$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/2dfa2958-869d-3921-a8ad-1a559be0d746.roa File: 2dfa2958-869d-3921-a8ad-1a559be0d746.roa (raw, json) Hash identifier: 1EIpDOMhL1H24aA3HTtKQhIIx7Gx22a8yNRO0A1Y3Uo= Subject key identifier: 99:2B:8A:D2:CF:A1:EF:C8:EA:90:E9:62:6C:E4:AC:78:AE:C6:17:70 Certificate issuer: /CN=66dea2a5-837d-46d8-8f8e-9447ece20c09 Certificate serial: 010D0C9F43285847F584FA1EB8DEEF352CBEE500 Authority key identifier: C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/2dfa2958-869d-3921-a8ad-1a559be0d746.roa Signing time: Fri 22 Nov 2024 02:00:40 +0000 ROA not before: Fri 22 Nov 2024 02:00:40 +0000 ROA not after: Thu 20 Feb 2025 02:00:40 +0000 asID: 10103 IP address blocks: 166.0.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 08:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:f5:84:fa:1e:b8:de:ef:35:2c:be:e5:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66dea2a5-837d-46d8-8f8e-9447ece20c09 Validity Not Before: Nov 22 02:00:40 2024 GMT Not After : Feb 20 02:00:40 2025 GMT Subject: CN=a5f143ef-a747-41c5-8926-3fee9482554e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8d:49:4e:60:90:a1:cb:b3:62:7a:03:f2:6c: d1:d2:5a:cc:c2:f5:ab:4a:d9:1e:05:a8:82:30:3c: c4:23:bd:c2:17:46:fd:c0:26:56:f9:d0:18:fa:d7: 5d:de:0e:5a:42:02:48:bb:e3:6c:63:bf:4c:ab:85: fa:86:6c:fb:5f:7b:1e:2a:c9:8b:65:f7:69:fe:76: 96:a6:ca:d2:53:fc:aa:f3:81:59:6f:b1:82:53:20: 82:c5:53:a1:8f:99:ae:18:ac:8f:fc:61:38:0d:d2: 83:e0:49:4a:12:fa:8f:11:67:34:c8:5d:d6:69:72: a7:7e:50:cb:c0:a7:14:1f:c5:a7:d4:8b:73:56:1f: 6a:4d:35:35:09:d5:89:4b:1b:05:32:53:5d:c2:9e: f0:9c:c2:31:47:3f:5c:0b:33:48:b6:5d:8b:a2:18: e6:49:77:a0:eb:cf:23:f3:ea:d9:3c:59:c3:a1:c2: b7:e4:dd:f1:55:12:b1:ff:a1:86:a1:a2:c0:64:eb: 2c:62:b9:b1:57:8e:f7:7b:79:a9:7a:6d:96:b2:0a: 0d:85:52:b3:52:c3:87:56:d6:31:28:18:cd:c1:e8: 3f:c2:77:bc:e3:28:89:57:dd:a5:c5:0a:de:8c:19: 06:8a:96:ca:c6:ad:f1:06:82:23:30:9d:b4:a7:f0: 84:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:2B:8A:D2:CF:A1:EF:C8:EA:90:E9:62:6C:E4:AC:78:AE:C6:17:70 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/2dfa2958-869d-3921-a8ad-1a559be0d746.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.crl X509v3 Authority Key Identifier: keyid:C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer sbgp-ipAddrBlock: critical IPv4: 166.0.218.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 43:2c:5c:37:d2:20:ad:72:a5:e9:a2:70:ad:e1:d5:98:43:a2: a4:e4:ab:a5:ea:90:3f:1a:86:f4:f6:5c:11:a3:66:52:3e:81: dc:7a:b3:0b:95:cc:39:62:b8:0c:c5:6f:38:1c:c2:61:60:0a: 38:8b:73:9a:aa:70:a8:83:91:6a:78:83:18:9b:99:5f:19:f7: ef:d2:57:55:44:bd:3e:ab:d1:28:0f:12:23:48:15:da:c0:13: 16:3c:64:e8:41:4f:d5:a6:fa:99:04:c7:44:80:06:30:db:6c: b5:2a:93:01:37:43:ed:ba:12:d5:bd:26:ed:e6:11:89:ce:ef: e8:f9:dd:08:ce:80:2c:17:bd:df:4f:c8:b1:a1:5b:33:8d:35: 4b:a1:78:9c:17:e0:ec:83:00:63:1e:c1:f4:89:33:af:0c:13: d7:8d:54:d2:59:85:35:4b:32:a6:a4:e7:48:27:07:6d:31:28: 24:5d:5c:29:29:4c:16:30:40:72:a7:4a:a7:ef:f8:2b:1b:80: d1:73:c2:3c:2f:af:7d:c6:c5:1d:7e:fe:c3:43:80:7c:14:20: e2:0d:6e:1a:9b:41:cb:ae:b3:f9:2a:9c:16:12:48:3e:9d:e6: 1b:1f:84:93:8c:2a:2f:0d:6f:db:e1:96:88:32:a8:e2:88:b1: e9:90:fc:89 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEf1hPoeuN7vNSy+5QAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNjZkZWEyYTUtODM3ZC00NmQ4LThmOGUtOTQ0N2VjZTIw YzA5MB4XDTI0MTEyMjAyMDA0MFoXDTI1MDIyMDAyMDA0MFowLzEtMCsGA1UEAxMk YTVmMTQzZWYtYTc0Ny00MWM1LTg5MjYtM2ZlZTk0ODI1NTRlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3o1JTmCQocuzYnoD8mzR0lrMwvWrStkeBaiC MDzEI73CF0b9wCZW+dAY+tdd3g5aQgJIu+NsY79Mq4X6hmz7X3seKsmLZfdp/naW psrSU/yq84FZb7GCUyCCxVOhj5muGKyP/GE4DdKD4ElKEvqPEWc0yF3WaXKnflDL wKcUH8Wn1ItzVh9qTTU1CdWJSxsFMlNdwp7wnMIxRz9cCzNItl2LohjmSXeg688j 8+rZPFnDocK35N3xVRKx/6GGoaLAZOssYrmxV473e3mpem2WsgoNhVKzUsOHVtYx KBjNweg/wne84yiJV92lxQrejBkGipbKxq3xBoIjMJ20p/CEkQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJkritLPoe/I6pDpYmzkrHiuxhdwMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi82NmRl YTJhNS04MzdkLTQ2ZDgtOGY4ZS05NDQ3ZWNlMjBjMDkvMmRmYTI5NTgtODY5ZC0z OTIxLWE4YWQtMWE1NTliZTBkNzQ2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvNjZkZWEyYTUtODM3ZC00NmQ4LThm OGUtOTQ0N2VjZTIwYzA5LzY2ZGVhMmE1LTgzN2QtNDZkOC04ZjhlLTk0NDdlY2Uy MGMwOS5jcmwwHwYDVR0jBBgwFoAUw4ati/QZSzWUJJuQup2AEcIIcckwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi82NmRlYTJhNS04MzdkLTQ2ZDgtOGY4ZS05NDQ3 ZWNlMjBjMDkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQApgDaMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAEMsXDfSIK1ypemicK3h1ZhDoqTkq6XqkD8ahvT2XBGjZlI+gdx6swuV zDliuAzFbzgcwmFgCjiLc5qqcKiDkWp4gxibmV8Z9+/SV1VEvT6r0SgPEiNIFdrA ExY8ZOhBT9Wm+pkEx0SABjDbbLUqkwE3Q+26EtW9Ju3mEYnO7+j53QjOgCwXvd9P yLGhWzONNUuheJwX4OyDAGMewfSJM68ME9eNVNJZhTVLMqak50gnB20xKCRdXCkp TBYwQHKnSqfv+CsbgNFzwjwvr33GxR1+/sNDgHwUIOINbhqbQcuus/kqnBYSSD6d 5hsfhJOMKi8Nb9vhlogyqOKIsemQ/Ik= -----END CERTIFICATE-----Generated at Fri Nov 22 06:37:38 2024 by rpki-client on console-ams.rpki-client.org