$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/53d49b2e-650e-3215-be94-141ab09aea39.roa File: 53d49b2e-650e-3215-be94-141ab09aea39.roa (raw, json) Hash identifier: /tIkAluIXxaSHi+YYw/G2b5eVOWMZ2vrE9DzALBJzOc= Subject key identifier: F3:91:94:34:56:E5:24:D4:5C:63:54:5A:31:5D:08:72:31:8C:98:44 Certificate issuer: /CN=bebad29c-c2e4-447d-a29e-20f329219ea9 Certificate serial: 010D0C9F43285847EFEF8D8ACA9EB43DCC64E2E0 Authority key identifier: 07:3C:51:6D:EA:85:18:32:66:CA:85:68:84:47:38:0F:36:B9:52:10 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/53d49b2e-650e-3215-be94-141ab09aea39.roa Signing time: Wed 20 Nov 2024 02:00:39 +0000 ROA not before: Wed 20 Nov 2024 02:00:39 +0000 ROA not after: Tue 18 Feb 2025 02:00:39 +0000 asID: 14618 IP address blocks: 66.235.130.0/24 maxlen: 24 172.82.196.0/24 maxlen: 24 172.82.209.0/24 maxlen: 24 172.82.216.0/24 maxlen: 24 172.82.217.0/24 maxlen: 24 172.82.218.0/24 maxlen: 24 172.82.219.0/24 maxlen: 24 172.82.220.0/24 maxlen: 24 172.82.223.0/24 maxlen: 24 172.82.242.0/24 maxlen: 24 172.82.243.0/24 maxlen: 24 192.243.225.0/24 maxlen: 24 192.243.228.0/24 maxlen: 24 192.243.229.0/24 maxlen: 24 208.67.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/bebad29c-c2e4-447d-a29e-20f329219ea9.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/bebad29c-c2e4-447d-a29e-20f329219ea9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:ef:ef:8d:8a:ca:9e:b4:3d:cc:64:e2:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bebad29c-c2e4-447d-a29e-20f329219ea9 Validity Not Before: Nov 20 02:00:39 2024 GMT Not After : Feb 18 02:00:39 2025 GMT Subject: CN=78a767f2-ebc2-4f67-b3f3-25ca81721329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a5:11:7c:d4:fb:8d:d6:7f:b7:e1:21:64:8a: f6:5e:98:6c:75:97:83:c7:5a:89:79:b0:b1:e5:8e: ee:9f:81:ec:82:27:0f:9f:0a:ff:84:f3:13:91:a4: 61:15:c2:9c:d2:f9:41:bf:19:ab:c7:cd:2f:0c:10: 6c:32:0c:13:28:0d:d1:77:c6:cf:29:4f:99:b1:ae: 85:0a:3d:4d:50:d1:f2:a0:46:74:a7:46:5b:40:e2: 85:24:a4:c4:2a:8d:a6:2e:13:8f:da:de:ca:c7:51: ff:96:05:7e:d9:73:18:80:25:8c:f4:77:9c:74:7f: a7:f6:25:9d:11:59:63:3c:b5:0d:ea:dc:21:a2:89: 89:d6:49:ec:f0:62:7d:12:8c:00:24:22:23:7e:d8: 7b:88:22:a8:93:88:ef:95:de:b8:46:fe:c2:a0:75: 91:47:8d:2e:ea:20:eb:36:2d:04:b0:2d:2c:3d:2b: 43:bf:1d:6f:9b:cf:f7:a5:6a:b5:9f:55:88:a2:7f: 45:5d:12:27:fb:4b:9c:e3:5c:d9:72:04:f4:b7:29: fc:0a:85:28:63:2f:8d:0e:42:81:2b:dc:57:3a:4e: a1:be:4a:c8:41:17:88:19:e1:e8:e5:31:48:2e:e8: 69:3c:87:bf:12:47:14:48:e1:e2:c7:be:7f:c7:57: 83:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:91:94:34:56:E5:24:D4:5C:63:54:5A:31:5D:08:72:31:8C:98:44 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/53d49b2e-650e-3215-be94-141ab09aea39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/bebad29c-c2e4-447d-a29e-20f329219ea9.crl X509v3 Authority Key Identifier: keyid:07:3C:51:6D:EA:85:18:32:66:CA:85:68:84:47:38:0F:36:B9:52:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9.cer sbgp-ipAddrBlock: critical IPv4: 66.235.130.0/24 172.82.196.0/24 172.82.209.0/24 172.82.216.0-172.82.220.255 172.82.223.0/24 172.82.242.0/23 192.243.225.0/24 192.243.228.0/23 208.67.42.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6a:94:fc:e5:40:8e:10:53:e8:bc:3f:41:d6:74:33:6d:59:9e: 16:ab:f6:c8:3a:36:49:ac:c8:1a:c8:7c:2f:a0:95:c2:3f:47: 3b:cc:da:67:dd:ee:ff:22:e9:25:4c:4e:3f:3c:46:1f:e5:5f: bd:16:62:f7:a1:31:d0:ba:1c:f2:2d:e0:a0:f3:ed:e6:05:e4: 2f:4f:2a:f4:02:ca:ff:21:64:cb:1f:59:5a:18:f2:43:ca:60: 4f:77:7e:b4:2c:d9:fb:03:af:ef:0a:3d:f5:de:4a:e4:ca:36: 8b:50:ff:ad:ef:2e:7e:5a:c1:1c:3b:4c:d9:2d:53:8c:8f:57: 7c:e0:b6:ae:1e:a1:49:b1:7d:e8:89:3f:b5:0b:72:3e:bf:cb: f3:b7:8a:e1:f1:da:3f:94:6a:de:8d:d7:15:25:39:51:4d:03: 81:35:8e:17:4d:93:d6:84:a6:f2:5e:ef:29:b3:1b:95:d3:4d: 40:96:70:65:bf:b5:c4:85:ef:1f:c8:38:3e:04:ce:5d:ed:0c: e1:db:a1:8c:9e:a4:cb:36:26:22:d9:38:07:78:e3:35:3e:15: 3f:01:b9:1f:68:a9:8c:31:75:36:1a:02:29:60:09:b0:85:8a: 69:29:cb:32:51:5c:17:09:31:67:95:b2:6b:eb:e1:c4:09:b7: bf:34:08:5f -----BEGIN CERTIFICATE----- MIIGezCCBWOgAwIBAgIUAQ0Mn0MoWEfv742Kyp60Pcxk4uAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYmViYWQyOWMtYzJlNC00NDdkLWEyOWUtMjBmMzI5MjE5 ZWE5MB4XDTI0MTEyMDAyMDAzOVoXDTI1MDIxODAyMDAzOVowLzEtMCsGA1UEAxMk NzhhNzY3ZjItZWJjMi00ZjY3LWIzZjMtMjVjYTgxNzIxMzI5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6URfNT7jdZ/t+EhZIr2XphsdZeDx1qJebCx 5Y7un4HsgicPnwr/hPMTkaRhFcKc0vlBvxmrx80vDBBsMgwTKA3Rd8bPKU+Zsa6F Cj1NUNHyoEZ0p0ZbQOKFJKTEKo2mLhOP2t7Kx1H/lgV+2XMYgCWM9HecdH+n9iWd EVljPLUN6twhoomJ1kns8GJ9EowAJCIjfth7iCKok4jvld64Rv7CoHWRR40u6iDr Ni0EsC0sPStDvx1vm8/3pWq1n1WIon9FXRIn+0uc41zZcgT0tyn8CoUoYy+NDkKB K9xXOk6hvkrIQReIGeHo5TFILuhpPIe/EkcUSOHix75/x1eDmQIDAQABo4IDjTCC A4kwHQYDVR0OBBYEFPORlDRW5STUXGNUWjFdCHIxjJhEMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS9iZWJh ZDI5Yy1jMmU0LTQ0N2QtYTI5ZS0yMGYzMjkyMTllYTkvNTNkNDliMmUtNjUwZS0z MjE1LWJlOTQtMTQxYWIwOWFlYTM5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NmZlMTFkNC1k MzUyLTQ5OTQtOGY2Yy1kNmM5MWIwYjg0MTUvYmViYWQyOWMtYzJlNC00NDdkLWEy OWUtMjBmMzI5MjE5ZWE5L2JlYmFkMjljLWMyZTQtNDQ3ZC1hMjllLTIwZjMyOTIx OWVhOS5jcmwwHwYDVR0jBBgwFoAUBzxRbeqFGDJmyoVohEc4Dza5UhAwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5 NC04ZjZjLWQ2YzkxYjBiODQxNS9iZWJhZDI5Yy1jMmU0LTQ0N2QtYTI5ZS0yMGYz MjkyMTllYTkuY2VyMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQAQuuCAwQA rFLEAwQArFLRMAwDBAOsUtgDBACsUtwDBACsUt8DBAGsUvIDBADA8+EDBAHA8+QD BADQQyowVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixo dHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkq hkiG9w0BAQsFAAOCAQEAapT85UCOEFPovD9B1nQzbVmeFqv2yDo2SazIGsh8L6CV wj9HO8zaZ93u/yLpJUxOPzxGH+VfvRZi96Ex0Loc8i3goPPt5gXkL08q9ALK/yFk yx9ZWhjyQ8pgT3d+tCzZ+wOv7wo99d5K5Mo2i1D/re8uflrBHDtM2S1TjI9XfOC2 rh6hSbF96Ik/tQtyPr/L87eK4fHaP5Rq3o3XFSU5UU0DgTWOF02T1oSm8l7vKbMb ldNNQJZwZb+1xIXvH8g4PgTOXe0M4duhjJ6kyzYmItk4B3jjNT4VPwG5H2ipjDF1 NhoCKWAJsIWKaSnLMlFcFwkxZ5Wya+vhxAm3vzQIXw== -----END CERTIFICATE-----Generated at Thu Nov 21 21:48:59 2024 by rpki-client on console-ams.rpki-client.org