$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa File: 40a22eee-4031-3336-8b2d-96d68d61d8a9.roa (raw, json) Hash identifier: gGQAXr+Ly4JuekAj8ldjE1vVpejMAZVRsvNcN+/VOX4= Subject key identifier: 49:D7:03:19:9C:D0:2D:BC:08:D8:16:FA:3C:CD:CA:5C:AD:EC:13:18 Certificate issuer: /CN=d44ce5f4-28a9-4c1f-b029-cc35b3e3950e Certificate serial: 010D0C9F432858476F66357BC991D379F5027100 Authority key identifier: D2:70:53:AA:1E:41:4B:CD:A4:FF:3C:F8:BC:B0:DC:1C:2B:B6:0C:52 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa Signing time: Sat 05 Oct 2024 01:00:31 +0000 ROA not before: Sat 05 Oct 2024 01:00:31 +0000 ROA not after: Fri 03 Jan 2025 02:00:31 +0000 asID: 35998 IP address blocks: 67.21.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:6f:66:35:7b:c9:91:d3:79:f5:02:71:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d44ce5f4-28a9-4c1f-b029-cc35b3e3950e Validity Not Before: Oct 5 01:00:31 2024 GMT Not After : Jan 3 02:00:31 2025 GMT Subject: CN=374b0643-9c7e-4b4b-8a7f-d66e4ef26d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ed:0f:79:e3:1c:3f:a5:27:e6:5d:cc:ab:e8: 17:d5:6e:61:c7:b7:11:a2:38:ae:de:f8:f8:ab:5c: bc:a5:e0:d6:23:8f:cb:d8:39:6d:58:ba:28:ec:7b: 6b:33:53:a7:05:07:51:f9:69:b9:0c:bc:2c:56:81: 0b:60:0f:26:dd:3c:81:5d:83:be:54:2f:24:ec:33: 8a:88:4b:7d:2d:41:b8:49:d4:8c:1e:14:f4:0a:9e: d9:a4:20:ad:83:54:19:8c:43:78:91:34:15:65:0d: 7c:2f:36:7e:6b:d7:cb:27:f8:8c:ea:39:53:9b:44: 9b:7b:6c:82:51:e5:24:e6:6f:f8:3a:54:b9:9e:17: cc:63:a9:f2:ba:9e:89:73:f4:e8:8a:66:8e:25:76: 45:72:89:94:d1:92:92:3f:83:09:e7:c6:3b:42:25: 82:f4:f0:88:0f:f5:41:9d:6f:62:15:e1:b8:cd:55: 89:65:cf:db:5b:91:7a:9d:36:d5:e3:64:f3:93:aa: 8f:3d:fc:d2:00:c2:58:9c:f6:59:7f:3b:22:29:7d: c0:6c:54:3c:7e:a7:f2:f2:24:47:55:a4:58:a5:c6: 50:05:6b:fd:cd:b6:df:c3:52:2f:65:fc:82:bf:28: 71:a4:c0:3e:0a:62:bb:c2:84:c8:6d:de:66:2c:92: 11:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D7:03:19:9C:D0:2D:BC:08:D8:16:FA:3C:CD:CA:5C:AD:EC:13:18 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/40a22eee-4031-3336-8b2d-96d68d61d8a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.crl X509v3 Authority Key Identifier: keyid:D2:70:53:AA:1E:41:4B:CD:A4:FF:3C:F8:BC:B0:DC:1C:2B:B6:0C:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d44ce5f4-28a9-4c1f-b029-cc35b3e3950e.cer sbgp-ipAddrBlock: critical IPv4: 67.21.152.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8b:87:c9:32:05:7e:13:12:f0:d4:3a:75:7e:96:e0:80:fa:23: 74:96:aa:1d:fe:52:fa:6d:a7:8d:89:6e:62:f4:38:a8:0c:d8: 1c:29:34:63:06:82:08:c6:d0:0c:e4:65:18:5f:df:99:09:0f: f0:45:d5:5b:8f:8d:7a:35:63:5a:0d:f4:e9:53:5a:b3:dd:9a: df:19:e8:b5:7e:e9:6d:fb:b9:18:db:67:38:0c:81:1b:e5:08: 8d:9c:93:58:6e:0d:fb:6a:17:a3:af:94:38:8e:9f:b5:4c:01: bf:b1:86:51:14:ed:e9:01:af:8a:7d:54:a1:70:ba:01:a2:c9: 37:bb:a9:27:98:c6:9a:4b:22:b0:c5:9c:3b:4a:49:b4:1a:9c: a4:50:40:ef:d5:54:ed:7d:b7:c5:3e:12:cc:6b:8b:4a:c1:00: 67:d7:5b:a4:05:3d:4e:cd:c4:72:37:d4:0d:25:b3:ac:3a:08: 3e:df:07:91:0f:fa:98:18:73:ce:53:cc:f5:c4:bd:52:04:b0: 72:1a:e1:d2:28:1c:76:9f:8a:15:90:6e:6e:46:ab:aa:d6:1f: 6c:03:cb:aa:6c:26:a0:cd:01:b7:09:a3:2a:b0:63:5d:52:9f: 0e:8d:b5:c1:51:99:4f:f3:8a:73:1a:e7:04:c1:0f:a0:d2:2d: 1a:26:6f:e1 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEdvZjV7yZHTefUCcQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDQ0Y2U1ZjQtMjhhOS00YzFmLWIwMjktY2MzNWIzZTM5 NTBlMB4XDTI0MTAwNTAxMDAzMVoXDTI1MDEwMzAyMDAzMVowLzEtMCsGA1UEAxMk Mzc0YjA2NDMtOWM3ZS00YjRiLThhN2YtZDY2ZTRlZjI2ZDEyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAke0PeeMcP6Un5l3Mq+gX1W5hx7cRojiu3vj4 q1y8peDWI4/L2DltWLoo7HtrM1OnBQdR+Wm5DLwsVoELYA8m3TyBXYO+VC8k7DOK iEt9LUG4SdSMHhT0Cp7ZpCCtg1QZjEN4kTQVZQ18LzZ+a9fLJ/iM6jlTm0Sbe2yC UeUk5m/4OlS5nhfMY6nyup6Jc/ToimaOJXZFcomU0ZKSP4MJ58Y7QiWC9PCID/VB nW9iFeG4zVWJZc/bW5F6nTbV42Tzk6qPPfzSAMJYnPZZfzsiKX3AbFQ8fqfy8iRH VaRYpcZQBWv9zbbfw1IvZfyCvyhxpMA+CmK7woTIbd5mLJIRGQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFEnXAxmc0C28CNgW+jzNylyt7BMYMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kNDRj ZTVmNC0yOGE5LTRjMWYtYjAyOS1jYzM1YjNlMzk1MGUvNDBhMjJlZWUtNDAzMS0z MzM2LThiMmQtOTZkNjhkNjFkOGE5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZDQ0Y2U1ZjQtMjhhOS00YzFmLWIw MjktY2MzNWIzZTM5NTBlL2Q0NGNlNWY0LTI4YTktNGMxZi1iMDI5LWNjMzViM2Uz OTUwZS5jcmwwHwYDVR0jBBgwFoAU0nBTqh5BS82k/zz4vLDcHCu2DFIwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kNDRjZTVmNC0yOGE5LTRjMWYtYjAyOS1jYzM1 YjNlMzk1MGUuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCQxWYMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAIuHyTIFfhMS8NQ6dX6W4ID6I3SWqh3+Uvptp42JbmL0OKgM2BwpNGMG ggjG0AzkZRhf35kJD/BF1VuPjXo1Y1oN9OlTWrPdmt8Z6LV+6W37uRjbZzgMgRvl CI2ck1huDftqF6OvlDiOn7VMAb+xhlEU7ekBr4p9VKFwugGiyTe7qSeYxppLIrDF nDtKSbQanKRQQO/VVO19t8U+Esxri0rBAGfXW6QFPU7NxHI31A0ls6w6CD7fB5EP +pgYc85TzPXEvVIEsHIa4dIoHHafihWQbm5Gq6rWH2wDy6psJqDNAbcJoyqwY11S nw6NtcFRmU/zinMa5wTBD6DSLRomb+E= -----END CERTIFICATE-----Generated at Fri Nov 22 04:24:27 2024 by rpki-client on console-fra.rpki-client.org