$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/b7e16c33-7116-3de1-93a9-e72625b2650f.roa File: b7e16c33-7116-3de1-93a9-e72625b2650f.roa (raw, json) Hash identifier: /pTECmA13LJFP94hjfviBE2sjh/wTm6f7yx63l+wuXY= Subject key identifier: 34:3A:AB:F7:4D:5A:34:03:57:AE:B4:F2:E9:39:D9:A3:F7:3D:F1:41 Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F432858455332D3FC5BECCCE6763138C0 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/b7e16c33-7116-3de1-93a9-e72625b2650f.roa Signing time: Mon 25 Mar 2024 13:00:33 +0000 ROA not before: Mon 25 Mar 2024 13:00:33 +0000 ROA not after: Sun 23 Jun 2024 13:00:33 +0000 asID: 209 IP address blocks: 71.16.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 24 May 2024 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:53:32:d3:fc:5b:ec:cc:e6:76:31:38:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Mar 25 13:00:33 2024 GMT Not After : Jun 23 13:00:33 2024 GMT Subject: CN=8f0c25c6-63dd-4b82-aeb8-7646f239a699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:00:de:f5:2d:63:c9:04:fd:82:3e:fc:69:a5: 37:51:5b:8f:84:aa:08:d2:f2:dc:4a:95:a8:1d:97: dc:31:53:eb:ed:f8:9c:4e:50:73:e4:2f:50:fd:ff: eb:0b:81:c1:dc:8e:0a:55:d6:94:5d:c6:25:20:9f: d9:ae:9a:b6:d6:c8:d0:0d:7d:23:51:6b:25:8a:56: da:11:42:4d:52:45:a4:c5:e3:d6:cf:27:59:fe:da: 4c:50:87:a0:1b:a3:0a:e3:9f:e4:19:b8:30:ea:2c: 5a:9c:c1:d2:03:3f:64:7a:fa:75:4a:ee:0a:5f:d3: ab:35:02:ac:e4:f4:9c:80:ad:b4:0a:98:f3:9b:15: 11:5c:43:5f:be:a2:f2:5d:2c:c2:49:d1:6c:2f:79: 32:4d:73:a7:68:0f:fe:cf:e8:d9:53:69:0e:11:22: 5c:2e:f9:3b:85:ed:93:2a:12:2d:f3:cf:47:e2:f7: 70:6c:29:71:f4:9f:d4:7d:2c:24:f3:0c:df:6c:8e: 8a:e1:f0:66:2b:fd:c2:09:5a:68:92:ac:ed:4e:5f: 36:14:df:a4:29:d4:98:c6:d5:ae:c1:43:0f:a8:15: 8d:51:56:ec:3c:48:95:1c:cb:fb:a3:77:d7:06:aa: 35:81:52:e8:79:43:60:4f:be:5a:4f:7d:2a:9e:cd: 53:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:3A:AB:F7:4D:5A:34:03:57:AE:B4:F2:E9:39:D9:A3:F7:3D:F1:41 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/b7e16c33-7116-3de1-93a9-e72625b2650f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 71.16.35.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 29:e0:02:41:03:42:02:61:e5:e1:5a:5f:38:eb:14:29:2d:ef: 59:46:8e:82:3a:6b:2c:b3:ab:5b:bc:bc:f1:4f:a4:8d:30:94: 09:08:0a:8b:b7:8a:32:2d:0e:f6:a8:d9:e1:a5:97:39:ab:ce: f2:4b:35:88:3c:6c:a2:1e:2b:61:24:f8:5c:63:43:92:e8:10: b1:d0:20:eb:f5:30:dd:21:2b:9c:b5:7e:5e:8b:b5:50:bb:ee: 93:78:5f:0e:17:80:9a:1a:98:79:85:97:2c:a4:0d:70:f9:44: 40:35:db:3a:3d:86:94:c2:d8:28:54:6a:02:9a:8c:91:d4:9d: 25:ea:a8:68:0c:7b:12:3f:54:19:2e:a6:de:89:fc:ce:17:ef: b2:0a:d6:ab:4c:fe:ab:b3:30:0a:e9:72:3d:34:54:5c:43:44: 4e:b3:12:15:82:a6:4c:d5:69:96:2f:27:33:76:38:a1:76:5c: 78:56:ce:33:b7:13:f2:97:c0:8c:35:23:c7:6a:7a:8c:f6:da: 08:5f:4c:06:e2:2b:e1:bb:6b:f9:c3:76:e6:f1:49:30:18:d7: 1b:0b:eb:18:7b:4f:13:f3:b9:37:e4:fb:fb:6f:3c:a7:63:c3: 6e:87:6f:27:55:25:e0:99:6b:5e:c6:06:3c:78:47:52:79:60: 7e:a8:5c:94 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEVTMtP8W+zM5nYxOMAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI0MDMyNTEzMDAzM1oXDTI0MDYyMzEzMDAzM1owLzEtMCsGA1UEAxMk OGYwYzI1YzYtNjNkZC00YjgyLWFlYjgtNzY0NmYyMzlhNjk5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgDe9S1jyQT9gj78aaU3UVuPhKoI0vLcSpWo HZfcMVPr7ficTlBz5C9Q/f/rC4HB3I4KVdaUXcYlIJ/Zrpq21sjQDX0jUWslilba EUJNUkWkxePWzydZ/tpMUIegG6MK45/kGbgw6ixanMHSAz9kevp1Su4KX9OrNQKs 5PScgK20CpjzmxURXENfvqLyXSzCSdFsL3kyTXOnaA/+z+jZU2kOESJcLvk7he2T KhIt889H4vdwbClx9J/UfSwk8wzfbI6K4fBmK/3CCVpokqztTl82FN+kKdSYxtWu wUMPqBWNUVbsPEiVHMv7o3fXBqo1gVLoeUNgT75aT30qns1ThQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDQ6q/dNWjQDV6608uk52aP3PfFBMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvYjdlMTZjMzMtNzExNi0z ZGUxLTkzYTktZTcyNjI1YjI2NTBmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQARxAjMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACngAkEDQgJh5eFaXzjrFCkt71lGjoI6ayyzq1u8vPFPpI0wlAkICou3 ijItDvao2eGllzmrzvJLNYg8bKIeK2Ek+FxjQ5LoELHQIOv1MN0hK5y1fl6LtVC7 7pN4Xw4XgJoamHmFlyykDXD5REA12zo9hpTC2ChUagKajJHUnSXqqGgMexI/VBku pt6J/M4X77IK1qtM/quzMArpcj00VFxDRE6zEhWCpkzVaZYvJzN2OKF2XHhWzjO3 E/KXwIw1I8dqeoz22ghfTAbiK+G7a/nDdubxSTAY1xsL6xh7TxPzuTfk+/tvPKdj w26HbydVJeCZa17GBjx4R1J5YH6oXJQ= -----END CERTIFICATE-----Generated at Thu May 23 15:53:53 2024 by rpki-client on console-fra.rpki-client.org