$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa File: 91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa (raw, json) Hash identifier: AGIXmlcH2oh9t/A+ts9+n9BQqxcV79O7/UM/YYkq+hg= Subject key identifier: 9C:4A:4A:A9:4D:DF:D3:1B:37:11:4D:4B:42:CB:FE:F4:8B:79:91:D0 Certificate issuer: /CN=3aeb4dac-8911-4f44-9f24-1f5081193043 Certificate serial: 010D0C9F4328584733CD91B2A84A4AC1C9ADBD00 Authority key identifier: 96:FF:31:79:24:B5:E1:3A:74:B0:00:4D:50:56:C3:6D:12:47:5E:9D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa Signing time: Fri 13 Sep 2024 16:40:22 +0000 ROA not before: Fri 13 Sep 2024 16:40:22 +0000 ROA not after: Thu 12 Dec 2024 17:40:22 +0000 asID: 55077 IP address blocks: 23.128.208.0/24 maxlen: 24 103.25.230.0/24 maxlen: 24 104.36.4.0/22 maxlen: 22 198.44.204.0/22 maxlen: 22 2602:ff31::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/3aeb4dac-8911-4f44-9f24-1f5081193043.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/3aeb4dac-8911-4f44-9f24-1f5081193043.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:33:cd:91:b2:a8:4a:4a:c1:c9:ad:bd:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3aeb4dac-8911-4f44-9f24-1f5081193043 Validity Not Before: Sep 13 16:40:22 2024 GMT Not After : Dec 12 17:40:22 2024 GMT Subject: CN=6c4552f1-db6b-46e2-aca3-4323a5b7e866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:04:94:3e:73:b7:0f:47:93:eb:44:9d:a2:f7: ae:ae:4c:d6:e1:9a:fd:96:86:d6:56:d1:36:46:0c: 94:2d:73:67:cb:de:76:76:92:5c:b4:97:e3:9b:26: 8d:0f:9b:88:b3:9e:2e:7f:c4:57:06:d9:0c:79:59: 1c:59:8d:71:bd:64:c5:e3:54:ea:16:54:99:a8:6e: 46:c1:19:a7:24:e9:f9:68:32:4c:65:39:fd:da:59: 95:ce:12:a0:e1:ed:51:51:f9:62:11:92:1f:bf:0a: 3f:e7:7c:79:9a:ca:12:1d:13:62:27:ce:a8:1a:3a: 2c:e1:f0:82:65:eb:87:11:be:4c:00:b1:63:e7:32: 11:76:a5:79:aa:be:d1:ca:e8:9b:e1:8e:1c:cd:56: 0d:8f:58:0c:e9:e3:45:4b:5a:8d:1e:82:8d:4c:e2: e9:19:46:b4:2b:13:55:b3:c4:48:f3:f5:b1:79:7f: ba:72:eb:c5:54:b3:01:be:77:36:a1:63:8a:4e:13: 71:1b:1e:99:34:9f:47:52:7a:46:29:70:c5:a8:f2: d7:2d:f0:ae:ac:6f:a7:de:08:ee:78:7b:2b:fe:b5: 22:7b:4e:04:27:12:31:2a:e8:e3:35:e0:2e:33:d6: bd:d2:e9:f2:a8:d4:d5:c5:3b:61:79:b2:2a:1d:fe: 8d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4A:4A:A9:4D:DF:D3:1B:37:11:4D:4B:42:CB:FE:F4:8B:79:91:D0 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/3aeb4dac-8911-4f44-9f24-1f5081193043.crl X509v3 Authority Key Identifier: keyid:96:FF:31:79:24:B5:E1:3A:74:B0:00:4D:50:56:C3:6D:12:47:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043.cer sbgp-ipAddrBlock: critical IPv4: 23.128.208.0/24 103.25.230.0/24 104.36.4.0/22 198.44.204.0/22 IPv6: 2602:ff31::/36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 15:75:b2:bb:4a:1a:1f:7e:48:7b:5d:ce:d5:f7:5b:63:9f:45: 2e:bc:93:21:23:38:96:ad:47:33:6f:38:0b:9e:41:b4:88:a9: 9b:b9:6d:68:79:46:9e:f6:ff:63:61:c4:bf:71:d9:e4:32:99: 3f:29:d9:8a:1c:d7:92:60:8a:eb:4e:d0:1e:17:e8:03:7c:02: 46:a2:73:19:a4:36:64:72:e9:28:b2:fc:59:85:e0:e7:38:35: b6:e0:ec:bc:35:0e:5c:18:5b:d9:78:2f:9f:71:ae:c8:7f:48: 45:5e:86:22:00:3e:1f:2d:f5:bb:83:52:4c:c1:3b:55:6c:59: 65:8e:8e:15:5c:1d:68:b3:59:f1:7e:e4:5a:65:f4:69:18:77: 16:94:65:0d:96:6d:04:e3:5b:7e:cd:06:42:80:e4:31:66:99: ee:c2:49:5c:5e:19:fa:5b:d5:d7:27:f9:dd:0e:12:0f:89:e5: 89:5f:18:79:f2:b0:b0:2a:3b:d5:6d:56:9f:83:f5:6a:e7:9c: c3:65:2c:bd:d3:31:b1:76:26:5f:3f:c8:81:04:8c:40:e4:59: 52:ac:2d:8f:e8:45:e1:04:72:d8:99:f6:14:ce:0b:ee:36:2a: 82:ee:e1:00:85:f4:27:04:42:03:52:f3:ec:d8:c9:0f:8b:11: 65:07:92:6a -----BEGIN CERTIFICATE----- MIIGZTCCBU2gAwIBAgIUAQ0Mn0MoWEczzZGyqEpKwcmtvQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkM2FlYjRkYWMtODkxMS00ZjQ0LTlmMjQtMWY1MDgxMTkz MDQzMB4XDTI0MDkxMzE2NDAyMloXDTI0MTIxMjE3NDAyMlowLzEtMCsGA1UEAxMk NmM0NTUyZjEtZGI2Yi00NmUyLWFjYTMtNDMyM2E1YjdlODY2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ASUPnO3D0eT60SdoveurkzW4Zr9lobWVtE2 RgyULXNny952dpJctJfjmyaND5uIs54uf8RXBtkMeVkcWY1xvWTF41TqFlSZqG5G wRmnJOn5aDJMZTn92lmVzhKg4e1RUfliEZIfvwo/53x5msoSHRNiJ86oGjos4fCC ZeuHEb5MALFj5zIRdqV5qr7Ryuib4Y4czVYNj1gM6eNFS1qNHoKNTOLpGUa0KxNV s8RI8/WxeX+6cuvFVLMBvnc2oWOKThNxGx6ZNJ9HUnpGKXDFqPLXLfCurG+n3gju eHsr/rUie04EJxIxKujjNeAuM9a90unyqNTVxTthebIqHf6N2QIDAQABo4IDdzCC A3MwHQYDVR0OBBYEFJxKSqlN39MbNxFNS0LL/vSLeZHQMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS8zYWVi NGRhYy04OTExLTRmNDQtOWYyNC0xZjUwODExOTMwNDMvOTFlYzFiOWEtNTMxOC0z YjBiLThkMGQtMTgxODNlNzFlOTI0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy82OWZkMDE1Ni1i YjFmLTQ4YjYtYmYzMi1jOTQ5MjI4NmYxOTUvM2FlYjRkYWMtODkxMS00ZjQ0LTlm MjQtMWY1MDgxMTkzMDQzLzNhZWI0ZGFjLTg5MTEtNGY0NC05ZjI0LTFmNTA4MTE5 MzA0My5jcmwwHwYDVR0jBBgwFoAUlv8xeSS14Tp0sABNUFbDbRJHXp0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYtNDhi Ni1iZjMyLWM5NDkyMjg2ZjE5NS8zYWViNGRhYy04OTExLTRmNDQtOWYyNC0xZjUw ODExOTMwNDMuY2VyMEEGCCsGAQUFBwEHAQH/BDIwMDAeBAIAATAYAwQAF4DQAwQA ZxnmAwQCaCQEAwQCxizMMA4EAgACMAgDBgQmAv8xADBUBgNVHSABAf8ESjBIMEYG CCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jl c291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUAA4IBAQAVdbK7Shof fkh7Xc7V91tjn0UuvJMhIziWrUczbzgLnkG0iKmbuW1oeUae9v9jYcS/cdnkMpk/ KdmKHNeSYIrrTtAeF+gDfAJGonMZpDZkcukosvxZheDnODW24Oy8NQ5cGFvZeC+f ca7If0hFXoYiAD4fLfW7g1JMwTtVbFlljo4VXB1os1nxfuRaZfRpGHcWlGUNlm0E 41t+zQZCgOQxZpnuwklcXhn6W9XXJ/ndDhIPieWJXxh58rCwKjvVbVafg/Vq55zD ZSy90zGxdiZfP8iBBIxA5FlSrC2P6EXhBHLYmfYUzgvuNiqC7uEAhfQnBEIDUvPs 2MkPixFlB5Jq -----END CERTIFICATE-----Generated at Thu Nov 21 23:37:19 2024 by rpki-client on console-ams.rpki-client.org