$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/a0b6de0c-1f37-3fcc-882c-34d7ea4c8be8.roa File: a0b6de0c-1f37-3fcc-882c-34d7ea4c8be8.roa (raw, json) Hash identifier: ozb5Xb4HKhTGh58jQre+bXOa27tJy8oMu1qAHCqDoGI= Subject key identifier: 42:70:58:F3:E2:A0:CE:7D:D5:14:46:0E:19:EC:C4:A8:73:7B:77:3D Certificate issuer: /CN=417c06d0-3203-44fd-b164-0aed50f5638b Certificate serial: 010D0C9F43285845280AF65B7E3189106B62AC80 Authority key identifier: 00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/a0b6de0c-1f37-3fcc-882c-34d7ea4c8be8.roa Signing time: Sun 10 Mar 2024 02:00:25 +0000 ROA not before: Sun 10 Mar 2024 02:00:25 +0000 ROA not after: Sat 08 Jun 2024 01:00:25 +0000 asID: 397423 IP address blocks: 147.124.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:28:0a:f6:5b:7e:31:89:10:6b:62:ac:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=417c06d0-3203-44fd-b164-0aed50f5638b Validity Not Before: Mar 10 02:00:25 2024 GMT Not After : Jun 8 01:00:25 2024 GMT Subject: CN=dbad88f1-5eb3-40d2-aefb-19bdcc598761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:17:48:1f:ac:af:d7:03:30:46:a3:45:04:ff: 86:90:21:cc:7e:f8:e0:2c:48:e4:7c:15:48:c5:88: 27:60:07:f3:4e:d1:1e:ec:54:b6:4f:d6:d4:bd:7f: f8:d9:e9:a7:c0:83:79:69:40:2a:05:07:d4:fb:4f: 9a:b5:13:0e:58:17:eb:05:16:5a:ad:8e:55:fd:71: 8e:3b:b7:a1:b7:fd:30:e5:ba:97:21:ae:d7:b6:fc: 4b:c2:41:2e:7e:fa:68:b4:cb:0d:f1:eb:e3:0b:58: 55:04:5f:16:b3:d7:53:76:54:5c:f4:de:d4:20:ad: 72:52:7a:48:dc:89:4d:5a:bd:ac:a1:2e:c0:37:b1: 89:93:5c:98:0e:d6:90:91:ba:96:ce:b4:db:f0:29: 8d:20:21:54:d6:f9:ac:0a:aa:e6:4d:af:f2:a0:a0: cb:75:ab:68:d0:5f:fb:eb:15:12:ed:06:87:95:55: 1b:d6:66:7c:48:ca:1d:e2:82:56:af:af:ce:25:24: d2:c2:d3:56:b2:0a:2d:90:d1:4b:9b:39:4d:ab:ed: ac:d0:cd:af:14:3d:4c:aa:9b:97:51:37:04:ba:ca: 84:ad:0e:b3:2b:c4:58:95:fb:42:15:00:3d:13:3e: bf:dc:9a:5f:11:6b:27:08:a6:76:c1:76:06:74:73: 4e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:70:58:F3:E2:A0:CE:7D:D5:14:46:0E:19:EC:C4:A8:73:7B:77:3D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/a0b6de0c-1f37-3fcc-882c-34d7ea4c8be8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b/417c06d0-3203-44fd-b164-0aed50f5638b.crl X509v3 Authority Key Identifier: keyid:00:CE:A0:C5:4C:5A:68:B3:D1:09:2A:66:78:F3:83:C9:42:07:C5:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/417c06d0-3203-44fd-b164-0aed50f5638b.cer sbgp-ipAddrBlock: critical IPv4: 147.124.192.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 93:30:3b:34:24:33:b3:d9:11:d1:f3:35:d2:aa:d8:b9:ab:85: a5:87:49:37:c6:c5:65:18:a5:b0:79:26:73:70:35:d3:8f:f7: 04:96:9c:93:90:0d:e5:b4:a3:0a:39:77:f3:50:b6:a7:74:2b: 49:87:42:76:30:70:f5:eb:4e:f7:22:a4:85:0c:1a:6d:61:63: e5:c3:6c:c1:0f:ce:c1:a6:c2:67:25:26:24:e3:b7:0f:ad:48: bc:4a:9c:89:04:96:a9:b5:4f:4b:7c:27:b3:37:7b:de:04:7c: bb:58:34:9a:35:35:ff:1e:17:df:06:b1:3d:81:b1:c0:56:8d: 32:28:a2:26:9e:f5:f4:1d:65:b4:3d:6b:43:a6:ea:7b:81:47: 2d:0e:fe:9b:b2:43:82:86:df:c7:24:55:26:ec:0e:c8:c5:84: ce:c1:ed:4d:09:47:a5:00:9c:1e:51:76:80:0c:08:f8:e0:4e: 5b:a6:4a:93:fd:a3:7f:06:b5:b2:bd:d4:7f:81:59:5c:cb:e4: 64:dd:73:f2:c1:32:f4:7f:7c:08:0e:4a:2f:98:61:c0:a4:f6: 89:e9:16:24:fc:bb:59:d0:0f:35:0f:cb:52:4c:80:18:8a:e2: 63:d1:53:fd:c6:8d:7b:de:d3:bd:25:7a:fa:db:49:e1:55:35: f7:7c:28:26 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEUoCvZbfjGJEGtirIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDE3YzA2ZDAtMzIwMy00NGZkLWIxNjQtMGFlZDUwZjU2 MzhiMB4XDTI0MDMxMDAyMDAyNVoXDTI0MDYwODAxMDAyNVowLzEtMCsGA1UEAxMk ZGJhZDg4ZjEtNWViMy00MGQyLWFlZmItMTliZGNjNTk4NzYxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyRdIH6yv1wMwRqNFBP+GkCHMfvjgLEjkfBVI xYgnYAfzTtEe7FS2T9bUvX/42emnwIN5aUAqBQfU+0+atRMOWBfrBRZarY5V/XGO O7eht/0w5bqXIa7XtvxLwkEufvpotMsN8evjC1hVBF8Ws9dTdlRc9N7UIK1yUnpI 3IlNWr2soS7AN7GJk1yYDtaQkbqWzrTb8CmNICFU1vmsCqrmTa/yoKDLdato0F/7 6xUS7QaHlVUb1mZ8SMod4oJWr6/OJSTSwtNWsgotkNFLmzlNq+2s0M2vFD1MqpuX UTcEusqErQ6zK8RYlftCFQA9Ez6/3JpfEWsnCKZ2wXYGdHNO9QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFEJwWPPioM591RRGDhnsxKhze3c9MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80MTdj MDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVkNTBmNTYzOGIvYTBiNmRlMGMtMWYzNy0z ZmNjLTg4MmMtMzRkN2VhNGM4YmU4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDE3YzA2ZDAtMzIwMy00NGZkLWIx NjQtMGFlZDUwZjU2MzhiLzQxN2MwNmQwLTMyMDMtNDRmZC1iMTY0LTBhZWQ1MGY1 NjM4Yi5jcmwwHwYDVR0jBBgwFoAUAM6gxUxaaLPRCSpmePODyUIHxf0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80MTdjMDZkMC0zMjAzLTQ0ZmQtYjE2NC0wYWVk NTBmNTYzOGIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk3zAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJMwOzQkM7PZEdHzNdKq2LmrhaWHSTfGxWUYpbB5JnNwNdOP9wSWnJOQ DeW0owo5d/NQtqd0K0mHQnYwcPXrTvcipIUMGm1hY+XDbMEPzsGmwmclJiTjtw+t SLxKnIkElqm1T0t8J7M3e94EfLtYNJo1Nf8eF98GsT2BscBWjTIooiae9fQdZbQ9 a0Om6nuBRy0O/puyQ4KG38ckVSbsDsjFhM7B7U0JR6UAnB5RdoAMCPjgTlumSpP9 o38GtbK91H+BWVzL5GTdc/LBMvR/fAgOSi+YYcCk9onpFiT8u1nQDzUPy1JMgBiK 4mPRU/3GjXve070levrbSeFVNfd8KCY= -----END CERTIFICATE-----Generated at Sat May 4 15:01:44 2024 by rpki-client on console-ams.rpki-client.org