$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa File: 820be15f-1ab0-3e6c-8554-951d99d18e99.roa (raw, json) Hash identifier: 6cd/8nk7CgeAhRq8GqI+eMzHofRufIQnNyPGXVhMAZU= Subject key identifier: 37:46:74:0C:52:68:14:CF:12:6A:F0:2B:AD:95:C8:6C:EC:8E:3A:5A Certificate issuer: /CN=32bcf38b-c46d-4bf1-8705-88aeec19abf1 Certificate serial: 010D0C9F43285847600B9F08A5DA2C8CC70EFF80 Authority key identifier: 67:89:04:5D:7A:3F:46:31:8E:1C:3C:F8:17:C3:56:F2:E3:86:F8:9B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa Signing time: Sun 29 Sep 2024 13:00:41 +0000 ROA not before: Sun 29 Sep 2024 13:00:41 +0000 ROA not after: Sat 28 Dec 2024 14:00:41 +0000 asID: 3555 IP address blocks: 192.31.9.0/24 maxlen: 24 198.17.99.0/24 maxlen: 24 198.22.152.0/24 maxlen: 24 198.137.234.0/23 maxlen: 23 199.74.244.0/24 maxlen: 24 199.79.216.0/24 maxlen: 24 199.89.132.0/23 maxlen: 23 199.89.158.0/23 maxlen: 23 199.89.160.0/24 maxlen: 24 204.89.153.0/24 maxlen: 24 204.89.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/32bcf38b-c46d-4bf1-8705-88aeec19abf1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/32bcf38b-c46d-4bf1-8705-88aeec19abf1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:60:0b:9f:08:a5:da:2c:8c:c7:0e:ff:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32bcf38b-c46d-4bf1-8705-88aeec19abf1 Validity Not Before: Sep 29 13:00:41 2024 GMT Not After : Dec 28 14:00:41 2024 GMT Subject: CN=32dc809a-b255-4339-82c0-da9afd07dc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:58:eb:f4:2c:fc:e1:9e:ff:1c:9d:ca:5b:2e: 95:13:f8:92:19:94:33:83:cd:64:8d:64:0b:13:c6: e5:be:cf:27:23:4e:87:fc:e6:a9:f4:d2:6e:a8:e3: 4e:14:64:88:53:29:e4:11:c9:fa:39:81:5c:be:a7: ec:90:a6:95:5d:dc:c2:cb:a8:be:e0:d7:f7:61:34: 29:e1:84:f2:6f:c2:ab:70:2b:a0:53:fa:fb:73:6b: a0:f2:13:39:79:ff:71:da:61:8f:4d:90:c6:4c:87: 13:7f:70:dd:d2:a0:6e:40:7a:24:34:23:f2:98:3d: c1:8d:13:8f:11:1c:a4:fe:cd:63:4a:03:15:db:a6: 70:44:21:50:44:12:ac:fa:e4:f8:4f:e3:c9:f3:3a: 62:82:ca:fe:82:36:ef:fc:2c:41:e8:3a:83:6e:0e: ab:a8:9e:7d:24:3f:1e:7d:5f:da:d2:6b:7e:67:69: bf:23:ee:02:7e:72:1c:37:33:e3:e0:bf:f7:5f:f1: 02:c1:d7:61:d6:23:44:82:03:bf:13:d0:f4:db:41: 1a:49:83:ff:f0:8b:2b:e1:d9:a8:3b:5e:56:8f:12: c1:6d:75:4b:67:15:13:aa:ba:2a:61:89:e1:d2:a4: 11:6e:12:90:5b:99:fd:ba:18:18:f9:2b:ee:d4:38: d8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:46:74:0C:52:68:14:CF:12:6A:F0:2B:AD:95:C8:6C:EC:8E:3A:5A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/32bcf38b-c46d-4bf1-8705-88aeec19abf1.crl X509v3 Authority Key Identifier: keyid:67:89:04:5D:7A:3F:46:31:8E:1C:3C:F8:17:C3:56:F2:E3:86:F8:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1.cer sbgp-ipAddrBlock: critical IPv4: 192.31.9.0/24 198.17.99.0/24 198.22.152.0/24 198.137.234.0/23 199.74.244.0/24 199.79.216.0/24 199.89.132.0/23 199.89.158.0-199.89.160.255 204.89.153.0-204.89.154.255 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 6f:46:2b:9b:c7:5c:e3:92:24:48:05:94:1b:85:b2:ac:f7:53: cb:a8:ba:e6:e2:82:7d:4a:d1:4d:68:d9:6d:7e:5b:88:7d:77: d5:a1:68:ae:11:b8:1d:9e:c0:e7:a0:f8:6b:fb:20:45:49:1a: 83:ce:2c:ed:f5:41:01:30:d1:8d:3d:c5:d9:21:92:12:93:fe: d8:87:60:f2:8e:88:9f:3d:5d:e8:00:78:7a:4e:62:b9:45:10: 75:9c:cb:47:64:36:26:a1:b3:68:d0:d9:7c:a5:51:52:ee:bf: 8e:20:63:30:ba:e0:7e:02:f4:1e:0f:9a:fc:61:c5:b0:16:99: b0:f8:52:d4:be:db:03:94:d3:55:6e:b1:0d:14:e8:e0:25:be: 23:76:55:b1:08:fc:04:4e:4c:89:bd:a8:fc:91:9f:93:07:51: a6:41:ca:28:db:84:63:a4:f5:dd:e3:f3:14:1c:ea:03:1a:a6: 88:30:f3:fc:7a:68:e4:7c:74:9a:77:7b:87:e3:cf:5d:cd:1b: 7c:e6:7d:0f:be:75:7b:86:c4:b6:d1:60:cd:4a:05:50:8e:04: 2a:e4:d7:50:d9:fa:2d:d5:17:3b:e9:48:15:42:21:c9:5c:7d: 06:87:86:1d:4a:76:07:fc:79:22:69:bf:b2:37:2c:e3:80:87: 7a:f9:f7:27 -----BEGIN CERTIFICATE----- MIIGgzCCBWugAwIBAgIUAQ0Mn0MoWEdgC58IpdosjMcO/4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMzJiY2YzOGItYzQ2ZC00YmYxLTg3MDUtODhhZWVjMTlh YmYxMB4XDTI0MDkyOTEzMDA0MVoXDTI0MTIyODE0MDA0MVowLzEtMCsGA1UEAxMk MzJkYzgwOWEtYjI1NS00MzM5LTgyYzAtZGE5YWZkMDdkYzgxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgVjr9Cz84Z7/HJ3KWy6VE/iSGZQzg81kjWQL E8blvs8nI06H/Oap9NJuqONOFGSIUynkEcn6OYFcvqfskKaVXdzCy6i+4Nf3YTQp 4YTyb8KrcCugU/r7c2ug8hM5ef9x2mGPTZDGTIcTf3Dd0qBuQHokNCPymD3BjROP ERyk/s1jSgMV26ZwRCFQRBKs+uT4T+PJ8zpigsr+gjbv/CxB6DqDbg6rqJ59JD8e fV/a0mt+Z2m/I+4CfnIcNzPj4L/3X/ECwddh1iNEggO/E9D020EaSYP/8Isr4dmo O15WjxLBbXVLZxUTqroqYYnh0qQRbhKQW5n9uhgY+Svu1DjYawIDAQABo4IDlTCC A5EwHQYDVR0OBBYEFDdGdAxSaBTPEmrwK62VyGzsjjpaMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzg3MWRhNDBmLTc5M2EtNGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8zMmJj ZjM4Yi1jNDZkLTRiZjEtODcwNS04OGFlZWMxOWFiZjEvODIwYmUxNWYtMWFiMC0z ZTZjLTg1NTQtOTUxZDk5ZDE4ZTk5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy84NzFkYTQwZi03 OTNhLTRhNDUtYTBhOS05NzgxNDgzMjFhMDcvMzJiY2YzOGItYzQ2ZC00YmYxLTg3 MDUtODhhZWVjMTlhYmYxLzMyYmNmMzhiLWM0NmQtNGJmMS04NzA1LTg4YWVlYzE5 YWJmMS5jcmwwHwYDVR0jBBgwFoAUZ4kEXXo/RjGOHDz4F8NW8uOG+JswDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2EtNGE0 NS1hMGE5LTk3ODE0ODMyMWEwNy8zMmJjZjM4Yi1jNDZkLTRiZjEtODcwNS04OGFl ZWMxOWFiZjEuY2VyMF8GCCsGAQUFBwEHAQH/BFAwTjBMBAIAATBGAwQAwB8JAwQA xhFjAwQAxhaYAwQBxonqAwQAx0r0AwQAx0/YAwQBx1mEMAwDBAHHWZ4DBADHWaAw DAMEAMxZmQMEAMxZmjBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYB BQUHAgEWLGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5o dG1sMA0GCSqGSIb3DQEBCwUAA4IBAQBvRiubx1zjkiRIBZQbhbKs91PLqLrm4oJ9 StFNaNltfluIfXfVoWiuEbgdnsDnoPhr+yBFSRqDzizt9UEBMNGNPcXZIZISk/7Y h2DyjoifPV3oAHh6TmK5RRB1nMtHZDYmobNo0Nl8pVFS7r+OIGMwuuB+AvQeD5r8 YcWwFpmw+FLUvtsDlNNVbrENFOjgJb4jdlWxCPwETkyJvaj8kZ+TB1GmQcoo24Rj pPXd4/MUHOoDGqaIMPP8emjkfHSad3uH489dzRt85n0PvnV7hsS20WDNSgVQjgQq 5NdQ2fot1Rc76UgVQiHJXH0Gh4YdSnYH/Hkiab+yNyzjgId6+fcn -----END CERTIFICATE-----Generated at Thu Nov 21 23:38:05 2024 by rpki-client on console-ams.rpki-client.org