$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa File: 83a687bd-8f33-38a0-b954-7a7150c2e666.roa (raw, json) Hash identifier: CRwKJxj0waa9qVyrV0R4j37WtQY+1wk3cXSoxT8RTrE= Subject key identifier: 9F:7E:0A:82:7A:1E:9A:A6:3F:06:D4:D4:5A:8B:E1:C1:6E:B2:08:CA Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Certificate serial: 010D0C9F432858474B1B4C92D8C19C1E405CC180 Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa Signing time: Sun 22 Sep 2024 01:00:32 +0000 ROA not before: Sun 22 Sep 2024 01:00:32 +0000 ROA not after: Sat 21 Dec 2024 02:00:32 +0000 asID: 394437 IP address blocks: 209.173.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 05:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:4b:1b:4c:92:d8:c1:9c:1e:40:5c:c1:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f Validity Not Before: Sep 22 01:00:32 2024 GMT Not After : Dec 21 02:00:32 2024 GMT Subject: CN=bdc289d1-edc8-4dce-be11-0053a5b18043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:30:9f:99:2b:95:7f:d3:9b:1e:cc:fe:90:fb: 37:0c:a9:08:26:0a:5e:83:7e:fc:57:50:23:ef:3b: 18:43:32:8d:ba:15:2a:5d:1f:e2:32:69:ab:8a:45: 2b:13:b5:08:dc:34:44:bc:9a:38:6b:6a:4f:34:d1: 1c:e0:4f:7f:63:4e:cd:91:05:cf:65:90:06:06:40: 85:79:7d:05:1f:62:aa:3f:32:c6:83:c1:bd:ef:06: 79:6e:8b:7e:23:35:6f:08:d2:f5:85:d8:ec:ec:be: e3:83:23:90:cd:2b:f9:b8:a6:a9:d0:72:ef:f9:e2: 4d:b1:d4:d3:72:0b:8b:19:06:65:16:6d:98:36:c8: 8b:98:0f:e8:94:90:73:01:1d:77:6c:4b:96:20:15: f9:b4:79:69:72:3b:51:6a:35:c5:93:ad:44:58:26: c9:3b:12:7a:7a:e6:c2:9c:5e:03:55:26:be:21:86: 52:6b:0e:37:88:6f:79:d3:c5:d4:c2:4c:34:43:99: 5f:05:e7:2b:2b:2e:95:35:3f:02:4c:69:47:58:ad: eb:84:91:d2:b6:35:0e:25:9e:35:19:80:56:31:2b: 5a:19:16:38:b0:ae:7e:1c:19:d6:ef:11:cd:75:4a: 6d:d9:09:c8:48:f1:9d:d5:9a:6f:dd:1b:03:fa:8d: 03:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:7E:0A:82:7A:1E:9A:A6:3F:06:D4:D4:5A:8B:E1:C1:6E:B2:08:CA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/83a687bd-8f33-38a0-b954-7a7150c2e666.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl X509v3 Authority Key Identifier: keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer sbgp-ipAddrBlock: critical IPv4: 209.173.252.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 26:2c:a2:13:ef:cb:81:53:d2:77:ec:35:ed:18:c4:51:39:74: d3:5f:a1:56:5b:6c:64:7c:f9:c6:88:9b:e9:e1:37:ac:55:3c: a9:fb:b2:c8:11:3b:f5:ff:c8:94:97:fd:9e:e9:51:1a:8d:84: ea:fe:fd:e7:eb:a8:c1:f1:69:83:35:78:f2:0d:1e:d5:2b:61: 45:4a:8c:23:77:21:96:0f:91:36:81:56:9f:10:e3:3f:75:05: bd:3b:4c:46:9d:f5:66:03:87:60:1c:b3:53:26:90:b1:83:17: 84:c1:5c:85:e1:b2:ea:84:e6:d4:65:37:4e:23:b0:01:9a:eb: 6d:70:81:79:bb:78:38:fa:39:45:74:27:5d:12:39:9e:9d:8f: be:c2:64:97:52:32:92:12:ad:e3:27:d7:a9:ea:5e:43:3b:19: 25:af:f9:5c:ff:d0:eb:10:90:83:44:cf:61:61:ea:86:81:c3: 41:52:41:f1:56:2a:3f:55:b9:21:fa:21:4e:ee:52:5f:3d:a1: 57:9f:95:e1:7b:cd:7c:ef:1e:fe:e1:7f:eb:e1:14:f0:02:23: b2:03:6c:ee:ed:bd:5a:b9:fc:0a:28:c0:ed:30:1f:8b:e9:18: 43:52:35:99:96:64:6b:e1:58:b7:41:5d:50:d4:57:f5:26:53: df:2d:49:5c -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEdLG0yS2MGcHkBcwYAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi MjRmMB4XDTI0MDkyMjAxMDAzMloXDTI0MTIyMTAyMDAzMlowLzEtMCsGA1UEAxMk YmRjMjg5ZDEtZWRjOC00ZGNlLWJlMTEtMDA1M2E1YjE4MDQzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizCfmSuVf9ObHsz+kPs3DKkIJgpeg378V1Aj 7zsYQzKNuhUqXR/iMmmrikUrE7UI3DREvJo4a2pPNNEc4E9/Y07NkQXPZZAGBkCF eX0FH2KqPzLGg8G97wZ5bot+IzVvCNL1hdjs7L7jgyOQzSv5uKap0HLv+eJNsdTT cguLGQZlFm2YNsiLmA/olJBzAR13bEuWIBX5tHlpcjtRajXFk61EWCbJOxJ6eubC nF4DVSa+IYZSaw43iG9508XUwkw0Q5lfBecrKy6VNT8CTGlHWK3rhJHStjUOJZ41 GYBWMStaGRY4sK5+HBnW7xHNdUpt2QnISPGd1Zpv3RsD+o0D4QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFJ9+CoJ6HpqmPwbU1FqL4cFusgjKMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvODNhNjg3YmQtOGYzMy0z OGEwLWI5NTQtN2E3MTUwYzJlNjY2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC0a38MFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBACYsohPvy4FT0nfsNe0YxFE5dNNfoVZbbGR8+caIm+nhN6xVPKn7ssgR O/X/yJSX/Z7pURqNhOr+/efrqMHxaYM1ePINHtUrYUVKjCN3IZYPkTaBVp8Q4z91 Bb07TEad9WYDh2Acs1MmkLGDF4TBXIXhsuqE5tRlN04jsAGa621wgXm7eDj6OUV0 J10SOZ6dj77CZJdSMpISreMn16nqXkM7GSWv+Vz/0OsQkINEz2Fh6oaBw0FSQfFW Kj9VuSH6IU7uUl89oVefleF7zXzvHv7hf+vhFPACI7IDbO7tvVq5/AoowO0wH4vp GENSNZmWZGvhWLdBXVDUV/UmU98tSVw= -----END CERTIFICATE-----Generated at Thu Nov 21 21:07:40 2024 by rpki-client on console-fra.rpki-client.org