$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/409dcb1b-8e11-32f3-b345-ba1e33a44598.roa File: 409dcb1b-8e11-32f3-b345-ba1e33a44598.roa (raw, json) Hash identifier: 8er+xtI6HEBcoopMh2glsYCMfdderV+rhV8RaQXjmwM= Subject key identifier: A5:FC:4B:BB:60:74:45:D7:04:D0:21:95:D1:97:21:90:B5:D9:79:DC Certificate issuer: /CN=d3bf923d-6c9d-4713-887f-1f30075cf850 Certificate serial: 010D0C9F4328584666936CB42BA7091F332E3640 Authority key identifier: 5B:7E:94:69:FB:8F:16:3F:CC:C9:25:52:54:45:FB:6D:BB:DA:C5:BB Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/409dcb1b-8e11-32f3-b345-ba1e33a44598.roa Signing time: Tue 02 Jul 2024 04:22:30 +0000 ROA not before: Tue 02 Jul 2024 04:22:30 +0000 ROA not after: Mon 30 Sep 2024 04:22:30 +0000 asID: 32746 IP address blocks: 204.8.88.0/22 maxlen: 24 208.86.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/d3bf923d-6c9d-4713-887f-1f30075cf850.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/d3bf923d-6c9d-4713-887f-1f30075cf850.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Sep 2024 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:46:66:93:6c:b4:2b:a7:09:1f:33:2e:36:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3bf923d-6c9d-4713-887f-1f30075cf850 Validity Not Before: Jul 2 04:22:30 2024 GMT Not After : Sep 30 04:22:30 2024 GMT Subject: CN=b38f58a1-058c-4ad1-88b0-ef77ab29c1cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:97:97:a5:78:46:30:2c:34:98:3c:33:a5: 87:6f:b1:25:89:3a:80:5a:5c:ed:62:62:aa:1e:6a: fc:4b:44:cb:eb:23:a1:82:01:66:21:e1:b3:78:56: 73:3c:de:71:3f:5c:78:37:f3:c4:6d:97:a1:d0:d5: e5:c5:80:90:29:a1:31:77:0a:59:ae:b3:02:59:2d: c2:e1:fc:ad:f5:50:4e:ae:bf:1d:71:30:20:f7:ee: a9:4a:ba:1e:27:f4:33:12:95:93:4e:84:36:d7:c8: 82:fc:93:60:e1:c7:98:e4:55:30:09:7d:69:65:65: 2b:19:b5:73:15:1e:e9:ba:3b:e3:d2:38:b4:7f:8a: 87:dc:31:75:e8:18:c7:1c:83:95:ab:40:e5:ac:22: 87:a0:62:fb:73:f4:2e:a9:c5:6c:35:2f:12:7f:6a: d9:cf:6f:55:d0:24:8d:32:07:27:5f:31:97:64:e7: a0:af:14:2e:58:df:42:ee:02:5b:8f:1e:1f:fe:a1: db:d8:b2:82:9a:0a:9b:97:47:4c:35:c3:de:6e:c8: d8:f9:74:66:33:bb:55:e0:90:05:25:2f:a6:04:7b: 95:f3:b4:19:2d:13:ab:da:d9:f9:77:2a:bd:01:bc: bd:6c:40:29:de:ec:c8:7b:a9:17:5a:c3:ce:1f:f8: d2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:FC:4B:BB:60:74:45:D7:04:D0:21:95:D1:97:21:90:B5:D9:79:DC Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/409dcb1b-8e11-32f3-b345-ba1e33a44598.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850/d3bf923d-6c9d-4713-887f-1f30075cf850.crl X509v3 Authority Key Identifier: keyid:5B:7E:94:69:FB:8F:16:3F:CC:C9:25:52:54:45:FB:6D:BB:DA:C5:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/d3bf923d-6c9d-4713-887f-1f30075cf850.cer sbgp-ipAddrBlock: critical IPv4: 204.8.88.0/22 208.86.40.0/22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 28:8c:13:2c:19:99:d2:33:a5:e9:02:d2:74:5c:cb:e2:ab:08: 85:47:cc:95:a3:d7:bb:f7:b1:12:4a:cf:10:5d:3a:b3:d5:7c: ef:e6:41:e9:a5:e1:74:51:80:da:97:78:bd:ca:f8:91:e0:99: a2:9f:d2:9a:0e:c2:15:f0:a8:3f:c8:e4:1c:0a:ab:59:36:fc: b8:87:47:54:71:87:98:b4:40:31:39:5e:c3:2b:cd:8f:63:6d: 3e:5a:1f:97:35:03:6c:12:1d:ff:62:7a:28:27:ad:08:14:0b: ec:c8:ce:e2:e7:f6:36:c4:d0:55:e5:0a:87:21:22:20:b0:a0: 50:28:d1:71:a7:ef:ab:7c:3d:a5:fc:62:bf:19:2e:34:92:1f: d9:da:f8:93:2a:6a:07:22:8f:80:59:9f:c1:3c:22:d9:4a:18: 25:7a:67:08:aa:a6:fa:1d:2e:e6:85:c0:4c:da:7e:bd:17:a5: fa:dd:38:c4:f0:2e:bf:63:aa:f7:80:ea:da:71:0e:45:0d:1a: a2:9d:b5:26:f8:49:5c:19:cd:66:41:c6:f3:b1:32:a1:ce:3f: 28:f5:12:df:1c:6c:81:dc:29:4f:2b:8a:3b:af:d1:5c:cf:8d: 0e:60:05:f8:bf:ee:a6:c4:55:fa:04:6f:ab:a1:fa:74:fe:06: 57:f0:59:86 -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWEZmk2y0K6cJHzMuNkAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDNiZjkyM2QtNmM5ZC00NzEzLTg4N2YtMWYzMDA3NWNm ODUwMB4XDTI0MDcwMjA0MjIzMFoXDTI0MDkzMDA0MjIzMFowLzEtMCsGA1UEAxMk YjM4ZjU4YTEtMDU4Yy00YWQxLTg4YjAtZWY3N2FiMjljMWNkMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4aXl6V4RjAsNJg8M6WHb7EliTqAWlztYmKq Hmr8S0TL6yOhggFmIeGzeFZzPN5xP1x4N/PEbZeh0NXlxYCQKaExdwpZrrMCWS3C 4fyt9VBOrr8dcTAg9+6pSroeJ/QzEpWTToQ218iC/JNg4ceY5FUwCX1pZWUrGbVz FR7pujvj0ji0f4qH3DF16BjHHIOVq0DlrCKHoGL7c/QuqcVsNS8Sf2rZz29V0CSN MgcnXzGXZOegrxQuWN9C7gJbjx4f/qHb2LKCmgqbl0dMNcPebsjY+XRmM7tV4JAF JS+mBHuV87QZLROr2tn5dyq9Aby9bEAp3uzIe6kXWsPOH/jSmwIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFKX8S7tgdEXXBNAhldGXIZC12XncMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9kM2Jm OTIzZC02YzlkLTQ3MTMtODg3Zi0xZjMwMDc1Y2Y4NTAvNDA5ZGNiMWItOGUxMS0z MmYzLWIzNDUtYmExZTMzYTQ0NTk4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9hNzM0MjBjYi1i M2NjLTRiMDMtYmRhNy0xYmUyMDQ5MzNhZTUvZDNiZjkyM2QtNmM5ZC00NzEzLTg4 N2YtMWYzMDA3NWNmODUwL2QzYmY5MjNkLTZjOWQtNDcxMy04ODdmLTFmMzAwNzVj Zjg1MC5jcmwwHwYDVR0jBBgwFoAUW36UafuPFj/MySVSVEX7bbvaxbswDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2MtNGIw My1iZGE3LTFiZTIwNDkzM2FlNS9kM2JmOTIzZC02YzlkLTQ3MTMtODg3Zi0xZjMw MDc1Y2Y4NTAuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCzAhYAwQC 0FYoMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBACiMEywZmdIzpekC0nRcy+KrCIVHzJWj17v3sRJKzxBdOrPV fO/mQeml4XRRgNqXeL3K+JHgmaKf0poOwhXwqD/I5BwKq1k2/LiHR1Rxh5i0QDE5 XsMrzY9jbT5aH5c1A2wSHf9ieignrQgUC+zIzuLn9jbE0FXlCochIiCwoFAo0XGn 76t8PaX8Yr8ZLjSSH9na+JMqagcij4BZn8E8ItlKGCV6ZwiqpvodLuaFwEzafr0X pfrdOMTwLr9jqveA6tpxDkUNGqKdtSb4SVwZzWZBxvOxMqHOPyj1Et8cbIHcKU8r ijuv0VzPjQ5gBfi/7qbEVfoEb6uh+nT+BlfwWYY= -----END CERTIFICATE-----Generated at Mon Sep 16 18:01:02 2024 by rpki-client on console-ams.rpki-client.org