$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/5fd0d95e-22dd-3220-9e54-409383a6b63c.roa File: 5fd0d95e-22dd-3220-9e54-409383a6b63c.roa (raw, json) Hash identifier: CEUve9i2Q5a0p18yhyfSJuq96exhfMjmNp50sc6f0zw= Subject key identifier: 34:F0:D0:76:35:5A:E7:4D:BD:63:D8:7F:71:50:9A:83:C6:E9:6F:ED Certificate issuer: /CN=417c06d0-3203-44fd-b164-0aed50f5638b Certificate serial: 010D0C9F4328584523DAF6649E80C9CF8D4C7540 Authority key identifier: 00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/5fd0d95e-22dd-3220-9e54-409383a6b63c.roa Signing time: Fri 08 Mar 2024 14:00:30 +0000 ROA not before: Fri 08 Mar 2024 14:00:30 +0000 ROA not after: Thu 06 Jun 2024 13:00:30 +0000 asID: 397423 IP address blocks: 147.124.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:23:da:f6:64:9e:80:c9:cf:8d:4c:75:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=417c06d0-3203-44fd-b164-0aed50f5638b Validity Not Before: Mar 8 14:00:30 2024 GMT Not After : Jun 6 13:00:30 2024 GMT Subject: CN=75cf94a2-04d8-4800-a444-e903dd1b76de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9a:71:a8:cc:06:0f:d5:1e:48:12:b6:b0:f4: 41:b6:e2:33:c8:dc:91:ee:9c:80:d3:1d:2b:58:bf: 7e:13:1f:91:b5:b5:1d:2a:ad:bc:b3:9c:a4:48:ab: 0a:24:18:45:33:cf:3e:56:0c:a2:f1:7e:c9:ff:f2: 05:01:38:a0:81:66:c2:a6:0d:e8:8f:a0:2c:92:a4: 1b:50:d7:3f:e4:c7:aa:23:24:dc:f5:51:d7:b0:0e: 58:b5:e1:07:ae:5d:36:4b:19:2a:42:13:d5:db:0f: d1:45:bb:bb:6d:29:6a:82:0e:73:89:8d:22:cf:c6: c1:fa:91:87:d0:4f:9b:69:16:15:a4:26:1f:0f:6d: 94:04:29:d7:5e:af:db:a4:96:c7:30:2f:0f:11:e2: df:f0:02:70:fe:e6:c0:ca:7c:49:59:05:4c:84:85: 97:c0:ea:e6:0c:d9:31:e8:78:d0:ef:4e:2e:d4:d8: a6:ff:65:32:68:57:b5:91:fa:3f:bb:6e:0a:aa:5e: 65:0a:48:7b:44:c3:45:53:84:be:c9:cd:2d:07:0f: dc:56:e7:87:f8:ac:fb:77:0a:8b:5b:62:04:3a:bb: 07:fb:ff:69:6c:8b:31:4e:43:0b:7e:e0:ab:80:f9: 16:ec:bb:29:86:1b:9a:6f:65:df:2b:21:18:12:d8: 9e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F0:D0:76:35:5A:E7:4D:BD:63:D8:7F:71:50:9A:83:C6:E9:6F:ED Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/5fd0d95e-22dd-3220-9e54-409383a6b63c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl X509v3 Authority Key Identifier: keyid:00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer sbgp-ipAddrBlock: critical IPv4: 147.124.204.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 06:3d:07:71:4e:10:e9:ab:5e:ed:4c:9d:b7:e2:d0:a9:4f:7c: f6:c0:f7:b4:f9:be:b7:43:69:0a:d4:68:66:ff:a1:b4:2e:a0: f6:86:03:d4:72:c8:d2:c7:de:d4:68:14:5b:a3:65:c1:9d:11: 72:96:93:18:5d:97:ce:c7:49:66:8e:1d:d7:d8:9c:c4:ed:21: a5:ce:77:15:b5:9d:ef:c5:d9:44:03:9f:64:fd:13:b3:55:82: e3:fc:f1:cf:3f:ee:0b:f5:92:be:ef:be:65:cf:53:e0:90:e4: 10:4e:c0:9b:29:39:a1:18:fe:dc:7c:a7:0f:d1:89:89:1c:9d: 56:b6:13:ce:90:da:77:bd:63:3c:d3:bf:84:c8:2e:6d:ce:84: c4:c5:be:a1:13:91:15:7e:9b:63:07:38:ef:3d:d0:74:90:ce: ce:90:ff:24:67:71:de:6e:6b:23:57:a2:f4:d0:2c:c6:48:04: 0e:ec:1b:4c:68:d2:80:73:32:fc:32:c1:3d:b2:3b:7d:e3:31: 40:a1:32:80:94:3b:da:84:2e:98:86:a3:4f:58:85:34:74:cd: 5c:85:59:9b:de:26:b5:50:01:40:e1:a4:f5:45:b3:42:6a:20: e1:87:8b:07:ff:2e:41:17:3a:a8:20:d0:e1:d1:78:fe:c2:70: 71:7b:98:97 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEUj2vZknoDJz41MdUAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDE3YzA2ZDAtMzIwMy00NGZkLWIxNjQtMGFlZDUwZjU2 MzhiMB4XDTI0MDMwODE0MDAzMFoXDTI0MDYwNjEzMDAzMFowLzEtMCsGA1UEAxMk NzVjZjk0YTItMDRkOC00ODAwLWE0NDQtZTkwM2RkMWI3NmRlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZpxqMwGD9UeSBK2sPRBtuIzyNyR7pyA0x0r WL9+Ex+RtbUdKq28s5ykSKsKJBhFM88+Vgyi8X7J//IFATiggWbCpg3oj6AskqQb UNc/5MeqIyTc9VHXsA5YteEHrl02SxkqQhPV2w/RRbu7bSlqgg5ziY0iz8bB+pGH 0E+baRYVpCYfD22UBCnXXq/bpJbHMC8PEeLf8AJw/ubAynxJWQVMhIWXwOrmDNkx 6HjQ704u1Nim/2UyaFe1kfo/u24Kql5lCkh7RMNFU4S+yc0tBw/cVueH+Kz7dwqL W2IEOrsH+/9pbIsxTkMLfuCrgPkW7Lsphhuab2XfKyEYEtiejQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDTw0HY1WudNvWPYf3FQmoPG6W/tMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MTdj MDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVkNTBmNTYzOGIvNWZkMGQ5NWUtMjJkZC0z MjIwLTllNTQtNDA5MzgzYTZiNjNjLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDE3YzA2ZDAtMzIwMy00NGZkLWIx NjQtMGFlZDUwZjU2MzhiLzQxN2MwNmQwLTMyMDMtNDRmZC1iMTY0LTBhZWQ1MGY1 NjM4Yi5jcmwwHwYDVR0jBBgwFoAUAM6gxUxaaLPRCSpmePODyUIHxf0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80MTdjMDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVk NTBmNTYzOGIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk3zMMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAY9B3FOEOmrXu1Mnbfi0KlPfPbA97T5vrdDaQrUaGb/obQuoPaGA9Ry yNLH3tRoFFujZcGdEXKWkxhdl87HSWaOHdfYnMTtIaXOdxW1ne/F2UQDn2T9E7NV guP88c8/7gv1kr7vvmXPU+CQ5BBOwJspOaEY/tx8pw/RiYkcnVa2E86Q2ne9YzzT v4TILm3OhMTFvqETkRV+m2MHOO890HSQzs6Q/yRncd5uayNXovTQLMZIBA7sG0xo 0oBzMvwywT2yO33jMUChMoCUO9qELpiGo09YhTR0zVyFWZveJrVQAUDhpPVFs0Jq IOGHiwf/LkEXOqgg0OHReP7CcHF7mJc= -----END CERTIFICATE-----Generated at Sat May 4 15:00:45 2024 by rpki-client on console-fra.rpki-client.org