$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa File: d1206389-b9de-36cd-8068-be081e3c00dd.roa (raw, json) Hash identifier: yQb6YpwqJ3X2B0GTrfBlH0NcisjM7q0ijgS9JbWgeik= Subject key identifier: 4C:B7:71:54:DB:FC:94:BC:26:10:8B:1B:10:AA:06:4E:E2:50:6D:88 Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F43285847767C0637279E6C1428D7D7C0 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa Signing time: Mon 07 Oct 2024 13:55:14 +0000 ROA not before: Mon 07 Oct 2024 13:55:14 +0000 ROA not after: Sun 05 Jan 2025 14:55:14 +0000 asID: 398210 IP address blocks: 168.220.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:76:7c:06:37:27:9e:6c:14:28:d7:d7:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Oct 7 13:55:14 2024 GMT Not After : Jan 5 14:55:14 2025 GMT Subject: CN=5b76b556-424a-4a77-b1e8-8a5e536857d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:2f:38:89:dc:03:5d:fa:25:8d:24:09:eb: 35:53:6d:d9:9a:ad:0a:a3:8e:33:88:40:1a:a5:15: 73:40:eb:f3:69:2d:6b:04:5a:2a:bd:a3:36:2a:a7: 92:e5:f2:8c:5a:4d:97:16:3f:78:b1:9c:67:44:7d: c2:be:a0:34:40:78:df:70:8d:b0:64:03:5e:54:54: 01:20:94:0c:be:ca:55:d9:64:a0:b1:1c:60:58:2a: f5:8a:5c:0e:63:46:4f:88:28:f0:b1:ad:b2:d9:ef: 62:57:f3:86:c1:b2:34:f9:41:5d:94:6f:3e:fe:5f: cd:32:c5:96:41:ca:96:6c:03:dc:06:2e:45:09:93: 80:a7:27:d5:d6:7b:0e:a4:56:1e:05:e1:d8:41:97: 3f:d3:4e:e6:2f:d3:24:30:d6:db:91:5d:c6:07:79: 6b:09:c4:02:f5:58:0b:f1:90:2a:39:85:31:3c:64: 5c:08:af:b8:41:f4:f7:53:5a:1a:67:f0:a9:46:61: d4:b0:c2:fe:7c:ea:7b:48:d5:2e:6d:bc:57:0f:ca: 37:f0:6b:6a:2f:d7:3b:c1:a9:40:18:3e:3f:6e:9f: ec:e2:3e:14:4c:e7:0e:22:83:3e:7b:11:63:26:d6: 79:66:13:3f:75:fc:47:28:ba:fc:17:38:7e:1a:d3: 34:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B7:71:54:DB:FC:94:BC:26:10:8B:1B:10:AA:06:4E:E2:50:6D:88 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/d1206389-b9de-36cd-8068-be081e3c00dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.170.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 01:60:ca:56:39:eb:88:6b:10:e2:6b:b2:39:fa:e1:3f:bc:d5: 18:89:35:5b:14:32:37:bc:ca:76:77:d5:c6:50:13:fe:4b:68: 41:be:82:ad:81:58:29:f5:a4:ed:1a:89:95:08:b9:5f:13:7f: 22:51:70:05:ac:6f:2d:40:4c:db:8a:04:af:30:4e:b9:ce:23: 55:c5:2e:db:35:0a:14:cf:6e:84:8d:a9:92:eb:9c:61:3c:49: b7:78:e0:7a:d0:ce:f5:1a:53:0a:ee:3d:88:91:bd:e3:1a:2a: 17:fe:67:ef:96:a5:d1:9a:fb:54:13:9f:1b:c6:c0:97:be:1b: 97:83:a4:02:f8:58:e2:79:a2:c6:db:aa:0b:14:38:a2:0a:26: 37:94:88:82:dd:57:f2:a3:42:9b:31:10:e0:95:6f:53:ec:70: 02:31:66:49:dd:86:94:5a:a1:50:a4:9c:54:52:f9:d4:85:c5: 05:a8:09:7b:a6:bd:b7:37:cb:5a:6a:56:76:cd:39:76:bf:b4: 42:4a:ef:a9:bb:22:ea:4f:d5:81:0a:dc:57:af:92:18:cb:93: 72:13:ee:f9:8c:88:16:5e:21:52:e5:08:9f:2b:ae:14:65:f8: 14:cd:6a:a5:8f:50:a0:d4:89:56:f7:7c:e5:88:a4:38:d6:3e: 87:2e:2e:17 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEd2fAY3J55sFCjX18AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI0MTAwNzEzNTUxNFoXDTI1MDEwNTE0NTUxNFowLzEtMCsGA1UEAxMk NWI3NmI1NTYtNDI0YS00YTc3LWIxZTgtOGE1ZTUzNjg1N2Q1MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0MvOIncA136JY0kCes1U23Zmq0Ko44ziEAa pRVzQOvzaS1rBFoqvaM2KqeS5fKMWk2XFj94sZxnRH3CvqA0QHjfcI2wZANeVFQB IJQMvspV2WSgsRxgWCr1ilwOY0ZPiCjwsa2y2e9iV/OGwbI0+UFdlG8+/l/NMsWW QcqWbAPcBi5FCZOApyfV1nsOpFYeBeHYQZc/007mL9MkMNbbkV3GB3lrCcQC9VgL 8ZAqOYUxPGRcCK+4QfT3U1oaZ/CpRmHUsML+fOp7SNUubbxXD8o38GtqL9c7walA GD4/bp/s4j4UTOcOIoM+exFjJtZ5ZhM/dfxHKLr8Fzh+GtM0lQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFEy3cVTb/JS8JhCLGxCqBk7iUG2IMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvZDEyMDYzODktYjlkZS0z NmNkLTgwNjgtYmUwODFlM2MwMGRkLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNyqMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAAFgylY564hrEOJrsjn64T+81RiJNVsUMje8ynZ31cZQE/5LaEG+gq2B WCn1pO0aiZUIuV8TfyJRcAWsby1ATNuKBK8wTrnOI1XFLts1ChTPboSNqZLrnGE8 Sbd44HrQzvUaUwruPYiRveMaKhf+Z++WpdGa+1QTnxvGwJe+G5eDpAL4WOJ5osbb qgsUOKIKJjeUiILdV/KjQpsxEOCVb1PscAIxZkndhpRaoVCknFRS+dSFxQWoCXum vbc3y1pqVnbNOXa/tEJK76m7IupP1YEK3FevkhjLk3IT7vmMiBZeIVLlCJ8rrhRl +BTNaqWPUKDUiVb3fOWIpDjWPocuLhc= -----END CERTIFICATE-----Generated at Mon Nov 25 16:24:55 2024 by rpki-client on console-ams.rpki-client.org