$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/5015cae2-d54d-3b04-be39-f5fad9cd4fad.roa File: 5015cae2-d54d-3b04-be39-f5fad9cd4fad.roa (raw, json) Hash identifier: 2B/tQGDPmIMSYRBp7ti1G0ebd2aCmZh1V1JAN20PTgU= Subject key identifier: 9C:D3:EA:3F:ED:B2:11:58:05:A3:5C:83:A1:3B:28:3C:EA:0F:F4:D6 Certificate issuer: /CN=c3fbdc8c-2f4c-4dea-b420-52e582992086 Certificate serial: 010D0C9F43285847CA3F4204A3AE6CC8B353F840 Authority key identifier: 88:EC:1B:EE:A2:0C:53:B3:99:38:A4:26:8C:5E:B1:EE:56:2C:E4:F0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/5015cae2-d54d-3b04-be39-f5fad9cd4fad.roa Signing time: Wed 06 Nov 2024 14:00:41 +0000 ROA not before: Wed 06 Nov 2024 14:00:41 +0000 ROA not after: Tue 04 Feb 2025 14:00:41 +0000 asID: 1239 IP address blocks: 216.98.249.0/24 maxlen: 24 216.98.250.0/24 maxlen: 24 216.98.251.0/24 maxlen: 24 216.98.252.0/24 maxlen: 24 216.98.253.0/24 maxlen: 24 216.98.254.0/24 maxlen: 24 216.98.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/c3fbdc8c-2f4c-4dea-b420-52e582992086.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/c3fbdc8c-2f4c-4dea-b420-52e582992086.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 11:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:ca:3f:42:04:a3:ae:6c:c8:b3:53:f8:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c3fbdc8c-2f4c-4dea-b420-52e582992086 Validity Not Before: Nov 6 14:00:41 2024 GMT Not After : Feb 4 14:00:41 2025 GMT Subject: CN=d1c3e75c-01a8-4c23-99d1-dac09f4aa71b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:41:14:0c:ca:08:c9:52:b8:57:51:c3:b8:06: 8b:9f:9b:f4:13:ac:36:08:a2:66:a3:b3:a7:ef:81: 15:d0:86:a2:99:f1:a5:1a:7d:0d:f7:28:9d:1f:76: 8c:df:f4:be:54:dd:c7:ae:c1:e5:cc:02:40:77:76: e6:0d:a8:6f:0c:65:c4:5d:c1:e5:44:1f:b5:27:5f: 43:c1:27:2f:72:58:3c:dc:ec:f4:65:ea:01:38:b9: 51:01:ea:36:8d:1f:15:22:f4:cc:94:37:a6:48:7c: 54:3a:d0:cc:9c:c5:5d:08:c7:fc:5d:92:ca:16:d4: 17:9d:d7:2d:ab:35:df:52:d2:66:31:31:89:b5:94: ac:a5:e5:18:83:44:35:36:df:69:5a:da:1a:34:72: 96:9a:08:1c:19:18:14:a2:bc:56:27:70:6e:76:e9: 68:23:b6:f4:79:4f:21:27:f9:a1:a3:e6:c8:ae:a9: 40:b1:48:96:a1:a3:bd:05:03:99:b5:59:97:5a:b3: a5:df:b5:46:0f:75:c5:a2:65:53:fc:f3:0f:ca:af: 5c:18:8b:51:5c:99:1d:ea:7a:bb:41:37:06:77:85: fd:c0:6f:22:7b:ec:a8:14:08:c2:81:a6:07:25:ad: 09:ae:2e:99:b1:74:df:c1:4d:4a:c1:ec:1d:82:2a: 41:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:D3:EA:3F:ED:B2:11:58:05:A3:5C:83:A1:3B:28:3C:EA:0F:F4:D6 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/5015cae2-d54d-3b04-be39-f5fad9cd4fad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/c3fbdc8c-2f4c-4dea-b420-52e582992086.crl X509v3 Authority Key Identifier: keyid:88:EC:1B:EE:A2:0C:53:B3:99:38:A4:26:8C:5E:B1:EE:56:2C:E4:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086.cer sbgp-ipAddrBlock: critical IPv4: 216.98.249.0-216.98.255.255 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6c:1f:6a:02:59:e5:53:3e:aa:3c:41:2f:e1:90:9a:65:6a:a9: 1d:f7:cf:42:0b:a2:da:ac:10:8d:08:93:1c:99:07:5a:e5:07: 81:80:8b:80:a3:be:3a:97:5b:be:7a:35:e4:1c:98:2b:af:24: c2:33:5f:e1:32:6a:1c:4d:5d:7c:83:79:48:f4:2d:07:37:67: fb:47:ec:eb:c3:88:2f:f8:2b:b2:9a:70:79:50:18:97:7e:ec: bc:f5:e8:04:49:66:cd:60:db:c6:f5:df:74:b4:19:1b:22:13: db:72:57:0c:cd:2b:ea:de:95:67:ee:fe:76:9a:1a:e5:28:38: d7:27:bf:93:a2:49:e2:8b:9b:d9:af:92:36:72:2d:8d:f1:c9: 21:32:f9:fd:ff:d2:a6:f3:e6:59:16:c2:9f:87:35:eb:35:13: 87:57:d0:19:39:a5:86:3b:4d:c3:93:ce:da:90:81:68:31:d8: 11:21:47:4f:d3:b2:1c:44:b3:a3:b3:02:82:a8:02:5a:38:3a: 70:ea:f5:51:f7:77:4d:3b:ef:6a:1c:7c:58:f1:38:12:99:f6: 4e:fa:d3:02:28:cf:66:c9:4c:bf:46:be:fb:fd:d9:8f:78:05: 3d:2e:b9:11:9b:75:58:a2:a3:d9:a0:40:76:ae:9b:00:97:13: 9c:de:24:e2 -----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgIUAQ0Mn0MoWEfKP0IEo65syLNT+EAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYzNmYmRjOGMtMmY0Yy00ZGVhLWI0MjAtNTJlNTgyOTky MDg2MB4XDTI0MTEwNjE0MDA0MVoXDTI1MDIwNDE0MDA0MVowLzEtMCsGA1UEAxMk ZDFjM2U3NWMtMDFhOC00YzIzLTk5ZDEtZGFjMDlmNGFhNzFiMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEEUDMoIyVK4V1HDuAaLn5v0E6w2CKJmo7On 74EV0IaimfGlGn0N9yidH3aM3/S+VN3HrsHlzAJAd3bmDahvDGXEXcHlRB+1J19D wScvclg83Oz0ZeoBOLlRAeo2jR8VIvTMlDemSHxUOtDMnMVdCMf8XZLKFtQXndct qzXfUtJmMTGJtZSspeUYg0Q1Nt9pWtoaNHKWmggcGRgUorxWJ3BuduloI7b0eU8h J/mho+bIrqlAsUiWoaO9BQOZtVmXWrOl37VGD3XFomVT/PMPyq9cGItRXJkd6nq7 QTcGd4X9wG8ie+yoFAjCgaYHJa0Jri6ZsXTfwU1KwewdgipBAwIDAQABo4IDXDCC A1gwHQYDVR0OBBYEFJzT6j/tshFYBaNcg6E7KDzqD/TWMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9jM2Zi ZGM4Yy0yZjRjLTRkZWEtYjQyMC01MmU1ODI5OTIwODYvNTAxNWNhZTItZDU0ZC0z YjA0LWJlMzktZjVmYWQ5Y2Q0ZmFkLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81YjdmYjEyMi1k ZmRmLTRjMGMtYjkwZC0zYmM3YTVmZWI4MmIvYzNmYmRjOGMtMmY0Yy00ZGVhLWI0 MjAtNTJlNTgyOTkyMDg2L2MzZmJkYzhjLTJmNGMtNGRlYS1iNDIwLTUyZTU4Mjk5 MjA4Ni5jcmwwHwYDVR0jBBgwFoAUiOwb7qIMU7OZOKQmjF6x7lYs5PAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYtNGMw Yy1iOTBkLTNiYzdhNWZlYjgyYi9jM2ZiZGM4Yy0yZjRjLTRkZWEtYjQyMC01MmU1 ODI5OTIwODYuY2VyMCYGCCsGAQUFBwEHAQH/BBcwFTATBAIAATANMAsDBADYYvkD AwDYYjBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0 dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqG SIb3DQEBCwUAA4IBAQBsH2oCWeVTPqo8QS/hkJplaqkd989CC6LarBCNCJMcmQda 5QeBgIuAo746l1u+ejXkHJgrryTCM1/hMmocTV18g3lI9C0HN2f7R+zrw4gv+Cuy mnB5UBiXfuy89egESWbNYNvG9d90tBkbIhPbclcMzSvq3pVn7v52mhrlKDjXJ7+T oknii5vZr5I2ci2N8ckhMvn9/9Km8+ZZFsKfhzXrNROHV9AZOaWGO03Dk87akIFo MdgRIUdP07IcRLOjswKCqAJaODpw6vVR93dNO+9qHHxY8TgSmfZO+tMCKM9myUy/ Rr77/dmPeAU9LrkRm3VYoqPZoEB2rpsAlxOc3iTi -----END CERTIFICATE-----Generated at Thu Nov 21 16:22:11 2024 by rpki-client on console-ams.rpki-client.org