$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa File: 5aa60e94-2eda-3416-b925-e6b36e93be4e.roa (raw, json) Hash identifier: hhA0AD6xv4MQJsaVDbDtU195UQ4FqsQx0hpR7Da28YM= Subject key identifier: 6C:79:7F:3F:08:21:AC:5B:4F:C1:01:0C:69:05:48:B4:C6:CD:73:16 Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F43285847F155284EF5A6BEB408CD1800 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa Signing time: Wed 20 Nov 2024 14:00:52 +0000 ROA not before: Wed 20 Nov 2024 14:00:52 +0000 ROA not after: Tue 18 Feb 2025 14:00:52 +0000 asID: 14 IP address blocks: 209.2.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:f1:55:28:4e:f5:a6:be:b4:08:cd:18:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Nov 20 14:00:52 2024 GMT Not After : Feb 18 14:00:52 2025 GMT Subject: CN=5330566d-37bc-4892-a829-f83e26c27c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:b2:fb:df:e9:1d:4c:da:c9:ac:7c:e5:43:ca: ed:46:3f:54:ed:da:98:64:f9:1a:00:32:09:be:7a: 86:ad:7b:01:53:33:2c:bb:30:f3:44:01:c6:42:41: f0:b5:b7:66:7a:93:03:5d:e2:94:3f:6f:9b:98:6e: d6:db:0a:80:f6:ea:35:33:17:0a:b5:8a:fc:44:08: 2e:6d:f3:65:79:73:20:6e:03:e4:20:61:a6:ab:1d: 93:aa:fd:e4:ff:fb:fa:82:30:89:5a:0f:5b:7c:d5: 31:cc:d6:cc:eb:c5:32:b0:52:8d:25:5f:76:83:f3: 9d:9e:3c:1a:42:b7:7e:34:e5:23:b9:72:b1:17:e7: e2:69:ac:1c:33:b5:34:15:ca:11:89:0f:44:47:11: 7c:a9:67:bb:6b:7c:c3:03:28:46:24:68:40:40:31: 21:09:dc:70:12:7f:e5:73:2b:6d:bd:fd:c6:14:09: fc:8a:2a:f2:5f:47:c0:b5:ae:71:e2:3a:09:7f:b4: b2:4e:2a:eb:10:d4:aa:84:e4:08:17:a7:bf:3d:07: 04:02:b9:11:8d:8b:33:c2:aa:f7:89:46:ba:0a:ad: c7:cb:76:cc:29:80:b7:40:bb:bc:08:1c:74:25:76: 2a:a0:54:3c:0c:e2:42:e3:21:df:24:d5:8a:d1:1c: 18:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:79:7F:3F:08:21:AC:5B:4F:C1:01:0C:69:05:48:B4:C6:CD:73:16 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 209.2.208.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 00:e0:14:f1:cc:38:33:04:f2:f1:86:99:e0:76:ea:e8:b8:9c: 10:0b:8a:29:a2:dd:e3:9d:b7:0d:79:bf:49:ba:f7:3c:92:60: 69:ae:f9:69:3e:52:88:e8:f7:e1:29:d3:35:76:4a:93:a0:69: bb:cc:46:96:8a:65:61:9a:f9:4c:7b:17:0c:13:0b:e7:39:b0: 1d:78:11:ee:ec:09:b2:0c:57:77:9f:cd:e3:8a:44:24:56:45: ce:97:4c:6a:d7:27:0a:17:82:1d:bf:5e:10:d5:ca:29:70:84: 6d:e7:e1:b2:de:53:a0:69:e9:7b:f7:3d:3d:09:29:24:f3:ea: 00:3a:20:f6:ed:b5:34:45:62:75:5a:84:a6:d7:60:e3:b5:7e: 50:c1:9d:39:e5:0a:62:9f:b6:22:3d:74:85:a7:82:7d:6d:6f: 92:12:54:62:13:66:dc:21:04:e2:33:31:fe:12:cc:7a:b6:a0: 70:92:ab:9e:2e:ce:a3:c9:40:74:81:13:78:3b:5a:87:bb:2e: 68:93:70:ec:ef:94:95:b7:f0:78:87:df:63:81:95:40:20:13: 0e:c8:91:ba:0c:28:b9:63:ff:24:81:d5:64:8e:a4:97:2c:12: 11:41:b9:db:08:11:b8:2c:7d:76:6e:19:48:e1:b7:fb:6b:4a: 55:c1:56:65 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEfxVShO9aa+tAjNGAAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI0MTEyMDE0MDA1MloXDTI1MDIxODE0MDA1MlowLzEtMCsGA1UEAxMk NTMzMDU2NmQtMzdiYy00ODkyLWE4MjktZjgzZTI2YzI3YzVlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgLL73+kdTNrJrHzlQ8rtRj9U7dqYZPkaADIJ vnqGrXsBUzMsuzDzRAHGQkHwtbdmepMDXeKUP2+bmG7W2wqA9uo1MxcKtYr8RAgu bfNleXMgbgPkIGGmqx2Tqv3k//v6gjCJWg9bfNUxzNbM68UysFKNJV92g/Odnjwa Qrd+NOUjuXKxF+fiaawcM7U0FcoRiQ9ERxF8qWe7a3zDAyhGJGhAQDEhCdxwEn/l cyttvf3GFAn8iiryX0fAta5x4joJf7SyTirrENSqhOQIF6e/PQcEArkRjYszwqr3 iUa6Cq3Hy3bMKYC3QLu8CBx0JXYqoFQ8DOJC4yHfJNWK0RwYywIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFGx5fz8IIaxbT8EBDGkFSLTGzXMWMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvNWFhNjBlOTQtMmVkYS0z NDE2LWI5MjUtZTZiMzZlOTNiZTRlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0QLQMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAADgFPHMODME8vGGmeB26ui4nBALiimi3eOdtw15v0m69zySYGmu+Wk+ Uojo9+Ep0zV2SpOgabvMRpaKZWGa+Ux7FwwTC+c5sB14Ee7sCbIMV3efzeOKRCRW Rc6XTGrXJwoXgh2/XhDVyilwhG3n4bLeU6Bp6Xv3PT0JKSTz6gA6IPbttTRFYnVa hKbXYOO1flDBnTnlCmKftiI9dIWngn1tb5ISVGITZtwhBOIzMf4SzHq2oHCSq54u zqPJQHSBE3g7Woe7LmiTcOzvlJW38HiH32OBlUAgEw7IkboMKLlj/ySB1WSOpJcs EhFBudsIEbgsfXZuGUjht/trSlXBVmU= -----END CERTIFICATE-----Generated at Mon Nov 25 15:57:57 2024 by rpki-client on console-fra.rpki-client.org