$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/823d422f-b829-30f1-896f-7ad2d3888438.roa File: 823d422f-b829-30f1-896f-7ad2d3888438.roa (raw, json) Hash identifier: frSu1uFF/fASGIcU38+GMz3lpjJkipB7LyZAmV9XAdo= Subject key identifier: 76:31:FB:B1:39:87:94:42:F2:4E:CC:71:E2:0B:CA:F8:D6:B5:E2:83 Certificate issuer: /CN=8e2f3353-82b9-432b-bd94-000bf5cef0c3 Certificate serial: 010D0C9F432858452C1D415BF5835C7252FD0E00 Authority key identifier: B4:B5:6C:64:46:3D:47:EB:DC:A5:0E:CB:D0:7B:9A:33:43:55:40:45 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/823d422f-b829-30f1-896f-7ad2d3888438.roa Signing time: Mon 11 Mar 2024 13:00:31 +0000 ROA not before: Mon 11 Mar 2024 13:00:31 +0000 ROA not after: Sun 09 Jun 2024 13:00:31 +0000 asID: 21928 IP address blocks: 99.200.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/8e2f3353-82b9-432b-bd94-000bf5cef0c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/8e2f3353-82b9-432b-bd94-000bf5cef0c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 11 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:2c:1d:41:5b:f5:83:5c:72:52:fd:0e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e2f3353-82b9-432b-bd94-000bf5cef0c3 Validity Not Before: Mar 11 13:00:31 2024 GMT Not After : Jun 9 13:00:31 2024 GMT Subject: CN=e92852f7-dd25-4ead-a0ce-18095d2fb39b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:09:2b:fd:e8:b1:3b:7a:22:d1:60:71:87:3c: 5a:51:e8:20:8a:51:3b:ee:54:7c:e3:6e:4f:b7:89: 76:c9:13:62:bb:74:ae:b2:40:cc:3d:bb:1f:a3:62: 93:ad:58:57:fb:e7:04:b8:d9:13:b8:6f:b2:a2:a1: a3:c1:37:20:e8:d7:9d:4a:70:be:f9:99:af:98:d9: da:18:9f:03:e8:f9:aa:38:d8:fb:85:7b:c7:10:21: ea:8f:7e:3f:15:33:99:68:9e:79:da:c1:74:0f:68: f6:8a:b2:94:89:c5:a8:6c:52:0b:2b:39:83:1c:b5: e5:ab:f2:7a:80:65:eb:03:33:1e:09:e0:a4:94:76: ef:11:c2:cd:d4:95:d5:cd:22:98:2a:24:c5:b3:a4: 3c:b4:17:80:fb:d2:6d:3d:36:56:b9:d0:8c:f8:82: 7b:84:e3:94:6d:dd:1b:dc:4c:71:60:79:27:5d:10: 05:5f:6b:ff:ba:c3:58:e6:e4:77:c9:cc:fe:41:b5: 75:66:ec:d0:41:25:ef:79:0e:a9:35:8a:df:9c:42: 21:da:bc:c5:95:6d:35:a6:e2:93:67:5d:8f:9b:46: a7:11:72:65:85:4a:4b:9e:c7:b6:f7:d5:1a:40:cd: 51:27:c7:26:86:63:f0:06:75:c2:6e:c1:5a:2e:7f: 69:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:31:FB:B1:39:87:94:42:F2:4E:CC:71:E2:0B:CA:F8:D6:B5:E2:83 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/823d422f-b829-30f1-896f-7ad2d3888438.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/8e2f3353-82b9-432b-bd94-000bf5cef0c3.crl X509v3 Authority Key Identifier: keyid:B4:B5:6C:64:46:3D:47:EB:DC:A5:0E:CB:D0:7B:9A:33:43:55:40:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3.cer sbgp-ipAddrBlock: critical IPv4: 99.200.0.0/13 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 3a:e4:66:d1:2c:37:f7:1e:0c:65:c7:ab:7e:3c:6f:31:99:99: 12:08:c6:90:90:18:29:0f:d2:14:d6:04:46:80:9b:90:c7:dd: 5c:94:66:7a:2e:e0:ab:48:af:48:c6:03:e8:6f:13:ac:6f:42: c3:06:b0:35:a9:19:93:d1:c7:ff:b2:9c:b9:4c:53:ae:78:df: b0:08:21:54:7c:fd:c3:32:ed:a2:41:2f:e5:0a:6d:a6:5e:b0: ba:1d:35:08:ea:9a:1b:77:1d:7a:78:54:a8:4e:a9:67:a9:3c: ec:fd:ce:a2:9b:fe:a7:bc:37:d5:f0:00:40:81:df:5f:82:35: 34:4e:dc:d3:ec:d3:96:d5:70:df:f3:e4:d5:cd:f1:d6:5c:b3: 45:ff:ef:2d:93:17:1d:a6:54:c5:15:fa:b7:02:ad:69:bf:53: 54:ea:36:30:65:02:83:91:b7:a9:11:c1:45:4b:5b:af:a9:0c: af:94:97:32:20:6e:0d:0b:c3:b5:9a:a5:aa:25:56:b7:5b:d3: c2:a2:0a:1e:57:03:51:2c:c6:f1:85:77:21:0c:95:f5:93:15: 01:1e:28:17:42:60:13:b2:4c:0d:9b:de:68:2c:8e:42:aa:95: 4c:6e:a6:19:e6:0e:3a:e2:54:ed:25:72:f2:bd:30:af:1d:c7: bf:f7:85:80 -----BEGIN CERTIFICATE----- MIIGQjCCBSqgAwIBAgIUAQ0Mn0MoWEUsHUFb9YNcclL9DgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkOGUyZjMzNTMtODJiOS00MzJiLWJkOTQtMDAwYmY1Y2Vm MGMzMB4XDTI0MDMxMTEzMDAzMVoXDTI0MDYwOTEzMDAzMVowLzEtMCsGA1UEAxMk ZTkyODUyZjctZGQyNS00ZWFkLWEwY2UtMTgwOTVkMmZiMzliMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwkr/eixO3oi0WBxhzxaUeggilE77lR8425P t4l2yRNiu3SuskDMPbsfo2KTrVhX++cEuNkTuG+yoqGjwTcg6NedSnC++ZmvmNna GJ8D6PmqONj7hXvHECHqj34/FTOZaJ552sF0D2j2irKUicWobFILKzmDHLXlq/J6 gGXrAzMeCeCklHbvEcLN1JXVzSKYKiTFs6Q8tBeA+9JtPTZWudCM+IJ7hOOUbd0b 3ExxYHknXRAFX2v/usNY5uR3ycz+QbV1ZuzQQSXveQ6pNYrfnEIh2rzFlW01puKT Z12Pm0anEXJlhUpLnse299UaQM1RJ8cmhmPwBnXCbsFaLn9pLwIDAQABo4IDVDCC A1AwHQYDVR0OBBYEFHYx+7E5h5RC8k7MceILyvjWteKDMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84ZTJm MzM1My04MmI5LTQzMmItYmQ5NC0wMDBiZjVjZWYwYzMvODIzZDQyMmYtYjgyOS0z MGYxLTg5NmYtN2FkMmQzODg4NDM4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvOGUyZjMzNTMtODJiOS00MzJiLWJk OTQtMDAwYmY1Y2VmMGMzLzhlMmYzMzUzLTgyYjktNDMyYi1iZDk0LTAwMGJmNWNl ZjBjMy5jcmwwHwYDVR0jBBgwFoAUtLVsZEY9R+vcpQ7L0HuaM0NVQEUwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi84ZTJmMzM1My04MmI5LTQzMmItYmQ5NC0wMDBi ZjVjZWYwYzMuY2VyMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDY8gwVAYD VR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3 dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsF AAOCAQEAOuRm0Sw39x4MZcerfjxvMZmZEgjGkJAYKQ/SFNYERoCbkMfdXJRmei7g q0ivSMYD6G8TrG9CwwawNakZk9HH/7KcuUxTrnjfsAghVHz9wzLtokEv5Qptpl6w uh01COqaG3cdenhUqE6pZ6k87P3Oopv+p7w31fAAQIHfX4I1NE7c0+zTltVw3/Pk 1c3x1lyzRf/vLZMXHaZUxRX6twKtab9TVOo2MGUCg5G3qRHBRUtbr6kMr5SXMiBu DQvDtZqlqiVWt1vTwqIKHlcDUSzG8YV3IQyV9ZMVAR4oF0JgE7JMDZveaCyOQqqV TG6mGeYOOuJU7SVy8r0wrx3Hv/eFgA== -----END CERTIFICATE-----Generated at Fri May 10 03:02:20 2024 by rpki-client on console-ams.rpki-client.org