$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa File: b640e40a-1d4d-3423-99a0-815a476ab16e.roa (raw, json) Hash identifier: NSgZHJ66kCdwT1kZOJ3B7dHfJnCXoJbmJ//tfHa6pII= Subject key identifier: 32:29:B7:A2:57:4C:2C:08:F1:05:E4:EB:02:78:8E:59:E6:30:09:98 Certificate issuer: /CN=28df346d-3f66-4555-b2ab-67f450efdcb3 Certificate serial: 010D0C9F43285847C4AA146D85DE3C94F397AB00 Authority key identifier: D1:31:34:B4:B4:77:2C:0C:8A:FF:F5:82:03:50:28:76:EA:E5:1D:9E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa Signing time: Mon 04 Nov 2024 14:00:48 +0000 ROA not before: Mon 04 Nov 2024 14:00:48 +0000 ROA not after: Sun 02 Feb 2025 14:00:48 +0000 asID: 14230 IP address blocks: 2604:9b00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Nov 2024 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:c4:aa:14:6d:85:de:3c:94:f3:97:ab:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28df346d-3f66-4555-b2ab-67f450efdcb3 Validity Not Before: Nov 4 14:00:48 2024 GMT Not After : Feb 2 14:00:48 2025 GMT Subject: CN=9a30ddd5-76ce-4d37-aee2-8ac90ace577d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1c:27:9b:4a:02:21:74:2b:3f:3d:87:b9:3b: 34:73:8b:53:6d:81:d6:ab:5e:52:cf:22:38:d8:90: 56:21:0d:82:11:8c:44:2e:4a:70:bf:43:60:60:f0: 04:b6:ac:9a:8f:c2:3c:9b:01:f6:a0:14:bf:86:88: 14:fe:b0:24:09:a7:ca:14:9f:7f:76:29:c9:3b:ea: c5:08:78:72:b3:85:a5:09:cf:9a:15:20:7b:15:8e: e9:d1:3d:37:d0:ba:43:b9:f5:91:a7:7c:ba:c2:b2: 77:45:b5:9f:94:3d:a0:2a:ab:34:ea:a4:ae:23:23: 57:17:31:5f:f6:b7:84:7a:de:e7:bf:d2:88:fc:e1: af:b8:1d:00:31:4e:fa:90:32:f0:eb:eb:fa:76:59: 94:d2:5f:35:2b:df:6e:66:2b:83:c1:9b:00:f1:46: fc:3f:fc:78:7e:ad:51:7c:48:aa:40:b4:6f:b8:23: fc:ce:ea:78:a4:ae:56:6e:c1:9a:6e:19:f0:57:bb: f7:c3:fc:63:8f:fb:75:ca:35:49:f7:95:53:70:4c: dd:ee:3d:70:a3:fd:47:ce:51:6b:61:ae:37:0e:e4: 7b:e6:c0:ed:d1:0b:f8:29:a0:69:b9:3a:8d:21:f1: e2:fc:5f:19:36:d2:b6:57:7b:6b:c6:2c:5d:0d:5f: dc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:29:B7:A2:57:4C:2C:08:F1:05:E4:EB:02:78:8E:59:E6:30:09:98 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/b640e40a-1d4d-3423-99a0-815a476ab16e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3/28df346d-3f66-4555-b2ab-67f450efdcb3.crl X509v3 Authority Key Identifier: keyid:D1:31:34:B4:B4:77:2C:0C:8A:FF:F5:82:03:50:28:76:EA:E5:1D:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/28df346d-3f66-4555-b2ab-67f450efdcb3.cer sbgp-ipAddrBlock: critical IPv6: 2604:9b00::/32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 0f:f7:dc:52:f4:99:91:32:fd:ba:c7:c8:c1:ba:30:00:9e:54: 34:1c:20:bb:b2:a1:d1:3c:41:4c:e7:95:54:0c:d4:d6:71:91: c2:39:34:05:ca:96:ae:98:14:d6:d6:b1:18:73:c7:0e:0c:2f: 28:be:b3:80:ff:be:b9:61:e7:37:66:57:97:06:03:33:db:3c: f0:8f:8f:62:3b:d9:46:ec:62:11:bb:39:66:fd:65:77:4b:38: c0:e3:09:c4:e4:31:98:7e:5f:42:ae:66:7b:10:ce:00:d9:4f: bd:fb:40:9a:fb:6f:24:db:80:91:1a:45:8d:00:c0:1d:4b:ab: 74:85:60:94:c2:25:f5:93:a4:11:bc:31:8a:5b:29:ee:79:2d: 8c:f5:52:65:d7:e2:05:ce:76:b1:c0:bb:e2:3b:e8:f2:20:5c: ce:c7:03:40:0a:77:d3:31:db:7f:20:06:ce:75:f9:13:00:05: d0:73:a7:ed:70:bc:74:2c:63:6d:72:75:66:84:81:bb:55:d5: 50:88:72:1d:cc:03:aa:96:dc:2e:08:e9:c5:ad:78:1f:1f:ee: 58:01:3d:87:55:7f:3f:90:9e:e3:34:e9:21:99:0a:82:b8:68: 42:fa:a3:05:c4:86:4a:ce:dc:2a:b7:8f:33:dd:1a:dd:6b:14: 8b:71:b9:ef -----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgIUAQ0Mn0MoWEfEqhRthd48lPOXqwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMjhkZjM0NmQtM2Y2Ni00NTU1LWIyYWItNjdmNDUwZWZk Y2IzMB4XDTI0MTEwNDE0MDA0OFoXDTI1MDIwMjE0MDA0OFowLzEtMCsGA1UEAxMk OWEzMGRkZDUtNzZjZS00ZDM3LWFlZTItOGFjOTBhY2U1NzdkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxwnm0oCIXQrPz2HuTs0c4tTbYHWq15SzyI4 2JBWIQ2CEYxELkpwv0NgYPAEtqyaj8I8mwH2oBS/hogU/rAkCafKFJ9/dinJO+rF CHhys4WlCc+aFSB7FY7p0T030LpDufWRp3y6wrJ3RbWflD2gKqs06qSuIyNXFzFf 9reEet7nv9KI/OGvuB0AMU76kDLw6+v6dlmU0l81K99uZiuDwZsA8Ub8P/x4fq1R fEiqQLRvuCP8zup4pK5WbsGabhnwV7v3w/xjj/t1yjVJ95VTcEzd7j1wo/1HzlFr Ya43DuR75sDt0Qv4KaBpuTqNIfHi/F8ZNtK2V3trxixdDV/cgQIDAQABo4IDVjCC A1IwHQYDVR0OBBYEFDIpt6JXTCwI8QXk6wJ4jlnmMAmYMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS8yOGRm MzQ2ZC0zZjY2LTQ1NTUtYjJhYi02N2Y0NTBlZmRjYjMvYjY0MGU0MGEtMWQ0ZC0z NDIzLTk5YTAtODE1YTQ3NmFiMTZlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvMjhkZjM0NmQtM2Y2Ni00NTU1LWIy YWItNjdmNDUwZWZkY2IzLzI4ZGYzNDZkLTNmNjYtNDU1NS1iMmFiLTY3ZjQ1MGVm ZGNiMy5jcmwwHwYDVR0jBBgwFoAU0TE0tLR3LAyK//WCA1AodurlHZ4wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS8yOGRmMzQ2ZC0zZjY2LTQ1NTUtYjJhYi02N2Y0 NTBlZmRjYjMuY2VyMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJgSbADBU BgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8v d3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEB CwUAA4IBAQAP99xS9JmRMv26x8jBujAAnlQ0HCC7sqHRPEFM55VUDNTWcZHCOTQF ypaumBTW1rEYc8cODC8ovrOA/765Yec3ZleXBgMz2zzwj49iO9lG7GIRuzlm/WV3 SzjA4wnE5DGYfl9CrmZ7EM4A2U+9+0Ca+28k24CRGkWNAMAdS6t0hWCUwiX1k6QR vDGKWynueS2M9VJl1+IFznaxwLviO+jyIFzOxwNACnfTMdt/IAbOdfkTAAXQc6ft cLx0LGNtcnVmhIG7VdVQiHIdzAOqltwuCOnFrXgfH+5YAT2HVX8/kJ7jNOkhmQqC uGhC+qMFxIZKztwqt48z3RrdaxSLcbnv -----END CERTIFICATE-----Generated at Fri Nov 22 17:31:29 2024 by rpki-client on console-ams.rpki-client.org