$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/dfe22e5b-6650-3d51-aa9c-66a2e02b6967.roa File: dfe22e5b-6650-3d51-aa9c-66a2e02b6967.roa (raw, json) Hash identifier: nXNalbExVbKweccDlR0pg+RaqcLTEDWOmV3wqIPAGPs= Subject key identifier: 81:78:FE:DA:F6:55:83:A9:6E:34:64:26:39:31:95:B2:38:C7:50:AB Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F43285847768C7F52469A45DD2DC1ADD0 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/dfe22e5b-6650-3d51-aa9c-66a2e02b6967.roa Signing time: Mon 07 Oct 2024 14:28:25 +0000 ROA not before: Mon 07 Oct 2024 14:28:25 +0000 ROA not after: Sun 05 Jan 2025 15:28:25 +0000 asID: 398210 IP address blocks: 168.220.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:76:8c:7f:52:46:9a:45:dd:2d:c1:ad:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Oct 7 14:28:25 2024 GMT Not After : Jan 5 15:28:25 2025 GMT Subject: CN=5402c02d-809d-4a35-a9d0-9b3519de867f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:84:14:d3:20:1c:50:42:8f:1f:ee:86:60:f4: da:ea:33:28:3e:1b:c7:50:28:7e:72:6b:11:de:7a: 57:76:86:6e:ca:63:51:34:2c:54:b9:06:32:3a:a9: dd:af:00:91:99:ea:5a:d3:8c:bc:df:04:31:4d:11: 2c:68:c4:d8:c7:7b:63:60:29:d3:fa:9d:2d:00:d3: d7:5a:e6:bb:e2:9e:68:d4:4c:f4:de:88:b0:d4:58: 99:17:9e:42:42:24:82:ca:a7:98:86:38:8b:ba:a9: 7f:88:0e:3d:5a:10:7e:5a:bf:e7:e6:19:1a:6a:cd: a8:50:e5:36:fd:d6:94:e9:b2:c7:85:7e:01:44:dd: 67:78:50:3a:5d:54:09:62:0e:30:e0:41:04:aa:45: fc:08:c7:6d:e7:fc:95:9c:c4:65:bb:ed:4d:6b:d1: ea:c1:af:4f:f5:5e:2b:ec:71:01:96:82:69:cd:05: fb:1d:be:c2:3b:e8:cb:0b:02:de:9f:95:06:10:bb: 2b:a5:5c:49:f7:65:de:2c:bd:5f:54:ad:fe:20:b4: 30:13:97:1b:74:34:63:c7:80:c9:50:38:ab:1d:a8: 5f:4a:de:1b:25:f8:e1:ff:31:0a:b3:4c:38:51:36: 0c:a3:4f:9a:45:13:ce:26:d3:d0:69:2a:07:25:07: 15:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:78:FE:DA:F6:55:83:A9:6E:34:64:26:39:31:95:B2:38:C7:50:AB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/dfe22e5b-6650-3d51-aa9c-66a2e02b6967.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.184.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8e:33:60:63:df:04:b6:7b:ab:7d:70:07:4c:5f:05:25:55:2d: 1f:0b:39:51:8c:ad:3d:48:e4:e3:d5:b0:63:a6:76:e9:52:fc: 1e:2d:94:1a:22:03:49:1b:73:79:a2:fa:c5:25:3b:fe:e4:21: e3:fe:6a:1a:a6:0c:5e:f7:f2:6f:40:d6:47:d6:b7:3b:c8:66: 27:df:88:4c:ed:37:de:44:66:71:22:4c:b8:25:08:6e:d2:52: 79:80:0d:a4:f3:dc:a0:74:1d:7a:dd:c2:e4:78:09:33:37:67: 15:1e:08:5e:32:93:3a:37:63:96:bd:e1:9f:3b:a9:fc:fa:f0: be:90:a2:53:d3:cb:79:79:21:04:23:30:e8:35:d9:9b:4c:f7: b0:9c:0c:b8:a5:9d:05:9e:e3:d9:36:a0:fe:f2:36:9b:e5:5d: 9f:e0:38:83:15:24:87:06:f8:05:4e:e6:d3:91:3d:82:f6:e1: a3:e8:7e:4d:46:83:b6:1e:53:ba:8d:51:77:7c:35:d4:64:2d: e1:e4:52:0a:7e:7a:e3:d6:49:60:e1:aa:bb:5d:54:02:20:bc: e6:ab:89:46:77:4b:33:86:2f:b8:1e:dc:28:72:4a:60:fc:9f: 13:2f:12:08:54:50:66:a3:3b:4a:eb:3c:cd:59:3c:74:d3:e2: 3b:2a:68:2c -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEd2jH9SRppF3S3BrdAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI0MTAwNzE0MjgyNVoXDTI1MDEwNTE1MjgyNVowLzEtMCsGA1UEAxMk NTQwMmMwMmQtODA5ZC00YTM1LWE5ZDAtOWIzNTE5ZGU4NjdmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4QU0yAcUEKPH+6GYPTa6jMoPhvHUCh+cmsR 3npXdoZuymNRNCxUuQYyOqndrwCRmepa04y83wQxTREsaMTYx3tjYCnT+p0tANPX Wua74p5o1Ez03oiw1FiZF55CQiSCyqeYhjiLuql/iA49WhB+Wr/n5hkaas2oUOU2 /daU6bLHhX4BRN1neFA6XVQJYg4w4EEEqkX8CMdt5/yVnMRlu+1Na9Hqwa9P9V4r 7HEBloJpzQX7Hb7CO+jLCwLen5UGELsrpVxJ92XeLL1fVK3+ILQwE5cbdDRjx4DJ UDirHahfSt4bJfjh/zEKs0w4UTYMo0+aRRPOJtPQaSoHJQcVdwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFIF4/tr2VYOpbjRkJjkxlbI4x1CrMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvZGZlMjJlNWItNjY1MC0z ZDUxLWFhOWMtNjZhMmUwMmI2OTY3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNy4MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAI4zYGPfBLZ7q31wB0xfBSVVLR8LOVGMrT1I5OPVsGOmdulS/B4tlBoi A0kbc3mi+sUlO/7kIeP+ahqmDF738m9A1kfWtzvIZiffiEztN95EZnEiTLglCG7S UnmADaTz3KB0HXrdwuR4CTM3ZxUeCF4ykzo3Y5a94Z87qfz68L6QolPTy3l5IQQj MOg12ZtM97CcDLilnQWe49k2oP7yNpvlXZ/gOIMVJIcG+AVO5tORPYL24aPofk1G g7YeU7qNUXd8NdRkLeHkUgp+euPWSWDhqrtdVAIgvOariUZ3SzOGL7ge3ChySmD8 nxMvEghUUGajO0rrPM1ZPHTT4jsqaCw= -----END CERTIFICATE-----Generated at Mon Nov 25 16:00:50 2024 by rpki-client on console-fra.rpki-client.org