$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa File: 3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa (raw, json) Hash identifier: FP72h6kRoAj4sbyG7PrBis3+UgQCvIUdoKp3LSxX6sc= Subject key identifier: 3D:12:BE:5E:D0:85:D0:F4:C1:02:87:89:36:47:3D:D7:AD:29:90:55 Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F432858480259E08BE3B05F522F930780 Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa Signing time: Tue 26 Nov 2024 16:19:36 +0000 ROA not before: Tue 26 Nov 2024 16:19:36 +0000 ROA not after: Mon 24 Feb 2025 16:19:36 +0000 asID: 46687 IP address blocks: 207.68.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 29 Dec 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:02:59:e0:8b:e3:b0:5f:52:2f:93:07:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: Nov 26 16:19:36 2024 GMT Not After : Feb 24 16:19:36 2025 GMT Subject: CN=042c58b7-9bab-459e-a4ad-e48008e8dfc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:b8:1e:a1:a8:d9:6f:43:e6:55:b5:f0:a7:cc: 03:53:92:00:d3:7e:84:d0:b4:90:bc:b1:eb:b1:05: 90:77:06:c0:76:5e:3e:18:00:7e:c3:8b:38:80:1b: 1b:e6:e6:40:a9:09:73:ac:7d:32:1d:62:1a:28:90: f2:68:a5:f1:4e:0f:d3:f8:5b:dc:78:41:18:69:51: 68:d1:43:31:cb:46:6c:0a:b2:df:ab:35:7f:5d:b9: 5e:2e:35:73:47:e9:14:bd:6d:a6:b9:d9:d8:3c:27: 83:a7:7a:99:d7:4b:95:b0:c5:60:27:f1:fb:19:6d: 2e:52:21:45:46:08:b8:3d:23:ee:ed:e3:c1:29:c5: a7:44:df:68:e6:82:fb:6c:04:58:dc:d9:b6:cb:7e: aa:94:26:0b:b3:7a:be:2c:a3:66:89:d6:04:71:32: 94:4d:8b:c1:d0:e6:03:40:74:97:a3:cb:08:bc:64: 88:2a:5c:dc:82:3d:1e:10:58:f8:2d:7d:5b:80:81: 3a:41:8f:71:9b:92:51:a2:bf:e6:5c:fb:65:f3:d7: 9f:3d:b3:ac:2d:07:7f:83:ba:88:db:56:77:f5:1a: 0b:88:19:5f:b0:17:78:11:09:8f:a6:4e:5b:e5:f7: 5c:8b:a9:72:ea:2a:94:38:24:f7:49:39:e9:81:7d: 4b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:12:BE:5E:D0:85:D0:F4:C1:02:87:89:36:47:3D:D7:AD:29:90:55 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/3b70ef49-61e8-3c1d-a33a-51d194acff5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 207.68.224.0/19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption c1:48:73:e0:e6:a5:14:1d:c8:65:a5:3b:4e:16:17:a7:43:5f: 66:fa:33:06:1b:5c:fa:23:1e:d5:be:69:61:39:f7:40:f2:aa: f2:86:90:5b:1a:09:ce:bd:ab:53:f8:1a:33:de:c2:d9:9a:6d: f3:c5:83:c9:c2:bb:4e:00:46:a9:bd:3f:0b:0d:14:6d:6b:71: cc:00:55:01:59:1e:2d:d1:b9:8e:e6:49:b9:c2:de:e6:6b:1e: 5c:47:22:1c:fe:09:0b:ca:ee:37:d6:3f:6e:62:6d:33:86:d0: 0e:66:c5:37:41:4d:3c:9a:28:d9:5e:ee:45:fd:d7:46:f7:56: cf:4d:a5:48:ba:7e:66:54:27:b9:1b:63:30:5f:9f:8d:bd:d5: 8b:af:60:93:28:94:ff:cc:7e:31:02:27:10:63:31:64:50:25: a1:9b:49:5d:6f:94:ec:ce:ac:41:df:a7:b3:81:70:e7:4c:d9: 40:28:86:a6:17:4a:7d:3c:1c:1b:a3:35:48:cb:86:0d:fa:6f: 57:fb:b1:8c:11:5c:bb:ed:b0:e6:99:d0:fa:c2:59:5d:4c:f5: c7:12:ff:ed:85:c0:a2:da:b2:9b:1e:e2:a4:b0:98:29:60:ff: 6b:0b:55:89:ef:f5:77:68:84:f5:a3:9b:63:ad:e2:56:0f:ae: 36:5e:62:a9 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEgCWeCL47BfUi+TB4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI0MTEyNjE2MTkzNloXDTI1MDIyNDE2MTkzNlowLzEtMCsGA1UEAxMk MDQyYzU4YjctOWJhYi00NTllLWE0YWQtZTQ4MDA4ZThkZmM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7geoajZb0PmVbXwp8wDU5IA036E0LSQvLHr sQWQdwbAdl4+GAB+w4s4gBsb5uZAqQlzrH0yHWIaKJDyaKXxTg/T+FvceEEYaVFo 0UMxy0ZsCrLfqzV/XbleLjVzR+kUvW2mudnYPCeDp3qZ10uVsMVgJ/H7GW0uUiFF Rgi4PSPu7ePBKcWnRN9o5oL7bARY3Nm2y36qlCYLs3q+LKNmidYEcTKUTYvB0OYD QHSXo8sIvGSIKlzcgj0eEFj4LX1bgIE6QY9xm5JRor/mXPtl89efPbOsLQd/g7qI 21Z39RoLiBlfsBd4EQmPpk5b5fdci6ly6iqUOCT3STnpgX1L3QIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFD0Svl7QhdD0wQKHiTZHPdetKZBVMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvM2I3MGVmNDktNjFlOC0z YzFkLWEzM2EtNTFkMTk0YWNmZjVlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFz0TgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAMFIc+DmpRQdyGWlO04WF6dDX2b6MwYbXPojHtW+aWE590DyqvKGkFsa Cc69q1P4GjPewtmabfPFg8nCu04ARqm9PwsNFG1rccwAVQFZHi3RuY7mSbnC3uZr HlxHIhz+CQvK7jfWP25ibTOG0A5mxTdBTTyaKNle7kX910b3Vs9NpUi6fmZUJ7kb YzBfn4291YuvYJMolP/MfjECJxBjMWRQJaGbSV1vlOzOrEHfp7OBcOdM2UAohqYX Sn08HBujNUjLhg36b1f7sYwRXLvtsOaZ0PrCWV1M9ccS/+2FwKLaspse4qSwmClg /2sLVYnv9XdohPWjm2Ot4lYPrjZeYqk= -----END CERTIFICATE-----Generated at Fri Dec 27 23:45:12 2024 by rpki-client on console-fra.rpki-client.org