$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d185582d-acb3-36ac-8e44-7859686b1c6a.roa File: d185582d-acb3-36ac-8e44-7859686b1c6a.roa (raw, json) Hash identifier: CyhCJ1rOV8u/zr0VF0SGbzKs2scTqpbL2OdbUtsDYcY= Subject key identifier: 99:E0:0D:4A:D0:97:B1:F7:CE:DB:1F:67:43:6E:F6:A6:E5:75:5B:44 Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F43285845533346B53ED3A2F51FB92A00 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d185582d-acb3-36ac-8e44-7859686b1c6a.roa Signing time: Mon 25 Mar 2024 13:00:33 +0000 ROA not before: Mon 25 Mar 2024 13:00:33 +0000 ROA not after: Sun 23 Jun 2024 13:00:33 +0000 asID: 397889 IP address blocks: 199.72.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 02 May 2024 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:53:33:46:b5:3e:d3:a2:f5:1f:b9:2a:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Mar 25 13:00:33 2024 GMT Not After : Jun 23 13:00:33 2024 GMT Subject: CN=73f79915-8f74-4f19-bf50-8a1d58da50a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:74:8d:30:4e:3b:be:12:ba:df:e0:60:14:94: fe:13:bc:16:76:e3:c5:4a:b7:3e:d9:ce:54:a0:6d: e6:e0:4f:ce:75:3a:fe:d3:97:89:d8:d6:9f:26:75: 47:a2:69:ae:1f:73:10:61:bd:51:61:60:72:92:a6: d1:e4:66:4c:55:0b:6c:d5:8c:f6:fd:76:3f:bd:c9: 4b:81:5d:6f:d6:f2:93:15:aa:59:b2:d1:e8:a4:47: a8:5b:63:28:2a:8e:3a:dc:51:de:d7:55:40:c0:3a: 3f:6b:f7:ea:f0:26:4f:a2:6e:98:a7:f1:43:21:13: 8e:a8:31:a5:2d:9e:4c:1e:e1:b7:ac:68:8a:ba:e0: 9e:16:0b:cc:03:f5:fe:30:3a:d3:d5:6c:8b:54:a4: b8:96:28:a1:3f:93:0f:a3:51:30:82:38:86:15:25: 1c:92:c2:26:39:87:97:82:ce:7b:60:a2:79:9a:51: ac:99:44:7d:c7:0a:11:4d:17:c7:6e:fd:3d:ed:40: 6b:0a:b3:a1:9c:ec:62:54:f0:40:5b:71:a1:3b:5b: ff:b0:5a:bb:4c:c2:71:ac:7a:66:1f:62:91:9f:2d: 7c:9e:a1:97:51:36:06:7c:33:59:cd:f2:91:ff:e0: 3c:57:85:12:f9:39:12:d2:d3:67:52:fa:18:aa:2e: 01:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:E0:0D:4A:D0:97:B1:F7:CE:DB:1F:67:43:6E:F6:A6:E5:75:5B:44 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d185582d-acb3-36ac-8e44-7859686b1c6a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 199.72.56.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 51:71:2c:46:1a:42:3d:a8:1b:7d:46:54:75:93:37:94:a1:32: 8a:f1:ad:1b:00:8a:9a:de:f6:14:e7:47:54:32:42:b6:c5:8c: ed:bd:9c:92:ea:93:8b:28:af:fc:47:e6:72:57:06:19:87:de: 70:84:bf:cb:7a:c7:7b:d0:c2:f8:28:c8:4e:b7:b3:66:f7:16: d1:3a:88:c1:b6:74:ce:f4:08:b3:4e:6d:75:47:c3:3e:ca:35: 63:ae:08:25:29:86:f3:2e:c6:25:b1:22:f6:13:56:dc:b5:bd: 4b:3a:b5:15:d9:45:f1:41:7d:13:b9:42:e3:8a:23:ab:ad:9b: d6:60:a1:0c:07:af:d6:3d:0f:08:24:25:7f:58:4f:4b:f3:c5: 10:47:97:d8:ae:4e:2e:75:0c:7b:05:c0:4f:5d:a3:6d:ef:1b: f8:cb:48:f4:67:52:66:05:83:27:d6:64:7c:cc:a5:26:2e:e1: 72:2c:e5:6f:5a:fe:0c:5b:37:46:cd:ec:5d:30:21:9f:64:0c: 3b:73:08:d9:9e:70:1e:ec:32:c8:87:67:f8:ff:e5:68:bd:0b: 7f:72:ef:a8:e1:0b:46:1d:43:c2:62:10:1e:6e:05:f2:9a:64: 14:7c:d5:8d:c8:4a:6f:88:8a:c5:9e:82:e5:c1:c1:28:86:5a: 66:dc:64:19 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEVTM0a1PtOi9R+5KgAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI0MDMyNTEzMDAzM1oXDTI0MDYyMzEzMDAzM1owLzEtMCsGA1UEAxMk NzNmNzk5MTUtOGY3NC00ZjE5LWJmNTAtOGExZDU4ZGE1MGE3MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynSNME47vhK63+BgFJT+E7wWduPFSrc+2c5U oG3m4E/OdTr+05eJ2NafJnVHommuH3MQYb1RYWBykqbR5GZMVQts1Yz2/XY/vclL gV1v1vKTFapZstHopEeoW2MoKo463FHe11VAwDo/a/fq8CZPom6Yp/FDIROOqDGl LZ5MHuG3rGiKuuCeFgvMA/X+MDrT1WyLVKS4liihP5MPo1EwgjiGFSUcksImOYeX gs57YKJ5mlGsmUR9xwoRTRfHbv097UBrCrOhnOxiVPBAW3GhO1v/sFq7TMJxrHpm H2KRny18nqGXUTYGfDNZzfKR/+A8V4US+TkS0tNnUvoYqi4B/QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJngDUrQl7H3ztsfZ0Nu9qbldVtEMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvZDE4NTU4MmQtYWNiMy0z NmFjLThlNDQtNzg1OTY4NmIxYzZhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBx0g4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAFFxLEYaQj2oG31GVHWTN5ShMorxrRsAipre9hTnR1QyQrbFjO29nJLq k4sor/xH5nJXBhmH3nCEv8t6x3vQwvgoyE63s2b3FtE6iMG2dM70CLNObXVHwz7K NWOuCCUphvMuxiWxIvYTVty1vUs6tRXZRfFBfRO5QuOKI6utm9ZgoQwHr9Y9Dwgk JX9YT0vzxRBHl9iuTi51DHsFwE9do23vG/jLSPRnUmYFgyfWZHzMpSYu4XIs5W9a /gxbN0bN7F0wIZ9kDDtzCNmecB7sMsiHZ/j/5Wi9C39y76jhC0YdQ8JiEB5uBfKa ZBR81Y3ISm+IisWeguXBwSiGWmbcZBk= -----END CERTIFICATE-----Generated at Wed May 1 15:54:40 2024 by rpki-client on console-ams.rpki-client.org