$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/da0440a7-5f70-3959-8f0b-85d69fe69731.roa File: da0440a7-5f70-3959-8f0b-85d69fe69731.roa (raw, json) Hash identifier: rGdyBXN56TS/F2KyDEJvL/BeQtrPqzKcM5WXWldOI70= Subject key identifier: 25:61:61:65:5E:42:C9:C7:74:49:25:29:8E:76:C5:E4:09:5E:F6:33 Certificate issuer: /CN=35e99eeb-90e3-4a3e-b866-39294b437d3d Certificate serial: 010D0C9F432858472DCB2E58E90FCB813C65D700 Authority key identifier: E5:5B:A0:02:57:F9:60:BC:20:5B:AD:CA:B3:EE:D0:EA:27:2A:99:07 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/da0440a7-5f70-3959-8f0b-85d69fe69731.roa Signing time: Wed 11 Sep 2024 13:00:42 +0000 ROA not before: Wed 11 Sep 2024 13:00:42 +0000 ROA not after: Tue 10 Dec 2024 14:00:42 +0000 asID: 7018 IP address blocks: 45.58.208.0/24 maxlen: 24 45.58.210.0/23 maxlen: 23 45.58.212.0/22 maxlen: 22 45.58.240.0/22 maxlen: 22 45.58.245.0/24 maxlen: 24 45.58.250.0/24 maxlen: 24 45.58.252.0/22 maxlen: 22 69.91.139.0/24 maxlen: 24 69.91.140.0/24 maxlen: 24 69.91.143.0/24 maxlen: 24 69.91.144.0/24 maxlen: 24 69.91.147.0/24 maxlen: 24 69.91.148.0/24 maxlen: 24 69.91.150.0/24 maxlen: 24 69.91.151.0/24 maxlen: 24 69.91.152.0/24 maxlen: 24 69.91.154.0/24 maxlen: 24 69.91.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/35e99eeb-90e3-4a3e-b866-39294b437d3d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/35e99eeb-90e3-4a3e-b866-39294b437d3d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:2d:cb:2e:58:e9:0f:cb:81:3c:65:d7:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35e99eeb-90e3-4a3e-b866-39294b437d3d Validity Not Before: Sep 11 13:00:42 2024 GMT Not After : Dec 10 14:00:42 2024 GMT Subject: CN=e89f072f-f7dd-4714-a137-41316961cac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:65:2a:ea:66:2b:39:43:5a:47:1b:2e:c8:4c: ed:45:7f:54:c1:2e:3c:dc:e4:1c:65:68:27:92:6b: 6c:af:69:75:ed:da:ac:2f:17:66:03:ca:7f:20:1e: bf:92:d2:4f:44:11:10:da:ea:72:20:dd:7f:be:3e: 9f:fa:02:0c:68:3e:51:29:2e:e5:a8:e6:e7:5b:1c: 41:c0:b7:46:df:d1:92:9f:1d:3e:93:d9:02:00:46: a7:81:33:71:de:40:ef:97:06:df:be:41:ab:30:96: 68:88:62:43:d6:cd:a3:8a:be:4b:d4:5c:4f:93:97: e3:1e:27:64:07:9a:5a:9e:ac:d9:11:93:a0:8b:ec: 54:41:06:04:99:f6:58:ae:4d:1e:80:4c:cb:b0:d4: 84:f4:b0:16:b5:44:20:53:6e:ae:5f:cd:6c:45:ef: bb:b5:ce:50:b4:52:59:32:01:1d:0f:e6:18:7e:01: dc:92:5a:e8:57:5d:80:39:99:bf:92:99:a6:5d:d5: d9:a0:49:29:46:05:7c:4f:e3:bc:7c:bd:a6:36:d5: 80:92:3e:bd:62:d1:7f:d9:6c:62:13:ea:b0:bd:8c: 83:06:d8:e4:b4:fc:8c:11:45:67:77:19:65:ef:49: 74:be:87:14:cb:51:86:9d:98:69:e2:b4:ee:ad:69: 5e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:61:61:65:5E:42:C9:C7:74:49:25:29:8E:76:C5:E4:09:5E:F6:33 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/da0440a7-5f70-3959-8f0b-85d69fe69731.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d/35e99eeb-90e3-4a3e-b866-39294b437d3d.crl X509v3 Authority Key Identifier: keyid:E5:5B:A0:02:57:F9:60:BC:20:5B:AD:CA:B3:EE:D0:EA:27:2A:99:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/35e99eeb-90e3-4a3e-b866-39294b437d3d.cer sbgp-ipAddrBlock: critical IPv4: 45.58.208.0/24 45.58.210.0-45.58.215.255 45.58.240.0/22 45.58.245.0/24 45.58.250.0/24 45.58.252.0/22 69.91.139.0-69.91.140.255 69.91.143.0-69.91.144.255 69.91.147.0-69.91.148.255 69.91.150.0-69.91.152.255 69.91.154.0/24 69.91.176.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 1a:b3:97:1f:d6:05:a1:a3:1c:eb:53:e3:4a:ff:88:65:4d:62: 61:4b:e5:90:2b:6a:76:a3:79:0a:14:84:88:c3:05:06:ab:23: e9:1b:0b:2e:c2:b1:42:1d:6d:c7:a5:af:bf:02:30:ab:f6:9b: 9b:db:f8:01:4c:c8:ac:b8:22:1b:c9:32:3a:34:b6:df:f0:32: be:9f:66:9f:13:af:c2:84:2c:1f:a7:5d:24:36:fd:92:79:75: df:54:63:fd:4b:d6:a7:23:c6:48:4b:a4:6d:ea:db:43:dd:eb: 3c:15:f1:e2:bc:34:4c:28:0c:e9:70:ca:87:39:0a:a8:ba:ca: fb:0a:f9:ad:de:12:04:6f:e8:0b:3e:a2:1a:bd:69:04:8d:e6: 61:02:1d:78:9d:bb:a5:1b:99:49:12:13:76:a2:e2:9c:b3:29: 7b:56:b0:95:39:94:56:9d:40:94:92:a6:2f:f7:07:41:40:08: 0d:65:2e:7d:c0:9a:80:37:81:f1:25:e9:2d:64:4a:52:1d:bd: d2:cf:94:33:7d:7d:22:32:f3:41:3a:38:dd:84:2f:b3:bc:be: 34:b2:28:c2:0b:74:b5:4c:49:0b:bb:a1:fd:d7:8b:4c:ea:22: 94:31:21:ab:4c:61:fb:f7:94:7f:19:2e:2d:87:f4:e3:f3:e0: ce:e6:32:f1 -----BEGIN CERTIFICATE----- MIIGrjCCBZagAwIBAgIUAQ0Mn0MoWEctyy5Y6Q/LgTxl1wAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMzVlOTllZWItOTBlMy00YTNlLWI4NjYtMzkyOTRiNDM3 ZDNkMB4XDTI0MDkxMTEzMDA0MloXDTI0MTIxMDE0MDA0MlowLzEtMCsGA1UEAxMk ZTg5ZjA3MmYtZjdkZC00NzE0LWExMzctNDEzMTY5NjFjYWM1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgWUq6mYrOUNaRxsuyEztRX9UwS483OQcZWgn kmtsr2l17dqsLxdmA8p/IB6/ktJPRBEQ2upyIN1/vj6f+gIMaD5RKS7lqObnWxxB wLdG39GSnx0+k9kCAEangTNx3kDvlwbfvkGrMJZoiGJD1s2jir5L1FxPk5fjHidk B5panqzZEZOgi+xUQQYEmfZYrk0egEzLsNSE9LAWtUQgU26uX81sRe+7tc5QtFJZ MgEdD+YYfgHcklroV12AOZm/kpmmXdXZoEkpRgV8T+O8fL2mNtWAkj69YtF/2Wxi E+qwvYyDBtjktPyMEUVndxll70l0vocUy1GGnZhp4rTurWleKQIDAQABo4IDwDCC A7wwHQYDVR0OBBYEFCVhYWVeQsnHdEklKY52xeQJXvYzMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy8zNWU5 OWVlYi05MGUzLTRhM2UtYjg2Ni0zOTI5NGI0MzdkM2QvZGEwNDQwYTctNWY3MC0z OTU5LThmMGItODVkNjlmZTY5NzMxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvMzVlOTllZWItOTBlMy00YTNlLWI4 NjYtMzkyOTRiNDM3ZDNkLzM1ZTk5ZWViLTkwZTMtNGEzZS1iODY2LTM5Mjk0YjQz N2QzZC5jcmwwHwYDVR0jBBgwFoAU5VugAlf5YLwgW63Ks+7Q6icqmQcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy8zNWU5OWVlYi05MGUzLTRhM2UtYjg2Ni0zOTI5 NGI0MzdkM2QuY2VyMIGJBggrBgEFBQcBBwEB/wR6MHgwdgQCAAEwcAMEAC060DAM AwQBLTrSAwQDLTrQAwQCLTrwAwQALTr1AwQALTr6AwQCLTr8MAwDBABFW4sDBABF W4wwDAMEAEVbjwMEAEVbkDAMAwQARVuTAwQARVuUMAwDBAFFW5YDBABFW5gDBABF W5oDBABFW7AwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIB FixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDAN BgkqhkiG9w0BAQsFAAOCAQEAGrOXH9YFoaMc61PjSv+IZU1iYUvlkCtqdqN5ChSE iMMFBqsj6RsLLsKxQh1tx6WvvwIwq/abm9v4AUzIrLgiG8kyOjS23/Ayvp9mnxOv woQsH6ddJDb9knl131Rj/UvWpyPGSEukberbQ93rPBXx4rw0TCgM6XDKhzkKqLrK +wr5rd4SBG/oCz6iGr1pBI3mYQIdeJ27pRuZSRITdqLinLMpe1awlTmUVp1AlJKm L/cHQUAIDWUufcCagDeB8SXpLWRKUh290s+UM319IjLzQTo43YQvs7y+NLIowgt0 tUxJC7uh/deLTOoilDEhq0xh+/eUfxkuLYf04/PgzuYy8Q== -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:51 2024 by rpki-client on console-fra.rpki-client.org