$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa File: 8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa (raw, json) Hash identifier: AUQ7GPaCFIQy5gp1/WMhRTU++TjCJvYQCt4YaLrsTPE= Subject key identifier: D4:C4:B8:ED:59:3F:59:E0:7C:38:24:A4:C1:CF:D6:B2:7E:39:97:54 Certificate issuer: /CN=1add3b23-5fb0-4412-be17-98450d352516 Certificate serial: 010D0C9F43285847CFD4A6FD5578DD7FAC97F300 Authority key identifier: DF:D6:AB:35:08:C4:67:A3:69:8E:4B:5D:EA:87:78:C0:7A:1D:8E:26 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa Signing time: Fri 08 Nov 2024 14:00:39 +0000 ROA not before: Fri 08 Nov 2024 14:00:39 +0000 ROA not after: Thu 06 Feb 2025 14:00:39 +0000 asID: 400209 IP address blocks: 209.143.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:cf:d4:a6:fd:55:78:dd:7f:ac:97:f3:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1add3b23-5fb0-4412-be17-98450d352516 Validity Not Before: Nov 8 14:00:39 2024 GMT Not After : Feb 6 14:00:39 2025 GMT Subject: CN=a009451a-aa72-4627-ba28-f05d4e184d9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:a4:eb:db:fd:5a:09:2a:8f:71:8c:e2:6e: ea:94:87:91:9a:82:97:5f:cc:23:5c:3f:c5:63:ec: b8:23:b2:09:47:1c:1a:e1:3e:b9:da:85:ad:88:fc: c1:59:fd:41:27:16:9c:d2:39:da:59:27:71:12:43: bb:94:52:38:aa:5f:e8:ac:c1:59:19:ef:5a:e7:46: 02:8e:cd:14:e6:d0:e1:7a:ca:37:e3:24:8b:bf:60: 99:52:e2:13:bf:42:63:44:58:c9:5f:5b:08:79:c3: 25:86:07:eb:f3:27:29:ba:56:8d:29:4d:76:b3:05: 87:6d:71:df:19:30:35:20:4a:cd:1f:6c:f8:8b:40: 15:74:ad:b7:49:cf:de:56:63:f5:cc:8e:96:9f:c2: 0a:19:7a:19:8b:4f:10:0e:76:36:b5:83:83:f0:66: 4e:d5:26:21:97:e8:1b:6b:bb:fd:fb:a6:bf:d6:fb: 8a:0f:85:20:f2:a9:be:35:4c:d4:c3:19:56:e2:ed: b3:ec:25:db:b8:8e:5a:e9:f1:28:28:c6:0e:18:12: f6:b5:f6:78:29:87:d5:60:b5:eb:6e:81:55:11:ab: 7f:3c:69:86:08:f4:76:09:02:ac:7f:ac:c0:4f:1d: d8:7e:b5:aa:45:e8:a6:bf:36:98:a7:65:78:e6:41: c5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C4:B8:ED:59:3F:59:E0:7C:38:24:A4:C1:CF:D6:B2:7E:39:97:54 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/8a23443d-1ed8-3d80-ac02-bd3df3d8f1b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516/1add3b23-5fb0-4412-be17-98450d352516.crl X509v3 Authority Key Identifier: keyid:DF:D6:AB:35:08:C4:67:A3:69:8E:4B:5D:EA:87:78:C0:7A:1D:8E:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/1add3b23-5fb0-4412-be17-98450d352516.cer sbgp-ipAddrBlock: critical IPv4: 209.143.96.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0e:51:85:f0:06:02:a6:2b:c4:a9:c4:04:60:a1:8d:54:e7:fe: 54:f0:42:1f:2f:69:fa:05:1b:04:2b:d0:97:b1:dc:ea:34:4a: 22:70:fc:df:c1:06:06:28:6f:51:4d:18:bf:8e:79:90:43:5c: 2d:1d:e0:0d:e7:bb:46:fb:4f:67:06:44:c7:c4:08:f2:4f:9a: e1:66:4a:a0:07:65:0d:22:dc:71:7a:a1:58:1a:42:66:17:8d: fe:a1:bc:cf:48:80:41:ba:6d:ed:31:69:90:1d:66:4e:d4:3b: 3d:1a:04:06:5c:d9:4e:71:65:85:49:42:f7:12:dd:b7:2e:c1: e8:f8:f0:9c:be:8f:2a:92:37:44:fb:68:46:b4:7c:a9:21:ed: d2:44:db:07:21:09:cc:35:2f:26:68:4d:af:25:f6:99:d8:c8: a0:42:4f:74:b0:9f:d6:1a:5a:3b:48:1c:85:2a:3b:d8:13:1e: bb:db:f6:0e:e4:2e:b5:6a:6d:bf:52:1b:99:e2:40:c9:b6:51: ee:a2:bc:81:b1:d7:37:90:d5:1b:6a:dc:7d:6d:e3:13:4e:bf: 36:fa:ad:58:9a:62:f0:f2:fa:6a:25:4b:62:eb:2f:dc:45:60: c5:5e:cb:e1:bf:9e:ec:ca:ed:8c:e0:43:1d:51:9f:88:0e:82: 58:3b:30:58 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEfP1Kb9VXjdf6yX8wAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMWFkZDNiMjMtNWZiMC00NDEyLWJlMTctOTg0NTBkMzUy NTE2MB4XDTI0MTEwODE0MDAzOVoXDTI1MDIwNjE0MDAzOVowLzEtMCsGA1UEAxMk YTAwOTQ1MWEtYWE3Mi00NjI3LWJhMjgtZjA1ZDRlMTg0ZDlkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPWk69v9Wgkqj3GM4m7qlIeRmoKXX8wjXD/F Y+y4I7IJRxwa4T652oWtiPzBWf1BJxac0jnaWSdxEkO7lFI4ql/orMFZGe9a50YC js0U5tDheso34ySLv2CZUuITv0JjRFjJX1sIecMlhgfr8ycpulaNKU12swWHbXHf GTA1IErNH2z4i0AVdK23Sc/eVmP1zI6Wn8IKGXoZi08QDnY2tYOD8GZO1SYhl+gb a7v9+6a/1vuKD4Ug8qm+NUzUwxlW4u2z7CXbuI5a6fEoKMYOGBL2tfZ4KYfVYLXr boFVEat/PGmGCPR2CQKsf6zATx3YfrWqReimvzaYp2V45kHFhQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNTEuO1ZP1ngfDgkpMHP1rJ+OZdUMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8xYWRk M2IyMy01ZmIwLTQ0MTItYmUxNy05ODQ1MGQzNTI1MTYvOGEyMzQ0M2QtMWVkOC0z ZDgwLWFjMDItYmQzZGYzZDhmMWI3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMWFkZDNiMjMtNWZiMC00NDEyLWJl MTctOTg0NTBkMzUyNTE2LzFhZGQzYjIzLTVmYjAtNDQxMi1iZTE3LTk4NDUwZDM1 MjUxNi5jcmwwHwYDVR0jBBgwFoAU39arNQjEZ6Npjktd6od4wHodjiYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8xYWRkM2IyMy01ZmIwLTQ0MTItYmUxNy05ODQ1 MGQzNTI1MTYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0Y9gMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAA5RhfAGAqYrxKnEBGChjVTn/lTwQh8vafoFGwQr0Jex3Oo0SiJw/N/B BgYob1FNGL+OeZBDXC0d4A3nu0b7T2cGRMfECPJPmuFmSqAHZQ0i3HF6oVgaQmYX jf6hvM9IgEG6be0xaZAdZk7UOz0aBAZc2U5xZYVJQvcS3bcuwej48Jy+jyqSN0T7 aEa0fKkh7dJE2wchCcw1LyZoTa8l9pnYyKBCT3Swn9YaWjtIHIUqO9gTHrvb9g7k LrVqbb9SG5niQMm2Ue6ivIGx1zeQ1Rtq3H1t4xNOvzb6rViaYvDy+molS2LrL9xF YMVey+G/nuzK7YzgQx1Rn4gOglg7MFg= -----END CERTIFICATE-----Generated at Mon Nov 25 16:05:24 2024 by rpki-client on console-fra.rpki-client.org