e3:5c: 7b:b0:e6:82:75:b3:d2:25:de:aa:68:54:4a:b0:86:31:e3:7f: a3:95:a2:44:06:bc:fe:47:8b:32:e2:4a:5a:64:dc:1a:2b:fc: fe:21:48:98:d4:5f:2a:0e:2c:67:45:69:97:a2:61:1f:c3:c3: ba:15:76:d5:b3:f9:bf:a0:2e:cc:ad:36:90:8b:6f:94:fa:3c: 2b:71:4c:73:ad:35:e7:4b:c0:40:d1:dc:9c:28:b4:6c:e0:5f: 4b:05:91:79:6f:58:66:60:49:4c:0d:e6:0c:a0:65:b1:4e:ef: 61:9c:6e:34:40:1f:bb:2c:90:96:ac:e9:60:42:25:24:9e:60: 86:63:ea:a7:41:bb:88:48:f5:4d:f0:93:63:89:64:c9:63:f4: e7:7e:b5:de -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEeMtn92CU55V9Y0uGAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYjAyYjVhMWUtYzU3NS00OGQ4LWFkMGUtM2EzZTFkMDMy MTEwMB4XDTI0MTAxNTEzMDA0N1oXDTI1MDExMzE0MDA0N1owLzEtMCsGA1UEAxMk ZTMyZDI5ZDgtYmQ2My00NmZjLWIzMDUtZTY0NGExY2MyZjkyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZN9oKIT3KFnIxZkcU5xSNgV+ucBb4UugNQj 5SE5Z31mcEzrAyEskO2LOadL94jP8Pt8sWS/nHzOA8hqGuZQI3cBCWKdEWKMQRkW cdJllTbCBQRTa3ZkXgXbwYdvtwadwIS2ksvLzMK7oNjFoz3M6TAW02ra1WsAp1K8 IpAtOFVuDS18yoNgM4qC2oJAPGK1PKviNsHoBwPID6ntGT5VjnckvjYfZUrkhqss 6mHCWxnWl0fF9RcMPH6t8uf/xff0OllpiYeeBLb2ZJrI2hPjnoc/J2neklXwwvPj fr49TVnX7p46oyhn3LE8CvJYUjDGXOvW5s6NgNsVDf8TY9KuKQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFI/Vp4ZwbjvCwc1m0oiXpsfcZTCbMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9iMDJi NWExZS1jNTc1LTQ4ZDgtYWQwZS0zYTNlMWQwMzIxMTAvMmFjM2YxZTktNWZhMS0z NDgwLWJlN2UtNjA5MzQ4MTYyNWIzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvYjAyYjVhMWUtYzU3NS00OGQ4LWFk MGUtM2EzZTFkMDMyMTEwL2IwMmI1YTFlLWM1NzUtNDhkOC1hZDBlLTNhM2UxZDAz MjExMC5jcmwwHwYDVR0jBBgwFoAUK4to6WODnM5iEUbMa5dhkfcN67IwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9iMDJiNWExZS1jNTc1LTQ4ZDgtYWQwZS0zYTNl MWQwMzIxMTAuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwCidMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACEx3E2D0PI7U+vakQ2M9fNz7auKjNccoNh/W2nKQNp5RDJ9dRdmtN+z VjtxQHH1PVmyIDVdmg8YD97MwtkQmoNN4DF+226S5acNakeIbHs/xxeOPD7rhSJG J//oUmBfXJtGJQuYH7SPeDTjXHuw5oJ1s9Il3qpoVEqwhjHjf6OVokQGvP5HizLi Slpk3Bor/P4hSJjUXyoOLGdFaZeiYR/Dw7oVdtWz+b+gLsytNpCLb5T6PCtxTHOt NedLwEDR3JwotGzgX0sFkXlvWGZgSUwN5gygZbFO72GcbjRAH7sskJas6WBCJSSe YIZj6qdBu4hI9U3wk2OJZMlj9Od+td4= -----END CERTIFICATE-----Generated at Thu Nov 21 21:43:05 2024 by rpki-client on console-ams.rpki-client.org