$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/2a17de97-ac95-3741-9ebe-22d1315750a8.roa File: 2a17de97-ac95-3741-9ebe-22d1315750a8.roa (raw, json) Hash identifier: 3sWLnFPx9t4zB8pVeOtQCr1SVbwhPfUF5ta/gU1Xf54= Subject key identifier: 4C:05:27:CC:41:A1:B4:FE:B0:73:17:05:18:A8:5D:19:33:EE:A2:EF Certificate issuer: /CN=417c06d0-3203-44fd-b164-0aed50f5638b Certificate serial: 010D0C9F43285847CFD4D746D85E229CDF04CF80 Authority key identifier: 00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/2a17de97-ac95-3741-9ebe-22d1315750a8.roa Signing time: Fri 08 Nov 2024 14:00:39 +0000 ROA not before: Fri 08 Nov 2024 14:00:39 +0000 ROA not after: Thu 06 Feb 2025 14:00:39 +0000 asID: 397423 IP address blocks: 147.124.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:cf:d4:d7:46:d8:5e:22:9c:df:04:cf:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=417c06d0-3203-44fd-b164-0aed50f5638b Validity Not Before: Nov 8 14:00:39 2024 GMT Not After : Feb 6 14:00:39 2025 GMT Subject: CN=f463d0d2-fc14-4048-87cd-a1f51fa5aef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c1:f9:a9:2d:d7:19:fd:d4:93:79:67:af:d8: a1:28:ae:73:9c:ec:9e:37:b8:af:48:85:4b:21:c7: 65:4f:65:8e:d9:4b:5f:a2:67:78:09:29:db:2d:cd: 89:01:13:ef:74:bf:b3:7c:c7:88:17:80:bf:cd:ab: b1:e2:ac:76:da:13:30:d0:fd:80:33:c2:7f:50:68: 68:3d:c3:25:34:82:aa:c5:d9:d6:a6:5d:f6:c7:d6: 5f:9e:de:f5:54:f7:1c:43:2c:4f:d6:5b:d5:99:48: bb:a7:d9:89:00:9b:d4:d7:30:67:45:1c:b4:b4:b5: 7b:f4:d7:69:b0:50:0c:95:e5:50:06:c5:de:a4:db: ba:61:4a:c2:d1:c8:0e:6c:96:53:d8:88:7c:e7:70: 3a:9d:22:67:63:6f:d4:e9:40:40:ab:3a:8b:1d:eb: 39:e2:cc:6b:93:32:d0:4e:a9:17:c4:9d:8e:6a:bb: 6f:d6:29:ca:a2:8f:2f:3b:56:02:40:e5:dd:e4:f6: 29:74:92:76:ff:e5:ac:70:e6:64:85:9c:18:d2:1e: 96:b4:1f:fb:ea:0a:42:fb:5c:56:6e:fa:76:c6:3a: cc:83:60:6c:35:fc:ca:c3:0f:f0:5b:f6:0e:52:08: 8f:9b:74:56:8c:4e:91:99:f4:bd:d4:82:23:b4:5c: 1e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:05:27:CC:41:A1:B4:FE:B0:73:17:05:18:A8:5D:19:33:EE:A2:EF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/2a17de97-ac95-3741-9ebe-22d1315750a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl X509v3 Authority Key Identifier: keyid:00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer sbgp-ipAddrBlock: critical IPv4: 147.124.201.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption df:71:69:f8:44:15:c1:f6:95:f4:dc:85:a3:5f:1d:f1:c9:12: 80:f5:05:8e:af:2d:7d:56:4e:06:bf:35:e5:66:5b:a0:62:80: 00:a2:45:1e:e7:57:87:9c:cf:f7:0c:9f:d9:0b:4d:e2:04:47: cf:de:55:80:cf:fe:33:23:bc:8c:8f:e7:ad:af:83:da:73:c5: 28:c3:12:d1:a5:02:a9:0e:9a:87:70:26:52:fd:75:66:08:19: c5:01:7f:fd:4f:68:be:43:4a:13:ae:54:fb:eb:08:40:2c:2e: 8d:8e:16:93:8a:da:fb:25:56:5e:ef:cd:24:9e:40:dd:b9:53: 71:80:9d:05:66:e8:8f:69:bb:3e:b1:9f:19:cc:3e:6b:ad:38: 5f:9f:46:ad:e3:83:ef:b5:45:0d:39:aa:42:38:74:f4:8c:d6: 3a:3f:f9:59:88:ae:c7:07:9c:d9:ee:3f:e3:06:1a:ed:cf:d9: 81:60:09:17:2f:3a:05:fe:49:44:af:47:32:81:6b:73:e0:b7: fe:dc:d2:5a:7f:81:24:d7:74:3c:6c:69:9d:4e:f9:86:91:f4: 41:2a:e1:db:ec:02:68:19:36:9f:bf:01:81:ea:f9:c3:d1:db: d8:29:aa:7b:52:8a:82:a5:da:ce:32:df:88:17:96:b5:91:37: 5b:35:fa:c8 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEfP1NdG2F4inN8Ez4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDE3YzA2ZDAtMzIwMy00NGZkLWIxNjQtMGFlZDUwZjU2 MzhiMB4XDTI0MTEwODE0MDAzOVoXDTI1MDIwNjE0MDAzOVowLzEtMCsGA1UEAxMk ZjQ2M2QwZDItZmMxNC00MDQ4LTg3Y2QtYTFmNTFmYTVhZWYxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8H5qS3XGf3Uk3lnr9ihKK5znOyeN7ivSIVL IcdlT2WO2Utfomd4CSnbLc2JARPvdL+zfMeIF4C/zaux4qx22hMw0P2AM8J/UGho PcMlNIKqxdnWpl32x9Zfnt71VPccQyxP1lvVmUi7p9mJAJvU1zBnRRy0tLV79Ndp sFAMleVQBsXepNu6YUrC0cgObJZT2Ih853A6nSJnY2/U6UBAqzqLHes54sxrkzLQ TqkXxJ2Oartv1inKoo8vO1YCQOXd5PYpdJJ2/+WscOZkhZwY0h6WtB/76gpC+1xW bvp2xjrMg2BsNfzKww/wW/YOUgiPm3RWjE6RmfS91IIjtFwerQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFEwFJ8xBobT+sHMXBRioXRkz7qLvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MTdj MDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVkNTBmNTYzOGIvMmExN2RlOTctYWM5NS0z NzQxLTllYmUtMjJkMTMxNTc1MGE4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDE3YzA2ZDAtMzIwMy00NGZkLWIx NjQtMGFlZDUwZjU2MzhiLzQxN2MwNmQwLTMyMDMtNDRmZC1iMTY0LTBhZWQ1MGY1 NjM4Yi5jcmwwHwYDVR0jBBgwFoAUAM6gxUxaaLPRCSpmePODyUIHxf0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80MTdjMDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVk NTBmNTYzOGIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk3zJMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAN9xafhEFcH2lfTchaNfHfHJEoD1BY6vLX1WTga/NeVmW6BigACiRR7n V4ecz/cMn9kLTeIER8/eVYDP/jMjvIyP562vg9pzxSjDEtGlAqkOmodwJlL9dWYI GcUBf/1PaL5DShOuVPvrCEAsLo2OFpOK2vslVl7vzSSeQN25U3GAnQVm6I9puz6x nxnMPmutOF+fRq3jg++1RQ05qkI4dPSM1jo/+VmIrscHnNnuP+MGGu3P2YFgCRcv OgX+SUSvRzKBa3Pgt/7c0lp/gSTXdDxsaZ1O+YaR9EEq4dvsAmgZNp+/AYHq+cPR 29gpqntSioKl2s4y34gXlrWRN1s1+sg= -----END CERTIFICATE-----Generated at Fri Nov 22 04:35:29 2024 by rpki-client on console-ams.rpki-client.org