$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa File: 1d5b64a0-14ba-398c-be22-b579612157ce.roa (raw, json) Hash identifier: uimwBMidOMbEHNVMGaniml9RCHtkz2dNCvWPOER1f7Q= Subject key identifier: 15:B5:D9:4D:67:86:6F:95:46:24:BD:97:07:0A:22:57:D3:56:16:4C Certificate issuer: /CN=249140ca-277e-4871-a100-451d066d1c5b Certificate serial: 010D0C9F43285845BD8CDD2A20113B00A5950980 Authority key identifier: 70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa Signing time: Thu 02 May 2024 15:17:41 +0000 ROA not before: Thu 02 May 2024 15:17:41 +0000 ROA not after: Wed 31 Jul 2024 15:17:41 +0000 asID: 21949 IP address blocks: 199.167.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:bd:8c:dd:2a:20:11:3b:00:a5:95:09:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=249140ca-277e-4871-a100-451d066d1c5b Validity Not Before: May 2 15:17:41 2024 GMT Not After : Jul 31 15:17:41 2024 GMT Subject: CN=6a143017-f354-4b60-be6a-29c5f2606be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:7f:19:0e:05:0d:7f:39:25:fa:81:0e:b1:ef: 00:24:a0:58:f1:d3:74:55:c5:1a:af:36:45:b2:f9: a9:9a:d9:1a:f1:a6:c8:f6:f7:ad:d3:e7:51:2d:14: 2f:d8:10:4f:85:74:d2:3b:83:7e:f5:1f:e6:a9:14: 1e:d7:1a:a6:3b:08:1b:ac:6b:ff:6a:51:13:2d:1a: 63:22:22:e0:63:5a:6f:e8:db:98:7e:31:ab:8e:71: b8:06:fd:5f:27:bc:e5:41:d1:89:0f:79:c5:cd:fc: af:79:c6:f1:ac:a6:f1:34:0f:e1:a8:51:37:71:8b: 96:02:40:5f:2d:fa:c6:09:b6:39:cc:04:91:64:37: 79:c6:22:7b:77:f9:c6:25:61:6e:e6:1b:e8:8c:53: f6:29:fd:a9:67:c1:ef:c2:d1:8f:09:fa:a7:9e:d4: 91:30:58:32:f6:40:69:5b:24:36:d7:35:f9:9b:7f: 5b:8d:7a:fb:76:4e:d8:60:6c:d5:4c:b1:08:5d:53: bc:4d:2e:d1:ce:86:a9:71:0c:92:6e:fc:f6:26:12: 2e:95:05:c5:7f:56:4b:24:89:c3:28:2f:85:91:de: 7c:11:fb:35:e4:45:e2:c5:a7:31:95:25:77:43:a8: 4b:38:11:ac:ca:3e:da:17:15:3e:c6:b1:1e:33:b6: 53:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B5:D9:4D:67:86:6F:95:46:24:BD:97:07:0A:22:57:D3:56:16:4C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/1d5b64a0-14ba-398c-be22-b579612157ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b/249140ca-277e-4871-a100-451d066d1c5b.crl X509v3 Authority Key Identifier: keyid:70:24:EC:DD:BE:F2:FA:EB:DA:F8:B5:4C:BA:02:C0:43:81:3D:48:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/249140ca-277e-4871-a100-451d066d1c5b.cer sbgp-ipAddrBlock: critical IPv4: 199.167.152.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 33:3f:33:b2:5d:26:56:73:7e:17:bd:47:9d:18:76:88:6f:a7: 7d:de:3a:ef:c0:40:e6:6f:26:55:34:91:05:94:5f:47:0a:8e: e9:5e:fd:86:d0:ac:9d:68:6f:d1:c8:2c:b7:9f:28:43:1e:d7: 0f:51:e5:fd:00:9d:77:b0:5b:71:e0:45:a9:ab:d0:f4:28:6e: 82:75:d6:58:34:9a:6c:95:f1:e1:e2:28:9a:cf:48:79:0f:f0: d5:78:ac:95:05:7c:96:d3:e7:52:9d:ae:52:27:0e:ea:17:a8: 5c:a9:94:d0:10:fd:fd:a0:68:85:e9:bd:95:6b:0a:71:d1:9a: 4d:77:a5:31:a6:9b:00:d7:9c:ed:60:3e:cc:ee:e9:d1:b6:3c: ba:1c:39:4b:22:67:17:3b:61:b2:aa:ca:33:ab:f2:b1:aa:09: 22:16:76:06:2b:e5:84:ad:5e:05:c0:88:5e:7a:ac:ac:32:f7: cd:b9:f4:ee:7e:f5:b3:b7:26:d9:31:d7:31:89:86:71:6f:c0: 29:37:37:ba:1f:c9:66:83:25:19:94:a4:97:e8:6e:4c:71:04: 34:1a:11:c4:16:9b:e1:76:bb:39:96:80:f9:7d:79:7a:56:f4: dc:a2:cb:04:43:6e:86:84:04:5b:58:ce:7d:64:56:c4:38:ea: cf:f8:6b:59 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEW9jN0qIBE7AKWVCYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjQ5MTQwY2EtMjc3ZS00ODcxLWExMDAtNDUxZDA2NmQx YzViMB4XDTI0MDUwMjE1MTc0MVoXDTI0MDczMTE1MTc0MVowLzEtMCsGA1UEAxMk NmExNDMwMTctZjM1NC00YjYwLWJlNmEtMjljNWYyNjA2YmUwMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiX8ZDgUNfzkl+oEOse8AJKBY8dN0VcUarzZF svmpmtka8abI9vet0+dRLRQv2BBPhXTSO4N+9R/mqRQe1xqmOwgbrGv/alETLRpj IiLgY1pv6NuYfjGrjnG4Bv1fJ7zlQdGJD3nFzfyvecbxrKbxNA/hqFE3cYuWAkBf LfrGCbY5zASRZDd5xiJ7d/nGJWFu5hvojFP2Kf2pZ8HvwtGPCfqnntSRMFgy9kBp WyQ21zX5m39bjXr7dk7YYGzVTLEIXVO8TS7RzoapcQySbvz2JhIulQXFf1ZLJInD KC+Fkd58Efs15EXixacxlSV3Q6hLOBGsyj7aFxU+xrEeM7ZTUwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFBW12U1nhm+VRiS9lwcKIlfTVhZMMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy8yNDkx NDBjYS0yNzdlLTQ4NzEtYTEwMC00NTFkMDY2ZDFjNWIvMWQ1YjY0YTAtMTRiYS0z OThjLWJlMjItYjU3OTYxMjE1N2NlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvMjQ5MTQwY2EtMjc3ZS00ODcxLWEx MDAtNDUxZDA2NmQxYzViLzI0OTE0MGNhLTI3N2UtNDg3MS1hMTAwLTQ1MWQwNjZk MWM1Yi5jcmwwHwYDVR0jBBgwFoAUcCTs3b7y+uva+LVMugLAQ4E9SMkwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy8yNDkxNDBjYS0yNzdlLTQ4NzEtYTEwMC00NTFk MDY2ZDFjNWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDx6eYMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBADM/M7JdJlZzfhe9R50Ydohvp33eOu/AQOZvJlU0kQWUX0cKjule/YbQ rJ1ob9HILLefKEMe1w9R5f0AnXewW3HgRamr0PQoboJ11lg0mmyV8eHiKJrPSHkP 8NV4rJUFfJbT51KdrlInDuoXqFyplNAQ/f2gaIXpvZVrCnHRmk13pTGmmwDXnO1g Pszu6dG2PLocOUsiZxc7YbKqyjOr8rGqCSIWdgYr5YStXgXAiF56rKwy98259O5+ 9bO3Jtkx1zGJhnFvwCk3N7ofyWaDJRmUpJfobkxxBDQaEcQWm+F2uzmWgPl9eXpW 9NyiywRDboaEBFtYzn1kVsQ46s/4a1k= -----END CERTIFICATE-----Generated at Sat May 18 01:54:24 2024 by rpki-client on console-ams.rpki-client.org