$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa File: 29d649ff-7028-3767-8327-8c4721bf56a8.roa (raw, json) Hash identifier: 4bf2jef3+JctRyXvzcePcHCE7Z6dKnnO+n8sGiCpQAU= Subject key identifier: 0A:41:9C:6C:0D:2C:41:48:F0:D4:23:BE:1B:86:3C:F2:87:DA:DA:FD Certificate issuer: /CN=ab85686b-bac3-40d2-b46e-f2593fb0bc6b Certificate serial: 010D0C9F4328584754E0CCA44BB95B05B490F9C0 Authority key identifier: 0E:5E:F6:3E:A7:FF:42:C0:84:5C:18:ED:96:19:B7:6D:8A:D9:86:BE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa Signing time: Wed 25 Sep 2024 13:00:41 +0000 ROA not before: Wed 25 Sep 2024 13:00:41 +0000 ROA not after: Tue 24 Dec 2024 14:00:41 +0000 asID: 399668 IP address blocks: 2620:98:a000::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:54:e0:cc:a4:4b:b9:5b:05:b4:90:f9:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab85686b-bac3-40d2-b46e-f2593fb0bc6b Validity Not Before: Sep 25 13:00:41 2024 GMT Not After : Dec 24 14:00:41 2024 GMT Subject: CN=d444a264-ad96-4aed-833b-7d7ccced8445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c7:a0:2a:84:6d:a7:ea:a2:a1:63:7f:92:16: 30:b5:a6:aa:61:5e:7b:18:2d:52:d7:6a:29:56:6b: bf:07:e4:dc:a5:7e:6a:22:a4:73:33:b8:01:35:1f: c6:27:74:50:d8:a9:7d:db:83:3a:1f:9c:77:37:b7: aa:0f:51:51:7e:36:83:e7:06:df:4f:71:d9:77:52: b3:c8:82:0d:93:f6:b2:18:ac:71:9a:16:59:7b:ff: 22:59:da:43:01:94:91:c4:99:af:14:39:a3:94:d9: 85:b4:03:dd:9c:11:4c:4a:fe:7e:d2:68:b2:e8:d6: 83:70:e2:a5:b1:6b:82:b4:47:7f:25:db:0a:60:44: 85:4e:fc:52:c5:31:dc:e8:8f:5a:4d:ce:94:e1:09: 64:6b:1b:e3:33:3f:e6:82:cc:69:08:6f:0b:76:47: 7e:d7:b3:49:28:4d:ac:9b:b5:a2:8a:55:59:e6:8d: 7d:4d:f4:f4:b4:8e:35:4a:e9:bb:3c:ed:11:2f:78: ac:33:86:89:75:c0:d5:6b:20:e8:0c:06:0d:0b:1a: 8e:79:0e:25:c1:1b:ab:0a:6a:8c:89:68:2c:02:01: 7a:c8:ae:70:b2:7c:5d:2d:1b:c2:87:c0:74:6c:4c: 07:e0:eb:28:09:15:8e:21:42:1b:a4:0a:46:7d:22: 1f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:41:9C:6C:0D:2C:41:48:F0:D4:23:BE:1B:86:3C:F2:87:DA:DA:FD Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/29d649ff-7028-3767-8327-8c4721bf56a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.crl X509v3 Authority Key Identifier: keyid:0E:5E:F6:3E:A7:FF:42:C0:84:5C:18:ED:96:19:B7:6D:8A:D9:86:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ab85686b-bac3-40d2-b46e-f2593fb0bc6b.cer sbgp-ipAddrBlock: critical IPv6: 2620:98:a000::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption ca:77:4a:ca:ac:b2:ba:0a:51:a1:01:89:95:c7:f2:9c:53:fe: d6:0d:bb:93:08:d7:e3:f6:25:cd:74:13:f1:4e:d7:af:da:65: 4f:1c:83:cd:16:e2:8a:91:28:bb:72:3d:16:39:db:a1:51:e7: 81:3c:92:1f:f0:50:cf:36:13:8d:89:e9:cf:f8:94:97:4e:53: 83:d3:ef:5c:f9:d2:4f:33:97:d6:75:83:4e:0a:91:6e:db:16: d4:5a:09:52:13:a2:11:2c:46:5b:d8:85:68:a7:37:8d:12:b4: 80:6c:13:af:2a:b5:45:49:e1:53:bc:09:5c:b6:c0:db:9b:e9: 60:c4:e5:77:1e:44:35:03:4f:ca:3b:d1:a5:f9:72:bb:5d:7f: 06:01:99:aa:b5:e0:cc:07:76:97:36:c0:18:05:38:82:5e:23: 89:fa:ba:11:af:7f:2f:d3:ab:17:c0:79:0c:c4:54:19:3c:55: 6b:83:8a:62:c2:cb:f5:d6:8e:56:75:ad:ab:92:50:6f:88:96: 86:6c:4b:b5:23:2e:91:3f:39:4d:35:ce:50:b1:5e:63:4e:5a: 07:97:dd:91:d4:33:b2:4a:7e:c4:3e:30:f9:6a:07:4d:3d:89: fa:90:a0:bc:74:13:11:16:ca:00:e4:5a:70:df:44:25:04:05: 0a:43:d5:92 -----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgIUAQ0Mn0MoWEdU4MykS7lbBbSQ+cAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWI4NTY4NmItYmFjMy00MGQyLWI0NmUtZjI1OTNmYjBi YzZiMB4XDTI0MDkyNTEzMDA0MVoXDTI0MTIyNDE0MDA0MVowLzEtMCsGA1UEAxMk ZDQ0NGEyNjQtYWQ5Ni00YWVkLTgzM2ItN2Q3Y2NjZWQ4NDQ1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucegKoRtp+qioWN/khYwtaaqYV57GC1S12op Vmu/B+TcpX5qIqRzM7gBNR/GJ3RQ2Kl924M6H5x3N7eqD1FRfjaD5wbfT3HZd1Kz yIINk/ayGKxxmhZZe/8iWdpDAZSRxJmvFDmjlNmFtAPdnBFMSv5+0miy6NaDcOKl sWuCtEd/JdsKYESFTvxSxTHc6I9aTc6U4QlkaxvjMz/mgsxpCG8Ldkd+17NJKE2s m7WiilVZ5o19TfT0tI41Sum7PO0RL3isM4aJdcDVayDoDAYNCxqOeQ4lwRurCmqM iWgsAgF6yK5wsnxdLRvCh8B0bEwH4OsoCRWOIUIbpApGfSIfqQIDAQABo4IDWDCC A1QwHQYDVR0OBBYEFApBnGwNLEFI8NQjvhuGPPKH2tr9MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9hYjg1 Njg2Yi1iYWMzLTQwZDItYjQ2ZS1mMjU5M2ZiMGJjNmIvMjlkNjQ5ZmYtNzAyOC0z NzY3LTgzMjctOGM0NzIxYmY1NmE4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvYWI4NTY4NmItYmFjMy00MGQyLWI0 NmUtZjI1OTNmYjBiYzZiL2FiODU2ODZiLWJhYzMtNDBkMi1iNDZlLWYyNTkzZmIw YmM2Yi5jcmwwHwYDVR0jBBgwFoAUDl72Pqf/QsCEXBjtlhm3bYrZhr4wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9hYjg1Njg2Yi1iYWMzLTQwZDItYjQ2ZS1mMjU5 M2ZiMGJjNmIuY2VyMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJiAAmKAA MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6 Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcN AQELBQADggEBAMp3SsqssroKUaEBiZXH8pxT/tYNu5MI1+P2Jc10E/FO16/aZU8c g80W4oqRKLtyPRY526FR54E8kh/wUM82E42J6c/4lJdOU4PT71z50k8zl9Z1g04K kW7bFtRaCVITohEsRlvYhWinN40StIBsE68qtUVJ4VO8CVy2wNub6WDE5XceRDUD T8o70aX5crtdfwYBmaq14MwHdpc2wBgFOIJeI4n6uhGvfy/TqxfAeQzEVBk8VWuD imLCy/XWjlZ1rauSUG+IloZsS7UjLpE/OU01zlCxXmNOWgeX3ZHUM7JKfsQ+MPlq B009ifqQoLx0ExEWygDkWnDfRCUEBQpD1ZI= -----END CERTIFICATE-----Generated at Fri Nov 22 04:24:22 2024 by rpki-client on console-fra.rpki-client.org