$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa File: bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa (raw, json) Hash identifier: q2S+Y55D7yyCQGGR/Vdk1Kc3UMUlu29uvrUPcXTl65k= Subject key identifier: DD:0C:C8:5B:80:52:43:41:21:11:2F:C8:C8:E5:26:17:09:90:86:E8 Certificate issuer: /CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Certificate serial: 010D0C9F43285847D29F8193F9B42F651D186100 Authority key identifier: AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa Signing time: Sat 09 Nov 2024 14:00:40 +0000 ROA not before: Sat 09 Nov 2024 14:00:40 +0000 ROA not after: Fri 07 Feb 2025 14:00:40 +0000 asID: 54994 IP address blocks: 157.185.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:d2:9f:81:93:f9:b4:2f:65:1d:18:61:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b Validity Not Before: Nov 9 14:00:40 2024 GMT Not After : Feb 7 14:00:40 2025 GMT Subject: CN=8bc4c91d-63d2-443f-95a2-85dc46804f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fb:e4:eb:61:ae:13:b9:80:8c:a5:8f:67:7a: 42:84:f1:49:c8:5d:0e:14:3e:7a:25:ea:57:bf:82: b3:22:eb:6d:47:c1:b5:38:9d:86:31:bd:06:78:da: 4c:03:5b:72:74:19:8b:ee:b7:aa:e7:e3:e4:5e:aa: a6:f8:2e:91:31:ea:db:ba:07:c6:22:b1:8d:6a:77: ae:5b:8e:25:97:c5:4c:72:52:d3:66:bc:ef:03:e6: 63:12:b8:37:52:d0:d5:83:f0:f2:90:75:5d:23:83: e9:27:8f:9f:54:48:7a:16:3f:a0:13:95:4d:a5:dd: 5d:9d:ee:59:f9:96:ca:69:fa:5f:e2:6a:46:ec:f4: 06:1a:59:d2:62:cf:69:94:f0:f0:fe:ca:b7:86:f7: f7:c6:ef:86:29:46:44:9f:9f:77:b7:d6:3a:e1:d8: 54:fb:7a:6a:d3:53:51:41:db:c0:54:75:ed:57:ad: 6c:54:8a:63:10:d6:cc:d8:c2:c4:14:9f:fa:7c:75: 3c:85:4e:0a:af:20:a1:86:f0:f6:69:45:3a:62:f5: ea:a1:cb:16:b3:84:dc:1d:e2:4d:43:d6:7c:13:e2: e1:a8:8f:d8:c1:98:a8:e6:ab:6b:3d:96:c8:b4:a0: 10:59:0e:ca:ff:78:d1:d1:11:87:bb:f1:3a:f2:b9: 7b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0C:C8:5B:80:52:43:41:21:11:2F:C8:C8:E5:26:17:09:90:86:E8 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/bfa0bab3-a564-3e7c-abd8-8a009f1047f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.crl X509v3 Authority Key Identifier: keyid:AF:ED:8A:96:66:97:F4:9A:C5:8D:85:16:46:CA:6D:5E:9B:09:D0:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/41dbc0d7-4ecf-4b9b-9c7b-9200af902d1b.cer sbgp-ipAddrBlock: critical IPv4: 157.185.172.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 16:a1:50:f9:23:04:a2:50:e5:17:0c:65:d9:07:f6:cb:da:bd: 5d:cf:15:97:a1:51:97:e6:81:34:45:cf:b6:d0:1e:ac:69:de: dc:c1:6d:b9:ca:af:3e:28:03:b8:41:bb:14:a7:65:3c:1b:83: f8:ed:35:29:e1:ea:ec:35:60:6b:13:82:71:30:4e:85:57:53: 10:1f:32:00:72:03:06:34:db:d1:8f:55:97:ee:ae:bf:02:33: f7:11:2d:88:88:fb:fa:c8:8f:70:a9:f1:67:e8:e1:d2:56:78: 40:9b:6c:ef:6b:41:20:23:e0:d0:7c:64:dd:59:8a:dd:98:9f: 56:50:f9:a5:70:33:da:a1:d2:c9:12:9f:29:b8:1d:8f:06:e9: 33:f5:1c:5a:83:57:07:95:1b:08:72:3a:f4:a4:79:cc:08:cd: da:fb:e0:eb:ce:92:3e:e5:a5:c3:40:c6:fc:86:03:52:c6:d6: aa:f2:99:2b:45:74:15:94:e1:46:3d:ad:f6:c4:4f:e8:e7:76: ec:3e:67:39:13:40:bc:86:b8:db:40:85:58:ba:01:18:62:1c: a5:db:2a:60:88:44:41:3b:ed:87:1e:d5:2d:7b:e3:a4:25:f5: c8:ef:44:7c:71:65:ec:ae:83:37:eb:5a:26:4e:3b:f8:b8:34: a3:df:1a:6d -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEfSn4GT+bQvZR0YYQAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNDFkYmMwZDctNGVjZi00YjliLTljN2ItOTIwMGFmOTAy ZDFiMB4XDTI0MTEwOTE0MDA0MFoXDTI1MDIwNzE0MDA0MFowLzEtMCsGA1UEAxMk OGJjNGM5MWQtNjNkMi00NDNmLTk1YTItODVkYzQ2ODA0ZjdmMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofvk62GuE7mAjKWPZ3pChPFJyF0OFD56JepX v4KzIuttR8G1OJ2GMb0GeNpMA1tydBmL7req5+PkXqqm+C6RMerbugfGIrGNaneu W44ll8VMclLTZrzvA+ZjErg3UtDVg/DykHVdI4PpJ4+fVEh6Fj+gE5VNpd1dne5Z +ZbKafpf4mpG7PQGGlnSYs9plPDw/sq3hvf3xu+GKUZEn593t9Y64dhU+3pq01NR QdvAVHXtV61sVIpjENbM2MLEFJ/6fHU8hU4KryChhvD2aUU6YvXqocsWs4TcHeJN Q9Z8E+LhqI/YwZio5qtrPZbItKAQWQ7K/3jR0RGHu/E68rl7fwIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFN0MyFuAUkNBIREvyMjlJhcJkIboMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS80MWRi YzBkNy00ZWNmLTRiOWItOWM3Yi05MjAwYWY5MDJkMWIvYmZhMGJhYjMtYTU2NC0z ZTdjLWFiZDgtOGEwMDlmMTA0N2Y2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNDFkYmMwZDctNGVjZi00YjliLTlj N2ItOTIwMGFmOTAyZDFiLzQxZGJjMGQ3LTRlY2YtNGI5Yi05YzdiLTkyMDBhZjkw MmQxYi5jcmwwHwYDVR0jBBgwFoAUr+2KlmaX9JrFjYUWRsptXpsJ0LcwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS80MWRiYzBkNy00ZWNmLTRiOWItOWM3Yi05MjAw YWY5MDJkMWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnbmsMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBABahUPkjBKJQ5RcMZdkH9svavV3PFZehUZfmgTRFz7bQHqxp3tzBbbnK rz4oA7hBuxSnZTwbg/jtNSnh6uw1YGsTgnEwToVXUxAfMgByAwY029GPVZfurr8C M/cRLYiI+/rIj3Cp8Wfo4dJWeECbbO9rQSAj4NB8ZN1Zit2Yn1ZQ+aVwM9qh0skS nym4HY8G6TP1HFqDVweVGwhyOvSkecwIzdr74OvOkj7lpcNAxvyGA1LG1qrymStF dBWU4UY9rfbET+jnduw+ZzkTQLyGuNtAhVi6ARhiHKXbKmCIREE77Yce1S1746Ql 9cjvRHxxZeyugzfrWiZOO/i4NKPfGm0= -----END CERTIFICATE-----Generated at Fri Nov 22 07:01:50 2024 by rpki-client on console-fra.rpki-client.org