$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/41491787-a87b-3836-bc29-894a2094fd35.roa File: 41491787-a87b-3836-bc29-894a2094fd35.roa (raw, json) Hash identifier: kjcm6N/Frx+8cLursQUBjPKYLHBs8eNkd6zSoXwK82I= Subject key identifier: B7:8E:AD:6F:52:2F:13:3F:E7:4B:8D:33:E5:3F:B5:8C:40:85:FB:D8 Certificate issuer: /CN=417c06d0-3203-44fd-b164-0aed50f5638b Certificate serial: 010D0C9F43285847C1DF50B0B4BC5C168697EBC0 Authority key identifier: 00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/41491787-a87b-3836-bc29-894a2094fd35.roa Signing time: Sun 03 Nov 2024 14:00:49 +0000 ROA not before: Sun 03 Nov 2024 14:00:49 +0000 ROA not after: Sat 01 Feb 2025 14:00:49 +0000 asID: 397423 IP address blocks: 147.124.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:c1:df:50:b0:b4:bc:5c:16:86:97:eb:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=417c06d0-3203-44fd-b164-0aed50f5638b Validity Not Before: Nov 3 14:00:49 2024 GMT Not After : Feb 1 14:00:49 2025 GMT Subject: CN=bc51ba06-6b65-49c2-b7ab-dadfc996e8cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2c:7e:3d:95:15:76:b5:02:86:9d:e6:a7:8c: 22:20:15:84:be:0b:e0:bb:0c:4a:0f:36:c3:cf:16: 18:e4:c3:bd:84:ae:22:13:de:66:d3:20:17:6f:54: a6:c5:2a:aa:2f:10:a0:e2:c9:eb:69:9e:61:1d:03: 41:7c:6f:86:0c:5a:a6:38:18:2b:61:2a:fa:fd:c0: 91:05:14:95:b9:c1:69:45:0d:12:79:26:98:a7:66: 54:79:4d:bb:ef:4a:98:5a:c4:8b:fa:39:5b:6c:05: ca:9e:63:60:f9:c6:aa:f4:8b:33:3b:ba:cd:9e:1b: 28:f4:9e:c9:97:5b:f0:07:36:fe:c5:90:66:84:61: 1e:02:e4:ab:90:1b:16:e7:2c:d9:8c:b5:1c:b3:16: cc:00:ae:94:ed:ed:51:0c:c6:45:3a:38:1b:c4:49: 40:3a:59:52:30:76:90:b0:ae:24:e9:4b:7b:00:f2: a8:23:78:47:4b:d4:f1:86:d9:17:cc:37:0d:c3:3c: b5:53:26:98:3a:5b:29:47:94:43:ce:7a:69:78:88: 40:bd:71:19:cb:fa:eb:49:40:fd:c2:a1:e5:a9:11: ef:9a:f1:d3:d2:64:4f:13:29:e9:d0:c5:e8:98:c7: e0:33:73:cf:05:28:58:66:b9:20:4d:81:2e:03:71: a0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:8E:AD:6F:52:2F:13:3F:E7:4B:8D:33:E5:3F:B5:8C:40:85:FB:D8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/41491787-a87b-3836-bc29-894a2094fd35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl X509v3 Authority Key Identifier: keyid:00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer sbgp-ipAddrBlock: critical IPv4: 147.124.206.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 2d:68:6e:38:f0:3c:e7:73:bc:a9:4f:24:84:38:c3:c4:71:85: 72:61:3c:14:dd:cf:bb:01:3e:e0:7a:63:c1:4f:c7:89:2c:3b: 68:0b:61:2c:8f:0a:a2:9b:0e:10:cf:51:42:b7:5e:87:80:2b: 78:bd:1d:46:cc:2e:d4:b3:1e:61:75:d8:22:36:1c:9d:83:3d: 96:1c:e5:d1:48:58:e3:a4:4a:fb:c6:d6:20:24:c9:d9:9f:8d: ef:6f:d6:4f:c0:7b:15:82:81:08:23:1c:f9:24:54:5d:1d:f3: 67:53:c4:41:a9:ad:8f:a5:22:f4:95:83:9e:17:2d:4a:31:00: 82:ba:b7:85:b2:58:e5:fe:ef:cf:20:e5:bc:b9:0f:ec:ae:e7: 26:22:9d:10:26:61:9b:ca:a2:49:86:18:89:90:ee:48:fe:99: 80:9d:3f:ce:94:c9:b3:04:be:6b:40:ad:f9:3b:49:53:bc:09: 0b:a7:d3:8a:45:37:e9:3f:a8:9e:ad:b8:83:77:fd:91:6e:68: 5f:81:54:6c:7e:b3:6e:04:08:ac:f7:38:11:b8:40:2d:d7:ea: 20:58:3f:b8:a3:52:37:ed:03:40:53:37:a6:9d:46:19:5b:c8: b6:df:a7:f6:e6:53:df:e4:ac:a0:09:26:14:ca:81:43:4d:3f: df:be:fb:6a -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEfB31CwtLxcFoaX68AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDE3YzA2ZDAtMzIwMy00NGZkLWIxNjQtMGFlZDUwZjU2 MzhiMB4XDTI0MTEwMzE0MDA0OVoXDTI1MDIwMTE0MDA0OVowLzEtMCsGA1UEAxMk YmM1MWJhMDYtNmI2NS00OWMyLWI3YWItZGFkZmM5OTZlOGNiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSx+PZUVdrUChp3mp4wiIBWEvgvguwxKDzbD zxYY5MO9hK4iE95m0yAXb1SmxSqqLxCg4snraZ5hHQNBfG+GDFqmOBgrYSr6/cCR BRSVucFpRQ0SeSaYp2ZUeU2770qYWsSL+jlbbAXKnmNg+caq9IszO7rNnhso9J7J l1vwBzb+xZBmhGEeAuSrkBsW5yzZjLUcsxbMAK6U7e1RDMZFOjgbxElAOllSMHaQ sK4k6Ut7APKoI3hHS9TxhtkXzDcNwzy1UyaYOlspR5RDznppeIhAvXEZy/rrSUD9 wqHlqRHvmvHT0mRPEynp0MXomMfgM3PPBShYZrkgTYEuA3GgTQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFLeOrW9SLxM/50uNM+U/tYxAhfvYMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MTdj MDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVkNTBmNTYzOGIvNDE0OTE3ODctYTg3Yi0z ODM2LWJjMjktODk0YTIwOTRmZDM1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDE3YzA2ZDAtMzIwMy00NGZkLWIx NjQtMGFlZDUwZjU2MzhiLzQxN2MwNmQwLTMyMDMtNDRmZC1iMTY0LTBhZWQ1MGY1 NjM4Yi5jcmwwHwYDVR0jBBgwFoAUAM6gxUxaaLPRCSpmePODyUIHxf0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80MTdjMDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVk NTBmNTYzOGIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk3zOMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAC1objjwPOdzvKlPJIQ4w8RxhXJhPBTdz7sBPuB6Y8FPx4ksO2gLYSyP CqKbDhDPUUK3XoeAK3i9HUbMLtSzHmF12CI2HJ2DPZYc5dFIWOOkSvvG1iAkydmf je9v1k/AexWCgQgjHPkkVF0d82dTxEGprY+lIvSVg54XLUoxAIK6t4WyWOX+788g 5by5D+yu5yYinRAmYZvKokmGGImQ7kj+mYCdP86UybMEvmtArfk7SVO8CQun04pF N+k/qJ6tuIN3/ZFuaF+BVGx+s24ECKz3OBG4QC3X6iBYP7ijUjftA0BTN6adRhlb yLbfp/bmU9/krKAJJhTKgUNNP9+++2o= -----END CERTIFICATE-----Generated at Fri Nov 22 04:35:29 2024 by rpki-client on console-ams.rpki-client.org