$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/866da3e0-0d2f-39e5-868b-2f60e4ff9061.roa File: 866da3e0-0d2f-39e5-868b-2f60e4ff9061.roa (raw, json) Hash identifier: A335OOgqF28aL6iNz8Hfzq+MZ3O0ULbF8g90j73mFCE= Subject key identifier: 39:B7:79:23:58:51:E6:AF:56:25:19:3C:1F:47:7D:99:61:DA:7F:CA Certificate issuer: /CN=52cae98e-9a01-4898-90d2-074cdeea24fa Certificate serial: 010D0C9F432858472F3080A17117276C783AF320 Authority key identifier: 04:32:C6:95:F3:17:21:AC:38:14:2D:1B:34:49:13:9A:4E:D7:FD:DC Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/866da3e0-0d2f-39e5-868b-2f60e4ff9061.roa Signing time: Thu 12 Sep 2024 01:00:31 +0000 ROA not before: Thu 12 Sep 2024 01:00:31 +0000 ROA not after: Wed 11 Dec 2024 02:00:31 +0000 asID: 13325 IP address blocks: 204.25.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/52cae98e-9a01-4898-90d2-074cdeea24fa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/52cae98e-9a01-4898-90d2-074cdeea24fa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:2f:30:80:a1:71:17:27:6c:78:3a:f3:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cae98e-9a01-4898-90d2-074cdeea24fa Validity Not Before: Sep 12 01:00:31 2024 GMT Not After : Dec 11 02:00:31 2024 GMT Subject: CN=cd48e981-738e-46c8-8d79-2d7c36330dbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a0:28:16:90:4d:2e:8e:87:ac:f4:83:f6:3c: ae:6b:34:d6:78:8e:4e:45:2f:82:31:c0:99:46:fa: 33:b7:e3:40:8e:51:a8:55:c3:da:4a:e8:e3:6b:ec: 18:4d:e1:fc:4b:d7:57:74:07:2d:e5:6b:7a:ee:52: e7:c6:26:d4:ef:e9:95:67:99:b3:66:fd:4b:b6:f2: b5:ff:79:1c:5f:ff:b7:79:88:fd:df:85:a4:f6:f8: 53:2d:4a:4a:58:7e:c8:c3:5b:24:8b:18:de:39:18: 8a:77:5f:d9:73:b0:9f:a0:41:0f:d6:a4:67:e7:37: 62:b1:49:c6:c1:31:35:84:5a:77:79:16:94:91:08: 74:ec:de:93:8c:04:82:5e:bc:34:c4:34:a8:0d:35: f9:ea:0a:aa:97:bc:35:27:b1:a9:0d:80:40:2d:1e: 99:2e:53:5a:a6:76:99:f7:ab:d6:cf:03:1d:10:e7: 52:17:ab:d0:17:57:17:13:97:f3:56:59:f9:ec:63: cf:0c:7b:34:26:4e:04:57:70:69:26:98:aa:4c:87: 28:92:b2:0f:0a:50:f1:d1:5a:fc:2a:e9:e5:43:38: ae:fc:74:a5:e8:48:c9:3d:99:42:ff:32:60:54:8b: 27:00:70:fc:da:e3:cc:4b:c1:f8:61:35:2e:55:47: d4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B7:79:23:58:51:E6:AF:56:25:19:3C:1F:47:7D:99:61:DA:7F:CA Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/866da3e0-0d2f-39e5-868b-2f60e4ff9061.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa/52cae98e-9a01-4898-90d2-074cdeea24fa.crl X509v3 Authority Key Identifier: keyid:04:32:C6:95:F3:17:21:AC:38:14:2D:1B:34:49:13:9A:4E:D7:FD:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/52cae98e-9a01-4898-90d2-074cdeea24fa.cer sbgp-ipAddrBlock: critical IPv4: 204.25.0.0/17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8a:1a:13:15:cc:82:3b:1e:1f:97:92:3a:5d:4c:e3:37:35:93: a9:25:a9:af:40:21:7f:5b:f4:37:e3:d4:f4:e5:ec:4c:ab:d9: 72:02:91:98:8e:7e:b0:68:1c:95:ae:55:d3:9c:e9:e7:08:2a: 6a:27:8d:8b:45:34:53:06:c9:04:89:61:ad:e2:d9:f1:5e:ad: e4:a9:21:d4:b9:a2:05:76:6c:c4:af:a2:0f:5b:96:19:f9:e2: 77:7f:63:b4:f6:d4:8e:7b:2b:c1:bf:c7:00:1e:c4:5d:45:bc: 07:6d:0f:37:be:29:9f:e8:25:3a:d4:27:5f:a9:5b:56:a8:8d: 81:44:39:a5:04:21:e1:f3:8e:0b:ec:d4:87:00:f8:01:e9:01: 34:68:4d:62:1c:9c:41:0e:87:c9:0f:8e:0c:f9:84:c3:28:2f: e6:33:dc:a4:24:0c:e6:f4:05:94:59:a5:eb:81:e1:3e:f5:55: b3:c6:c1:13:f7:24:fb:0e:fe:60:f1:d9:d5:b4:f5:11:d5:61: bc:c1:c5:31:67:5f:53:dc:7c:3a:d3:57:3d:63:cf:72:f1:56: e4:b5:f1:13:49:06:22:18:8b:58:33:4b:99:fc:9b:70:c1:df: d3:2a:85:05:72:5c:60:50:66:ad:45:6c:59:8e:d0:b9:5e:fc: 2d:65:bc:c7 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEcvMIChcRcnbHg68yAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkNTJjYWU5OGUtOWEwMS00ODk4LTkwZDItMDc0Y2RlZWEy NGZhMB4XDTI0MDkxMjAxMDAzMVoXDTI0MTIxMTAyMDAzMVowLzEtMCsGA1UEAxMk Y2Q0OGU5ODEtNzM4ZS00NmM4LThkNzktMmQ3YzM2MzMwZGJjMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6AoFpBNLo6HrPSD9jyuazTWeI5ORS+CMcCZ Rvozt+NAjlGoVcPaSujja+wYTeH8S9dXdAct5Wt67lLnxibU7+mVZ5mzZv1LtvK1 /3kcX/+3eYj934Wk9vhTLUpKWH7Iw1skixjeORiKd1/Zc7CfoEEP1qRn5zdisUnG wTE1hFp3eRaUkQh07N6TjASCXrw0xDSoDTX56gqql7w1J7GpDYBALR6ZLlNapnaZ 96vWzwMdEOdSF6vQF1cXE5fzVln57GPPDHs0Jk4EV3BpJpiqTIcokrIPClDx0Vr8 KunlQziu/HSl6EjJPZlC/zJgVIsnAHD82uPMS8H4YTUuVUfU4wIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFDm3eSNYUeavViUZPB9HfZlh2n/KMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS81MmNh ZTk4ZS05YTAxLTQ4OTgtOTBkMi0wNzRjZGVlYTI0ZmEvODY2ZGEzZTAtMGQyZi0z OWU1LTg2OGItMmY2MGU0ZmY5MDYxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvNTJjYWU5OGUtOWEwMS00ODk4LTkw ZDItMDc0Y2RlZWEyNGZhLzUyY2FlOThlLTlhMDEtNDg5OC05MGQyLTA3NGNkZWVh MjRmYS5jcmwwHwYDVR0jBBgwFoAUBDLGlfMXIaw4FC0bNEkTmk7X/dwwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS81MmNhZTk4ZS05YTAxLTQ4OTgtOTBkMi0wNzRj ZGVlYTI0ZmEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHzBkAMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAIoaExXMgjseH5eSOl1M4zc1k6klqa9AIX9b9Dfj1PTl7Eyr2XICkZiO frBoHJWuVdOc6ecIKmonjYtFNFMGyQSJYa3i2fFereSpIdS5ogV2bMSvog9blhn5 4nd/Y7T21I57K8G/xwAexF1FvAdtDze+KZ/oJTrUJ1+pW1aojYFEOaUEIeHzjgvs 1IcA+AHpATRoTWIcnEEOh8kPjgz5hMMoL+Yz3KQkDOb0BZRZpeuB4T71VbPGwRP3 JPsO/mDx2dW09RHVYbzBxTFnX1PcfDrTVz1jz3LxVuS18RNJBiIYi1gzS5n8m3DB 39MqhQVyXGBQZq1FbFmO0Lle/C1lvMc= -----END CERTIFICATE-----Generated at Sat Nov 23 22:36:43 2024 by rpki-client on console-ams.rpki-client.org