$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa File: 828c35a4-d70a-329b-afc8-43f0c6744f3e.roa (raw, json) Hash identifier: 7rQw+qlHTif6+DTs9N2/ku1sXo9XEMhNh5MIfInq060= Subject key identifier: 78:A9:CA:F0:FB:E0:D5:84:81:0E:F6:1D:97:49:DD:56:CD:FF:43:96 Certificate issuer: /CN=3b72c968-d673-4a7a-bfec-4071a7be5317 Certificate serial: 010D0C9F432858474B1B4A1BD6BA71774F882080 Authority key identifier: D4:D0:6C:E1:8F:F9:73:1D:53:22:23:6D:36:3F:38:F6:81:03:B5:6F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa Signing time: Sun 22 Sep 2024 01:00:32 +0000 ROA not before: Sun 22 Sep 2024 01:00:32 +0000 ROA not after: Sat 21 Dec 2024 02:00:32 +0000 asID: 27589 IP address blocks: 64.59.64.0/18 maxlen: 24 66.244.144.0/20 maxlen: 24 74.206.160.0/19 maxlen: 24 99.192.128.0/17 maxlen: 24 104.193.120.0/22 maxlen: 24 162.250.76.0/22 maxlen: 24 184.94.144.0/20 maxlen: 24 199.19.200.0/21 maxlen: 24 199.59.88.0/21 maxlen: 24 199.182.104.0/21 maxlen: 24 199.241.96.0/21 maxlen: 24 208.74.148.0/22 maxlen: 24 208.122.192.0/19 maxlen: 24 2607:f5a8::/32 maxlen: 48 2607:ffb8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:4b:1b:4a:1b:d6:ba:71:77:4f:88:20:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b72c968-d673-4a7a-bfec-4071a7be5317 Validity Not Before: Sep 22 01:00:32 2024 GMT Not After : Dec 21 02:00:32 2024 GMT Subject: CN=ee4fdbb8-2ce5-448c-91e6-b8f5e536001a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:86:e8:88:d9:82:73:08:ae:4f:30:98:14:f1: 5b:5c:55:2d:f6:2c:cd:b9:e5:88:38:82:d3:80:43: 45:d2:4d:9b:7f:7b:88:11:68:9b:3b:a2:42:4d:95: 73:b7:5a:1b:f3:2f:a6:71:6d:13:00:6b:e2:81:ec: bd:bb:81:e2:b6:4c:10:ec:b2:af:70:c7:50:ca:30: 87:45:7f:ca:08:69:f9:7b:fd:ce:12:5c:e9:ea:e8: f8:44:03:1b:9b:7c:4f:d2:d1:f3:fc:47:98:66:e2: b1:1e:ca:71:ef:ea:79:fe:df:4a:5b:5e:c1:84:e8: fe:f7:ed:30:fa:6d:43:a8:ed:a0:23:cd:cf:f9:0c: 72:9a:84:5e:bf:a9:8a:cf:15:3d:8a:e7:66:40:8c: e7:9e:48:9f:ee:66:42:28:da:45:73:4e:5c:d7:ac: 1f:f6:fa:b5:e7:94:93:e9:da:c6:51:4f:c9:24:7b: 5c:30:6e:b8:1e:a4:66:06:b9:0b:c0:0b:c2:b2:cf: 5d:0d:ef:90:a4:57:db:69:ae:e1:85:20:ec:44:48: 66:e5:46:be:73:9e:ff:91:47:1c:09:0e:e3:da:b8: 78:b0:f7:8c:b2:05:dd:3f:8e:07:0f:fa:8b:5c:a4: d9:0c:6b:19:7e:a2:51:01:3a:7d:1b:01:98:40:c2: 51:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A9:CA:F0:FB:E0:D5:84:81:0E:F6:1D:97:49:DD:56:CD:FF:43:96 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/828c35a4-d70a-329b-afc8-43f0c6744f3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317/3b72c968-d673-4a7a-bfec-4071a7be5317.crl X509v3 Authority Key Identifier: keyid:D4:D0:6C:E1:8F:F9:73:1D:53:22:23:6D:36:3F:38:F6:81:03:B5:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3b72c968-d673-4a7a-bfec-4071a7be5317.cer sbgp-ipAddrBlock: critical IPv4: 64.59.64.0/18 66.244.144.0/20 74.206.160.0/19 99.192.128.0/17 104.193.120.0/22 162.250.76.0/22 184.94.144.0/20 199.19.200.0/21 199.59.88.0/21 199.182.104.0/21 199.241.96.0/21 208.74.148.0/22 208.122.192.0/19 IPv6: 2607:f5a8::/32 2607:ffb8::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2d:81:bb:cf:51:bd:ec:c9:ca:e0:ce:97:97:af:9a:76:13:64: 53:36:14:99:7b:58:d7:6e:cd:f6:49:7a:fa:11:b8:c6:bc:be: d1:d0:d9:bb:d2:25:08:ff:cf:0e:f4:13:15:85:e8:75:65:39: e2:b7:30:3c:d0:59:15:60:67:8f:cf:df:1a:8c:2b:c9:99:b5: 6a:1f:55:d6:3c:6a:91:41:5b:1d:d6:73:99:c4:dc:9f:ff:6a: 62:a6:8b:fa:f9:df:e3:e6:ab:44:a2:fe:a4:f9:a6:ab:3c:8c: b7:34:e2:5f:0a:e3:9b:2b:35:25:25:20:43:3d:65:5f:37:aa: 33:a6:57:73:eb:31:24:16:64:2a:67:20:8b:56:84:c8:29:69: db:8c:0e:8a:ee:3a:28:4e:b9:e2:6a:e0:a7:0a:3c:77:ee:06: e0:41:f9:34:22:3b:23:56:9e:b2:bd:9c:30:41:b4:3a:d7:cc: b5:72:ad:45:70:43:a8:73:4e:ef:3b:f7:22:a9:15:f1:48:2b: 83:d5:ab:d1:aa:f2:2e:db:61:c4:5f:3e:ff:5a:cf:7e:2e:71: ec:13:9b:d5:23:02:51:b2:49:28:94:1f:12:5b:3b:40:c8:38: 6f:78:5c:d0:2a:6b:22:4d:14:00:79:17:6d:07:0e:f1:55:b5: 08:3b:81:c7 -----BEGIN CERTIFICATE----- MIIGoTCCBYmgAwIBAgIUAQ0Mn0MoWEdLG0ob1rpxd0+IIIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkM2I3MmM5NjgtZDY3My00YTdhLWJmZWMtNDA3MWE3YmU1 MzE3MB4XDTI0MDkyMjAxMDAzMloXDTI0MTIyMTAyMDAzMlowLzEtMCsGA1UEAxMk ZWU0ZmRiYjgtMmNlNS00NDhjLTkxZTYtYjhmNWU1MzYwMDFhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYboiNmCcwiuTzCYFPFbXFUt9izNueWIOILT gENF0k2bf3uIEWibO6JCTZVzt1ob8y+mcW0TAGvigey9u4HitkwQ7LKvcMdQyjCH RX/KCGn5e/3OElzp6uj4RAMbm3xP0tHz/EeYZuKxHspx7+p5/t9KW17BhOj+9+0w +m1DqO2gI83P+QxymoRev6mKzxU9iudmQIznnkif7mZCKNpFc05c16wf9vq155ST 6drGUU/JJHtcMG64HqRmBrkLwAvCss9dDe+QpFfbaa7hhSDsREhm5Ua+c57/kUcc CQ7j2rh4sPeMsgXdP44HD/qLXKTZDGsZfqJRATp9GwGYQMJRuwIDAQABo4IDszCC A68wHQYDVR0OBBYEFHipyvD74NWEgQ72HZdJ3VbN/0OWMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8zYjcy Yzk2OC1kNjczLTRhN2EtYmZlYy00MDcxYTdiZTUzMTcvODI4YzM1YTQtZDcwYS0z MjliLWFmYzgtNDNmMGM2NzQ0ZjNlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvM2I3MmM5NjgtZDY3My00YTdhLWJm ZWMtNDA3MWE3YmU1MzE3LzNiNzJjOTY4LWQ2NzMtNGE3YS1iZmVjLTQwNzFhN2Jl NTMxNy5jcmwwHwYDVR0jBBgwFoAU1NBs4Y/5cx1TIiNtNj849oEDtW8wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi8zYjcyYzk2OC1kNjczLTRhN2EtYmZlYy00MDcx YTdiZTUzMTcuY2VyMH0GCCsGAQUFBwEHAQH/BG4wbDBUBAIAATBOAwQGQDtAAwQE QvSQAwQFSs6gAwQHY8CAAwQCaMF4AwQCovpMAwQEuF6QAwQDxxPIAwQDxztYAwQD x7ZoAwQDx/FgAwQC0EqUAwQF0HrAMBQEAgACMA4DBQAmB/WoAwUAJgf/uDBUBgNV HSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3 LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUA A4IBAQAtgbvPUb3sycrgzpeXr5p2E2RTNhSZe1jXbs32SXr6EbjGvL7R0Nm70iUI /88O9BMVheh1ZTnitzA80FkVYGePz98ajCvJmbVqH1XWPGqRQVsd1nOZxNyf/2pi pov6+d/j5qtEov6k+aarPIy3NOJfCuObKzUlJSBDPWVfN6ozpldz6zEkFmQqZyCL VoTIKWnbjA6K7jooTrniauCnCjx37gbgQfk0IjsjVp6yvZwwQbQ618y1cq1FcEOo c07vO/ciqRXxSCuD1avRqvIu22HEXz7/Ws9+LnHsE5vVIwJRskkolB8SWztAyDhv eFzQKmsiTRQAeRdtBw7xVbUIO4HH -----END CERTIFICATE-----Generated at Fri Nov 22 01:37:26 2024 by rpki-client on console-ams.rpki-client.org