$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/35cdfd2b-4d35-39a7-9bbb-979acbac335b.roa File: 35cdfd2b-4d35-39a7-9bbb-979acbac335b.roa (raw, json) Hash identifier: Q9OfDB0tkyw2ae4oqa3Bsd35lqpmbnRpP4PeO5yg3mM= Subject key identifier: 73:6F:2B:3F:B8:6D:36:8F:1F:A3:1F:2B:D0:D1:0A:E0:55:E9:19:AF Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F432858455332E0C0AF7DF6C6F6364EC0 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/35cdfd2b-4d35-39a7-9bbb-979acbac335b.roa Signing time: Mon 25 Mar 2024 13:00:33 +0000 ROA not before: Mon 25 Mar 2024 13:00:33 +0000 ROA not after: Sun 23 Jun 2024 13:00:33 +0000 asID: 7029 IP address blocks: 64.233.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 24 May 2024 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:53:32:e0:c0:af:7d:f6:c6:f6:36:4e:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Mar 25 13:00:33 2024 GMT Not After : Jun 23 13:00:33 2024 GMT Subject: CN=c92f3bce-02f7-43aa-80d3-2eeed772a9ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:31:44:a7:d5:39:4b:6b:32:4f:5e:ff:72:78: 6b:02:80:95:b4:be:6b:28:5c:ae:61:e2:83:f4:e2: c2:9d:a7:e8:df:55:54:69:c0:51:91:01:2c:c6:d9: 72:e4:dd:3a:06:26:5d:0f:c5:91:02:07:54:6b:4d: 41:bc:27:1a:02:76:56:de:e1:60:47:f7:dd:9b:98: 5b:98:a9:22:54:0e:97:8f:c2:8e:2e:a8:7e:ff:40: d1:a6:68:6b:86:c1:e7:23:3a:fa:ef:18:04:76:be: ec:51:ea:27:4d:d8:e1:1d:6b:69:1d:77:b2:41:2d: 7d:1c:96:da:bf:ec:1d:c9:ac:73:4c:e4:ba:bf:46: 98:3e:20:d6:cd:d5:87:80:8b:21:0b:64:82:5b:45: 8e:0c:48:e1:4a:f5:3e:4a:f0:75:e5:a1:03:33:de: f0:8a:0d:4b:74:eb:4e:da:d8:6e:3e:6c:98:12:f6: b1:53:2b:75:89:5b:b1:3f:5a:d5:3f:66:7a:9e:78: 30:28:b0:93:4f:ba:d1:96:a2:12:57:2e:55:cb:fd: 47:b8:89:4c:03:cd:a8:a4:1a:1d:ed:04:b0:30:cc: 98:f0:3d:54:20:9c:5a:98:0f:f8:7e:ea:1a:c7:c1: c2:19:dd:85:21:94:f7:8e:bf:96:5a:ff:ba:4b:f9: 18:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6F:2B:3F:B8:6D:36:8F:1F:A3:1F:2B:D0:D1:0A:E0:55:E9:19:AF Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/35cdfd2b-4d35-39a7-9bbb-979acbac335b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 64.233.0.0/17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 58:0c:38:23:52:51:f8:5c:94:e1:55:fa:cc:45:08:d2:12:c7: a0:8d:72:91:6d:42:65:cf:a9:43:3d:52:a1:fe:89:67:80:7a: fe:f9:11:1e:9f:b0:76:df:8e:60:dc:1b:52:8d:47:dd:50:11: a7:c1:a6:4a:27:6b:75:42:a0:b8:1b:f9:cb:3a:fd:7a:60:84: 03:4d:57:9a:58:d5:8b:65:ff:71:5e:19:95:a1:46:21:38:f0: b6:38:84:d7:d5:14:66:88:cb:7f:3d:da:87:43:fc:8d:b2:db: 80:ae:10:be:1a:aa:a4:cf:d9:d0:88:ba:3f:70:1b:5b:93:e9: 58:c9:c6:d1:17:70:1c:59:fc:d4:e2:d9:e2:23:e9:dd:93:3e: 8b:bd:d2:50:d6:76:37:4b:e5:2c:15:ef:2f:31:1a:9e:b6:89: 28:7e:06:8c:cf:cd:6c:d3:db:a3:6f:ac:82:2a:db:a4:ec:ac: a1:1e:85:53:a1:4a:8e:73:cc:5f:46:1a:fc:ab:91:92:22:ec: ca:88:4a:39:d5:c0:d0:b7:11:af:ae:2d:26:c2:8a:10:cc:c2: 36:ff:96:be:41:9d:39:0e:c2:b2:80:96:4a:c2:6b:0e:04:17: 46:e7:01:57:0f:96:5c:bd:54:d7:48:80:97:77:bd:4a:5b:8b: d8:4d:bc:26 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEVTMuDAr332xvY2TsAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI0MDMyNTEzMDAzM1oXDTI0MDYyMzEzMDAzM1owLzEtMCsGA1UEAxMk YzkyZjNiY2UtMDJmNy00M2FhLTgwZDMtMmVlZWQ3NzJhOWVjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTFEp9U5S2syT17/cnhrAoCVtL5rKFyuYeKD 9OLCnafo31VUacBRkQEsxtly5N06BiZdD8WRAgdUa01BvCcaAnZW3uFgR/fdm5hb mKkiVA6Xj8KOLqh+/0DRpmhrhsHnIzr67xgEdr7sUeonTdjhHWtpHXeyQS19HJba v+wdyaxzTOS6v0aYPiDWzdWHgIshC2SCW0WODEjhSvU+SvB15aEDM97wig1LdOtO 2thuPmyYEvaxUyt1iVuxP1rVP2Z6nngwKLCTT7rRlqISVy5Vy/1HuIlMA82opBod 7QSwMMyY8D1UIJxamA/4fuoax8HCGd2FIZT3jr+WWv+6S/kYEwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFHNvKz+4bTaPH6MfK9DRCuBV6RmvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvMzVjZGZkMmItNGQzNS0z OWE3LTliYmItOTc5YWNiYWMzMzViLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHQOkAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFgMOCNSUfhclOFV+sxFCNISx6CNcpFtQmXPqUM9UqH+iWeAev75ER6f sHbfjmDcG1KNR91QEafBpkona3VCoLgb+cs6/XpghANNV5pY1Ytl/3FeGZWhRiE4 8LY4hNfVFGaIy3892odD/I2y24CuEL4aqqTP2dCIuj9wG1uT6VjJxtEXcBxZ/NTi 2eIj6d2TPou90lDWdjdL5SwV7y8xGp62iSh+BozPzWzT26NvrIIq26TsrKEehVOh So5zzF9GGvyrkZIi7MqISjnVwNC3Ea+uLSbCihDMwjb/lr5BnTkOwrKAlkrCaw4E F0bnAVcPlly9VNdIgJd3vUpbi9hNvCY= -----END CERTIFICATE-----Generated at Thu May 23 13:44:56 2024 by rpki-client on console-fra.rpki-client.org