$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/a8735f80-d635-36e0-a042-89c554b7b169.roa File: a8735f80-d635-36e0-a042-89c554b7b169.roa (raw, json) Hash identifier: I3nrclMD/0XfhJDLb4Z3GIyqBtWhsxnuARIf3jVMJMI= Subject key identifier: F5:69:4F:27:29:86:7C:06:0A:29:14:F1:05:D0:C6:57:88:8B:3E:1C Certificate issuer: /CN=f240d902-7ba3-4aec-b663-471f0fabfe37 Certificate serial: 010D0C9F43285845C5A8F2F66B0AE68601D5EE00 Authority key identifier: E4:57:D5:28:0C:09:9C:2A:7E:A8:A5:80:B1:6F:F6:B0:BA:4C:F1:1E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/a8735f80-d635-36e0-a042-89c554b7b169.roa Signing time: Sun 05 May 2024 13:00:34 +0000 ROA not before: Sun 05 May 2024 13:00:34 +0000 ROA not after: Sat 03 Aug 2024 13:00:34 +0000 asID: 22808 IP address blocks: 66.112.128.16/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/f240d902-7ba3-4aec-b663-471f0fabfe37.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/f240d902-7ba3-4aec-b663-471f0fabfe37.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 13 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:c5:a8:f2:f6:6b:0a:e6:86:01:d5:ee:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f240d902-7ba3-4aec-b663-471f0fabfe37 Validity Not Before: May 5 13:00:34 2024 GMT Not After : Aug 3 13:00:34 2024 GMT Subject: CN=b23351e1-b6aa-443b-86ce-6f9ed16bff29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:df:8e:cc:10:6e:25:f3:44:24:45:bf:46: a8:e9:8b:1b:3e:ac:09:43:0f:d5:75:9c:b7:e6:be: 9f:8e:4c:29:ec:aa:0b:5d:db:78:c0:93:c2:0c:8e: 93:7d:4b:5f:2d:2e:82:d8:d9:69:2f:f8:de:f5:2f: cf:05:b7:47:5a:30:ab:98:77:e2:7a:c3:f1:a7:ab: ca:24:7e:61:4f:7d:df:3f:d9:f9:94:73:cb:7e:88: 7b:de:2e:db:c1:f3:ca:fc:81:c0:a6:a7:f9:6c:07: d6:0e:6e:a7:b1:a8:7d:e8:4b:a5:cb:f7:cf:8b:e7: 4c:73:43:a6:71:1c:1e:72:4c:24:e6:4b:cd:47:b7: 38:b9:7c:95:9d:c0:5f:f7:94:a4:54:aa:c3:ff:09: 52:7a:05:7a:b0:2d:2e:7d:12:3f:67:07:05:c8:65: b8:fb:b9:3a:4e:22:a3:6a:32:75:5d:58:0a:25:f4: d8:c8:30:60:81:78:e8:bb:54:8d:71:77:b7:37:d6: 27:c3:e7:24:67:11:fe:8b:99:1d:bc:75:bf:7b:f2: bd:3e:bc:70:91:5c:a6:d9:0c:2a:63:31:8c:7c:8d: 3f:72:a4:87:2b:2e:c8:62:7b:6c:55:b4:53:b6:5c: 87:17:d6:c1:44:63:21:6a:5a:1f:ff:c1:e2:ad:78: 9a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:69:4F:27:29:86:7C:06:0A:29:14:F1:05:D0:C6:57:88:8B:3E:1C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/a8735f80-d635-36e0-a042-89c554b7b169.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37/f240d902-7ba3-4aec-b663-471f0fabfe37.crl X509v3 Authority Key Identifier: keyid:E4:57:D5:28:0C:09:9C:2A:7E:A8:A5:80:B1:6F:F6:B0:BA:4C:F1:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/f240d902-7ba3-4aec-b663-471f0fabfe37.cer sbgp-ipAddrBlock: critical IPv4: 66.112.128.16/29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6f:d5:99:52:5d:f7:37:92:52:7c:a0:95:09:c4:dc:ff:b4:7e: e0:71:82:b8:25:5e:f3:36:8e:77:ac:06:01:ee:44:70:f1:bb: a5:5b:c2:8d:ec:ea:91:2f:1f:3b:ae:1d:7e:cc:5c:b7:c1:e4: 8b:b4:38:88:da:22:5a:f7:be:2e:f4:98:f8:bf:b4:06:5e:36: e9:f0:43:52:03:b1:71:44:9c:ed:c2:5b:9f:73:e6:0a:37:e6: 3b:a1:b3:2b:6d:ac:1a:a4:cf:1b:d5:76:d8:25:d2:3a:02:ae: d1:53:41:fa:29:6b:4b:93:a2:54:04:f5:3c:fd:da:e1:a7:58: a1:19:de:81:98:c7:d0:f4:f9:c2:31:11:fb:35:bb:10:28:1f: d4:a7:0f:22:ba:e0:9a:9d:46:54:01:35:2e:77:15:a3:67:36: 37:f7:ec:d7:9f:74:a7:03:1e:99:d0:9f:72:20:57:46:55:94: 54:59:76:0c:b2:a6:0b:4d:10:31:30:47:18:2b:28:e5:d7:ac: e6:13:dd:57:69:3b:b6:56:c7:2f:ce:7f:91:c6:cf:9b:bc:18: 54:5f:99:a3:2a:ed:12:c8:bf:fb:de:d1:3f:85:45:45:55:8b: b8:3c:4c:8a:a4:84:3e:b3:73:cd:1a:03:d3:b8:bc:26:92:a0: 29:30:92:19 -----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgIUAQ0Mn0MoWEXFqPL2awrmhgHV7gAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZjI0MGQ5MDItN2JhMy00YWVjLWI2NjMtNDcxZjBmYWJm ZTM3MB4XDTI0MDUwNTEzMDAzNFoXDTI0MDgwMzEzMDAzNFowLzEtMCsGA1UEAxMk YjIzMzUxZTEtYjZhYS00NDNiLTg2Y2UtNmY5ZWQxNmJmZjI5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRffjswQbiXzRCRFv0ao6YsbPqwJQw/VdZy3 5r6fjkwp7KoLXdt4wJPCDI6TfUtfLS6C2NlpL/je9S/PBbdHWjCrmHfiesPxp6vK JH5hT33fP9n5lHPLfoh73i7bwfPK/IHApqf5bAfWDm6nsah96Euly/fPi+dMc0Om cRweckwk5kvNR7c4uXyVncBf95SkVKrD/wlSegV6sC0ufRI/ZwcFyGW4+7k6TiKj ajJ1XVgKJfTYyDBggXjou1SNcXe3N9Ynw+ckZxH+i5kdvHW/e/K9PrxwkVym2Qwq YzGMfI0/cqSHKy7IYntsVbRTtlyHF9bBRGMhalof/8HirXianQIDAQABo4IDVjCC A1IwHQYDVR0OBBYEFPVpTycphnwGCikU8QXQxleIiz4cMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi9mMjQw ZDkwMi03YmEzLTRhZWMtYjY2My00NzFmMGZhYmZlMzcvYTg3MzVmODAtZDYzNS0z NmUwLWEwNDItODljNTU0YjdiMTY5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvZjI0MGQ5MDItN2JhMy00YWVjLWI2 NjMtNDcxZjBmYWJmZTM3L2YyNDBkOTAyLTdiYTMtNGFlYy1iNjYzLTQ3MWYwZmFi ZmUzNy5jcmwwHwYDVR0jBBgwFoAU5FfVKAwJnCp+qKWAsW/2sLpM8R4wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2 Yy1iYTA1LTg3MTg3ZjAwOTliMi9mMjQwZDkwMi03YmEzLTRhZWMtYjY2My00NzFm MGZhYmZlMzcuY2VyMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUDQnCAEDBU BgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8v d3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEB CwUAA4IBAQBv1ZlSXfc3klJ8oJUJxNz/tH7gcYK4JV7zNo53rAYB7kRw8bulW8KN 7OqRLx87rh1+zFy3weSLtDiI2iJa974u9Jj4v7QGXjbp8ENSA7FxRJztwlufc+YK N+Y7obMrbawapM8b1XbYJdI6Aq7RU0H6KWtLk6JUBPU8/drhp1ihGd6BmMfQ9PnC MRH7NbsQKB/Upw8iuuCanUZUATUudxWjZzY39+zXn3SnAx6Z0J9yIFdGVZRUWXYM sqYLTRAxMEcYKyjl16zmE91XaTu2Vscvzn+Rxs+bvBhUX5mjKu0SyL/73tE/hUVF VYu4PEyKpIQ+s3PNGgPTuLwmkqApMJIZ -----END CERTIFICATE-----Generated at Sat May 11 12:46:07 2024 by rpki-client on console-fra.rpki-client.org