$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa File: e21aefd6-472c-3930-aa58-debd99be2072.roa (raw, json) Hash identifier: wVPRUZ+/xcVRHvz+E/frtVVMFoqQez0vWFyG9H97qJE= Subject key identifier: AF:93:8C:CD:8E:1A:C1:1A:E4:4B:94:6C:73:4C:0E:F1:84:33:41:8A Certificate issuer: /CN=9970d52c-d3a1-4687-a712-212a44ee0fb2 Certificate serial: 010D0C9F43285847A5D6A53B6E1ADF2265BD0E80 Authority key identifier: 56:D1:3C:08:C7:F6:2C:0B:42:A3:CB:3A:17:E8:6B:D9:D8:77:E1:76 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa Signing time: Thu 24 Oct 2024 13:00:42 +0000 ROA not before: Thu 24 Oct 2024 13:00:42 +0000 ROA not after: Wed 22 Jan 2025 14:00:42 +0000 asID: 395035 IP address blocks: 216.150.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:a5:d6:a5:3b:6e:1a:df:22:65:bd:0e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9970d52c-d3a1-4687-a712-212a44ee0fb2 Validity Not Before: Oct 24 13:00:42 2024 GMT Not After : Jan 22 14:00:42 2025 GMT Subject: CN=062a6acd-4240-45f6-a1ea-f76f843b6346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dd:af:22:42:2b:8e:4c:58:53:ba:37:19:65: d6:71:c6:59:76:b8:27:10:90:55:bb:e8:17:db:da: a6:b8:9c:ba:1f:3c:20:1a:33:9b:f5:6f:97:a0:a7: 0e:4c:be:47:37:6e:5f:af:94:98:f5:5b:0c:a9:59: a7:35:0e:35:d3:87:53:cd:db:28:c2:31:e9:16:33: ca:44:26:4b:6e:68:05:ca:70:2a:7e:56:10:78:b8: 01:f2:33:57:36:83:75:6a:4e:76:1c:0d:a1:17:34: 2f:c8:b8:47:e1:ed:09:a8:d0:25:a8:87:a0:15:5a: 39:bd:b4:f9:f2:c4:1a:19:ab:af:09:a3:6c:39:42: 42:ec:34:bd:45:47:97:d5:43:c6:c9:4b:eb:fb:43: 46:09:ee:39:e6:5c:ff:9f:a9:c8:b1:84:c8:84:5a: 78:ad:be:6a:2d:0a:83:d0:35:48:32:ab:18:dc:69: bc:e1:11:b8:2c:86:0b:28:25:eb:4a:b6:23:3f:dc: 38:74:b1:b4:ad:b3:53:2a:6f:c3:fc:11:30:0d:d6: f0:5b:f3:a5:60:6d:31:86:84:ce:86:04:da:bf:7e: a5:09:c2:11:50:ed:ca:6e:3c:ff:26:66:df:90:67: 38:ba:fa:c9:2e:ea:56:0e:e6:cc:4d:23:04:67:11: 4f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:93:8C:CD:8E:1A:C1:1A:E4:4B:94:6C:73:4C:0E:F1:84:33:41:8A Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/e21aefd6-472c-3930-aa58-debd99be2072.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2/9970d52c-d3a1-4687-a712-212a44ee0fb2.crl X509v3 Authority Key Identifier: keyid:56:D1:3C:08:C7:F6:2C:0B:42:A3:CB:3A:17:E8:6B:D9:D8:77:E1:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/9970d52c-d3a1-4687-a712-212a44ee0fb2.cer sbgp-ipAddrBlock: critical IPv4: 216.150.8.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 7f:49:2e:26:23:6a:f5:45:ed:70:73:ed:a7:44:1f:0a:51:b6: 0f:08:8b:62:38:f0:92:f5:a8:e9:da:c7:ca:58:63:d7:b2:1d: 43:b5:74:88:36:ae:d2:6c:e2:ec:32:b8:0d:16:c3:a6:e0:7d: f6:2c:1a:7b:ec:7c:e7:af:f1:ab:3b:b8:8e:61:66:4f:57:03: de:50:7a:3e:63:61:b3:a7:f7:66:47:7f:b1:e2:02:98:d4:52: ce:de:d1:f8:36:73:7b:b6:3e:a7:ed:e5:cc:b7:cd:03:0e:d5: 1b:74:1a:5d:30:ff:8b:c5:68:aa:b9:2b:60:8c:68:8e:3d:f5: 6a:b2:c2:79:af:6c:3f:6a:19:38:37:3a:b5:17:64:49:58:68: 12:f0:0a:b4:0e:27:b3:a1:26:03:08:f2:51:d1:17:da:31:cf: 97:15:e2:75:17:92:06:e6:64:55:bb:6a:22:31:12:55:78:f6: 35:26:aa:7d:5a:db:f0:ea:f3:12:88:ab:1f:bb:44:e3:bb:4a: ad:09:6f:63:3c:8f:d0:da:2e:06:25:4c:ab:ea:ad:e2:72:e6: 9f:55:72:ad:8c:1c:63:0e:64:aa:e2:53:80:00:ad:4b:84:d6: 08:05:c1:1d:ea:1a:dd:03:37:0f:5d:1b:b2:46:cc:5d:bf:15: 3f:5a:d5:30 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEel1qU7bhrfImW9DoAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkOTk3MGQ1MmMtZDNhMS00Njg3LWE3MTItMjEyYTQ0ZWUw ZmIyMB4XDTI0MTAyNDEzMDA0MloXDTI1MDEyMjE0MDA0MlowLzEtMCsGA1UEAxMk MDYyYTZhY2QtNDI0MC00NWY2LWExZWEtZjc2Zjg0M2I2MzQ2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv92vIkIrjkxYU7o3GWXWccZZdrgnEJBVu+gX 29qmuJy6HzwgGjOb9W+XoKcOTL5HN25fr5SY9VsMqVmnNQ4104dTzdsowjHpFjPK RCZLbmgFynAqflYQeLgB8jNXNoN1ak52HA2hFzQvyLhH4e0JqNAlqIegFVo5vbT5 8sQaGauvCaNsOUJC7DS9RUeX1UPGyUvr+0NGCe455lz/n6nIsYTIhFp4rb5qLQqD 0DVIMqsY3Gm84RG4LIYLKCXrSrYjP9w4dLG0rbNTKm/D/BEwDdbwW/OlYG0xhoTO hgTav36lCcIRUO3Kbjz/JmbfkGc4uvrJLupWDubMTSMEZxFPyQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFK+TjM2OGsEa5EuUbHNMDvGEM0GKMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS85OTcw ZDUyYy1kM2ExLTQ2ODctYTcxMi0yMTJhNDRlZTBmYjIvZTIxYWVmZDYtNDcyYy0z OTMwLWFhNTgtZGViZDk5YmUyMDcyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvOTk3MGQ1MmMtZDNhMS00Njg3LWE3 MTItMjEyYTQ0ZWUwZmIyLzk5NzBkNTJjLWQzYTEtNDY4Ny1hNzEyLTIxMmE0NGVl MGZiMi5jcmwwHwYDVR0jBBgwFoAUVtE8CMf2LAtCo8s6F+hr2dh34XYwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS85OTcwZDUyYy1kM2ExLTQ2ODctYTcxMi0yMTJh NDRlZTBmYjIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD2JYIMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAH9JLiYjavVF7XBz7adEHwpRtg8Ii2I48JL1qOnax8pYY9eyHUO1dIg2 rtJs4uwyuA0Ww6bgffYsGnvsfOev8as7uI5hZk9XA95Qej5jYbOn92ZHf7HiApjU Us7e0fg2c3u2Pqft5cy3zQMO1Rt0Gl0w/4vFaKq5K2CMaI499WqywnmvbD9qGTg3 OrUXZElYaBLwCrQOJ7OhJgMI8lHRF9oxz5cV4nUXkgbmZFW7aiIxElV49jUmqn1a 2/Dq8xKIqx+7ROO7Sq0Jb2M8j9DaLgYlTKvqreJy5p9Vcq2MHGMOZKriU4AArUuE 1ggFwR3qGt0DNw9dG7JGzF2/FT9a1TA= -----END CERTIFICATE-----Generated at Sat Nov 23 18:54:07 2024 by rpki-client on console-fra.rpki-client.org