$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa File: 3e233b44-911d-3c32-9600-9580640a3557.roa (raw, json) Hash identifier: fu10rSpoNAsX/34lrg6Kti2P+Lr2r3ctoEhWoozt1tY= Subject key identifier: AF:65:04:48:DF:2D:04:AD:0C:99:EA:E3:20:50:79:FD:E5:7F:06:DB Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F43285847686B8DD9A45E3307233D6280 Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa Signing time: Wed 02 Oct 2024 13:00:42 +0000 ROA not before: Wed 02 Oct 2024 13:00:42 +0000 ROA not after: Tue 31 Dec 2024 14:00:42 +0000 asID: 17378 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:68:6b:8d:d9:a4:5e:33:07:23:3d:62:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: Oct 2 13:00:42 2024 GMT Not After : Dec 31 14:00:42 2024 GMT Subject: CN=171a93ae-2189-44cf-ad92-713eb1a2cba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:61:9b:2c:bb:f9:fd:b2:26:76:5f:bd:e7:0d: a1:11:87:9b:90:c4:fb:b6:e6:93:d8:0f:bc:3f:2c: df:ad:37:ab:87:9a:0f:7c:be:ec:75:cc:5e:e5:a7: 20:40:39:e8:4b:73:01:1a:27:36:a1:c3:00:66:d7: 43:6d:d2:f9:3c:57:29:bb:30:24:10:c3:4a:1d:03: 2a:77:3c:0c:0c:35:1d:bf:fc:5d:06:9b:0c:0e:1e: 5f:1b:0b:69:44:18:39:2a:02:e4:7b:b5:99:7d:58: 0a:9b:aa:0f:19:e1:ab:2a:fe:a1:25:e0:97:16:e1: 25:dd:00:27:87:85:7e:8b:42:1f:50:df:dd:91:08: da:ca:2c:1c:da:5e:a4:d6:0f:ab:df:81:b2:78:62: 13:48:ef:b9:32:f1:f8:af:18:00:78:df:82:ef:98: 93:77:36:b1:a3:28:9c:be:a1:5e:25:59:00:a9:db: 6a:13:d7:3e:d8:09:a4:23:e2:ee:09:46:9d:0e:08: 08:a2:49:d1:6f:e7:be:af:ec:f6:8b:16:b9:76:2d: ae:cf:91:33:86:7d:4a:9c:1d:1f:1f:28:c2:46:2b: 8c:cb:f2:92:d3:c4:aa:64:42:db:3f:64:f7:89:ed: c2:e4:db:d5:54:34:b0:60:7d:be:b2:16:be:d3:5d: 14:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:65:04:48:DF:2D:04:AD:0C:99:EA:E3:20:50:79:FD:E5:7F:06:DB Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/3e233b44-911d-3c32-9600-9580640a3557.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 03:ca:3b:c7:48:80:24:e7:7d:7f:85:52:7a:15:66:a8:a9:37: fd:41:3e:19:97:e2:44:9c:bb:3c:bc:19:4c:7e:b3:ec:86:62: e4:bf:c7:0d:b0:8e:ac:1b:70:64:91:8c:5b:83:cb:71:d5:40: 25:ed:b3:00:68:6f:89:eb:2e:37:68:c3:f6:96:ef:0b:e0:24: 92:cc:a5:2e:75:1e:3b:2f:6f:80:ba:76:e0:d9:84:e7:b5:7d: 62:35:9e:7b:bd:4a:50:7e:7d:3d:25:16:66:c8:fe:87:bb:98: 82:73:3c:dc:32:95:74:ae:5b:ac:b9:ac:05:5d:b3:84:0e:33: 6a:c3:e5:7f:6d:3e:5c:44:a0:54:9e:34:e9:89:d6:8d:8b:76: 03:e9:72:da:8b:01:06:63:5f:21:8b:37:3d:8c:64:c1:03:66: d4:9d:9e:d5:39:a5:5c:11:d5:bc:68:f7:dd:c9:59:e0:2a:ee: cf:1c:49:33:e8:7a:4e:b8:1c:32:73:32:8c:2e:ef:62:c5:e0: 92:60:15:3a:5f:cd:92:f4:df:e1:30:fb:23:76:23:26:5d:74: 18:e7:98:b9:ae:bc:ff:33:5d:a2:92:5f:ee:0a:21:9b:7d:d6: 5b:5e:2a:1d:43:01:6a:83:a8:a6:4c:09:68:7d:95:fb:5b:d2: 26:a5:3b:d4 -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWEdoa43ZpF4zByM9YoAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI0MTAwMjEzMDA0MloXDTI0MTIzMTE0MDA0MlowLzEtMCsGA1UEAxMk MTcxYTkzYWUtMjE4OS00NGNmLWFkOTItNzEzZWIxYTJjYmEzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjGGbLLv5/bImdl+95w2hEYebkMT7tuaT2A+8 PyzfrTerh5oPfL7sdcxe5acgQDnoS3MBGic2ocMAZtdDbdL5PFcpuzAkEMNKHQMq dzwMDDUdv/xdBpsMDh5fGwtpRBg5KgLke7WZfVgKm6oPGeGrKv6hJeCXFuEl3QAn h4V+i0IfUN/dkQjayiwc2l6k1g+r34GyeGITSO+5MvH4rxgAeN+C75iTdzaxoyic vqFeJVkAqdtqE9c+2AmkI+LuCUadDggIoknRb+e+r+z2ixa5di2uz5Ezhn1KnB0f HyjCRiuMy/KS08SqZELbP2T3ie3C5NvVVDSwYH2+sha+010UlQIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFK9lBEjfLQStDJnq4yBQef3lfwbbMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvM2UyMzNiNDQtOTExZC0z YzMyLTk2MDAtOTU4MDY0MGEzNTU3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAA8o7x0iAJOd9f4VSehVmqKk3 /UE+GZfiRJy7PLwZTH6z7IZi5L/HDbCOrBtwZJGMW4PLcdVAJe2zAGhviesuN2jD 9pbvC+AkksylLnUeOy9vgLp24NmE57V9YjWee71KUH59PSUWZsj+h7uYgnM83DKV dK5brLmsBV2zhA4zasPlf20+XESgVJ406YnWjYt2A+ly2osBBmNfIYs3PYxkwQNm 1J2e1TmlXBHVvGj33clZ4CruzxxJM+h6TrgcMnMyjC7vYsXgkmAVOl/NkvTf4TD7 I3YjJl10GOeYua68/zNdopJf7gohm33WW14qHUMBaoOopkwJaH2V+1vSJqU71A== -----END CERTIFICATE-----Generated at Thu Nov 21 21:07:03 2024 by rpki-client on console-fra.rpki-client.org