$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa File: 8db1943e-17fa-375d-aa4b-b018e52e3c40.roa (raw, json) Hash identifier: h9bc2nyODDrNvgMvTYzBo/UWp54IbZWBocx0CIJnYP4= Subject key identifier: 9E:46:B0:0A:5A:F6:1E:6D:93:63:FF:31:0B:AA:08:C2:C3:6A:A1:07 Certificate issuer: /CN=bad5af20-8385-44d4-815f-bb83497d4a0e Certificate serial: 010D0C9F43285847AB6C0A4793D2CCA368890360 Authority key identifier: 11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa Signing time: Sat 26 Oct 2024 13:00:42 +0000 ROA not before: Sat 26 Oct 2024 13:00:42 +0000 ROA not after: Fri 24 Jan 2025 14:00:42 +0000 asID: 21777 IP address blocks: 199.45.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:ab:6c:0a:47:93:d2:cc:a3:68:89:03:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bad5af20-8385-44d4-815f-bb83497d4a0e Validity Not Before: Oct 26 13:00:42 2024 GMT Not After : Jan 24 14:00:42 2025 GMT Subject: CN=34b27135-0151-4a68-b10d-a5534f1588b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:08:7a:04:35:27:5b:56:51:01:1d:14:9a:1f: 14:45:2a:16:05:bb:f8:22:d9:73:fd:53:f1:8b:51: ae:49:0b:e6:58:83:d5:36:ca:ea:8b:e5:b8:e8:73: 4a:14:88:f7:22:7d:32:24:f5:7e:8e:b5:19:fe:2c: f3:90:c5:97:99:dd:de:9a:b9:f2:2b:78:52:30:03: 55:a8:d6:c2:a6:a5:32:60:3d:02:7e:da:39:6a:b3: c6:89:ac:4b:69:88:02:b6:c1:f7:5e:8c:0a:10:02: 4c:4f:bf:30:e2:61:c6:bb:1e:54:9d:17:66:31:b5: 53:f8:5f:dd:07:a6:cd:55:dc:45:ea:63:cb:c7:15: 1e:9e:3e:01:40:24:fd:8b:36:64:44:05:e9:6e:ce: cf:82:51:e2:9d:45:bd:45:19:63:be:14:af:59:2e: 6d:08:7f:1d:b0:1f:15:b4:60:a0:26:d9:e2:a7:4e: fe:02:2a:f3:a7:bd:54:59:5c:76:32:78:a6:0b:b8: e5:5d:64:f9:08:5e:a0:dd:5a:c6:40:5d:f4:f8:46: 19:19:69:2c:02:a8:04:48:ca:38:9b:d3:a9:45:3e: 10:b3:b7:fe:82:c6:6c:a6:b6:da:7d:6d:c5:72:2d: 54:f5:e9:cd:f0:29:6a:ae:1f:59:bb:27:0a:ba:1e: 88:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:46:B0:0A:5A:F6:1E:6D:93:63:FF:31:0B:AA:08:C2:C3:6A:A1:07 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl X509v3 Authority Key Identifier: keyid:11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer sbgp-ipAddrBlock: critical IPv4: 199.45.152.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0a:2d:99:e6:e4:e2:35:5a:77:45:fa:23:19:b7:f5:fb:5c:ce: 76:82:d1:b3:e3:79:a2:be:98:be:39:97:20:72:a2:73:cf:0e: 1b:ce:88:21:94:ff:3a:7f:d8:b2:42:94:91:09:83:40:4c:8c: 39:29:e1:f2:01:c3:4c:11:da:89:32:be:76:14:5a:93:32:ca: 8e:63:37:13:ff:a7:00:ab:22:b9:f9:08:ee:f4:67:52:92:34: 59:54:ab:8b:72:e6:91:79:05:8d:ff:79:8a:35:85:0e:0c:fe: 06:cf:83:ed:f6:c7:f7:80:5e:bb:c5:af:18:e8:e8:54:59:9c: bf:62:f0:85:aa:de:bc:a8:28:0f:09:ca:a7:bc:41:52:40:55: 0e:1c:a6:c3:41:ae:eb:84:ee:20:ba:60:c5:c0:d5:dc:47:92: ab:7a:4c:37:c5:25:b0:04:9c:01:fa:c0:32:b6:fa:73:5a:ab: 60:61:cc:40:59:98:8c:68:3c:10:99:be:34:78:7b:04:89:80: 91:ac:ed:8d:68:ff:15:a9:43:38:b5:8b:8f:c4:75:20:26:25: dd:4f:f9:c5:67:2f:64:85:50:af:df:51:db:9d:1f:83:17:e1: 67:b2:da:d5:d1:4a:13:c2:5b:65:78:24:2a:70:fe:81:3d:46: 1c:61:33:d8 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEerbApHk9LMo2iJA2AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmFkNWFmMjAtODM4NS00NGQ0LTgxNWYtYmI4MzQ5N2Q0 YTBlMB4XDTI0MTAyNjEzMDA0MloXDTI1MDEyNDE0MDA0MlowLzEtMCsGA1UEAxMk MzRiMjcxMzUtMDE1MS00YTY4LWIxMGQtYTU1MzRmMTU4OGI0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmgh6BDUnW1ZRAR0Umh8URSoWBbv4Itlz/VPx i1GuSQvmWIPVNsrqi+W46HNKFIj3In0yJPV+jrUZ/izzkMWXmd3emrnyK3hSMANV qNbCpqUyYD0Cfto5arPGiaxLaYgCtsH3XowKEAJMT78w4mHGux5UnRdmMbVT+F/d B6bNVdxF6mPLxxUenj4BQCT9izZkRAXpbs7PglHinUW9RRljvhSvWS5tCH8dsB8V tGCgJtnip07+Airzp71UWVx2MnimC7jlXWT5CF6g3VrGQF30+EYZGWksAqgESMo4 m9OpRT4Qs7f+gsZsprbafW3Fci1U9enN8Clqrh9ZuycKuh6I1QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJ5GsApa9h5tk2P/MQuqCMLDaqEHMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1 YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgzNDk3ZDRhMGUvOGRiMTk0M2UtMTdmYS0z NzVkLWFhNGItYjAxOGU1MmUzYzQwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvYmFkNWFmMjAtODM4NS00NGQ0LTgx NWYtYmI4MzQ5N2Q0YTBlL2JhZDVhZjIwLTgzODUtNDRkNC04MTVmLWJiODM0OTdk NGEwZS5jcmwwHwYDVR0jBBgwFoAUEapw8wRQo6yCOXMUtq3WNdHdOZQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgz NDk3ZDRhMGUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAxy2YMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAotmebk4jVad0X6Ixm39ftcznaC0bPjeaK+mL45lyByonPPDhvOiCGU /zp/2LJClJEJg0BMjDkp4fIBw0wR2okyvnYUWpMyyo5jNxP/pwCrIrn5CO70Z1KS NFlUq4ty5pF5BY3/eYo1hQ4M/gbPg+32x/eAXrvFrxjo6FRZnL9i8IWq3ryoKA8J yqe8QVJAVQ4cpsNBruuE7iC6YMXA1dxHkqt6TDfFJbAEnAH6wDK2+nNaq2BhzEBZ mIxoPBCZvjR4ewSJgJGs7Y1o/xWpQzi1i4/EdSAmJd1P+cVnL2SFUK/fUdudH4MX 4Wey2tXRShPCW2V4JCpw/oE9RhxhM9g= -----END CERTIFICATE-----Generated at Fri Nov 22 03:54:14 2024 by rpki-client on console-fra.rpki-client.org