$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971/c8ae2a3a-a784-320c-a476-6dac90106aa8.roa File: c8ae2a3a-a784-320c-a476-6dac90106aa8.roa (raw, json) Hash identifier: yDkWnJQVbDI+JeYHccNi1TbBYwFfob7FBq3mxn4B2zg= Subject key identifier: 55:C4:DE:BF:C7:D6:0B:44:83:A8:98:34:89:44:60:D2:67:6B:5A:C8 Certificate issuer: /CN=0d3a5699-3eb8-4ecb-80a5-e8761a19b971 Certificate serial: 010D0C9F43285847792BB336BB9070BFA6BC5268 Authority key identifier: 57:1A:A5:27:EC:17:91:77:8C:71:79:03:73:62:71:C5:53:17:64:66 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971/c8ae2a3a-a784-320c-a476-6dac90106aa8.roa Signing time: Tue 08 Oct 2024 13:00:40 +0000 ROA not before: Tue 08 Oct 2024 13:00:40 +0000 ROA not after: Mon 06 Jan 2025 14:00:40 +0000 asID: 18594 IP address blocks: 199.254.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971/0d3a5699-3eb8-4ecb-80a5-e8761a19b971.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971/0d3a5699-3eb8-4ecb-80a5-e8761a19b971.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:79:2b:b3:36:bb:90:70:bf:a6:bc:52:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d3a5699-3eb8-4ecb-80a5-e8761a19b971 Validity Not Before: Oct 8 13:00:40 2024 GMT Not After : Jan 6 14:00:40 2025 GMT Subject: CN=2adc42fb-24e9-4cc7-b38d-b9644918b4cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:09:ae:88:c5:79:8c:78:78:51:ed:14:10:c4: 72:7e:5f:fc:45:fc:82:29:e3:4b:c8:8a:0d:bd:66: e5:76:53:b5:a1:be:58:49:fa:b0:c5:5c:b5:87:8a: 9b:6e:5d:3f:70:8f:57:d4:0d:42:3f:dc:82:c7:65: 35:04:6b:4d:1c:6d:43:c4:af:eb:33:63:0e:bc:e8: a3:ab:9a:9c:cc:9b:7c:9b:c1:b5:54:f6:44:c6:61: ef:0a:8c:6d:c8:a6:7a:ec:19:58:54:6a:f8:83:23: f5:3c:ea:42:a1:a9:b9:38:08:a9:ce:05:34:f4:5f: 9b:65:b1:9b:51:25:16:6f:05:0b:74:54:29:59:73: 57:c9:11:8d:e9:16:9b:41:fd:d9:ef:07:84:85:41: 6c:fe:cf:85:9d:a3:c4:ab:d7:64:b6:07:f8:db:5c: a9:1f:c4:09:d6:46:2c:9b:08:dc:be:e5:c9:6a:1d: d6:af:67:5b:ca:36:b6:ef:ea:6b:31:f8:f0:92:2d: a5:a2:3b:e3:1e:fb:ec:2e:02:4c:5a:2c:b3:65:53: 2d:67:8b:fe:27:91:bb:9a:52:16:8a:b6:44:a7:14: ad:e7:6c:03:80:d4:3a:77:68:7b:fc:75:09:e6:fd: 2a:3a:a2:39:02:fc:d6:a4:d8:d1:2f:9e:25:9e:31: 57:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C4:DE:BF:C7:D6:0B:44:83:A8:98:34:89:44:60:D2:67:6B:5A:C8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971/c8ae2a3a-a784-320c-a476-6dac90106aa8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971/0d3a5699-3eb8-4ecb-80a5-e8761a19b971.crl X509v3 Authority Key Identifier: keyid:57:1A:A5:27:EC:17:91:77:8C:71:79:03:73:62:71:C5:53:17:64:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0d3a5699-3eb8-4ecb-80a5-e8761a19b971.cer sbgp-ipAddrBlock: critical IPv4: 199.254.202.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 00:a0:c1:35:af:cf:a5:5d:b3:77:25:0b:e5:2b:0a:a8:58:0b: 9f:4b:99:fc:a1:7c:21:df:5e:23:2b:26:3e:73:32:f9:42:eb: 19:ba:82:fd:28:26:25:f0:d8:71:41:74:e4:dc:3f:74:46:be: 53:4a:8c:6f:98:e0:da:f6:32:a8:3e:f0:79:4d:65:b5:ef:87: 59:49:ed:6d:31:5f:f0:eb:2c:94:09:0e:d7:b1:b4:e5:0e:ae: 9c:9a:be:32:b7:91:09:2a:43:19:d7:03:b3:25:db:8c:66:e9: ee:ab:f8:27:29:5c:02:7b:fc:c5:06:19:f7:b4:c3:92:a4:9f: b2:ef:69:a7:2a:0e:98:1d:80:46:d1:77:c5:ed:18:de:a2:22: af:07:98:63:e9:d0:62:b3:41:d9:f2:88:00:4d:96:02:7a:9e: 12:3b:ca:88:26:1a:9c:51:1f:8d:68:f3:fb:b7:46:df:61:c3: 7f:03:1c:6a:21:e4:ea:e1:ea:3b:72:a7:9e:34:23:76:32:34: 83:ec:67:3a:92:bb:91:90:ca:56:e0:3f:ae:8c:82:f2:3a:2e: 6a:ea:45:53:16:6e:d4:08:33:78:3e:79:93:15:d3:64:b3:62: 3b:3a:fe:3f:6a:a9:ed:52:1a:c2:4e:b4:1b:5a:a5:2f:a7:37: c1:cf:13:02 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEd5K7M2u5Bwv6a8UmgwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMGQzYTU2OTktM2ViOC00ZWNiLTgwYTUtZTg3NjFhMTli OTcxMB4XDTI0MTAwODEzMDA0MFoXDTI1MDEwNjE0MDA0MFowLzEtMCsGA1UEAxMk MmFkYzQyZmItMjRlOS00Y2M3LWIzOGQtYjk2NDQ5MThiNGNiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhAmuiMV5jHh4Ue0UEMRyfl/8RfyCKeNLyIoN vWbldlO1ob5YSfqwxVy1h4qbbl0/cI9X1A1CP9yCx2U1BGtNHG1DxK/rM2MOvOij q5qczJt8m8G1VPZExmHvCoxtyKZ67BlYVGr4gyP1POpCoam5OAipzgU09F+bZbGb USUWbwULdFQpWXNXyRGN6RabQf3Z7weEhUFs/s+FnaPEq9dktgf421ypH8QJ1kYs mwjcvuXJah3Wr2dbyja27+prMfjwki2lojvjHvvsLgJMWiyzZVMtZ4v+J5G7mlIW irZEpxSt52wDgNQ6d2h7/HUJ5v0qOqI5AvzWpNjRL54lnjFXSwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFFXE3r/H1gtEg6iYNIlEYNJna1rIMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy8wZDNh NTY5OS0zZWI4LTRlY2ItODBhNS1lODc2MWExOWI5NzEvYzhhZTJhM2EtYTc4NC0z MjBjLWE0NzYtNmRhYzkwMTA2YWE4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvMGQzYTU2OTktM2ViOC00ZWNiLTgw YTUtZTg3NjFhMTliOTcxLzBkM2E1Njk5LTNlYjgtNGVjYi04MGE1LWU4NzYxYTE5 Yjk3MS5jcmwwHwYDVR0jBBgwFoAUVxqlJ+wXkXeMcXkDc2JxxVMXZGYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy8wZDNhNTY5OS0zZWI4LTRlY2ItODBhNS1lODc2 MWExOWI5NzEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAx/7KMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAACgwTWvz6Vds3clC+UrCqhYC59LmfyhfCHfXiMrJj5zMvlC6xm6gv0o JiXw2HFBdOTcP3RGvlNKjG+Y4Nr2Mqg+8HlNZbXvh1lJ7W0xX/DrLJQJDtextOUO rpyavjK3kQkqQxnXA7Ml24xm6e6r+CcpXAJ7/MUGGfe0w5Kkn7LvaacqDpgdgEbR d8XtGN6iIq8HmGPp0GKzQdnyiABNlgJ6nhI7yogmGpxRH41o8/u3Rt9hw38DHGoh 5Orh6jtyp540I3YyNIPsZzqSu5GQylbgP66MgvI6LmrqRVMWbtQIM3g+eZMV02Sz Yjs6/j9qqe1SGsJOtBtapS+nN8HPEwI= -----END CERTIFICATE-----Generated at Fri Nov 22 04:35:20 2024 by rpki-client on console-ams.rpki-client.org