$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/2a17de97-ac95-3741-9ebe-22d1315750a8.roa File: 2a17de97-ac95-3741-9ebe-22d1315750a8.roa (raw, json) Hash identifier: dyi0QtzVtwLOxss69hayz+GxD0hl4IOwW/08ihT26fc= Subject key identifier: 8B:30:A0:65:A2:26:E5:A5:97:84:BF:EA:A9:79:88:60:E0:AA:4F:4A Certificate issuer: /CN=417c06d0-3203-44fd-b164-0aed50f5638b Certificate serial: 010D0C9F4328584531B29AD58F0010F741FF3480 Authority key identifier: 00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/2a17de97-ac95-3741-9ebe-22d1315750a8.roa Signing time: Wed 13 Mar 2024 13:00:30 +0000 ROA not before: Wed 13 Mar 2024 13:00:30 +0000 ROA not after: Tue 11 Jun 2024 13:00:30 +0000 asID: 397423 IP address blocks: 147.124.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 05 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:31:b2:9a:d5:8f:00:10:f7:41:ff:34:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=417c06d0-3203-44fd-b164-0aed50f5638b Validity Not Before: Mar 13 13:00:30 2024 GMT Not After : Jun 11 13:00:30 2024 GMT Subject: CN=389053cd-5d05-423f-b62a-70b9d299c217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:0b:4a:a5:33:3f:84:76:51:04:da:5e:68: 6c:bb:c7:72:ae:e3:9c:d6:8a:ad:7e:fe:04:30:f6: 41:c7:4c:1f:f5:9c:95:a8:91:f4:16:90:1b:b0:34: 24:5c:17:66:67:5a:65:93:77:2e:3d:32:f0:e9:d3: d3:2a:4a:b3:1f:7d:5e:85:d9:c9:17:24:bd:9b:b5: fc:08:7d:18:04:58:65:2c:da:3c:d9:54:8d:eb:45: a0:56:fe:fc:f0:44:73:09:3a:4e:d2:26:85:bd:b4: 17:a2:76:ac:47:c1:43:28:23:fc:fe:53:c7:28:f0: b6:44:8f:16:92:5a:28:b9:c5:ca:31:92:62:fe:7b: 9c:1b:0c:ef:49:e8:a8:a1:34:ed:a9:50:0b:61:97: 00:66:45:a5:a1:00:ef:55:31:80:8a:85:a0:15:81: 67:6e:54:4a:40:1f:84:41:81:a6:c3:f7:4e:05:be: b3:34:17:69:ac:31:fa:0f:ed:13:05:f7:b9:31:bb: af:d7:1c:17:7d:66:96:70:d2:0c:b4:d3:32:20:ba: 47:f6:09:4d:b4:6a:b7:1c:95:c5:53:98:d2:59:2a: 73:c2:f4:dd:b9:ec:3f:e8:ff:b6:da:91:0e:51:fb: 05:b9:25:b8:2e:f4:c9:92:7a:65:ec:d2:f6:33:05: 8f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:30:A0:65:A2:26:E5:A5:97:84:BF:EA:A9:79:88:60:E0:AA:4F:4A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/2a17de97-ac95-3741-9ebe-22d1315750a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl X509v3 Authority Key Identifier: keyid:00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer sbgp-ipAddrBlock: critical IPv4: 147.124.201.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 9f:c0:62:d9:df:e9:ff:53:61:96:92:8e:cd:4a:d2:18:53:56: fb:b2:79:30:03:20:19:58:01:8e:10:32:01:f1:a0:07:4e:f0: d7:ee:85:21:fc:82:f3:af:30:28:51:6e:6b:41:c3:0b:d3:84: 72:dc:a5:10:c1:f6:eb:a7:49:76:12:3a:0a:f6:65:b4:94:78: 40:71:d2:9a:8e:2c:31:a7:9b:58:c2:59:9f:6f:7c:63:5e:e7: 6d:00:38:34:5c:de:48:ce:cf:79:08:c1:1c:f2:17:1d:8e:09: dc:c2:b6:63:f8:be:82:d8:26:56:7f:85:d8:ac:c8:69:9b:6e: 8e:13:36:33:43:2d:ff:0d:b1:f7:08:c6:ab:64:6a:91:d2:0a: 75:e5:b8:71:d1:ed:ce:7c:bf:c1:f0:f9:84:72:96:fe:4d:e7: 87:5b:4f:14:7a:ab:30:ac:2c:3f:ab:04:a5:15:99:df:83:45: b7:ef:64:e2:af:b8:26:cb:8d:2b:3e:a2:27:2d:25:dc:f9:e1: 30:56:4d:20:9c:cf:c6:f8:87:5b:72:d4:bb:29:f0:50:66:31: c5:70:4a:6f:e0:f2:e2:a5:c6:73:19:14:3a:18:78:d7:c3:b6: d3:83:f2:b3:a3:11:f8:19:10:aa:8c:c7:67:e9:ba:d7:4e:17: a3:02:cc:30 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEUxsprVjwAQ90H/NIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDE3YzA2ZDAtMzIwMy00NGZkLWIxNjQtMGFlZDUwZjU2 MzhiMB4XDTI0MDMxMzEzMDAzMFoXDTI0MDYxMTEzMDAzMFowLzEtMCsGA1UEAxMk Mzg5MDUzY2QtNWQwNS00MjNmLWI2MmEtNzBiOWQyOTljMjE3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmALSqUzP4R2UQTaXmhsu8dyruOc1oqtfv4E MPZBx0wf9ZyVqJH0FpAbsDQkXBdmZ1plk3cuPTLw6dPTKkqzH31ehdnJFyS9m7X8 CH0YBFhlLNo82VSN60WgVv788ERzCTpO0iaFvbQXonasR8FDKCP8/lPHKPC2RI8W klooucXKMZJi/nucGwzvSeiooTTtqVALYZcAZkWloQDvVTGAioWgFYFnblRKQB+E QYGmw/dOBb6zNBdprDH6D+0TBfe5Mbuv1xwXfWaWcNIMtNMyILpH9glNtGq3HJXF U5jSWSpzwvTduew/6P+22pEOUfsFuSW4LvTJknpl7NL2MwWPFwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFIswoGWiJuWll4S/6ql5iGDgqk9KMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MTdj MDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVkNTBmNTYzOGIvMmExN2RlOTctYWM5NS0z NzQxLTllYmUtMjJkMTMxNTc1MGE4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDE3YzA2ZDAtMzIwMy00NGZkLWIx NjQtMGFlZDUwZjU2MzhiLzQxN2MwNmQwLTMyMDMtNDRmZC1iMTY0LTBhZWQ1MGY1 NjM4Yi5jcmwwHwYDVR0jBBgwFoAUAM6gxUxaaLPRCSpmePODyUIHxf0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80MTdjMDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVk NTBmNTYzOGIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk3zJMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJ/AYtnf6f9TYZaSjs1K0hhTVvuyeTADIBlYAY4QMgHxoAdO8NfuhSH8 gvOvMChRbmtBwwvThHLcpRDB9uunSXYSOgr2ZbSUeEBx0pqOLDGnm1jCWZ9vfGNe 520AODRc3kjOz3kIwRzyFx2OCdzCtmP4voLYJlZ/hdisyGmbbo4TNjNDLf8NsfcI xqtkapHSCnXluHHR7c58v8Hw+YRylv5N54dbTxR6qzCsLD+rBKUVmd+DRbfvZOKv uCbLjSs+oictJdz54TBWTSCcz8b4h1ty1Lsp8FBmMcVwSm/g8uKlxnMZFDoYeNfD ttOD8rOjEfgZEKqMx2fputdOF6MCzDA= -----END CERTIFICATE-----Generated at Sat May 4 02:56:47 2024 by rpki-client on console-fra.rpki-client.org