$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa File: 29d649ff-7028-3767-8327-8c4721bf56a8.roa (raw, json) Hash identifier: E8irZVyrr7rF4WJazjj5aUTG2ka5OIX6H5YI+u1Zio4= Subject key identifier: 05:07:AB:6A:9F:09:86:A0:40:85:5A:98:27:D0:AF:8A:B5:A1:34:B7 Certificate issuer: /CN=ab85686b-bac3-40d2-b46e-f2593fb0bc6b Certificate serial: 010D0C9F43285842160D92438B774511A88EA768 Authority key identifier: 0E:5E:F6:3E:A7:FF:42:C0:84:5C:18:ED:96:19:B7:6D:8A:D9:86:BE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa Signing time: Fri 02 Jun 2023 13:00:19 +0000 ROA not before: Fri 02 Jun 2023 13:00:19 +0000 ROA not after: Thu 31 Aug 2023 13:00:19 +0000 asID: 399668 IP address blocks: 2620:98:a000::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 04 Jun 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:42:16:0d:92:43:8b:77:45:11:a8:8e:a7:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab85686b-bac3-40d2-b46e-f2593fb0bc6b Validity Not Before: Jun 2 13:00:19 2023 GMT Not After : Aug 31 13:00:19 2023 GMT Subject: CN=6c990d22-300b-4692-9dd6-0ced42abccc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:68:42:b1:d6:49:70:a2:0a:55:72:dc:3c:63: a5:c0:4d:d8:86:18:aa:dd:59:85:2a:b5:d7:7f:01: a0:a1:a5:47:0e:d2:b5:b6:8a:99:38:05:74:0a:b9: df:a7:b7:a9:5e:c1:58:b8:2b:97:8f:a7:b0:10:93: 7d:b9:f9:a1:e7:cd:cb:6a:2d:f0:5e:8d:db:90:91: 36:a9:28:92:f6:86:9a:6a:1d:c1:cd:32:35:fa:af: b3:2f:e8:35:62:da:1e:07:f8:57:77:62:d9:e1:35: 84:2e:54:ad:bd:c0:82:22:be:39:89:61:2a:ee:98: 0b:10:04:4f:da:7a:08:35:df:12:50:7f:71:ce:f8: 45:50:07:c1:9a:ed:cf:92:4c:a3:ea:fe:93:2a:45: 1c:92:6a:33:46:c6:c3:a3:57:37:0c:40:0f:20:5b: a4:5b:ec:b6:15:a5:69:10:e5:4b:2e:f6:68:86:f4: db:64:dc:25:ef:52:47:8d:a3:82:2b:95:eb:9e:f5: 95:ce:44:90:a1:6a:f5:e5:b0:84:30:c5:0a:d6:28: 07:4a:0c:3d:e3:08:14:26:99:db:28:24:e6:be:b8: c0:aa:0c:b9:d4:ba:a7:cb:e6:57:c8:c6:a4:4a:77: 21:ea:1e:62:49:a1:6e:88:36:db:52:04:1f:8f:05: bd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:07:AB:6A:9F:09:86:A0:40:85:5A:98:27:D0:AF:8A:B5:A1:34:B7 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.crl X509v3 Authority Key Identifier: keyid:0E:5E:F6:3E:A7:FF:42:C0:84:5C:18:ED:96:19:B7:6D:8A:D9:86:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer sbgp-ipAddrBlock: critical IPv6: 2620:98:a000::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 32:b0:62:6e:5f:c2:c5:63:86:cd:e1:4d:97:22:72:57:38:e1: 09:2b:7a:1d:d1:0d:9d:95:fb:bb:eb:d6:e8:6c:81:62:24:dc: a1:e1:9a:45:ef:36:1b:8b:f2:49:e3:58:ec:f9:0a:b2:0f:be: 60:a9:10:b6:18:3d:55:51:60:41:6c:0e:05:96:2c:a8:34:38: 6c:09:5b:1e:1b:33:cc:81:6c:92:b4:e7:96:f7:f1:d0:14:75: a8:ba:5f:4f:94:97:08:a7:be:74:e0:a2:34:59:1b:0c:a2:25: 98:5b:83:2d:38:bc:c1:4d:9b:dd:44:fd:22:b5:b1:32:b0:8a: 27:2f:8e:db:25:6a:15:6d:be:14:43:01:ab:6d:03:ac:9e:f6: 60:db:2f:3f:54:75:de:4b:5a:1a:79:91:cc:39:97:98:7c:9b: 74:8d:fa:2f:6d:f9:09:7b:5a:81:c2:2e:be:7b:79:80:cd:a5: 6b:70:2f:30:09:88:a1:28:02:b4:87:10:c2:14:55:16:3c:b6: df:52:d0:26:08:75:bb:d2:36:f9:49:f4:f2:f8:95:25:23:a5: 59:a0:43:7c:15:a2:17:a2:3f:b7:de:8b:ef:24:49:2d:1a:36: 96:3d:70:38:88:77:83:5f:e6:12:1e:36:f8:a8:5a:98:84:cf: ac:16:2b:7a -----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgIUAQ0Mn0MoWEIWDZJDi3dFEaiOp2gwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWI4NTY4NmItYmFjMy00MGQyLWI0NmUtZjI1OTNmYjBi YzZiMB4XDTIzMDYwMjEzMDAxOVoXDTIzMDgzMTEzMDAxOVowLzEtMCsGA1UEAxMk NmM5OTBkMjItMzAwYi00NjkyLTlkZDYtMGNlZDQyYWJjY2M0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmhCsdZJcKIKVXLcPGOlwE3Yhhiq3VmFKrXX fwGgoaVHDtK1toqZOAV0Crnfp7epXsFYuCuXj6ewEJN9ufmh583Lai3wXo3bkJE2 qSiS9oaaah3BzTI1+q+zL+g1YtoeB/hXd2LZ4TWELlStvcCCIr45iWEq7pgLEARP 2noINd8SUH9xzvhFUAfBmu3Pkkyj6v6TKkUckmozRsbDo1c3DEAPIFukW+y2FaVp EOVLLvZohvTbZNwl71JHjaOCK5XrnvWVzkSQoWr15bCEMMUK1igHSgw94wgUJpnb KCTmvrjAqgy51Lqny+ZXyMakSnch6h5iSaFuiDbbUgQfjwW93wIDAQABo4IDWDCC A1QwHQYDVR0OBBYEFAUHq2qfCYagQIVamCfQr4q1oTS3MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9hYjg1 Njg2Yi1iYWMzLTQwZDItYjQ2ZS1mMjU5M2ZiMGJjNmIvMjlkNjQ5ZmYtNzAyOC0z NzY3LTgzMjctOGM0NzIxYmY1NmE4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvYWI4NTY4NmItYmFjMy00MGQyLWI0 NmUtZjI1OTNmYjBiYzZiL2FiODU2ODZiLWJhYzMtNDBkMi1iNDZlLWYyNTkzZmIw YmM2Yi5jcmwwHwYDVR0jBBgwFoAUDl72Pqf/QsCEXBjtlhm3bYrZhr4wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9hYjg1Njg2Yi1iYWMzLTQwZDItYjQ2ZS1mMjU5 M2ZiMGJjNmIuY2VyMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJiAAmKAA MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBADKwYm5fwsVjhs3hTZciclc44Qkreh3RDZ2V+7vr1uhsgWIk3KHh mkXvNhuL8knjWOz5CrIPvmCpELYYPVVRYEFsDgWWLKg0OGwJWx4bM8yBbJK055b3 8dAUdai6X0+UlwinvnTgojRZGwyiJZhbgy04vMFNm91E/SK1sTKwiicvjtslahVt vhRDAattA6ye9mDbLz9Udd5LWhp5kcw5l5h8m3SN+i9t+Ql7WoHCLr57eYDNpWtw LzAJiKEoArSHEMIUVRY8tt9S0CYIdbvSNvlJ9PL4lSUjpVmgQ3wVoheiP7fei+8k SS0aNpY9cDiId4Nf5hIeNvioWpiEz6wWK3o= -----END CERTIFICATE-----Generated at Fri Jun 2 13:31:48 2023 by rpki-client on console-ams.rpki-client.org