$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/61afc90b-6803-38fb-9a83-96444100f072.roa File: 61afc90b-6803-38fb-9a83-96444100f072.roa (raw, json) Hash identifier: lDRHn6XrQyLJogL4pVtAxRvhbJNoVJbS/iKSI6tWlOs= Subject key identifier: 7B:4D:2D:A8:99:82:80:CE:70:A6:57:23:BB:85:84:48:72:4F:B0:6D Certificate issuer: /CN=417c06d0-3203-44fd-b164-0aed50f5638b Certificate serial: 010D0C9F43285847B2669C4D0EEB4D479D393700 Authority key identifier: 00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/61afc90b-6803-38fb-9a83-96444100f072.roa Signing time: Tue 29 Oct 2024 01:00:32 +0000 ROA not before: Tue 29 Oct 2024 01:00:32 +0000 ROA not after: Mon 27 Jan 2025 02:00:32 +0000 asID: 396026 IP address blocks: 147.124.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:b2:66:9c:4d:0e:eb:4d:47:9d:39:37:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=417c06d0-3203-44fd-b164-0aed50f5638b Validity Not Before: Oct 29 01:00:32 2024 GMT Not After : Jan 27 02:00:32 2025 GMT Subject: CN=5959ab72-d000-494d-a22b-da89a810f9cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:47:86:f0:aa:67:60:56:a3:1c:5a:0e:67:3b: d2:62:a7:f1:37:75:07:50:b6:00:4b:63:a5:49:0e: 65:09:0a:b9:2d:d4:3c:ba:f1:6a:ff:95:12:98:93: 96:e2:8c:1a:27:19:b1:be:2f:ab:b0:58:e7:d2:55: f1:9c:bf:d9:19:dd:49:81:dd:89:5d:6e:a1:97:11: e1:d7:24:e3:19:12:b8:0a:c9:bd:eb:2b:f8:8f:ef: 32:02:89:cb:29:a3:c8:e7:37:da:ba:93:aa:68:fc: 1f:d7:68:73:a9:0a:86:a7:fd:30:9f:00:bf:4c:d9: 83:ed:c2:ed:59:7d:b0:b2:f2:65:3a:64:a0:0e:4e: 77:45:57:02:28:e1:42:fa:7c:86:44:c2:f4:45:8d: 5d:3f:e1:5c:cd:4d:c1:4e:69:cc:8e:fd:de:cd:ac: 4e:c2:c9:bc:5b:d2:2c:dc:c5:5a:c3:12:ae:c1:4f: 7a:ea:2f:2f:78:98:62:c7:58:a6:6b:20:05:ed:3c: 35:94:35:18:75:1c:38:7d:b4:b4:99:d4:ff:ec:3a: d0:cf:4c:17:90:4a:8a:3e:2f:33:44:8f:db:13:0b: cc:87:23:b4:cf:ad:e9:d5:c9:f3:0c:ca:e5:3a:b4: 4e:71:0e:0a:a7:fe:fd:26:4a:49:23:93:6e:9d:d9: f9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4D:2D:A8:99:82:80:CE:70:A6:57:23:BB:85:84:48:72:4F:B0:6D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/61afc90b-6803-38fb-9a83-96444100f072.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl X509v3 Authority Key Identifier: keyid:00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer sbgp-ipAddrBlock: critical IPv4: 147.124.202.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 54:4c:36:54:17:f3:9f:65:6f:ae:f4:6d:50:6b:e8:0b:cf:b9: 35:a4:5f:22:7e:b0:86:8b:59:ca:7f:c6:61:e7:7e:68:be:04: 24:29:c6:b7:f3:a1:a0:66:3c:db:8d:2a:11:bb:c8:38:c2:e2: 20:6c:ae:58:22:c1:e9:46:a5:2e:d9:3c:a3:70:24:ea:08:f3: bb:2a:b1:cb:4a:e1:5a:e8:40:81:ce:ef:8a:f0:22:58:a4:98: 5f:9c:c1:38:1f:0d:c9:32:da:a1:f3:88:f8:b4:59:7a:f5:05: 6b:e9:e8:af:62:09:37:ad:b5:e7:67:d2:ff:7b:54:e7:8a:1d: a7:61:14:eb:ee:ba:38:93:b9:61:be:a2:b4:4a:41:82:cb:f8: 69:36:cb:c4:9a:b4:e8:53:81:5e:cb:cb:9f:84:53:28:b7:52: ed:27:93:ad:ba:6d:f0:e5:6f:0b:f7:16:92:a4:74:ba:9c:93: 22:f2:d2:08:fe:80:df:b6:9f:fa:64:d9:05:87:6c:8b:76:72: 74:e5:28:74:d4:04:cc:ad:1e:5b:c3:e0:40:42:06:68:cf:d2: ed:76:fd:01:98:d9:9b:b1:42:c1:75:2b:24:53:13:71:14:27: 48:11:35:10:f5:74:c0:a3:58:4b:b6:0b:4f:07:20:fe:d8:0e: cb:eb:29:fc -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEeyZpxNDutNR505NwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDE3YzA2ZDAtMzIwMy00NGZkLWIxNjQtMGFlZDUwZjU2 MzhiMB4XDTI0MTAyOTAxMDAzMloXDTI1MDEyNzAyMDAzMlowLzEtMCsGA1UEAxMk NTk1OWFiNzItZDAwMC00OTRkLWEyMmItZGE4OWE4MTBmOWNiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUeG8KpnYFajHFoOZzvSYqfxN3UHULYAS2Ol SQ5lCQq5LdQ8uvFq/5USmJOW4owaJxmxvi+rsFjn0lXxnL/ZGd1Jgd2JXW6hlxHh 1yTjGRK4Csm96yv4j+8yAonLKaPI5zfaupOqaPwf12hzqQqGp/0wnwC/TNmD7cLt WX2wsvJlOmSgDk53RVcCKOFC+nyGRML0RY1dP+FczU3BTmnMjv3ezaxOwsm8W9Is 3MVawxKuwU966i8veJhix1imayAF7Tw1lDUYdRw4fbS0mdT/7DrQz0wXkEqKPi8z RI/bEwvMhyO0z63p1cnzDMrlOrROcQ4Kp/79JkpJI5Nundn5RwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHtNLaiZgoDOcKZXI7uFhEhyT7BtMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MTdj MDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVkNTBmNTYzOGIvNjFhZmM5MGItNjgwMy0z OGZiLTlhODMtOTY0NDQxMDBmMDcyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDE3YzA2ZDAtMzIwMy00NGZkLWIx NjQtMGFlZDUwZjU2MzhiLzQxN2MwNmQwLTMyMDMtNDRmZC1iMTY0LTBhZWQ1MGY1 NjM4Yi5jcmwwHwYDVR0jBBgwFoAUAM6gxUxaaLPRCSpmePODyUIHxf0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80MTdjMDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVk NTBmNTYzOGIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk3zKMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFRMNlQX859lb670bVBr6AvPuTWkXyJ+sIaLWcp/xmHnfmi+BCQpxrfz oaBmPNuNKhG7yDjC4iBsrlgiwelGpS7ZPKNwJOoI87sqsctK4VroQIHO74rwIlik mF+cwTgfDcky2qHziPi0WXr1BWvp6K9iCTettedn0v97VOeKHadhFOvuujiTuWG+ orRKQYLL+Gk2y8SatOhTgV7Ly5+EUyi3Uu0nk626bfDlbwv3FpKkdLqckyLy0gj+ gN+2n/pk2QWHbIt2cnTlKHTUBMytHlvD4EBCBmjP0u12/QGY2ZuxQsF1KyRTE3EU J0gRNRD1dMCjWEu2C08HIP7YDsvrKfw= -----END CERTIFICATE-----Generated at Fri Nov 22 04:35:29 2024 by rpki-client on console-ams.rpki-client.org