$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa File: d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa (raw, json) Hash identifier: gqab7E66Ab2AOvA1NYxOOD1x5z8nB89L1Nhhx2yQd6Y= Subject key identifier: CC:95:5A:4D:52:BA:0A:18:87:21:B5:5A:BF:37:38:C9:D0:EE:A3:90 Certificate issuer: /CN=d00749ed-70ef-447c-b17c-da6be8d7f312 Certificate serial: 010D0C9F43285847C3448E370C89A666EECD0580 Authority key identifier: F5:20:15:87:33:58:C5:12:78:64:66:F3:B0:E3:5D:8A:F4:78:79:74 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa Signing time: Mon 04 Nov 2024 02:00:36 +0000 ROA not before: Mon 04 Nov 2024 02:00:36 +0000 ROA not after: Sun 02 Feb 2025 02:00:36 +0000 asID: 396998 IP address blocks: 64.68.192.0/24 maxlen: 24 2620:49:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:c3:44:8e:37:0c:89:a6:66:ee:cd:05:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d00749ed-70ef-447c-b17c-da6be8d7f312 Validity Not Before: Nov 4 02:00:36 2024 GMT Not After : Feb 2 02:00:36 2025 GMT Subject: CN=60aab55a-4ccd-4648-9954-5e18a555ac32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:0d:97:a8:f6:b2:19:8d:1e:fe:b5:32:83:73: 6a:33:b4:c9:74:5f:ee:7f:d9:0c:b5:66:6b:f5:e9: 34:07:e1:88:ef:c9:ed:e0:16:0d:5d:8c:9d:20:f7: b1:cd:05:e6:e2:85:30:6a:5f:a5:cd:56:25:17:8e: 51:a4:c3:93:67:bb:3f:51:67:e9:4e:2d:c8:f9:e2: 76:d8:33:e1:99:2a:da:ba:1b:f9:6a:65:14:93:60: 52:a1:87:96:22:70:bc:db:61:67:4d:3c:e9:e9:5f: 30:ce:45:5f:e1:6b:c6:a4:b0:c3:89:82:ef:95:9f: b6:a7:08:d4:42:fc:9d:04:7c:f3:66:bb:cf:82:ae: 4e:d2:35:35:d7:7f:7b:53:6a:21:3b:54:2f:80:09: cd:2e:64:c5:c0:73:3d:21:57:8b:ef:30:9c:16:5a: 2b:a7:90:d8:1a:0b:a5:8e:25:5e:86:60:f8:b5:41: 3b:a4:ef:30:ee:62:99:ff:e5:05:83:62:70:38:a9: c5:13:c7:a9:db:4e:aa:2f:eb:cc:21:b3:67:75:1b: 38:cf:ac:1f:90:3e:a3:96:dd:9a:e8:ec:5c:86:3b: 6b:a8:f1:48:2e:4a:6a:53:f2:e8:e1:fb:9e:ab:e9: ed:7c:87:00:76:35:e4:32:d5:8c:f6:ae:de:d8:30: 9b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:95:5A:4D:52:BA:0A:18:87:21:B5:5A:BF:37:38:C9:D0:EE:A3:90 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d9f3bf20-4c0b-30a3-9d98-83fda0346614.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312/d00749ed-70ef-447c-b17c-da6be8d7f312.crl X509v3 Authority Key Identifier: keyid:F5:20:15:87:33:58:C5:12:78:64:66:F3:B0:E3:5D:8A:F4:78:79:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d00749ed-70ef-447c-b17c-da6be8d7f312.cer sbgp-ipAddrBlock: critical IPv4: 64.68.192.0/24 IPv6: 2620:49:1::/48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 5a:b4:6a:5e:3d:ae:ad:3c:b4:a2:a2:f6:70:3b:06:ae:ef:b7: 32:4d:4e:24:f4:a9:77:4e:35:74:3a:72:d1:dc:6f:7e:09:95: 16:8f:d9:7a:dd:8f:e9:32:94:a2:7e:e4:d7:35:7a:4a:5d:08: a0:55:d7:89:39:d8:5c:59:15:cc:43:e1:ca:a9:2b:20:5e:16: 25:5f:83:01:45:5a:9c:ac:56:fd:4e:8c:77:7f:94:e5:d5:77: f1:8b:b3:39:a3:5c:ff:19:df:04:32:93:21:8f:79:79:9b:c4: f9:11:0e:f0:30:92:22:30:f6:70:be:b4:8d:34:ce:af:a9:15: c9:3e:3e:0f:dd:2a:fd:e0:7b:75:be:ef:0f:12:70:32:b6:85: 17:e2:f6:16:4d:3f:32:be:29:18:bc:71:54:45:dc:6f:91:c5: 00:bb:87:24:2a:66:86:67:ab:e5:da:34:e6:b6:30:9f:ff:1c: c6:39:97:a4:66:73:b9:04:91:33:ce:09:0f:de:d8:29:74:c0: 86:04:5e:2a:3f:e0:84:2b:ae:28:77:ac:a7:1e:28:18:96:6a: 41:8c:a9:0a:4d:72:97:e6:e4:3c:79:ba:47:90:f4:2c:7d:f5: 53:d7:24:2a:4c:03:b3:95:57:80:e3:93:6c:9c:87:29:6b:d8: 89:cb:d8:11 -----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgIUAQ0Mn0MoWEfDRI43DImmZu7NBYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAwNzQ5ZWQtNzBlZi00NDdjLWIxN2MtZGE2YmU4ZDdm MzEyMB4XDTI0MTEwNDAyMDAzNloXDTI1MDIwMjAyMDAzNlowLzEtMCsGA1UEAxMk NjBhYWI1NWEtNGNjZC00NjQ4LTk5NTQtNWUxOGE1NTVhYzMyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkg2XqPayGY0e/rUyg3NqM7TJdF/uf9kMtWZr 9ek0B+GI78nt4BYNXYydIPexzQXm4oUwal+lzVYlF45RpMOTZ7s/UWfpTi3I+eJ2 2DPhmSrauhv5amUUk2BSoYeWInC822FnTTzp6V8wzkVf4WvGpLDDiYLvlZ+2pwjU QvydBHzzZrvPgq5O0jU11397U2ohO1QvgAnNLmTFwHM9IVeL7zCcFlorp5DYGgul jiVehmD4tUE7pO8w7mKZ/+UFg2JwOKnFE8ep206qL+vMIbNndRs4z6wfkD6jlt2a 6OxchjtrqPFILkpqU/Lo4fueq+ntfIcAdjXkMtWM9q7e2DCbGwIDAQABo4IDZjCC A2IwHQYDVR0OBBYEFMyVWk1SugoYhyG1Wr83OMnQ7qOQMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kMDA3 NDllZC03MGVmLTQ0N2MtYjE3Yy1kYTZiZThkN2YzMTIvZDlmM2JmMjAtNGMwYi0z MGEzLTlkOTgtODNmZGEwMzQ2NjE0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZDAwNzQ5ZWQtNzBlZi00NDdjLWIx N2MtZGE2YmU4ZDdmMzEyL2QwMDc0OWVkLTcwZWYtNDQ3Yy1iMTdjLWRhNmJlOGQ3 ZjMxMi5jcmwwHwYDVR0jBBgwFoAU9SAVhzNYxRJ4ZGbzsONdivR4eXQwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kMDA3NDllZC03MGVmLTQ0N2MtYjE3Yy1kYTZi ZThkN2YzMTIuY2VyMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAQETAMA8E AgACMAkDBwAmIABJAAEwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsG AQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMu aHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAWrRqXj2urTy0oqL2cDsGru+3Mk1OJPSp d041dDpy0dxvfgmVFo/Zet2P6TKUon7k1zV6Sl0IoFXXiTnYXFkVzEPhyqkrIF4W JV+DAUVanKxW/U6Md3+U5dV38YuzOaNc/xnfBDKTIY95eZvE+REO8DCSIjD2cL60 jTTOr6kVyT4+D90q/eB7db7vDxJwMraFF+L2Fk0/Mr4pGLxxVEXcb5HFALuHJCpm hmer5do05rYwn/8cxjmXpGZzuQSRM84JD97YKXTAhgReKj/ghCuuKHespx4oGJZq QYypCk1yl+bkPHm6R5D0LH31U9ckKkwDs5VXgOOTbJyHKWvYicvYEQ== -----END CERTIFICATE-----Generated at Fri Nov 22 09:32:29 2024 by rpki-client on console-fra.rpki-client.org