$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa File: 7be3ce67-426a-397a-9a74-e2c03aae3762.roa (raw, json) Hash identifier: lG6hQIkAUugsnAG8sQhEgSxsarcaC1MuEHIPGhFEtjg= Subject key identifier: 75:FC:86:4C:59:6D:0E:26:92:2B:AF:B0:FA:25:5D:4B:F8:C7:D2:D1 Certificate issuer: /CN=ad3f6620-0576-46d8-b05d-3e2cdd06afa3 Certificate serial: 010D0C9F43285845AF537142BE73BF658A1B0A0E Authority key identifier: 88:DF:DB:98:30:C1:D1:4C:D5:B7:31:84:EC:A7:FC:60:F4:5F:F2:D3 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa Signing time: Sat 27 Apr 2024 13:00:34 +0000 ROA not before: Sat 27 Apr 2024 13:00:34 +0000 ROA not after: Fri 26 Jul 2024 13:00:34 +0000 asID: 19905 IP address blocks: 64.57.32.0/20 maxlen: 24 216.230.48.0/20 maxlen: 24 2620:110:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 05 May 2024 12:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:af:53:71:42:be:73:bf:65:8a:1b:0a:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad3f6620-0576-46d8-b05d-3e2cdd06afa3 Validity Not Before: Apr 27 13:00:34 2024 GMT Not After : Jul 26 13:00:34 2024 GMT Subject: CN=822846c0-816e-4ee1-b3c2-380abd1bbe54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:b3:91:02:88:8b:ac:46:eb:86:8a:1c:8b:aa: 54:ca:3f:04:ee:4e:af:1e:f7:25:1b:e2:c5:60:51: 28:44:77:bd:e1:32:21:1a:ab:2a:0d:c6:32:97:a1: 56:ec:24:51:8f:27:38:20:b8:7c:56:b5:d0:12:f7: 9d:c0:a4:9f:9d:8e:42:86:90:ac:67:2e:68:7e:87: 04:ea:43:ee:c6:d9:ef:96:49:68:00:2a:82:b6:6f: d7:38:5b:54:3a:47:10:7f:f3:ff:e7:cc:3b:75:01: 5e:29:14:ae:f3:0c:07:16:fd:77:0f:5a:f9:57:85: 13:31:04:c5:2a:e6:32:75:a4:8f:51:db:7a:48:2b: e1:e5:76:0a:f5:57:6e:9f:d5:09:0b:86:e5:21:9f: 19:55:10:1c:f1:d3:af:36:25:ed:29:a3:8a:9f:81: 66:d2:e0:26:50:0e:15:15:66:ce:97:5a:89:12:20: 7a:74:68:2d:ce:d2:91:95:47:9b:28:99:3f:c2:c6: 00:fb:01:0b:8d:80:0f:89:26:52:6a:56:7b:0c:3f: 81:95:0e:dd:4c:fb:d8:20:fd:57:4a:a7:79:5d:55: 22:48:d1:18:af:ee:e7:58:8e:bb:ac:21:36:21:28: d1:4f:6c:73:e6:53:66:a9:88:a4:f6:ba:63:7d:79: 8c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:FC:86:4C:59:6D:0E:26:92:2B:AF:B0:FA:25:5D:4B:F8:C7:D2:D1 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/7be3ce67-426a-397a-9a74-e2c03aae3762.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.crl X509v3 Authority Key Identifier: keyid:88:DF:DB:98:30:C1:D1:4C:D5:B7:31:84:EC:A7:FC:60:F4:5F:F2:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad3f6620-0576-46d8-b05d-3e2cdd06afa3.cer sbgp-ipAddrBlock: critical IPv4: 64.57.32.0/20 216.230.48.0/20 IPv6: 2620:110:7000::/44 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8a:6e:c3:7c:0b:f7:d7:d7:b4:9a:b7:42:84:ad:73:a4:9d:6a: 5e:59:06:f1:9d:22:56:4b:c1:64:c3:e7:25:f6:d5:6a:b8:6b: b7:bd:78:b6:44:22:21:ff:dd:80:4b:da:c4:d8:1c:c2:2e:84: 93:86:15:24:25:7d:69:af:d5:08:f6:b0:48:ab:37:09:e2:c0: 30:cf:a8:46:6c:c5:3c:76:47:18:1f:8e:e3:06:b1:5e:5d:c1: 08:0e:05:b6:3c:7b:3c:0c:82:9f:c6:62:5c:89:d5:48:cb:7f: 08:a1:dd:4c:9c:a4:7f:b9:20:ef:a9:5f:e4:68:85:c6:50:7e: 24:79:40:95:28:d8:84:02:60:58:50:db:70:c0:0c:c8:5e:e0: e6:a6:c1:74:1a:f5:64:89:3d:17:92:07:37:e2:05:19:78:4b: d8:82:63:f7:fe:5b:33:b7:7f:e0:06:a8:1d:93:57:f2:29:73: 9f:db:b2:ad:f3:12:e3:f1:21:fb:58:40:fc:e1:b8:33:1a:ce: 09:99:d9:43:c5:4d:72:77:55:32:51:d8:49:38:66:66:f9:b7: ca:a2:5d:a3:81:4b:5c:b7:6b:50:74:4e:af:07:ca:01:a5:b0: 48:95:15:f1:58:a5:56:e7:9b:83:ed:75:48:dc:f1:72:0a:2e: d7:0b:4c:50 -----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgIUAQ0Mn0MoWEWvU3FCvnO/ZYobCg4wDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWQzZjY2MjAtMDU3Ni00NmQ4LWIwNWQtM2UyY2RkMDZh ZmEzMB4XDTI0MDQyNzEzMDAzNFoXDTI0MDcyNjEzMDAzNFowLzEtMCsGA1UEAxMk ODIyODQ2YzAtODE2ZS00ZWUxLWIzYzItMzgwYWJkMWJiZTU0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7ORAoiLrEbrhooci6pUyj8E7k6vHvclG+LF YFEoRHe94TIhGqsqDcYyl6FW7CRRjyc4ILh8VrXQEvedwKSfnY5ChpCsZy5ofocE 6kPuxtnvlkloACqCtm/XOFtUOkcQf/P/58w7dQFeKRSu8wwHFv13D1r5V4UTMQTF KuYydaSPUdt6SCvh5XYK9Vdun9UJC4blIZ8ZVRAc8dOvNiXtKaOKn4Fm0uAmUA4V FWbOl1qJEiB6dGgtztKRlUebKJk/wsYA+wELjYAPiSZSalZ7DD+BlQ7dTPvYIP1X Sqd5XVUiSNEYr+7nWI67rCE2ISjRT2xz5lNmqYik9rpjfXmMbQIDAQABo4IDbDCC A2gwHQYDVR0OBBYEFHX8hkxZbQ4mkiuvsPolXUv4x9LRMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9hZDNm NjYyMC0wNTc2LTQ2ZDgtYjA1ZC0zZTJjZGQwNmFmYTMvN2JlM2NlNjctNDI2YS0z OTdhLTlhNzQtZTJjMDNhYWUzNzYyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvYWQzZjY2MjAtMDU3Ni00NmQ4LWIw NWQtM2UyY2RkMDZhZmEzL2FkM2Y2NjIwLTA1NzYtNDZkOC1iMDVkLTNlMmNkZDA2 YWZhMy5jcmwwHwYDVR0jBBgwFoAUiN/bmDDB0UzVtzGE7Kf8YPRf8tMwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9hZDNmNjYyMC0wNTc2LTQ2ZDgtYjA1ZC0zZTJj ZGQwNmFmYTMuY2VyMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQEQDkgAwQE 2OYwMA8EAgACMAkDBwQmIAEQcAAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAim7DfAv319e0mrdChK1zpJ1q XlkG8Z0iVkvBZMPnJfbVarhrt714tkQiIf/dgEvaxNgcwi6Ek4YVJCV9aa/VCPaw SKs3CeLAMM+oRmzFPHZHGB+O4waxXl3BCA4Ftjx7PAyCn8ZiXInVSMt/CKHdTJyk f7kg76lf5GiFxlB+JHlAlSjYhAJgWFDbcMAMyF7g5qbBdBr1ZIk9F5IHN+IFGXhL 2IJj9/5bM7d/4AaoHZNX8ilzn9uyrfMS4/Eh+1hA/OG4MxrOCZnZQ8VNcndVMlHY SThmZvm3yqJdo4FLXLdrUHROrwfKAaWwSJUV8VilVuebg+11SNzxcgou1wtMUA== -----END CERTIFICATE-----Generated at Thu May 2 14:56:56 2024 by rpki-client on console-ams.rpki-client.org