$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa File: a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa (raw, json) Hash identifier: 9/GneOR/CVq9AD8y4myh25tljMBgyJJqz4tstUpay8o= Subject key identifier: 5A:88:A9:83:B3:91:7E:1F:13:28:B2:82:A5:96:BE:C8:21:F6:2F:3B Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Certificate serial: 010D0C9F43285847686B8DFAAD617A263E4ED7A0 Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa Signing time: Wed 02 Oct 2024 13:00:42 +0000 ROA not before: Wed 02 Oct 2024 13:00:42 +0000 ROA not after: Tue 31 Dec 2024 14:00:42 +0000 asID: 7181 IP address blocks: 72.29.96.0/19 maxlen: 24 72.249.0.0/17 maxlen: 24 72.249.128.0/18 maxlen: 24 74.112.92.0/22 maxlen: 24 74.114.180.0/22 maxlen: 24 74.118.40.0/22 maxlen: 24 74.120.208.0/22 maxlen: 24 74.213.128.0/19 maxlen: 24 96.31.160.0/20 maxlen: 24 98.142.80.0/20 maxlen: 24 104.37.108.0/22 maxlen: 24 144.202.128.0/17 maxlen: 24 162.216.52.0/22 maxlen: 24 162.220.104.0/22 maxlen: 24 162.222.96.0/22 maxlen: 24 162.248.248.0/21 maxlen: 24 173.237.128.0/18 maxlen: 24 173.240.48.0/20 maxlen: 24 174.136.0.0/18 maxlen: 24 192.197.58.0/23 maxlen: 24 198.35.116.0/22 maxlen: 24 199.21.64.0/21 maxlen: 24 199.87.60.0/22 maxlen: 24 199.96.248.0/21 maxlen: 24 199.188.208.0/22 maxlen: 24 199.193.140.0/22 maxlen: 24 199.193.176.0/22 maxlen: 24 199.233.224.0/22 maxlen: 24 204.11.208.0/22 maxlen: 24 204.15.100.0/22 maxlen: 24 204.16.108.0/22 maxlen: 24 205.147.202.0/24 maxlen: 24 205.147.208.0/24 maxlen: 24 205.147.218.0/24 maxlen: 24 205.147.235.0/24 maxlen: 24 206.123.64.0/18 maxlen: 24 206.245.164.0/24 maxlen: 24 207.8.244.0/22 maxlen: 24 207.45.160.0/20 maxlen: 24 207.154.0.0/18 maxlen: 24 207.210.192.0/18 maxlen: 24 207.254.208.0/20 maxlen: 24 208.67.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:68:6b:8d:fa:ad:61:7a:26:3e:4e:d7:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff Validity Not Before: Oct 2 13:00:42 2024 GMT Not After : Dec 31 14:00:42 2024 GMT Subject: CN=d1e5f682-8245-440c-a697-6877a392c292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:79:c6:5a:26:bd:91:22:d3:07:af:c3:5a:1f: 1e:61:32:ed:f3:36:97:eb:eb:67:80:0c:4f:82:96: 00:e9:71:77:c5:d2:10:76:37:12:85:0f:7e:08:c6: 90:9d:e2:37:8a:78:94:56:34:5b:a0:37:35:e7:8d: ab:02:74:52:0e:18:2c:e9:a4:41:a7:1c:df:25:84: af:98:a2:f5:55:73:df:73:74:9e:5d:0e:18:4a:5b: 6d:29:c3:65:e5:fb:2c:da:5d:3d:9b:99:c9:09:5a: 5c:1a:93:91:0b:9f:6c:cf:c0:d7:72:4c:86:a2:0d: ca:b0:5f:36:3b:c3:33:a0:4a:bd:74:2b:47:de:5d: de:ef:0b:fd:89:76:6c:85:3f:8e:5b:a3:b5:88:01: 92:36:47:43:01:57:a0:e5:c1:30:bc:15:11:d9:04: e0:d8:39:0f:67:e7:8b:be:fa:7e:b3:08:c2:98:97: 03:d3:e5:d3:2f:49:2d:05:72:aa:2c:0c:70:83:c4: 1f:b5:a2:a6:1c:e1:20:86:c8:3f:98:a4:31:2d:ea: 7a:bf:4a:45:1a:57:f3:6d:45:c3:13:cc:d1:ce:11: c2:a2:e9:1c:0d:44:bb:df:13:16:96:09:96:55:f1: 93:92:27:a8:30:17:46:ae:b3:31:e3:17:40:8f:fd: 02:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:88:A9:83:B3:91:7E:1F:13:28:B2:82:A5:96:BE:C8:21:F6:2F:3B Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/a748f777-8b79-3ad6-9127-8ead7a4cf7d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl X509v3 Authority Key Identifier: keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer sbgp-ipAddrBlock: critical IPv4: 72.29.96.0/19 72.249.0.0-72.249.191.255 74.112.92.0/22 74.114.180.0/22 74.118.40.0/22 74.120.208.0/22 74.213.128.0/19 96.31.160.0/20 98.142.80.0/20 104.37.108.0/22 144.202.128.0/17 162.216.52.0/22 162.220.104.0/22 162.222.96.0/22 162.248.248.0/21 173.237.128.0/18 173.240.48.0/20 174.136.0.0/18 192.197.58.0/23 198.35.116.0/22 199.21.64.0/21 199.87.60.0/22 199.96.248.0/21 199.188.208.0/22 199.193.140.0/22 199.193.176.0/22 199.233.224.0/22 204.11.208.0/22 204.15.100.0/22 204.16.108.0/22 205.147.202.0/24 205.147.208.0/24 205.147.218.0/24 205.147.235.0/24 206.123.64.0/18 206.245.164.0/24 207.8.244.0/22 207.45.160.0/20 207.154.0.0/18 207.210.192.0/18 207.254.208.0/20 208.67.120.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 69:0c:a4:56:68:fe:08:67:d7:e6:e1:35:e7:c9:03:dd:7a:db: 3b:14:5c:a7:4c:09:83:68:64:ac:3e:4d:08:81:e3:fc:6d:2b: 12:86:e9:28:73:f5:15:02:0e:ab:e5:ff:66:2a:d3:3d:49:fc: 7a:dd:7e:1f:66:3f:df:7f:08:15:c8:b9:b8:e8:86:8b:15:2f: 1c:15:70:74:35:b4:63:4e:78:d3:73:51:1d:55:ab:44:f3:1a: 9b:4f:52:12:d0:d1:d0:9b:dc:11:32:17:8e:ae:4a:42:73:d3: 18:57:bb:2f:ea:b0:50:4a:6e:34:0c:47:ef:09:2a:33:3d:58: 15:4f:f3:f8:b9:0e:af:bf:41:ef:d4:0c:a3:e6:11:a2:4f:ef: ed:b0:2c:b1:9d:df:37:a2:60:2c:d5:16:32:66:94:ca:d9:2d: 7b:e1:08:06:4c:b9:0c:d7:49:32:16:48:ee:7d:05:05:6a:e4: e1:bb:7b:21:2f:d2:bd:e5:3f:1a:6d:07:59:38:8a:6d:ba:7e: 45:a0:d1:9b:38:1c:32:fb:33:07:3c:be:6b:49:b6:0e:24:c0: 83:44:b6:73:1c:9c:ac:9e:dd:f0:8c:92:b1:f5:e9:ff:a5:8d: 01:95:79:c9:bc:3a:e3:8b:89:23:d0:f9:98:e0:f8:e4:80:a7: 3a:1b:19:ab -----BEGIN CERTIFICATE----- MIIHSjCCBjKgAwIBAgIUAQ0Mn0MoWEdoa436rWF6Jj5O16AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWRkOGJlOGEtYmVhZC00ZDViLWE4MTgtNGQxNDgyZjQ3 OWZmMB4XDTI0MTAwMjEzMDA0MloXDTI0MTIzMTE0MDA0MlowLzEtMCsGA1UEAxMk ZDFlNWY2ODItODI0NS00NDBjLWE2OTctNjg3N2EzOTJjMjkyMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj3nGWia9kSLTB6/DWh8eYTLt8zaX6+tngAxP gpYA6XF3xdIQdjcShQ9+CMaQneI3iniUVjRboDc1542rAnRSDhgs6aRBpxzfJYSv mKL1VXPfc3SeXQ4YSlttKcNl5fss2l09m5nJCVpcGpORC59sz8DXckyGog3KsF82 O8MzoEq9dCtH3l3e7wv9iXZshT+OW6O1iAGSNkdDAVeg5cEwvBUR2QTg2DkPZ+eL vvp+swjCmJcD0+XTL0ktBXKqLAxwg8QftaKmHOEghsg/mKQxLep6v0pFGlfzbUXD E8zRzhHCoukcDUS73xMWlgmWVfGTkieoMBdGrrMx4xdAj/0C1QIDAQABo4IEXDCC BFgwHQYDVR0OBBYEFFqIqYOzkX4fEyiygqWWvsgh9i87MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4 YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0ODJmNDc5ZmYvYTc0OGY3NzctOGI3OS0z YWQ2LTkxMjctOGVhZDdhNGNmN2QxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvMWRkOGJlOGEtYmVhZC00ZDViLWE4 MTgtNGQxNDgyZjQ3OWZmLzFkZDhiZThhLWJlYWQtNGQ1Yi1hODE4LTRkMTQ4MmY0 NzlmZi5jcmwwHwYDVR0jBBgwFoAU4yhAhJRGSB1vsr1QLE5krzJWszcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi8xZGQ4YmU4YS1iZWFkLTRkNWItYTgxOC00ZDE0 ODJmNDc5ZmYuY2VyMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCCAQsEAgABMIIB AwMEBUgdYDALAwMASPkDBAZI+YADBAJKcFwDBAJKcrQDBAJKdigDBAJKeNADBAVK 1YADBARgH6ADBARijlADBAJoJWwDBAeQyoADBAKi2DQDBAKi3GgDBAKi3mADBAOi +PgDBAat7YADBASt8DADBAauiAADBAHAxToDBALGI3QDBAPHFUADBALHVzwDBAPH YPgDBALHvNADBALHwYwDBALHwbADBALH6eADBALMC9ADBALMD2QDBALMEGwDBADN k8oDBADNk9ADBADNk9oDBADNk+sDBAbOe0ADBADO9aQDBALPCPQDBATPLaADBAbP mgADBAbP0sADBATP/tADBAPQQ3gwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6 MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBr aS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAaQykVmj+CGfX5uE158kD3Xrb OxRcp0wJg2hkrD5NCIHj/G0rEobpKHP1FQIOq+X/ZirTPUn8et1+H2Y/338IFci5 uOiGixUvHBVwdDW0Y05403NRHVWrRPMam09SEtDR0JvcETIXjq5KQnPTGFe7L+qw UEpuNAxH7wkqMz1YFU/z+LkOr79B79QMo+YRok/v7bAssZ3fN6JgLNUWMmaUytkt e+EIBky5DNdJMhZI7n0FBWrk4bt7IS/SveU/Gm0HWTiKbbp+RaDRmzgcMvszBzy+ a0m2DiTAg0S2cxycrJ7d8IySsfXp/6WNAZV5ybw644uJI9D5mOD45ICnOhsZqw== -----END CERTIFICATE-----Generated at Thu Nov 21 21:07:03 2024 by rpki-client on console-fra.rpki-client.org