$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3e6eca20-984c-38bb-912e-539ca9ab80f4.roa File: 3e6eca20-984c-38bb-912e-539ca9ab80f4.roa (raw, json) Hash identifier: WCwaJmzQ7hKC759HgUyFJ8AhSWdXcFjSV7YBsw1LzIo= Subject key identifier: B8:42:33:FF:9C:A4:CC:D1:8A:E8:C7:1D:5B:85:68:0F:81:C6:62:B8 Certificate issuer: /CN=d1f886df-6c58-4ea7-9d1f-0659e2324460 Certificate serial: 010D0C9F43285847B10161B12D0896CE3592ED00 Authority key identifier: DE:16:51:20:56:83:D6:08:13:E6:42:45:8E:FD:16:70:EE:87:6F:BB Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3e6eca20-984c-38bb-912e-539ca9ab80f4.roa Signing time: Mon 28 Oct 2024 13:00:40 +0000 ROA not before: Mon 28 Oct 2024 13:00:40 +0000 ROA not after: Sun 26 Jan 2025 14:00:40 +0000 asID: 6621 IP address blocks: 72.168.0.0/19 maxlen: 19 72.168.80.0/21 maxlen: 21 72.168.87.0/24 maxlen: 24 72.168.88.0/21 maxlen: 21 72.168.94.0/24 maxlen: 24 72.168.95.0/24 maxlen: 24 72.168.96.0/19 maxlen: 19 72.168.96.0/21 maxlen: 21 72.168.128.0/22 maxlen: 22 72.168.132.0/22 maxlen: 22 72.168.136.0/22 maxlen: 22 72.168.140.0/22 maxlen: 22 72.168.142.0/23 maxlen: 23 72.168.144.0/22 maxlen: 22 72.168.148.0/22 maxlen: 22 72.168.152.0/22 maxlen: 22 72.168.156.0/22 maxlen: 22 72.168.160.0/22 maxlen: 22 72.168.164.0/22 maxlen: 22 72.168.168.0/22 maxlen: 22 72.168.172.0/22 maxlen: 22 72.168.176.0/22 maxlen: 22 72.168.180.0/22 maxlen: 22 72.168.184.0/22 maxlen: 22 72.168.188.0/22 maxlen: 22 72.168.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/d1f886df-6c58-4ea7-9d1f-0659e2324460.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/d1f886df-6c58-4ea7-9d1f-0659e2324460.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:b1:01:61:b1:2d:08:96:ce:35:92:ed:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1f886df-6c58-4ea7-9d1f-0659e2324460 Validity Not Before: Oct 28 13:00:40 2024 GMT Not After : Jan 26 14:00:40 2025 GMT Subject: CN=fbd21ad9-c239-4b84-a5ab-bea569b04fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:9f:a7:14:f2:09:7b:91:52:42:45:57:e8:09: 53:8c:73:a0:4d:93:0a:8d:76:9e:bf:2b:50:d3:63: 50:94:94:cd:90:88:b2:8c:9d:94:d2:11:73:61:45: 32:55:2d:57:44:26:bc:f1:7d:05:b7:6e:c8:d8:86: 6f:08:56:34:7b:48:3c:38:d6:ab:f5:10:5f:44:f0: 51:16:4a:56:9b:58:16:8c:ff:7d:e6:e8:38:28:86: fe:40:c6:eb:dd:d9:3c:d0:6f:51:70:7b:4e:f5:f3: ff:8f:65:61:63:3a:47:ff:6f:6b:30:1b:3f:f7:ce: f9:a7:b5:ba:6e:2e:f2:fd:f4:89:23:f4:b1:97:42: 08:b7:49:13:b9:97:30:c8:5a:c2:66:c3:e4:64:d5: 25:49:bb:1b:e4:a8:17:bb:9c:f8:fc:90:a4:cd:d3: b0:e6:5b:5f:73:ac:af:0a:2b:20:82:d9:38:4c:7d: a2:30:84:1e:39:31:b0:c7:59:db:43:2d:9f:f8:67: e6:96:9f:33:b2:7b:34:a1:f9:e8:39:c7:d0:00:4b: 7d:8a:fc:0b:16:54:ab:1f:c3:46:49:a2:90:77:96: 13:56:b6:e7:c2:a7:4f:db:a7:48:98:99:be:e1:f0: 4d:4b:5f:56:e0:94:ba:7a:cf:c8:48:5d:48:22:89: 15:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:42:33:FF:9C:A4:CC:D1:8A:E8:C7:1D:5B:85:68:0F:81:C6:62:B8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3e6eca20-984c-38bb-912e-539ca9ab80f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/d1f886df-6c58-4ea7-9d1f-0659e2324460.crl X509v3 Authority Key Identifier: keyid:DE:16:51:20:56:83:D6:08:13:E6:42:45:8E:FD:16:70:EE:87:6F:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460.cer sbgp-ipAddrBlock: critical IPv4: 72.168.0.0/19 72.168.80.0-72.168.191.255 72.168.224.0/19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 05:1f:66:51:33:a0:9b:bc:0d:d1:41:fa:0b:bb:4b:9c:43:c6: 12:ac:54:28:f1:56:74:44:05:79:2e:35:ce:55:36:ef:15:d9: 61:6d:7c:6b:70:0d:6e:58:f8:98:ae:04:a9:4f:dd:93:02:2d: 1d:76:58:d1:7a:e9:99:f4:b6:bf:f9:6f:4c:ff:5e:4b:b5:45: 93:03:33:17:ea:b9:e4:e2:13:a1:cb:8a:21:3e:e7:cb:82:b4: 45:18:65:4f:0b:62:ee:83:a0:3b:61:23:f5:23:ff:66:d5:ce: 1a:92:de:d8:5d:88:4d:b5:54:09:a0:57:12:3c:73:c1:b4:23: bf:af:82:69:cd:f1:ec:fb:86:e6:70:ed:23:4d:03:36:1b:1e: 68:da:44:dd:87:35:76:4b:35:bc:cf:f2:c2:e0:2a:1c:66:40: 17:a9:ec:f1:4d:f7:24:3c:ce:30:35:3e:07:65:1f:48:14:4a: 4c:fb:60:5e:07:e9:92:9e:a6:01:e5:7c:d3:e8:16:cf:73:7a: 38:d5:e8:f9:02:68:ae:8c:65:ba:31:15:15:bc:53:fc:5b:d9: 07:c0:6e:15:30:d8:b6:5a:f3:a9:a0:4d:be:06:ab:a6:82:23: 1d:20:71:5e:cf:2b:98:71:92:1f:3b:c2:ef:39:e7:ca:28:12: ff:d4:53:36 -----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgIUAQ0Mn0MoWEexAWGxLQiWzjWS7QAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDFmODg2ZGYtNmM1OC00ZWE3LTlkMWYtMDY1OWUyMzI0 NDYwMB4XDTI0MTAyODEzMDA0MFoXDTI1MDEyNjE0MDA0MFowLzEtMCsGA1UEAxMk ZmJkMjFhZDktYzIzOS00Yjg0LWE1YWItYmVhNTY5YjA0ZmVjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkp+nFPIJe5FSQkVX6AlTjHOgTZMKjXaevytQ 02NQlJTNkIiyjJ2U0hFzYUUyVS1XRCa88X0Ft27I2IZvCFY0e0g8ONar9RBfRPBR FkpWm1gWjP995ug4KIb+QMbr3dk80G9RcHtO9fP/j2VhYzpH/29rMBs/9875p7W6 bi7y/fSJI/Sxl0IIt0kTuZcwyFrCZsPkZNUlSbsb5KgXu5z4/JCkzdOw5ltfc6yv Cisggtk4TH2iMIQeOTGwx1nbQy2f+Gfmlp8zsns0ofnoOcfQAEt9ivwLFlSrH8NG SaKQd5YTVrbnwqdP26dImJm+4fBNS19W4JS6es/ISF1IIokVdQIDAQABo4IDaTCC A2UwHQYDVR0OBBYEFLhCM/+cpMzRiujHHVuFaA+BxmK4MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kMWY4 ODZkZi02YzU4LTRlYTctOWQxZi0wNjU5ZTIzMjQ0NjAvM2U2ZWNhMjAtOTg0Yy0z OGJiLTkxMmUtNTM5Y2E5YWI4MGY0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvZDFmODg2ZGYtNmM1OC00ZWE3LTlk MWYtMDY1OWUyMzI0NDYwL2QxZjg4NmRmLTZjNTgtNGVhNy05ZDFmLTA2NTllMjMy NDQ2MC5jcmwwHwYDVR0jBBgwFoAU3hZRIFaD1ggT5kJFjv0WcO6Hb7swDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi Zi05NTg2LTkyZGQ0OWVmMzIyMy9kMWY4ODZkZi02YzU4LTRlYTctOWQxZi0wNjU5 ZTIzMjQ0NjAuY2VyMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQFSKgAMAwD BARIqFADBAZIqIADBAVIqOAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgG CCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9j cHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEABR9mUTOgm7wN0UH6C7tLnEPGEqxU KPFWdEQFeS41zlU27xXZYW18a3ANblj4mK4EqU/dkwItHXZY0XrpmfS2v/lvTP9e S7VFkwMzF+q55OITocuKIT7ny4K0RRhlTwti7oOgO2Ej9SP/ZtXOGpLe2F2ITbVU CaBXEjxzwbQjv6+Cac3x7PuG5nDtI00DNhseaNpE3Yc1dks1vM/ywuAqHGZAF6ns 8U33JDzOMDU+B2UfSBRKTPtgXgfpkp6mAeV80+gWz3N6ONXo+QJoroxlujEVFbxT /FvZB8BuFTDYtlrzqaBNvgarpoIjHSBxXs8rmHGSHzvC7znnyigS/9RTNg== -----END CERTIFICATE-----Generated at Fri Nov 22 03:54:16 2024 by rpki-client on console-fra.rpki-client.org