$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa File: 5aa60e94-2eda-3416-b925-e6b36e93be4e.roa (raw, json) Hash identifier: P578F84eqKhx81Iy5Bob0VFPyqMtDFuyT1y/1R/75Hg= Subject key identifier: 1A:10:8E:F8:80:98:44:06:63:E9:F0:FA:86:29:13:23:BB:92:F9:9C Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F432858455332D3C6B93C151EDA6AFA00 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa Signing time: Mon 25 Mar 2024 13:00:33 +0000 ROA not before: Mon 25 Mar 2024 13:00:33 +0000 ROA not after: Sun 23 Jun 2024 13:00:33 +0000 asID: 14 IP address blocks: 209.2.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:53:32:d3:c6:b9:3c:15:1e:da:6a:fa:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Mar 25 13:00:33 2024 GMT Not After : Jun 23 13:00:33 2024 GMT Subject: CN=4f9c3392-4b05-4175-94ef-4ab5d6b70e65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:75:1f:62:2f:7e:e7:1e:ce:76:36:dd:7a:3c: d1:63:79:b8:60:96:e6:73:1b:e7:d4:d4:93:71:cd: 7d:4b:f7:22:1f:4e:28:12:22:53:30:4a:cc:25:38: 5c:79:ad:b5:a9:2b:1a:ff:de:e4:71:04:e4:1d:10: a7:74:de:9a:4d:04:92:37:3d:2e:22:70:c0:0c:79: f3:1c:4f:2e:91:7c:fa:1e:ed:31:8e:8a:18:d0:af: 17:41:dc:3c:08:e3:4a:c3:97:9f:35:e3:17:66:91: 6e:95:64:64:56:48:06:67:ca:d4:9e:7f:9b:63:8d: bb:c0:07:57:a3:5e:09:b6:83:fd:2b:29:bc:8f:8f: 6e:d0:de:8e:d9:27:c2:ad:3e:9c:ab:80:43:06:c2: 81:2b:be:60:bd:28:cb:e6:a1:32:cc:e6:a5:3c:04: ad:2b:a6:7d:f9:ab:3f:19:05:07:0d:75:0d:05:29: 04:ba:88:6f:21:72:5a:35:04:0e:a6:53:ea:b7:5e: ec:47:86:90:0f:7d:b7:9d:52:92:5f:34:67:8e:23: 99:2a:e4:f7:98:03:ad:6d:00:0d:c4:cf:df:87:03: 25:0c:03:b8:5b:f8:48:f7:0b:3e:a1:45:a5:e4:9b: 25:38:a5:39:d5:e4:77:20:00:3c:5b:f0:52:14:37: e6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:10:8E:F8:80:98:44:06:63:E9:F0:FA:86:29:13:23:BB:92:F9:9C Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/5aa60e94-2eda-3416-b925-e6b36e93be4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 209.2.208.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8f:37:03:6f:2c:2a:a6:5b:03:65:9c:c3:8e:cb:57:b5:98:7e: 9b:fc:8c:f4:f3:90:9f:75:60:a3:9a:8d:6b:32:2f:73:7c:33: 72:15:38:be:12:05:20:b6:a6:60:ea:15:80:e9:5c:2d:aa:4d: 2a:c7:94:d1:96:bd:03:5c:9a:0e:1d:3f:46:34:62:3b:95:7c: d6:f5:a0:e5:3f:b9:78:1d:04:b2:d0:b0:83:90:53:c0:6d:1f: a7:a6:49:f1:da:ca:06:e7:7a:6c:3d:0e:3e:94:34:d7:9f:27: 5a:62:64:a7:ab:93:35:a9:62:bc:81:d5:68:30:7c:8a:4f:bf: 5f:ba:08:2f:17:11:b4:1f:2e:d8:59:7c:53:9e:f5:5e:aa:29: 75:ad:bd:aa:3e:8a:b3:52:c9:83:ca:9e:05:43:14:ca:cc:cc: 3c:96:78:33:f2:98:37:cb:3a:a6:51:77:38:c3:b0:61:b7:bf: d3:74:59:d7:38:42:a7:7e:69:90:f6:ae:3d:e1:cd:99:30:fc: 8b:8c:8d:1e:f4:12:18:0f:fc:76:c5:48:1c:d4:94:b5:05:c1: 43:86:30:37:c7:85:c5:02:d1:a1:8c:ce:d5:68:e8:e6:1d:fa: fb:22:1e:f2:f9:49:60:75:3a:08:47:14:88:12:32:dc:84:dc: b4:84:1f:9d -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEVTMtPGuTwVHtpq+gAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI0MDMyNTEzMDAzM1oXDTI0MDYyMzEzMDAzM1owLzEtMCsGA1UEAxMk NGY5YzMzOTItNGIwNS00MTc1LTk0ZWYtNGFiNWQ2YjcwZTY1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAinUfYi9+5x7OdjbdejzRY3m4YJbmcxvn1NST cc19S/ciH04oEiJTMErMJThcea21qSsa/97kcQTkHRCndN6aTQSSNz0uInDADHnz HE8ukXz6Hu0xjooY0K8XQdw8CONKw5efNeMXZpFulWRkVkgGZ8rUnn+bY427wAdX o14JtoP9Kym8j49u0N6O2SfCrT6cq4BDBsKBK75gvSjL5qEyzOalPAStK6Z9+as/ GQUHDXUNBSkEuohvIXJaNQQOplPqt17sR4aQD323nVKSXzRnjiOZKuT3mAOtbQAN xM/fhwMlDAO4W/hI9ws+oUWl5JslOKU51eR3IAA8W/BSFDfmYQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFBoQjviAmEQGY+nw+oYpEyO7kvmcMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvNWFhNjBlOTQtMmVkYS0z NDE2LWI5MjUtZTZiMzZlOTNiZTRlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0QLQMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAI83A28sKqZbA2Wcw47LV7WYfpv8jPTzkJ91YKOajWsyL3N8M3IVOL4S BSC2pmDqFYDpXC2qTSrHlNGWvQNcmg4dP0Y0YjuVfNb1oOU/uXgdBLLQsIOQU8Bt H6emSfHaygbnemw9Dj6UNNefJ1piZKerkzWpYryB1WgwfIpPv1+6CC8XEbQfLthZ fFOe9V6qKXWtvao+irNSyYPKngVDFMrMzDyWeDPymDfLOqZRdzjDsGG3v9N0Wdc4 Qqd+aZD2rj3hzZkw/IuMjR70EhgP/HbFSBzUlLUFwUOGMDfHhcUC0aGMztVo6OYd +vsiHvL5SWB1OghHFIgSMtyE3LSEH50= -----END CERTIFICATE-----Generated at Sat May 18 01:40:33 2024 by rpki-client on console-fra.rpki-client.org