$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/65a7161d-2924-34be-a4b6-135d275922fb.roa File: 65a7161d-2924-34be-a4b6-135d275922fb.roa (raw, json) Hash identifier: g8tm6Ap6AWneDf6J/+14a9XrpIytcbMH16jm46wIXMI= Subject key identifier: 6F:CB:BF:D3:26:00:BC:B3:A1:83:B1:FF:72:47:D3:A4:BC:0E:1A:E2 Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F43285845533343219B82BB4F9ECCEAC0 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/65a7161d-2924-34be-a4b6-135d275922fb.roa Signing time: Mon 25 Mar 2024 13:00:33 +0000 ROA not before: Mon 25 Mar 2024 13:00:33 +0000 ROA not after: Sun 23 Jun 2024 13:00:33 +0000 asID: 53271 IP address blocks: 72.243.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 25 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:53:33:43:21:9b:82:bb:4f:9e:cc:ea:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Mar 25 13:00:33 2024 GMT Not After : Jun 23 13:00:33 2024 GMT Subject: CN=088b823f-6096-4c42-a4a6-8c0639ef8265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fd:d7:d5:47:90:29:95:4b:8d:9c:a5:6a:f3: 60:d0:b1:cc:66:39:84:07:d9:54:0d:41:3c:ff:ff: 02:8e:1a:c2:73:59:45:ac:0c:96:45:d1:d1:05:4b: 25:c6:e4:9f:57:9a:fa:a6:9f:88:a8:61:bc:0e:06: f9:d8:c7:f8:0b:d6:fc:13:bf:60:0b:65:11:7a:a6: c7:85:c8:03:88:a5:76:e1:12:8c:1b:6d:1e:b8:89: a3:3c:3e:02:6e:13:34:d0:38:75:ac:08:b9:1b:c7: e4:09:4e:60:2b:a4:36:68:58:6f:25:94:1c:29:d6: e7:14:e8:79:d1:29:3c:ef:b4:b2:45:55:29:4d:cb: 0e:d9:7d:53:b6:7d:c3:00:fa:77:cc:21:38:64:77: b9:5f:b6:90:26:d4:e7:ae:76:f0:dd:d9:6e:28:8f: cb:42:51:8d:9c:da:5a:f5:65:55:ae:9c:0b:e9:89: be:0b:f4:06:4a:87:02:dc:72:17:6a:d5:68:76:69: aa:65:c1:c4:53:74:24:53:1d:53:8c:1a:01:98:51: a4:e7:8d:39:d1:e1:f6:29:32:0c:ae:c8:ef:7a:e3: ba:cb:a6:84:d1:46:a3:14:87:5e:48:3d:ee:34:de: c4:4d:a8:15:92:2d:1e:73:a6:54:a1:48:64:6a:a6: 77:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CB:BF:D3:26:00:BC:B3:A1:83:B1:FF:72:47:D3:A4:BC:0E:1A:E2 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/65a7161d-2924-34be-a4b6-135d275922fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 72.243.144.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 1d:90:ff:81:86:c5:24:5b:e5:2c:f1:28:ab:91:b5:d3:42:a2: 40:22:24:f4:ea:9c:03:79:d2:37:91:6c:e2:c0:cd:7c:a7:c5: cc:f8:9b:09:3d:d8:46:c7:6d:50:2d:6e:96:1b:0d:c4:94:b2: f2:82:8b:f4:94:97:d8:c9:c4:66:39:d6:8f:c7:22:f9:c3:44: d2:64:79:e2:38:63:8a:54:b1:fb:93:20:7a:c3:f6:42:74:d0: 1d:e6:ef:65:7f:7c:f8:f8:dc:b6:af:c8:ad:7c:31:1f:1f:a9: 59:de:c7:15:55:14:51:8f:f4:0e:97:12:20:b2:45:c1:0f:7b: 06:3d:08:70:68:da:45:77:eb:77:c0:40:54:ab:fe:25:4c:7b: 75:4a:9d:5b:fa:4a:4d:6f:fe:c0:f7:bb:d0:27:52:77:a1:99: e6:82:36:3b:9b:d1:5b:b9:f8:ac:b7:84:f3:80:c4:8d:2f:6d: 1a:6d:b0:66:ad:4a:04:f8:c7:9b:bc:90:d3:a9:a5:42:ed:15: 71:d5:30:26:b2:0a:49:a6:fd:e1:7c:1e:3a:0f:bc:92:bb:00: 70:bf:1e:69:1e:e4:9b:39:61:a2:cc:6e:79:43:04:b5:bb:c8: 1f:38:72:76:1f:4e:25:f9:05:a0:9e:aa:df:54:00:ce:59:8b: 5a:a6:c9:69 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEVTM0Mhm4K7T57M6sAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI0MDMyNTEzMDAzM1oXDTI0MDYyMzEzMDAzM1owLzEtMCsGA1UEAxMk MDg4YjgyM2YtNjA5Ni00YzQyLWE0YTYtOGMwNjM5ZWY4MjY1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvv3X1UeQKZVLjZylavNg0LHMZjmEB9lUDUE8 //8CjhrCc1lFrAyWRdHRBUslxuSfV5r6pp+IqGG8Dgb52Mf4C9b8E79gC2UReqbH hcgDiKV24RKMG20euImjPD4CbhM00Dh1rAi5G8fkCU5gK6Q2aFhvJZQcKdbnFOh5 0Sk877SyRVUpTcsO2X1Ttn3DAPp3zCE4ZHe5X7aQJtTnrnbw3dluKI/LQlGNnNpa 9WVVrpwL6Ym+C/QGSocC3HIXatVodmmqZcHEU3QkUx1TjBoBmFGk54050eH2KTIM rsjveuO6y6aE0UajFIdeSD3uNN7ETagVki0ec6ZUoUhkaqZ3WwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFG/Lv9MmALyzoYOx/3JH06S8DhriMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvNjVhNzE2MWQtMjkyNC0z NGJlLWE0YjYtMTM1ZDI3NTkyMmZiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBSPOQMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAB2Q/4GGxSRb5SzxKKuRtdNCokAiJPTqnAN50jeRbOLAzXynxcz4mwk9 2EbHbVAtbpYbDcSUsvKCi/SUl9jJxGY51o/HIvnDRNJkeeI4Y4pUsfuTIHrD9kJ0 0B3m72V/fPj43LavyK18MR8fqVnexxVVFFGP9A6XEiCyRcEPewY9CHBo2kV363fA QFSr/iVMe3VKnVv6Sk1v/sD3u9AnUnehmeaCNjub0Vu5+Ky3hPOAxI0vbRptsGat SgT4x5u8kNOppULtFXHVMCayCkmm/eF8HjoPvJK7AHC/Hmke5Js5YaLMbnlDBLW7 yB84cnYfTiX5BaCeqt9UAM5Zi1qmyWk= -----END CERTIFICATE-----Generated at Thu May 23 19:42:28 2024 by rpki-client on console-fra.rpki-client.org