$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa File: d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa (raw, json) Hash identifier: MGcZDrTtonkq9beZ5Nw06wMJ89gaB1IywALaGuxfsuw= Subject key identifier: 73:6C:1F:8C:76:4B:0E:14:1C:F5:A3:2B:0E:99:0F:87:52:91:9A:42 Certificate issuer: /CN=bf7c43e7-0571-4d08-b71a-8b930dda9aad Certificate serial: 010D0C9F432858477BF66D0A0326C93808828240 Authority key identifier: 79:9A:9F:EA:8D:05:18:92:60:86:70:C3:43:10:E3:27:21:E0:14:A8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa Signing time: Wed 09 Oct 2024 13:00:42 +0000 ROA not before: Wed 09 Oct 2024 13:00:42 +0000 ROA not after: Tue 07 Jan 2025 14:00:42 +0000 asID: 35908 IP address blocks: 209.11.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:7b:f6:6d:0a:03:26:c9:38:08:82:82:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf7c43e7-0571-4d08-b71a-8b930dda9aad Validity Not Before: Oct 9 13:00:42 2024 GMT Not After : Jan 7 14:00:42 2025 GMT Subject: CN=74a914de-8cdd-4233-8881-ded25779b3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6d:d3:79:2d:c6:34:91:c0:47:64:ba:63:1f: 53:20:a2:bf:c9:83:ca:f4:1d:0e:0b:7a:72:8e:ed: 07:d3:50:88:3e:63:e3:ee:82:21:21:85:13:b8:f6: 4e:8b:91:97:a9:97:0c:ce:46:7c:04:92:01:5f:92: 5a:5a:0e:df:3c:5d:1c:75:99:bf:95:dd:29:b3:81: 9e:93:96:fc:ee:80:a3:41:af:45:4d:31:ff:ca:b1: 75:21:49:f6:d8:f9:cb:4a:d6:dd:49:82:c3:37:0a: 91:75:fe:cd:02:ff:aa:07:45:b4:0c:c6:f1:69:0b: fc:24:c6:33:98:30:52:a4:43:f8:d9:2e:30:d3:f7: 08:ef:91:00:e4:af:a0:97:28:74:b9:c3:5d:54:6a: 9c:c4:c6:56:d9:b7:d0:4d:67:3d:61:19:47:a8:e3: aa:47:44:70:e6:42:71:1e:66:8e:45:ae:d5:a9:57: 13:75:a6:52:cc:da:d8:72:3a:52:1e:fd:e1:87:d2: b7:65:d4:73:9f:f8:a1:63:80:31:04:56:6d:46:d0: 10:34:e9:6c:a0:5b:ed:71:17:89:8a:fd:ea:bd:7b: b7:73:02:51:a8:5a:5e:de:51:8e:31:d9:f1:d4:a6: d7:08:2b:9b:53:30:f1:72:21:5e:95:e2:8c:d2:2a: f9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6C:1F:8C:76:4B:0E:14:1C:F5:A3:2B:0E:99:0F:87:52:91:9A:42 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/d6b50da1-f00c-38e1-92c4-b97a4a80f043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad/bf7c43e7-0571-4d08-b71a-8b930dda9aad.crl X509v3 Authority Key Identifier: keyid:79:9A:9F:EA:8D:05:18:92:60:86:70:C3:43:10:E3:27:21:E0:14:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/bf7c43e7-0571-4d08-b71a-8b930dda9aad.cer sbgp-ipAddrBlock: critical IPv4: 209.11.240.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 90:48:ef:d0:b1:24:f9:1d:72:87:2d:de:0b:85:5b:f0:c2:44: e6:ea:cc:19:a6:ef:1b:73:26:b6:cc:57:ce:6d:71:1f:5e:f3: 3a:ee:c3:be:a1:68:15:dc:ab:be:06:9f:ec:76:76:bb:a5:ef: cf:52:99:c8:df:1f:60:e7:58:69:f8:a8:87:ef:cd:bd:27:fa: c5:03:b4:be:81:3d:41:1d:17:76:eb:cb:cb:c1:ee:12:82:b9: cb:87:9e:62:f9:51:6f:02:18:a4:d6:4e:e2:92:5d:b9:e6:d2: 73:7f:0b:48:34:48:dc:4e:bb:2d:62:f1:99:95:5c:74:6d:49: 9a:1d:b7:e8:e9:a7:7f:e6:35:8c:47:aa:05:f6:60:50:13:97: 02:52:63:7b:b5:30:16:9d:69:bb:d8:44:71:a7:23:03:c4:4d: 2f:ba:a8:cc:a7:78:3a:76:ee:e1:5b:43:80:24:ee:94:52:76: 30:19:2d:2d:fa:8f:14:2a:b5:46:99:5a:18:ab:61:94:a8:6c: 54:36:14:0a:4c:3b:f4:a2:12:c0:21:16:70:c6:99:f7:85:9e: 80:fe:a4:e8:1d:6a:0e:05:b5:47:ef:d2:42:a4:31:8c:05:d4: 68:0f:0f:e9:8e:66:ec:93:8b:b5:5d:73:bb:69:19:08:f3:8f: c7:3f:93:ea -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEd79m0KAybJOAiCgkAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmY3YzQzZTctMDU3MS00ZDA4LWI3MWEtOGI5MzBkZGE5 YWFkMB4XDTI0MTAwOTEzMDA0MloXDTI1MDEwNzE0MDA0MlowLzEtMCsGA1UEAxMk NzRhOTE0ZGUtOGNkZC00MjMzLTg4ODEtZGVkMjU3NzliM2I5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4W3TeS3GNJHAR2S6Yx9TIKK/yYPK9B0OC3py ju0H01CIPmPj7oIhIYUTuPZOi5GXqZcMzkZ8BJIBX5JaWg7fPF0cdZm/ld0ps4Ge k5b87oCjQa9FTTH/yrF1IUn22PnLStbdSYLDNwqRdf7NAv+qB0W0DMbxaQv8JMYz mDBSpEP42S4w0/cI75EA5K+glyh0ucNdVGqcxMZW2bfQTWc9YRlHqOOqR0Rw5kJx HmaORa7VqVcTdaZSzNrYcjpSHv3hh9K3ZdRzn/ihY4AxBFZtRtAQNOlsoFvtcReJ iv3qvXu3cwJRqFpe3lGOMdnx1KbXCCubUzDxciFeleKM0ir5VwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHNsH4x2Sw4UHPWjKw6ZD4dSkZpCMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iZjdj NDNlNy0wNTcxLTRkMDgtYjcxYS04YjkzMGRkYTlhYWQvZDZiNTBkYTEtZjAwYy0z OGUxLTkyYzQtYjk3YTRhODBmMDQzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy80YWI3YWU0ZC1i ZDdiLTRiMzMtOWE4OC01YjIyZDJhODMzN2QvYmY3YzQzZTctMDU3MS00ZDA4LWI3 MWEtOGI5MzBkZGE5YWFkL2JmN2M0M2U3LTA1NzEtNGQwOC1iNzFhLThiOTMwZGRh OWFhZC5jcmwwHwYDVR0jBBgwFoAUeZqf6o0FGJJghnDDQxDjJyHgFKgwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIz My05YTg4LTViMjJkMmE4MzM3ZC9iZjdjNDNlNy0wNTcxLTRkMDgtYjcxYS04Yjkz MGRkYTlhYWQuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0QvwMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJBI79CxJPkdcoct3guFW/DCRObqzBmm7xtzJrbMV85tcR9e8zruw76h aBXcq74Gn+x2drul789SmcjfH2DnWGn4qIfvzb0n+sUDtL6BPUEdF3bry8vB7hKC ucuHnmL5UW8CGKTWTuKSXbnm0nN/C0g0SNxOuy1i8ZmVXHRtSZodt+jpp3/mNYxH qgX2YFATlwJSY3u1MBadabvYRHGnIwPETS+6qMyneDp27uFbQ4Ak7pRSdjAZLS36 jxQqtUaZWhirYZSobFQ2FApMO/SiEsAhFnDGmfeFnoD+pOgdag4FtUfv0kKkMYwF 1GgPD+mOZuyTi7Vdc7tpGQjzj8c/k+o= -----END CERTIFICATE-----Generated at Thu Nov 21 21:05:47 2024 by rpki-client on console-fra.rpki-client.org