$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/da8f76a4-a1f7-3fc3-97ac-6f66d7ec58a5.roa File: da8f76a4-a1f7-3fc3-97ac-6f66d7ec58a5.roa (raw, json) Hash identifier: UQfAwQxhGvCYrC8qOGzzIN5vZPOeiYb1B7jBg5wYa9g= Subject key identifier: 08:23:7B:DD:3A:DA:67:B0:3D:E0:14:24:AE:4D:57:79:F4:45:24:58 Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Certificate serial: 010D0C9F4328584553330CE54FC03D0E087D6030 Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/da8f76a4-a1f7-3fc3-97ac-6f66d7ec58a5.roa Signing time: Mon 25 Mar 2024 13:00:33 +0000 ROA not before: Mon 25 Mar 2024 13:00:33 +0000 ROA not after: Sun 23 Jun 2024 13:00:33 +0000 asID: 7029 IP address blocks: 173.185.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:53:33:0c:e5:4f:c0:3d:0e:08:7d:60:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3 Validity Not Before: Mar 25 13:00:33 2024 GMT Not After : Jun 23 13:00:33 2024 GMT Subject: CN=b0db6038-b725-4b29-959a-6617cafcc77b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b2:51:f9:d7:64:c6:ae:e2:69:42:83:2f:e0: a0:a5:9c:c6:04:89:59:f6:45:ad:6c:8d:ee:d1:9a: f1:5d:a5:67:b4:3a:c7:88:da:7c:fb:3a:b8:ce:5e: 3b:7e:ad:bb:ad:b2:5e:61:80:75:04:35:25:13:a6: 8f:85:ee:af:64:45:a2:51:00:4e:50:60:4d:46:d2: bc:c1:90:12:6a:33:37:e9:7a:0f:04:21:5d:04:50: 46:27:71:28:c8:fc:97:ee:5a:e4:16:02:cc:c0:93: e9:ef:1e:8b:d3:1c:17:3d:48:a8:06:1a:41:f6:7f: 13:78:6f:da:f5:e0:64:3c:15:bb:1e:4a:0a:f7:f8: 7f:0f:61:4e:b3:16:cf:3f:af:d0:cc:cd:8f:4f:4a: c1:63:c7:80:fa:c9:7b:f9:2d:39:81:7a:91:b6:0f: ae:12:9b:01:0a:da:bf:44:8c:bb:95:90:8a:5b:25: 3f:05:b5:cd:d2:1d:95:8e:be:c5:c8:af:17:42:68: c1:f0:9a:c5:1c:c4:47:12:f2:f5:c8:01:2f:f5:40: 5b:69:0a:bb:89:af:06:a0:7e:eb:fd:44:0d:2b:5b: c6:99:9d:ca:f8:23:57:95:92:a2:49:1c:82:9e:9c: 51:8e:39:1a:17:4e:32:e6:85:09:8e:59:19:19:e1: a7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:23:7B:DD:3A:DA:67:B0:3D:E0:14:24:AE:4D:57:79:F4:45:24:58 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/da8f76a4-a1f7-3fc3-97ac-6f66d7ec58a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl X509v3 Authority Key Identifier: keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer sbgp-ipAddrBlock: critical IPv4: 173.185.64.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0a:ed:0a:19:59:e2:66:6d:c6:2d:a4:5a:50:a1:30:63:b1:3b: 7d:00:c2:8d:f4:94:ea:ee:d0:4d:a1:16:f9:11:fe:87:7f:26: 03:7c:bc:7a:43:7b:6e:fa:84:4d:7f:53:50:86:2e:62:30:37: 90:9c:f2:73:03:6c:94:48:33:cb:8b:87:8c:4e:85:3c:87:2e: 59:22:a7:b3:93:0e:04:df:61:dc:a7:7a:08:93:8a:5d:24:81: 48:e1:e7:2b:02:f6:10:22:a8:cd:76:ae:d4:73:0d:e2:19:43: 48:e7:2e:63:af:d5:d4:ca:fc:94:fa:f8:c4:3f:d5:ca:bb:92: 14:dc:5d:37:92:63:85:7b:9a:e6:66:ec:d2:68:72:e9:91:12: bc:0f:d9:ed:88:af:ff:ea:c9:65:d0:29:7c:c5:0b:d7:a6:f8: 37:7a:d9:88:00:04:26:af:7a:69:30:22:b6:fd:69:ff:38:e1: 0e:ca:1f:f9:1e:0f:1c:ac:48:e3:c7:35:ec:8a:fe:95:c3:f5: 23:d6:65:51:99:53:33:8c:31:c5:24:9d:5c:87:88:25:97:70: 0a:c2:29:33:d0:4a:7b:9c:50:65:40:34:bc:fa:7f:c3:9a:1d: bd:88:e3:68:43:bf:bf:33:03:84:b7:57:83:78:67:84:bd:39: c4:6e:d4:29 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEVTMwzlT8A9Dgh9YDAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDliZDUwNmUtNDQ3Yy00OGU3LTlkNDQtNGIzNzNiMzVi MmQzMB4XDTI0MDMyNTEzMDAzM1oXDTI0MDYyMzEzMDAzM1owLzEtMCsGA1UEAxMk YjBkYjYwMzgtYjcyNS00YjI5LTk1OWEtNjYxN2NhZmNjNzdiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrJR+ddkxq7iaUKDL+CgpZzGBIlZ9kWtbI3u 0ZrxXaVntDrHiNp8+zq4zl47fq27rbJeYYB1BDUlE6aPhe6vZEWiUQBOUGBNRtK8 wZASajM36XoPBCFdBFBGJ3EoyPyX7lrkFgLMwJPp7x6L0xwXPUioBhpB9n8TeG/a 9eBkPBW7HkoK9/h/D2FOsxbPP6/QzM2PT0rBY8eA+sl7+S05gXqRtg+uEpsBCtq/ RIy7lZCKWyU/BbXN0h2Vjr7FyK8XQmjB8JrFHMRHEvL1yAEv9UBbaQq7ia8GoH7r /UQNK1vGmZ3K+CNXlZKiSRyCnpxRjjkaF04y5oUJjlkZGeGnOwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFAgje9062mewPeAUJK5NV3n0RSRYMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy80OWJk NTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3M2IzNWIyZDMvZGE4Zjc2YTQtYTFmNy0z ZmMzLTk3YWMtNmY2NmQ3ZWM1OGE1LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNDliZDUwNmUtNDQ3Yy00OGU3LTlk NDQtNGIzNzNiMzViMmQzLzQ5YmQ1MDZlLTQ0N2MtNDhlNy05ZDQ0LTRiMzczYjM1 YjJkMy5jcmwwHwYDVR0jBBgwFoAUdwOJO4YyY/94LoeEDRI/xecTaOQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy80OWJkNTA2ZS00NDdjLTQ4ZTctOWQ0NC00YjM3 M2IzNWIyZDMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQErblAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAArtChlZ4mZtxi2kWlChMGOxO30Awo30lOru0E2hFvkR/od/JgN8vHpD e276hE1/U1CGLmIwN5Cc8nMDbJRIM8uLh4xOhTyHLlkip7OTDgTfYdynegiTil0k gUjh5ysC9hAiqM12rtRzDeIZQ0jnLmOv1dTK/JT6+MQ/1cq7khTcXTeSY4V7muZm 7NJocumRErwP2e2Ir//qyWXQKXzFC9em+Dd62YgABCavemkwIrb9af844Q7KH/ke DxysSOPHNeyK/pXD9SPWZVGZUzOMMcUknVyHiCWXcArCKTPQSnucUGVANLz6f8Oa Hb2I42hDv78zA4S3V4N4Z4S9OcRu1Ck= -----END CERTIFICATE-----Generated at Sat May 18 01:54:42 2024 by rpki-client on console-ams.rpki-client.org