$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/5fd0d95e-22dd-3220-9e54-409383a6b63c.roa File: 5fd0d95e-22dd-3220-9e54-409383a6b63c.roa (raw, json) Hash identifier: YhLlu7MS5wzs0m8PHZHxcmlnRetdPu9e6S7b2RiRKO8= Subject key identifier: 79:77:E3:58:AC:39:0B:61:71:41:D2:65:4B:AE:55:5A:14:5C:4E:51 Certificate issuer: /CN=417c06d0-3203-44fd-b164-0aed50f5638b Certificate serial: 010D0C9F43285847C1DF508555B5BFF5EB7CCDC0 Authority key identifier: 00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/5fd0d95e-22dd-3220-9e54-409383a6b63c.roa Signing time: Sun 03 Nov 2024 14:00:49 +0000 ROA not before: Sun 03 Nov 2024 14:00:49 +0000 ROA not after: Sat 01 Feb 2025 14:00:49 +0000 asID: 397423 IP address blocks: 147.124.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:c1:df:50:85:55:b5:bf:f5:eb:7c:cd:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=417c06d0-3203-44fd-b164-0aed50f5638b Validity Not Before: Nov 3 14:00:49 2024 GMT Not After : Feb 1 14:00:49 2025 GMT Subject: CN=e5c01daf-aa38-4bcd-9002-825cece6632f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a5:91:33:35:7e:cf:23:ed:1e:5c:04:87:b3: 54:2f:e2:dd:c0:ca:eb:a3:c5:72:6c:a8:49:f6:9a: 5a:82:03:ff:d7:17:b6:20:6f:31:ca:72:2c:67:da: e0:c5:93:74:69:4e:7d:bf:a5:3f:76:45:65:4b:26: 4c:1f:c5:3c:19:36:7d:f7:3d:fd:80:e3:a0:02:b9: 93:f1:96:01:90:e7:bc:99:f0:cb:f2:b0:98:38:84: 7e:ce:bf:9c:80:e4:8b:04:51:eb:fc:51:34:7e:af: 99:97:e8:e8:ab:40:d3:77:62:be:92:6a:d4:13:72: 98:ff:8e:c1:10:5d:ca:93:5c:75:d1:58:82:e0:1d: a8:8d:14:23:91:ea:88:62:88:d3:d6:73:9a:2f:6e: 1b:4f:51:c7:00:a5:80:7d:49:65:47:ac:ab:d7:85: f6:7a:d1:22:04:8c:af:64:0a:39:16:a7:95:2e:d0: d2:c6:02:33:4f:32:a6:27:53:62:72:64:00:94:08: 20:14:1b:b9:f0:c5:db:6b:67:bf:97:a1:1e:fb:06: f7:d1:72:01:79:35:88:0c:19:fe:91:c9:f0:52:be: a6:06:bb:79:96:2b:0a:bb:50:e0:bb:a7:d1:b8:2e: 06:be:f2:98:3b:4b:51:c3:65:e7:75:b3:0b:f3:ca: 98:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:77:E3:58:AC:39:0B:61:71:41:D2:65:4B:AE:55:5A:14:5C:4E:51 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/5fd0d95e-22dd-3220-9e54-409383a6b63c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl X509v3 Authority Key Identifier: keyid:00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer sbgp-ipAddrBlock: critical IPv4: 147.124.204.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption a9:5b:14:27:41:69:36:41:81:88:6a:86:b0:61:eb:26:4c:a7: 1f:9d:6e:4b:a8:e5:d3:e2:94:a2:f0:9f:dc:2d:5b:ef:7a:73: db:c8:b4:c4:33:50:13:59:c9:9c:41:df:ce:bd:0f:5d:94:c7: a3:ee:21:33:c6:05:43:e3:95:d6:1d:17:70:9e:b8:d4:75:92: f7:27:0f:77:61:67:69:6d:de:35:88:aa:84:ba:de:a8:bf:6c: 32:31:7d:58:c1:81:10:79:e5:15:7d:35:f2:89:ec:eb:bd:cd: 13:40:71:4f:0e:4e:2f:b6:07:35:81:2d:78:7a:35:ae:0c:08: 7c:97:a8:c8:aa:68:6d:16:eb:9a:a1:fa:11:b3:81:db:87:82: d3:e4:0e:b9:04:b8:33:50:39:3c:a7:f5:7b:cc:05:7c:b2:b5: d7:d7:10:35:53:3c:a8:75:4e:a3:1a:cd:9f:12:98:64:90:70: 3f:6d:21:bf:a8:93:dc:46:ee:2c:c3:16:ce:94:8a:19:d3:13: 6d:6b:ba:60:0a:11:63:71:28:31:7a:c9:bd:b4:43:cf:b2:b7: fb:c0:a4:da:10:d9:91:3a:e3:be:a1:4e:df:64:ad:e0:c8:33: 01:2d:69:75:05:3e:c3:cd:11:7c:aa:1f:77:9f:f2:29:43:03: f7:89:2c:8e -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEfB31CFVbW/9et8zcAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDE3YzA2ZDAtMzIwMy00NGZkLWIxNjQtMGFlZDUwZjU2 MzhiMB4XDTI0MTEwMzE0MDA0OVoXDTI1MDIwMTE0MDA0OVowLzEtMCsGA1UEAxMk ZTVjMDFkYWYtYWEzOC00YmNkLTkwMDItODI1Y2VjZTY2MzJmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6WRMzV+zyPtHlwEh7NUL+LdwMrro8VybKhJ 9ppaggP/1xe2IG8xynIsZ9rgxZN0aU59v6U/dkVlSyZMH8U8GTZ99z39gOOgArmT 8ZYBkOe8mfDL8rCYOIR+zr+cgOSLBFHr/FE0fq+Zl+joq0DTd2K+kmrUE3KY/47B EF3Kk1x10ViC4B2ojRQjkeqIYojT1nOaL24bT1HHAKWAfUllR6yr14X2etEiBIyv ZAo5FqeVLtDSxgIzTzKmJ1NicmQAlAggFBu58MXba2e/l6Ee+wb30XIBeTWIDBn+ kcnwUr6mBrt5lisKu1Dgu6fRuC4GvvKYO0tRw2XndbML88qYmwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHl341isOQthcUHSZUuuVVoUXE5RMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MTdj MDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVkNTBmNTYzOGIvNWZkMGQ5NWUtMjJkZC0z MjIwLTllNTQtNDA5MzgzYTZiNjNjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDE3YzA2ZDAtMzIwMy00NGZkLWIx NjQtMGFlZDUwZjU2MzhiLzQxN2MwNmQwLTMyMDMtNDRmZC1iMTY0LTBhZWQ1MGY1 NjM4Yi5jcmwwHwYDVR0jBBgwFoAUAM6gxUxaaLPRCSpmePODyUIHxf0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80MTdjMDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVk NTBmNTYzOGIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk3zMMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAKlbFCdBaTZBgYhqhrBh6yZMpx+dbkuo5dPilKLwn9wtW+96c9vItMQz UBNZyZxB3869D12Ux6PuITPGBUPjldYdF3CeuNR1kvcnD3dhZ2lt3jWIqoS63qi/ bDIxfVjBgRB55RV9NfKJ7Ou9zRNAcU8OTi+2BzWBLXh6Na4MCHyXqMiqaG0W65qh +hGzgduHgtPkDrkEuDNQOTyn9XvMBXyytdfXEDVTPKh1TqMazZ8SmGSQcD9tIb+o k9xG7izDFs6UihnTE21rumAKEWNxKDF6yb20Q8+yt/vApNoQ2ZE6476hTt9kreDI MwEtaXUFPsPNEXyqH3ef8ilDA/eJLI4= -----END CERTIFICATE-----Generated at Thu Nov 21 15:31:38 2024 by rpki-client on console-fra.rpki-client.org