$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a/cd4edf63-b492-3c1a-9e91-df12f44f4bc7.roa File: cd4edf63-b492-3c1a-9e91-df12f44f4bc7.roa (raw, json) Hash identifier: /6CnlyI7gOzu3Gu94zmAlWDROKqX2Yz4/8MxSKVIHHo= Subject key identifier: 5E:78:AB:52:50:8A:FF:EF:6E:7C:E0:FE:78:CF:F0:3E:D5:D3:9C:AB Certificate issuer: /CN=91e8565b-cd85-4439-818b-0c669c1e609a Certificate serial: 010D0C9F43285847DDCA0E9CD627E1A094516480 Authority key identifier: 3A:C3:89:20:04:27:04:1A:BD:A1:42:37:C3:1D:D3:7A:76:DE:DA:F6 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a/cd4edf63-b492-3c1a-9e91-df12f44f4bc7.roa Signing time: Wed 13 Nov 2024 14:00:39 +0000 ROA not before: Wed 13 Nov 2024 14:00:39 +0000 ROA not after: Tue 11 Feb 2025 14:00:39 +0000 asID: 22241 IP address blocks: 2620:59:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a/91e8565b-cd85-4439-818b-0c669c1e609a.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a/91e8565b-cd85-4439-818b-0c669c1e609a.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 04:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:dd:ca:0e:9c:d6:27:e1:a0:94:51:64:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91e8565b-cd85-4439-818b-0c669c1e609a Validity Not Before: Nov 13 14:00:39 2024 GMT Not After : Feb 11 14:00:39 2025 GMT Subject: CN=2276fd8c-afdc-4b8a-b305-ec3a1b955c9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2c:5a:98:a4:f4:27:1d:76:b7:ff:a8:3a:b8: 3c:7b:bd:b4:59:07:75:81:71:cc:50:30:eb:98:a0: 32:29:8f:68:d4:66:fe:96:c1:dd:8b:11:ee:6a:45: 24:31:7b:1b:a6:18:c9:e4:32:dc:95:f8:1b:99:95: 95:a2:3b:a7:96:8b:11:54:2a:cb:b6:04:2e:ee:8b: 3c:6c:bf:5b:69:27:e5:50:45:04:c1:43:c7:fa:52: df:9e:f1:3f:13:59:f1:3d:44:14:5e:3d:2c:08:4d: c3:2c:09:1a:c7:09:bc:2a:48:0d:56:39:f3:e8:54: 56:16:1e:72:22:73:89:0d:fb:bc:48:d4:be:3f:77: b7:a0:bd:4c:c7:0c:62:cc:e3:20:7f:4d:a3:df:be: 7d:64:11:32:40:b6:7d:d4:3c:d6:e8:94:1f:e4:ca: 58:08:eb:1e:33:ac:28:01:21:c1:b4:ed:36:54:e6: d5:f4:76:c2:bd:3f:b2:8d:ae:53:df:28:10:ba:41: 87:e1:4c:fc:38:0b:a6:49:c7:df:c3:58:11:fd:8e: 1c:22:3d:2f:eb:4e:c5:3a:f8:b8:3b:76:19:69:65: 61:b1:09:30:1f:d7:c1:26:cb:6b:67:46:35:4b:8e: b2:43:11:2b:b4:93:72:a8:4b:d8:2f:15:d7:5a:0f: 7e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:78:AB:52:50:8A:FF:EF:6E:7C:E0:FE:78:CF:F0:3E:D5:D3:9C:AB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a/cd4edf63-b492-3c1a-9e91-df12f44f4bc7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a/91e8565b-cd85-4439-818b-0c669c1e609a.crl X509v3 Authority Key Identifier: keyid:3A:C3:89:20:04:27:04:1A:BD:A1:42:37:C3:1D:D3:7A:76:DE:DA:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/91e8565b-cd85-4439-818b-0c669c1e609a.cer sbgp-ipAddrBlock: critical IPv6: 2620:59:2000::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6a:a4:95:dc:7c:59:eb:7d:f9:8c:50:5b:d7:32:34:2c:e8:2e: 16:59:b9:01:4d:c2:57:6e:ae:d6:aa:8c:cf:61:bd:64:bb:71: 12:64:de:bd:ba:06:9e:f7:8f:ec:80:32:36:0e:87:83:71:55: 7e:32:05:1b:00:13:39:7a:7f:a1:a9:82:ec:6a:b4:29:d0:cc: 76:9f:7f:f6:fc:eb:f0:69:b6:b4:7e:50:61:d7:fb:51:e6:89: 53:b4:23:c3:31:c0:05:82:ad:56:ba:6e:83:e7:6c:bb:bf:52: ae:41:e5:28:6d:4b:9a:8f:d1:9e:7e:03:e9:eb:7e:4f:ed:d9: 6f:3f:f3:f9:85:75:b5:fe:46:ee:01:e9:39:e7:0f:d3:44:b0: e9:7c:bf:6a:ca:e0:3d:d0:25:b1:6b:2f:8c:c2:97:75:42:b9: 1f:47:e2:f7:9b:d2:0e:d4:d3:90:43:1c:44:36:07:79:77:d4: c3:04:88:b4:fd:9d:5e:68:55:db:61:03:18:97:c8:69:67:e8: 4c:a4:b2:12:a9:58:1e:15:76:87:dc:78:f4:cb:e0:e7:b9:8f: b4:8a:52:d6:0c:4b:9d:97:17:95:e2:89:24:b0:31:2e:30:71: 5e:92:cd:01:19:40:05:bd:43:75:9c:a9:88:f5:36:1e:00:4d: cd:3b:33:b8 -----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgIUAQ0Mn0MoWEfdyg6c1ifhoJRRZIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkOTFlODU2NWItY2Q4NS00NDM5LTgxOGItMGM2NjljMWU2 MDlhMB4XDTI0MTExMzE0MDAzOVoXDTI1MDIxMTE0MDAzOVowLzEtMCsGA1UEAxMk MjI3NmZkOGMtYWZkYy00YjhhLWIzMDUtZWMzYTFiOTU1YzlhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyxamKT0Jx12t/+oOrg8e720WQd1gXHMUDDr mKAyKY9o1Gb+lsHdixHuakUkMXsbphjJ5DLclfgbmZWVojunlosRVCrLtgQu7os8 bL9baSflUEUEwUPH+lLfnvE/E1nxPUQUXj0sCE3DLAkaxwm8KkgNVjnz6FRWFh5y InOJDfu8SNS+P3e3oL1MxwxizOMgf02j3759ZBEyQLZ91DzW6JQf5MpYCOseM6wo ASHBtO02VObV9HbCvT+yja5T3ygQukGH4Uz8OAumScffw1gR/Y4cIj0v607FOvi4 O3YZaWVhsQkwH9fBJstrZ0Y1S46yQxErtJNyqEvYLxXXWg9+JwIDAQABo4IDWDCC A1QwHQYDVR0OBBYEFF54q1JQiv/vbnzg/njP8D7V05yrMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIzMy05YTg4LTViMjJkMmE4MzM3ZC85MWU4 NTY1Yi1jZDg1LTQ0MzktODE4Yi0wYzY2OWMxZTYwOWEvY2Q0ZWRmNjMtYjQ5Mi0z YzFhLTllOTEtZGYxMmY0NGY0YmM3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy80YWI3YWU0ZC1i ZDdiLTRiMzMtOWE4OC01YjIyZDJhODMzN2QvOTFlODU2NWItY2Q4NS00NDM5LTgx OGItMGM2NjljMWU2MDlhLzkxZTg1NjViLWNkODUtNDQzOS04MThiLTBjNjY5YzFl NjA5YS5jcmwwHwYDVR0jBBgwFoAUOsOJIAQnBBq9oUI3wx3Tenbe2vYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIz My05YTg4LTViMjJkMmE4MzM3ZC85MWU4NTY1Yi1jZDg1LTQ0MzktODE4Yi0wYzY2 OWMxZTYwOWEuY2VyMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJiAAWSAA MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBAGqkldx8Wet9+YxQW9cyNCzoLhZZuQFNwldurtaqjM9hvWS7cRJk 3r26Bp73j+yAMjYOh4NxVX4yBRsAEzl6f6GpguxqtCnQzHaff/b86/BptrR+UGHX +1HmiVO0I8MxwAWCrVa6boPnbLu/Uq5B5ShtS5qP0Z5+A+nrfk/t2W8/8/mFdbX+ Ru4B6TnnD9NEsOl8v2rK4D3QJbFrL4zCl3VCuR9H4veb0g7U05BDHEQ2B3l31MME iLT9nV5oVdthAxiXyGln6EykshKpWB4VdofcePTL4Oe5j7SKUtYMS52XF5XiiSSw MS4wcV6SzQEZQAW9Q3WcqYj1Nh4ATc07M7g= -----END CERTIFICATE-----Generated at Thu Nov 21 17:29:50 2024 by rpki-client on console-fra.rpki-client.org