$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/109a2877-8f41-3e6a-b026-4ee9dbd03a1e.roa File: 109a2877-8f41-3e6a-b026-4ee9dbd03a1e.roa (raw, json) Hash identifier: BimrHtEboNfQZLfBOmm6HlqYcITf8SCPG8qGypE4D5I= Subject key identifier: 17:AC:DA:18:43:DD:92:66:36:12:98:76:1B:B2:01:A4:E0:69:37:37 Certificate issuer: /CN=2bc601f7-daff-4d8b-8556-b61503268309 Certificate serial: 010D0C9F43285847E62A400C5609AABC4D297CC0 Authority key identifier: DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/109a2877-8f41-3e6a-b026-4ee9dbd03a1e.roa Signing time: Sat 16 Nov 2024 14:00:41 +0000 ROA not before: Sat 16 Nov 2024 14:00:41 +0000 ROA not after: Fri 14 Feb 2025 14:00:41 +0000 asID: 7155 IP address blocks: 72.173.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:e6:2a:40:0c:56:09:aa:bc:4d:29:7c:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc601f7-daff-4d8b-8556-b61503268309 Validity Not Before: Nov 16 14:00:41 2024 GMT Not After : Feb 14 14:00:41 2025 GMT Subject: CN=63f7e3de-3cc1-493f-883b-5ccbacf24c9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:8b:a6:5e:f0:0e:e7:7d:ed:0f:8b:b7:02:d5: d5:e3:b1:84:5e:be:c0:11:d0:73:4a:0e:72:3b:18: de:ed:ca:7d:dc:12:4a:52:55:1b:d1:65:66:ce:5a: 60:fb:b5:e5:42:c2:7b:81:09:37:3a:71:eb:b8:4e: 30:25:3d:81:0f:35:f2:5d:39:66:63:73:2b:0d:b9: d0:49:af:ea:21:c9:1d:41:2a:b5:a7:c9:52:17:7d: 98:ec:57:54:d8:4d:b2:6e:86:ca:b2:e3:0a:49:7e: 21:3b:ce:da:dd:13:70:c0:d6:57:07:73:bd:ef:71: ae:72:51:d1:f8:e2:f6:26:7a:ce:93:c7:39:61:f5: 3e:e0:1e:aa:c6:2b:c1:15:a0:98:97:eb:38:63:78: 6b:ae:6a:a6:43:5b:60:72:1b:30:67:e1:46:61:40: 04:9a:69:4a:84:ec:19:ef:9c:77:0b:df:92:90:7a: f2:92:89:a9:71:08:39:32:64:84:90:4a:93:02:a5: 86:cf:d2:e7:d0:b5:30:a9:97:b4:3e:6a:8e:69:cc: cb:45:c6:68:a4:d9:29:82:f8:35:26:35:a9:7a:b7: 96:56:f4:6a:25:ff:92:d6:00:84:52:11:8c:0e:85: 0d:8b:3e:2a:92:0c:46:53:f5:ba:21:8c:c4:2d:41: b2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:AC:DA:18:43:DD:92:66:36:12:98:76:1B:B2:01:A4:E0:69:37:37 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/109a2877-8f41-3e6a-b026-4ee9dbd03a1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl X509v3 Authority Key Identifier: keyid:DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer sbgp-ipAddrBlock: critical IPv4: 72.173.137.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption af:91:6c:41:2c:41:79:2b:9b:db:0f:1f:c3:d2:43:3e:0c:a1: 16:6e:11:f3:80:3c:b9:6b:7a:bf:04:0c:ee:97:70:24:5e:bd: 7e:10:14:f5:fa:0a:b0:a5:18:2e:5c:42:2a:5b:99:65:aa:22: f5:61:76:48:5c:d5:56:8d:fd:51:00:e7:f3:da:45:7a:6b:fa: 77:63:9d:27:87:be:04:5d:4f:75:3b:b1:a7:89:20:c5:a4:a7: dd:b2:fa:42:04:4f:37:1b:88:41:8e:33:2d:89:e3:80:65:cc: 90:18:ae:64:30:1c:01:42:6f:b9:83:88:1c:e7:a3:d4:8f:46: dd:aa:42:7e:7d:cc:83:08:28:6a:09:4c:3d:4f:36:9a:85:f4: c9:12:9c:32:41:b6:b7:72:83:bc:38:91:b6:2d:6e:8b:e9:79: 75:d8:bd:3d:b7:cf:a7:ce:87:cf:a4:b5:a1:19:83:f9:18:ea: f0:65:3f:61:0d:cc:94:f3:fa:25:4f:4c:a0:a2:21:c1:1c:ce: 1d:a8:6e:fa:14:dc:61:a6:33:e4:04:d0:3c:68:25:50:f3:9d: 66:a3:df:c9:4c:12:b5:7f:3b:0e:d3:19:97:94:cf:66:4a:ff: 7b:e6:58:8f:3e:dc:29:76:9b:3f:04:28:ec:dd:57:b1:2b:a6: e9:7b:8c:e8 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEfmKkAMVgmqvE0pfMAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMmJjNjAxZjctZGFmZi00ZDhiLTg1NTYtYjYxNTAzMjY4 MzA5MB4XDTI0MTExNjE0MDA0MVoXDTI1MDIxNDE0MDA0MVowLzEtMCsGA1UEAxMk NjNmN2UzZGUtM2NjMS00OTNmLTg4M2ItNWNjYmFjZjI0YzljMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAioumXvAO533tD4u3AtXV47GEXr7AEdBzSg5y Oxje7cp93BJKUlUb0WVmzlpg+7XlQsJ7gQk3OnHruE4wJT2BDzXyXTlmY3MrDbnQ Sa/qIckdQSq1p8lSF32Y7FdU2E2ybobKsuMKSX4hO87a3RNwwNZXB3O973GuclHR +OL2JnrOk8c5YfU+4B6qxivBFaCYl+s4Y3hrrmqmQ1tgchswZ+FGYUAEmmlKhOwZ 75x3C9+SkHrykompcQg5MmSEkEqTAqWGz9Ln0LUwqZe0PmqOaczLRcZopNkpgvg1 JjWpereWVvRqJf+S1gCEUhGMDoUNiz4qkgxGU/W6IYzELUGyVQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFBes2hhD3ZJmNhKYdhuyAaTgaTc3MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2 MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1MDMyNjgzMDkvMTA5YTI4NzctOGY0MS0z ZTZhLWIwMjYtNGVlOWRiZDAzYTFlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvMmJjNjAxZjctZGFmZi00ZDhiLTg1 NTYtYjYxNTAzMjY4MzA5LzJiYzYwMWY3LWRhZmYtNGQ4Yi04NTU2LWI2MTUwMzI2 ODMwOS5jcmwwHwYDVR0jBBgwFoAU2sjvKarps5Jjg0Ir3yR6haVOgxcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8yYmM2MDFmNy1kYWZmLTRkOGItODU1Ni1iNjE1 MDMyNjgzMDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASK2JMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAK+RbEEsQXkrm9sPH8PSQz4MoRZuEfOAPLlrer8EDO6XcCRevX4QFPX6 CrClGC5cQipbmWWqIvVhdkhc1VaN/VEA5/PaRXpr+ndjnSeHvgRdT3U7saeJIMWk p92y+kIETzcbiEGOMy2J44BlzJAYrmQwHAFCb7mDiBzno9SPRt2qQn59zIMIKGoJ TD1PNpqF9MkSnDJBtrdyg7w4kbYtbovpeXXYvT23z6fOh8+ktaEZg/kY6vBlP2EN zJTz+iVPTKCiIcEczh2obvoU3GGmM+QE0DxoJVDznWaj38lMErV/Ow7TGZeUz2ZK /3vmWI8+3Cl2mz8EKOzdV7Erpul7jOg= -----END CERTIFICATE-----Generated at Mon Nov 25 03:01:01 2024 by rpki-client on console-fra.rpki-client.org