$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/83172903-881b-3f0e-becd-943004ff1363.roa File: 83172903-881b-3f0e-becd-943004ff1363.roa (raw, json) Hash identifier: feXFYkJvKcFD3KjiuTHSgHwP/g/HUpwmkkCBO/AoQ+Y= Subject key identifier: A9:EE:71:5D:A3:4E:31:24:A9:3F:20:B9:C1:82:52:94:1F:43:26:0E Certificate issuer: /CN=5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8 Certificate serial: 010D0C9F4328584563F31298728384D9D04B1580 Authority key identifier: 79:3F:09:5A:31:A3:25:A4:40:91:6E:51:4D:CD:AD:D9:75:0B:A8:B4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/83172903-881b-3f0e-becd-943004ff1363.roa Signing time: Sun 31 Mar 2024 13:00:36 +0000 ROA not before: Sun 31 Mar 2024 13:00:36 +0000 ROA not after: Sat 29 Jun 2024 13:00:36 +0000 asID: 212238 IP address blocks: 172.94.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 29 Apr 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:63:f3:12:98:72:83:84:d9:d0:4b:15:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8 Validity Not Before: Mar 31 13:00:36 2024 GMT Not After : Jun 29 13:00:36 2024 GMT Subject: CN=c477c888-c545-49aa-9adf-75e10ae840ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c8:7b:5d:7d:01:7e:dc:f2:c1:74:dd:6d:c7: 4f:2e:b1:85:83:20:2d:dd:9b:4d:1a:05:f0:35:16: 93:cd:61:10:71:d0:cf:88:38:d2:7a:5c:b5:2a:14: 26:48:a5:6c:39:e3:21:d2:ba:bb:d5:de:6e:09:03: 48:8c:56:31:57:8f:4a:b4:00:b2:a0:c1:5b:8d:a5: 82:0d:3f:af:75:23:0d:0f:94:3f:48:87:41:1c:48: 59:c0:83:9a:7b:9e:d9:b1:e1:6e:22:c9:0b:24:b2: 83:b0:94:26:43:8d:d6:1d:d0:54:0a:1d:d1:e5:12: b6:fe:96:35:34:10:24:2c:77:f2:ef:e4:1a:5a:c1: 3f:18:08:b5:11:88:38:62:9e:2b:65:58:25:ea:00: 33:77:1f:b1:58:61:4d:e2:d9:f2:6b:4d:78:04:b0: e4:ce:b2:5f:86:7d:bb:b0:62:db:a4:74:f4:a3:23: 23:3c:8d:ff:7c:99:d9:f3:42:77:41:17:57:06:c5: ba:ea:f3:13:44:04:42:13:79:ae:33:8e:e8:9b:36: 4d:a5:7f:1d:f5:ad:61:78:a5:a2:cf:82:37:9d:72: 2b:ae:54:c6:21:3d:55:be:4e:7e:e4:b6:02:0f:a3: cf:c1:b0:d2:6f:28:dc:aa:54:ae:b9:3d:31:06:e2: 45:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EE:71:5D:A3:4E:31:24:A9:3F:20:B9:C1:82:52:94:1F:43:26:0E Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/83172903-881b-3f0e-becd-943004ff1363.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.crl X509v3 Authority Key Identifier: keyid:79:3F:09:5A:31:A3:25:A4:40:91:6E:51:4D:CD:AD:D9:75:0B:A8:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5c5aa4b4-e30d-468f-bb68-bf7fe133b1b8.cer sbgp-ipAddrBlock: critical IPv4: 172.94.49.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7a:0d:d2:06:de:e7:7d:05:3d:02:f9:03:fc:8e:44:dd:30:73: 88:31:a3:b0:93:4b:62:fd:97:c8:31:db:a9:53:46:65:14:d8: 66:6e:bc:ce:d1:8d:01:d4:5d:ed:bd:ea:ec:5f:66:ac:e1:54: 94:86:f2:68:be:34:23:7d:7d:ca:47:db:4e:69:51:f5:38:49: 35:48:1a:ea:61:89:21:05:6d:4e:11:92:04:1b:f3:74:cd:b3: 2d:a8:75:65:e7:cd:fa:54:c5:8f:3d:d2:3d:1f:dd:01:a1:47: 25:90:74:75:f6:fb:26:9e:93:ad:2b:46:e9:7c:8e:46:b2:06: fc:c6:34:14:56:ac:89:7e:f2:23:38:2c:57:e7:09:09:14:43: 42:ae:02:6a:88:78:c0:a9:d4:c8:fe:0f:e9:d1:40:3f:af:79: 0c:3e:4e:3b:45:f8:62:12:3a:d7:41:22:df:0c:d0:58:96:63: 3a:d3:1c:1b:e4:88:7a:f6:ca:70:29:25:9e:3f:bf:ab:73:c6: be:34:0e:f2:3f:c8:88:83:38:df:03:14:e5:28:69:ce:d8:79: e3:50:3b:3c:6b:57:dd:1f:e0:50:fe:49:7d:d4:b8:22:cd:8d: 05:0e:a8:02:d1:73:e8:87:9e:f1:84:28:da:4f:39:e7:90:61: 4b:cc:ea:20 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEVj8xKYcoOE2dBLFYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNWM1YWE0YjQtZTMwZC00NjhmLWJiNjgtYmY3ZmUxMzNi MWI4MB4XDTI0MDMzMTEzMDAzNloXDTI0MDYyOTEzMDAzNlowLzEtMCsGA1UEAxMk YzQ3N2M4ODgtYzU0NS00OWFhLTlhZGYtNzVlMTBhZTg0MGVlMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8h7XX0BftzywXTdbcdPLrGFgyAt3ZtNGgXw NRaTzWEQcdDPiDjSely1KhQmSKVsOeMh0rq71d5uCQNIjFYxV49KtACyoMFbjaWC DT+vdSMND5Q/SIdBHEhZwIOae57ZseFuIskLJLKDsJQmQ43WHdBUCh3R5RK2/pY1 NBAkLHfy7+QaWsE/GAi1EYg4Yp4rZVgl6gAzdx+xWGFN4tnya014BLDkzrJfhn27 sGLbpHT0oyMjPI3/fJnZ80J3QRdXBsW66vMTRARCE3muM47omzZNpX8d9a1heKWi z4I3nXIrrlTGIT1Vvk5+5LYCD6PPwbDSbyjcqlSuuT0xBuJF4wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFKnucV2jTjEkqT8gucGCUpQfQyYOMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy81YzVh YTRiNC1lMzBkLTQ2OGYtYmI2OC1iZjdmZTEzM2IxYjgvODMxNzI5MDMtODgxYi0z ZjBlLWJlY2QtOTQzMDA0ZmYxMzYzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvNWM1YWE0YjQtZTMwZC00NjhmLWJi NjgtYmY3ZmUxMzNiMWI4LzVjNWFhNGI0LWUzMGQtNDY4Zi1iYjY4LWJmN2ZlMTMz YjFiOC5jcmwwHwYDVR0jBBgwFoAUeT8JWjGjJaRAkW5RTc2t2XULqLQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy81YzVhYTRiNC1lMzBkLTQ2OGYtYmI2OC1iZjdm ZTEzM2IxYjguY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQArF4xMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAHoN0gbe530FPQL5A/yORN0wc4gxo7CTS2L9l8gx26lTRmUU2GZuvM7R jQHUXe296uxfZqzhVJSG8mi+NCN9fcpH205pUfU4STVIGuphiSEFbU4RkgQb83TN sy2odWXnzfpUxY890j0f3QGhRyWQdHX2+yaek60rRul8jkayBvzGNBRWrIl+8iM4 LFfnCQkUQ0KuAmqIeMCp1Mj+D+nRQD+veQw+TjtF+GISOtdBIt8M0FiWYzrTHBvk iHr2ynApJZ4/v6tzxr40DvI/yIiDON8DFOUoac7YeeNQOzxrV90f4FD+SX3UuCLN jQUOqALRc+iHnvGEKNpPOeeQYUvM6iA= -----END CERTIFICATE-----Generated at Sun Apr 28 03:24:02 2024 by rpki-client on console-ams.rpki-client.org