$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa File: 8db1943e-17fa-375d-aa4b-b018e52e3c40.roa (raw, json) Hash identifier: Q81d7bHQvPN0zgTUoSypL68b9yhP6CBFlnO/wJoN3kw= Subject key identifier: 46:98:A7:3D:E8:13:38:89:6D:C6:CA:F6:91:88:69:4A:32:D0:17:2A Certificate issuer: /CN=bad5af20-8385-44d4-815f-bb83497d4a0e Certificate serial: 010D0C9F432858450D8581C0A7FC8AA4853314C0 Authority key identifier: 11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa Signing time: Thu 29 Feb 2024 14:00:31 +0000 ROA not before: Thu 29 Feb 2024 14:00:31 +0000 ROA not after: Wed 29 May 2024 13:00:31 +0000 asID: 21777 IP address blocks: 199.45.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 May 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:0d:85:81:c0:a7:fc:8a:a4:85:33:14:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bad5af20-8385-44d4-815f-bb83497d4a0e Validity Not Before: Feb 29 14:00:31 2024 GMT Not After : May 29 13:00:31 2024 GMT Subject: CN=156c6851-a6c1-4003-b2c2-0a4884568c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:70:84:33:2f:77:5e:5a:d6:d3:e7:94:d0:6c: fb:cf:ff:0e:24:e3:74:3c:89:f8:22:1f:9d:37:16: fc:a7:ff:41:57:e1:42:3a:8b:2b:be:59:b7:d1:6d: 28:e9:58:9a:5e:17:67:04:1f:c4:88:8e:4e:b3:df: 88:69:56:c4:0b:6c:28:36:21:11:41:c4:a4:6c:4c: 01:2d:5d:3e:0d:03:00:1c:17:f3:cd:a0:ea:4b:70: 73:83:5a:c0:1c:7b:09:c3:f7:1c:80:43:59:30:72: 26:4b:26:f1:9e:56:25:1c:d9:cf:9f:54:2a:24:62: 6b:7a:35:54:48:ca:8b:46:4e:4c:d2:7c:26:bb:fb: 21:3e:f1:1a:80:03:35:cf:71:44:b7:ae:d2:5d:ef: a4:ee:69:d9:27:6a:43:d0:3c:5d:81:04:9c:86:28: 00:f3:33:05:d6:fa:ad:9b:e7:b1:1a:8e:23:85:a0: e1:31:e8:96:63:d4:07:0f:fe:60:fa:cd:60:a9:14: bb:55:3e:15:36:51:43:0e:bd:8e:46:fb:66:1b:8c: 76:ad:d0:cc:e2:8c:7e:4b:a3:bf:d2:ab:d6:8a:87: 90:b4:8e:da:3a:28:ac:9a:f8:85:2b:1e:61:ff:32: 2a:f5:fb:48:a1:87:bc:3d:78:01:01:0f:ea:1f:df: 18:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:98:A7:3D:E8:13:38:89:6D:C6:CA:F6:91:88:69:4A:32:D0:17:2A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/8db1943e-17fa-375d-aa4b-b018e52e3c40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e/bad5af20-8385-44d4-815f-bb83497d4a0e.crl X509v3 Authority Key Identifier: keyid:11:AA:70:F3:04:50:A3:AC:82:39:73:14:B6:AD:D6:35:D1:DD:39:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/bad5af20-8385-44d4-815f-bb83497d4a0e.cer sbgp-ipAddrBlock: critical IPv4: 199.45.152.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 88:71:d3:34:79:41:93:52:63:42:80:c1:36:5e:1f:c3:40:44: 15:b8:5f:d7:60:a1:f0:03:c3:28:dc:eb:2b:3e:a0:5f:2b:e1: 74:fc:42:0b:03:3d:ed:08:96:48:e6:c1:39:f7:86:f5:ce:e7: 8c:f2:2d:96:c2:3e:09:3c:6c:dd:69:c8:97:0e:28:67:1a:30: ac:82:97:10:ed:eb:8c:e1:b5:d9:63:8a:27:ab:13:f9:7e:b8: 7d:e1:28:7c:f6:3a:bd:79:49:c5:e9:db:77:03:22:8f:e0:35: 64:ef:08:10:90:b0:12:4b:72:e8:92:07:95:11:0b:56:cd:32: f9:3b:ae:94:0c:26:a2:38:83:5f:d1:06:cd:7a:ee:ae:6b:71: 73:a0:75:c0:bd:1e:1b:e9:33:10:8a:65:eb:77:83:1c:fd:4f: 1d:e2:af:93:76:aa:0f:39:84:9e:18:b0:9d:8e:99:17:89:5e: 60:72:74:9c:d3:8f:7b:d5:f4:53:f7:cf:e4:44:c8:8a:3c:14: a1:df:b3:4b:ff:ef:bc:91:3c:19:69:6b:d9:7e:98:c8:09:31: c9:5f:67:90:c2:a2:66:75:28:89:e4:42:a7:a6:63:37:ba:10: c5:5f:24:7e:3f:97:7e:8b:61:a1:a1:6d:c8:d0:a2:d6:2c:f9: 16:1c:ea:e6 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEUNhYHAp/yKpIUzFMAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmFkNWFmMjAtODM4NS00NGQ0LTgxNWYtYmI4MzQ5N2Q0 YTBlMB4XDTI0MDIyOTE0MDAzMVoXDTI0MDUyOTEzMDAzMVowLzEtMCsGA1UEAxMk MTU2YzY4NTEtYTZjMS00MDAzLWIyYzItMGE0ODg0NTY4YzJiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2XCEMy93XlrW0+eU0Gz7z/8OJON0PIn4Ih+d Nxb8p/9BV+FCOosrvlm30W0o6ViaXhdnBB/EiI5Os9+IaVbEC2woNiERQcSkbEwB LV0+DQMAHBfzzaDqS3Bzg1rAHHsJw/ccgENZMHImSybxnlYlHNnPn1QqJGJrejVU SMqLRk5M0nwmu/shPvEagAM1z3FEt67SXe+k7mnZJ2pD0DxdgQSchigA8zMF1vqt m+exGo4jhaDhMeiWY9QHD/5g+s1gqRS7VT4VNlFDDr2ORvtmG4x2rdDM4ox+S6O/ 0qvWioeQtI7aOiismviFKx5h/zIq9ftIoYe8PXgBAQ/qH98Y0wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFEaYpz3oEziJbcbK9pGIaUoy0BcqMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1 YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgzNDk3ZDRhMGUvOGRiMTk0M2UtMTdmYS0z NzVkLWFhNGItYjAxOGU1MmUzYzQwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvYmFkNWFmMjAtODM4NS00NGQ0LTgx NWYtYmI4MzQ5N2Q0YTBlL2JhZDVhZjIwLTgzODUtNDRkNC04MTVmLWJiODM0OTdk NGEwZS5jcmwwHwYDVR0jBBgwFoAUEapw8wRQo6yCOXMUtq3WNdHdOZQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9iYWQ1YWYyMC04Mzg1LTQ0ZDQtODE1Zi1iYjgz NDk3ZDRhMGUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAxy2YMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAIhx0zR5QZNSY0KAwTZeH8NARBW4X9dgofADwyjc6ys+oF8r4XT8QgsD Pe0IlkjmwTn3hvXO54zyLZbCPgk8bN1pyJcOKGcaMKyClxDt64zhtdljiierE/l+ uH3hKHz2Or15ScXp23cDIo/gNWTvCBCQsBJLcuiSB5URC1bNMvk7rpQMJqI4g1/R Bs167q5rcXOgdcC9HhvpMxCKZet3gxz9Tx3ir5N2qg85hJ4YsJ2OmReJXmBydJzT j3vV9FP3z+REyIo8FKHfs0v/77yRPBlpa9l+mMgJMclfZ5DComZ1KInkQqemYze6 EMVfJH4/l36LYaGhbcjQotYs+RYc6uY= -----END CERTIFICATE-----Generated at Fri May 17 20:57:24 2024 by rpki-client on console-fra.rpki-client.org