$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa File: d57da0e6-f691-31f3-9cdb-493375eb5d74.roa (raw, json) Hash identifier: WvAis9KpDIWAeDQCsXBXtbvCkQcIucs6FcNsLZTqM7k= Subject key identifier: AC:18:FA:5D:64:E3:10:34:21:55:94:68:2F:CD:A1:80:57:C9:97:8B Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F432858475D40D29F5B621722659A7080 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa Signing time: Sat 28 Sep 2024 13:00:41 +0000 ROA not before: Sat 28 Sep 2024 13:00:41 +0000 ROA not after: Fri 27 Dec 2024 14:00:41 +0000 asID: 7029 IP address blocks: 71.29.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:5d:40:d2:9f:5b:62:17:22:65:9a:70:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Sep 28 13:00:41 2024 GMT Not After : Dec 27 14:00:41 2024 GMT Subject: CN=2d7cd66b-0abd-492f-b76c-491c81c6f645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:af:00:d5:05:f1:62:39:eb:ae:0c:ca:5b:41: 55:4e:ba:f4:b9:63:90:34:3e:b5:ef:76:d8:d8:af: 0f:06:c8:86:0c:eb:19:ea:26:3b:88:80:da:40:78: ed:e7:a9:fb:a7:ba:62:fa:b8:24:16:b0:de:e8:89: 18:ce:8b:22:fd:e8:08:bb:a5:31:56:18:61:e9:da: 1a:80:89:12:f1:cc:16:7a:25:31:f9:a7:6a:69:db: 90:91:97:18:4f:b3:ad:6d:f8:ec:45:a9:f1:69:a1: 0c:02:1a:5a:6f:33:83:ce:a8:3e:78:c5:25:1e:35: b3:9e:99:05:8b:d8:c2:c4:76:b9:66:2d:e7:c5:26: 38:e4:67:ec:38:a7:ef:a0:87:aa:aa:a1:cc:0e:a6: e9:29:13:7b:ad:e2:33:a3:82:92:65:6c:20:03:e3: 53:ec:ac:6b:3a:08:0a:ee:44:1f:3f:42:9e:33:3f: 3a:e9:fc:91:19:b4:e8:49:66:17:bb:cb:ad:cb:c1: bd:0e:42:a3:29:0c:81:03:4b:60:18:22:e6:00:79: 1d:e0:87:27:58:79:9a:91:fa:20:08:7d:5e:74:60: 42:cc:04:0c:55:c7:18:50:5d:b2:61:ce:ea:55:24: 60:53:52:ec:db:7f:d1:55:da:d5:9c:ee:98:49:4f: 78:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:18:FA:5D:64:E3:10:34:21:55:94:68:2F:CD:A1:80:57:C9:97:8B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/d57da0e6-f691-31f3-9cdb-493375eb5d74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 71.29.252.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 94:e5:cf:ff:89:ca:77:93:2a:bc:f7:c6:87:cf:61:76:88:58: dd:5b:ac:79:c2:fc:19:b4:1e:2a:eb:92:41:4d:c3:6d:49:25: b6:1d:f3:54:10:19:e8:a2:1a:06:d2:9c:32:a5:53:6f:42:63: 15:0d:8c:bd:af:d2:fa:d0:44:cc:88:f9:b8:b6:f2:81:4c:21: b9:b9:62:7a:a4:ef:f8:1c:c5:18:9a:94:43:c7:59:90:ab:ba: a9:4f:5e:9a:47:d5:ec:32:0a:3e:00:56:ca:b5:cf:0a:af:d6: 7f:f4:11:77:fc:70:ac:7b:9b:89:a9:d9:3b:03:0e:bc:b7:69: a9:86:1b:67:0b:74:71:91:82:34:7c:48:c0:5a:43:28:6c:86: 4e:c5:35:31:78:12:9d:5a:47:7c:36:bc:66:d3:3a:f3:24:e3: 1d:e1:23:af:2a:10:b2:33:8f:6c:d9:83:53:09:f7:97:0d:73: ab:c1:6e:ab:bb:e0:23:da:e5:d4:ae:d3:50:3f:5f:3e:0c:0a: 26:c7:4e:ae:fd:77:81:0b:a6:33:10:b5:a5:d8:40:fe:59:41: 33:a7:e3:b4:66:20:8f:04:77:63:cd:18:27:a1:73:d7:f8:00: 13:86:9d:29:e4:83:ec:ee:07:3c:56:f9:dc:c5:29:b3:99:c4: 53:96:60:79 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEddQNKfW2IXImWacIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI0MDkyODEzMDA0MVoXDTI0MTIyNzE0MDA0MVowLzEtMCsGA1UEAxMk MmQ3Y2Q2NmItMGFiZC00OTJmLWI3NmMtNDkxYzgxYzZmNjQ1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAha8A1QXxYjnrrgzKW0FVTrr0uWOQND6173bY 2K8PBsiGDOsZ6iY7iIDaQHjt56n7p7pi+rgkFrDe6IkYzosi/egIu6UxVhhh6doa gIkS8cwWeiUx+adqaduQkZcYT7OtbfjsRanxaaEMAhpabzODzqg+eMUlHjWznpkF i9jCxHa5Zi3nxSY45GfsOKfvoIeqqqHMDqbpKRN7reIzo4KSZWwgA+NT7KxrOggK 7kQfP0KeMz866fyRGbToSWYXu8uty8G9DkKjKQyBA0tgGCLmAHkd4IcnWHmakfog CH1edGBCzAQMVccYUF2yYc7qVSRgU1Ls23/RVdrVnO6YSU94lQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFKwY+l1k4xA0IVWUaC/NoYBXyZeLMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvZDU3ZGEwZTYtZjY5MS0z MWYzLTljZGItNDkzMzc1ZWI1ZDc0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCRx38MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAJTlz/+JyneTKrz3xofPYXaIWN1brHnC/Bm0HirrkkFNw21JJbYd81QQ GeiiGgbSnDKlU29CYxUNjL2v0vrQRMyI+bi28oFMIbm5Ynqk7/gcxRialEPHWZCr uqlPXppH1ewyCj4AVsq1zwqv1n/0EXf8cKx7m4mp2TsDDry3aamGG2cLdHGRgjR8 SMBaQyhshk7FNTF4Ep1aR3w2vGbTOvMk4x3hI68qELIzj2zZg1MJ95cNc6vBbqu7 4CPa5dSu01A/Xz4MCibHTq79d4ELpjMQtaXYQP5ZQTOn47RmII8Ed2PNGCehc9f4 ABOGnSnkg+zuBzxW+dzFKbOZxFOWYHk= -----END CERTIFICATE-----Generated at Sun Nov 24 20:59:34 2024 by rpki-client on console-fra.rpki-client.org