$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa File: d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa (raw, json) Hash identifier: dm7sLJ5wt9/Al6oSnWWBIEZ/n4vU0OcV30aJP8sJRbQ= Subject key identifier: E2:C6:84:95:6D:75:16:5C:4F:8E:63:0F:CC:CE:DF:D6:EC:2F:62:6F Certificate issuer: /CN=b927dc15-9316-467a-b50d-d6b361478436 Certificate serial: 010D0C9F432858476CA30E174EA1177A1BAB2540 Authority key identifier: 9A:5B:82:A8:00:DF:D6:23:2A:45:9E:7A:4B:55:17:F4:18:E5:83:E2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa Signing time: Fri 04 Oct 2024 01:15:47 +0000 ROA not before: Fri 04 Oct 2024 01:15:47 +0000 ROA not after: Thu 02 Jan 2025 02:15:47 +0000 asID: 2901 IP address blocks: 192.133.99.0/24 maxlen: 24 192.150.253.0/24 maxlen: 24 198.49.160.0/24 maxlen: 24 198.59.96.0/24 maxlen: 24 198.59.98.0/23 maxlen: 24 198.59.100.0/22 maxlen: 24 198.59.104.0/23 maxlen: 24 198.59.109.0/24 maxlen: 24 198.59.110.0/23 maxlen: 24 198.59.112.0/23 maxlen: 24 198.59.114.0/24 maxlen: 24 198.59.116.0/22 maxlen: 24 198.59.120.0/21 maxlen: 24 198.187.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:6c:a3:0e:17:4e:a1:17:7a:1b:ab:25:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b927dc15-9316-467a-b50d-d6b361478436 Validity Not Before: Oct 4 01:15:47 2024 GMT Not After : Jan 2 02:15:47 2025 GMT Subject: CN=5980f433-76f5-4ad8-a681-386108a2a2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:07:d9:31:d6:8f:85:ff:eb:b5:ad:1c:14:f3: 3c:ca:42:de:93:de:3e:87:2d:31:5a:95:b3:09:da: 57:b6:f0:e3:5c:f7:18:de:88:7a:36:e5:81:13:18: c1:68:10:55:0a:a9:f5:3c:1b:77:d5:f9:3b:0b:df: d4:eb:f8:c9:25:3f:f4:22:b0:8b:f2:42:08:a0:47: 99:44:30:52:40:a4:2d:4a:a6:20:3b:62:46:e0:49: ee:0a:01:7b:68:a6:7b:da:c7:57:dd:85:ad:9b:4f: dc:64:18:12:77:cf:1d:e4:17:5f:7e:63:5c:dc:7a: 4c:77:48:3d:0b:ec:22:04:88:bb:bb:81:6d:67:63: 74:8f:8b:c6:41:48:63:ad:d3:37:6d:62:d0:3e:6b: d3:d4:e8:8a:62:b0:d8:7e:8b:5f:03:44:df:fb:2c: fc:81:62:d1:78:06:12:5a:8d:14:3a:f4:97:48:7e: b3:6e:4b:5a:d4:b1:75:74:ea:68:1d:03:ff:30:f2: 93:cb:7d:22:13:2a:85:16:0d:9a:1e:58:30:38:49: f5:ac:9c:ae:ee:d1:c6:75:23:19:ca:7e:4c:66:60: ec:21:06:60:99:0c:25:48:97:74:26:1f:a0:ec:46: de:07:1d:57:f4:d4:c3:16:97:4b:12:d0:25:4d:ac: bf:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C6:84:95:6D:75:16:5C:4F:8E:63:0F:CC:CE:DF:D6:EC:2F:62:6F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/d14d0d3e-1701-3a5b-9ca7-34aa336c65db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436/b927dc15-9316-467a-b50d-d6b361478436.crl X509v3 Authority Key Identifier: keyid:9A:5B:82:A8:00:DF:D6:23:2A:45:9E:7A:4B:55:17:F4:18:E5:83:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b927dc15-9316-467a-b50d-d6b361478436.cer sbgp-ipAddrBlock: critical IPv4: 192.133.99.0/24 192.150.253.0/24 198.49.160.0/24 198.59.96.0/24 198.59.98.0-198.59.105.255 198.59.109.0-198.59.114.255 198.59.116.0-198.59.127.255 198.187.251.0/24 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 20:fb:68:b8:57:7e:43:a9:f1:f3:d1:b1:83:39:57:ee:c9:c2: d4:20:6d:43:1d:eb:71:72:41:34:3e:6b:49:f6:cb:97:33:8e: 57:f3:41:98:54:90:20:72:cd:ba:0d:22:8d:8f:e7:69:cd:7a: a9:b2:f2:a3:7b:c3:73:ac:5c:03:74:63:fe:0b:79:5f:cb:94: b7:32:b2:91:81:26:eb:7f:69:14:70:cb:e9:44:5c:2c:78:7c: 7c:9e:fd:33:1a:05:8f:37:d0:ef:03:fd:9b:c5:b5:8a:f2:86: dc:9d:fd:bb:10:a6:4a:65:d7:13:a0:0a:c2:aa:97:34:ac:1e: fe:b1:8d:d4:23:52:a1:d2:fe:95:56:99:62:9c:93:54:0a:77: 1a:ec:53:0d:27:50:8b:1b:64:f9:79:21:40:1f:a1:1a:08:ad: 44:b3:2e:d1:d5:88:93:b3:78:c1:f3:0b:93:23:40:da:f0:02: 7e:e6:15:b4:b8:9b:cd:c6:c0:77:8a:cd:af:6c:4c:1e:b2:ec: 77:55:2a:8f:52:e6:28:f2:80:09:52:9b:ef:9c:4c:99:6c:35: b4:d7:58:77:1b:1b:12:83:b5:bd:5f:4e:29:97:4b:d4:3d:e2: e6:e9:34:b9:fb:cc:41:e0:b4:a8:77:4b:2f:6b:76:83:2f:3f: e5:59:3b:ef -----BEGIN CERTIFICATE----- MIIGhTCCBW2gAwIBAgIUAQ0Mn0MoWEdsow4XTqEXehurJUAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYjkyN2RjMTUtOTMxNi00NjdhLWI1MGQtZDZiMzYxNDc4 NDM2MB4XDTI0MTAwNDAxMTU0N1oXDTI1MDEwMjAyMTU0N1owLzEtMCsGA1UEAxMk NTk4MGY0MzMtNzZmNS00YWQ4LWE2ODEtMzg2MTA4YTJhMmExMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgfZMdaPhf/rta0cFPM8ykLek94+hy0xWpWz CdpXtvDjXPcY3oh6NuWBExjBaBBVCqn1PBt31fk7C9/U6/jJJT/0IrCL8kIIoEeZ RDBSQKQtSqYgO2JG4EnuCgF7aKZ72sdX3YWtm0/cZBgSd88d5BdffmNc3HpMd0g9 C+wiBIi7u4FtZ2N0j4vGQUhjrdM3bWLQPmvT1OiKYrDYfotfA0Tf+yz8gWLReAYS Wo0UOvSXSH6zbkta1LF1dOpoHQP/MPKTy30iEyqFFg2aHlgwOEn1rJyu7tHGdSMZ yn5MZmDsIQZgmQwlSJd0Jh+g7EbeBx1X9NTDFpdLEtAlTay/rwIDAQABo4IDlzCC A5MwHQYDVR0OBBYEFOLGhJVtdRZcT45jD8zO39bsL2JvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iOTI3 ZGMxNS05MzE2LTQ2N2EtYjUwZC1kNmIzNjE0Nzg0MzYvZDE0ZDBkM2UtMTcwMS0z YTViLTljYTctMzRhYTMzNmM2NWRiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvYjkyN2RjMTUtOTMxNi00NjdhLWI1 MGQtZDZiMzYxNDc4NDM2L2I5MjdkYzE1LTkzMTYtNDY3YS1iNTBkLWQ2YjM2MTQ3 ODQzNi5jcmwwHwYDVR0jBBgwFoAUmluCqADf1iMqRZ56S1UX9Bjlg+IwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9iOTI3ZGMxNS05MzE2LTQ2N2EtYjUwZC1kNmIz NjE0Nzg0MzYuY2VyMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQAwIVjAwQA wJb9AwQAxjGgAwQAxjtgMAwDBAHGO2IDBAHGO2gwDAMEAMY7bQMEAMY7cjAMAwQC xjt0AwQHxjsAAwQAxrv7MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4Bggr BgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3Bz Lmh0bWwwDQYJKoZIhvcNAQELBQADggEBACD7aLhXfkOp8fPRsYM5V+7JwtQgbUMd 63FyQTQ+a0n2y5czjlfzQZhUkCByzboNIo2P52nNeqmy8qN7w3OsXAN0Y/4LeV/L lLcyspGBJut/aRRwy+lEXCx4fHye/TMaBY830O8D/ZvFtYryhtyd/bsQpkpl1xOg CsKqlzSsHv6xjdQjUqHS/pVWmWKck1QKdxrsUw0nUIsbZPl5IUAfoRoIrUSzLtHV iJOzeMHzC5MjQNrwAn7mFbS4m83GwHeKza9sTB6y7HdVKo9S5ijygAlSm++cTJls NbTXWHcbGxKDtb1fTimXS9Q94ubpNLn7zEHgtKh3Sy9rdoMvP+VZO+8= -----END CERTIFICATE-----Generated at Sat Nov 23 18:43:54 2024 by rpki-client on console-ams.rpki-client.org