$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa File: baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa (raw, json) Hash identifier: mLhsPcLkxChYm7bxqNYAxJ3MzHuMmnXvYF18x6Zz5vU= Subject key identifier: 0C:4E:AF:2D:E9:F6:05:47:0F:62:CE:9F:31:00:6D:23:8C:5D:D1:EF Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Certificate serial: 010D0C9F43285845AC893EEA0977A93195372490 Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa Signing time: Fri 26 Apr 2024 13:00:35 +0000 ROA not before: Fri 26 Apr 2024 13:00:35 +0000 ROA not after: Thu 25 Jul 2024 13:00:35 +0000 asID: 33287 IP address blocks: 68.84.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:ac:89:3e:ea:09:77:a9:31:95:37:24:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6 Validity Not Before: Apr 26 13:00:35 2024 GMT Not After : Jul 25 13:00:35 2024 GMT Subject: CN=e0ccd140-68c5-493f-b7af-266b131c7d20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:30:de:9f:dd:1b:35:38:f9:2c:cc:6d:4f:e9: 63:75:24:57:e3:92:ed:59:93:fd:04:df:d9:28:80: 30:c2:2f:9f:8a:db:aa:fc:24:a7:d5:97:ce:08:93: 84:12:4d:6c:d2:bf:d7:3a:6f:7f:73:79:ae:68:f1: bb:f3:d3:d3:14:5a:9f:15:71:73:bc:4a:e0:2d:a2: 8d:f1:2b:7e:84:1c:e0:c2:07:92:a4:54:d0:49:9b: da:b7:75:07:01:f3:91:f1:14:77:41:10:9b:e9:31: 96:b0:b8:c4:c8:2d:ac:a8:f6:92:b0:8f:8d:e8:b7: 4f:32:e5:52:e4:4c:56:d6:a7:9f:71:14:b5:a0:8e: 32:58:d5:b9:aa:c2:e1:e1:af:f6:43:83:f3:98:e0: c6:aa:78:3c:8b:1d:1a:50:0f:1a:f7:da:ad:06:e6: be:52:b1:6a:4a:4d:7a:de:da:6c:df:29:63:9f:3d: 98:1b:9d:ea:09:04:5d:de:08:9f:b3:05:83:be:82: 38:f9:9e:8b:55:74:04:c5:57:e5:20:f4:90:60:eb: 82:8c:6f:5b:b0:3e:92:66:d4:6a:74:28:2a:3e:f1: 8c:bd:bb:a5:9d:25:8e:d1:52:02:e0:11:98:42:e3: d1:22:ed:95:23:2e:71:a5:38:e3:53:ec:99:97:7d: 53:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4E:AF:2D:E9:F6:05:47:0F:62:CE:9F:31:00:6D:23:8C:5D:D1:EF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/baf9fe21-97c1-3d32-b3d1-ce23e4418caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl X509v3 Authority Key Identifier: keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer sbgp-ipAddrBlock: critical IPv4: 68.84.120.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption c4:bb:fe:f1:bc:46:c5:35:b9:c3:fd:75:3f:81:c7:94:d7:d6: 3f:c1:f9:0b:fe:a8:d2:59:07:f7:78:46:ca:b9:fa:36:66:54: 4e:8d:1d:6c:4e:77:dd:4f:78:52:65:e2:42:36:b1:c1:e9:d2: e8:3f:57:1e:bf:69:d5:5a:fb:0b:3e:f8:96:2c:8e:82:97:09: 7d:08:bb:0d:e1:e8:76:80:b3:0d:e8:06:14:6e:eb:69:21:1c: b6:eb:33:85:96:87:f9:0e:b8:72:9e:6f:f5:13:c3:01:cd:aa: 2a:5c:74:8c:b2:a2:87:34:9a:ca:c5:b0:e3:1f:d6:ea:5e:98: 24:c6:4e:e0:a8:43:87:4e:40:7b:15:55:5f:c4:a5:dd:d8:fe: 22:07:02:45:61:5f:29:76:c8:69:29:8e:cb:87:8b:db:bb:41: 57:f2:2b:5d:af:d9:7a:6f:5e:c1:94:7d:8a:d9:c1:db:41:00: de:62:a7:bc:3d:8b:01:e5:83:19:a2:c3:9a:d7:19:f1:81:17: ff:4b:24:60:d3:31:25:cf:84:c2:b9:c6:35:67:59:d8:fa:05: a0:e1:34:77:21:01:be:d3:de:c7:40:40:af:de:dc:71:95:7e: 08:9d:b4:76:c2:c8:83:f1:70:7c:89:7d:fd:fe:40:40:9d:cc: 35:ac:fc:9b -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEWsiT7qCXepMZU3JJAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNGU5NWEyOGUtMjdmZS00NzlhLWIwODYtMmNjOTgwOWQ1 NGY2MB4XDTI0MDQyNjEzMDAzNVoXDTI0MDcyNTEzMDAzNVowLzEtMCsGA1UEAxMk ZTBjY2QxNDAtNjhjNS00OTNmLWI3YWYtMjY2YjEzMWM3ZDIwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiDDen90bNTj5LMxtT+ljdSRX45LtWZP9BN/Z KIAwwi+fituq/CSn1ZfOCJOEEk1s0r/XOm9/c3muaPG789PTFFqfFXFzvErgLaKN 8St+hBzgwgeSpFTQSZvat3UHAfOR8RR3QRCb6TGWsLjEyC2sqPaSsI+N6LdPMuVS 5ExW1qefcRS1oI4yWNW5qsLh4a/2Q4PzmODGqng8ix0aUA8a99qtBua+UrFqSk16 3tps3yljnz2YG53qCQRd3gifswWDvoI4+Z6LVXQExVflIPSQYOuCjG9bsD6SZtRq dCgqPvGMvbulnSWO0VIC4BGYQuPRIu2VIy5xpTjjU+yZl31TtQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFAxOry3p9gVHD2LOnzEAbSOMXdHvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1 YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5ODA5ZDU0ZjYvYmFmOWZlMjEtOTdjMS0z ZDMyLWIzZDEtY2UyM2U0NDE4Y2FhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNGU5NWEyOGUtMjdmZS00NzlhLWIw ODYtMmNjOTgwOWQ1NGY2LzRlOTVhMjhlLTI3ZmUtNDc5YS1iMDg2LTJjYzk4MDlk NTRmNi5jcmwwHwYDVR0jBBgwFoAUVUMoMSuiEekMYyprwX4N1pJ2PmEwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi80ZTk1YTI4ZS0yN2ZlLTQ3OWEtYjA4Ni0yY2M5 ODA5ZDU0ZjYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBRFR4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAMS7/vG8RsU1ucP9dT+Bx5TX1j/B+Qv+qNJZB/d4Rsq5+jZmVE6NHWxO d91PeFJl4kI2scHp0ug/Vx6/adVa+ws++JYsjoKXCX0Iuw3h6HaAsw3oBhRu62kh HLbrM4WWh/kOuHKeb/UTwwHNqipcdIyyooc0msrFsOMf1upemCTGTuCoQ4dOQHsV VV/Epd3Y/iIHAkVhXyl2yGkpjsuHi9u7QVfyK12v2XpvXsGUfYrZwdtBAN5ip7w9 iwHlgxmiw5rXGfGBF/9LJGDTMSXPhMK5xjVnWdj6BaDhNHchAb7T3sdAQK/e3HGV fgidtHbCyIPxcHyJff3+QECdzDWs/Js= -----END CERTIFICATE-----Generated at Sat May 4 14:56:50 2024 by rpki-client on console-ams.rpki-client.org