$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa File: c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa (raw, json) Hash identifier: fVDj8w3ZFBQ14augzQS0A2mqVn3Xmixz1Sz4vKHZAZM= Subject key identifier: D6:3C:5F:2A:52:8F:28:F9:44:58:18:0B:AD:E8:5B:7D:40:ED:33:8F Certificate issuer: /CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Certificate serial: 010D0C9F43285848025844545509285509039080 Authority key identifier: 58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa Signing time: Tue 26 Nov 2024 16:16:21 +0000 ROA not before: Tue 26 Nov 2024 16:16:21 +0000 ROA not after: Mon 24 Feb 2025 16:16:21 +0000 asID: 46687 IP address blocks: 24.213.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 29 Dec 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:48:02:58:44:54:55:09:28:55:09:03:90:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa31a4a0-7b77-4f56-8f89-01525b506129 Validity Not Before: Nov 26 16:16:21 2024 GMT Not After : Feb 24 16:16:21 2025 GMT Subject: CN=6c036c7e-64eb-4c85-9941-01f1af4cf406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:ca:74:b7:1e:d2:b9:a8:92:43:e7:47:54: 3c:d4:0d:3a:9c:70:88:ff:f8:7a:3d:a5:84:c2:54: e2:c6:17:59:de:7d:a2:41:86:42:a5:f1:df:22:8b: 7f:49:52:82:01:2e:25:a2:fa:17:e4:0b:c2:7e:87: ab:27:92:4a:fd:e5:7e:0c:ff:24:c3:75:aa:e0:cb: 7e:27:6c:d1:6d:ec:5d:d3:2d:d0:44:27:e2:c8:8a: bb:d9:5b:0e:71:b6:9e:93:76:fb:7b:40:48:8a:94: 0e:b2:c8:5c:e0:83:ea:12:64:ba:b6:cf:f3:f9:fe: 4d:45:c2:65:0c:13:77:12:46:7b:ef:6c:b5:96:fe: 82:94:e7:00:b4:98:4f:a3:08:45:ad:ac:6a:12:1e: a0:13:61:af:ef:53:ea:2f:79:3d:e0:f3:f5:3f:5d: 00:5d:80:5f:b8:04:30:6c:ed:39:8b:01:64:c0:c8: 19:c1:2e:24:0c:4d:fa:0a:07:b1:d3:ce:43:05:89: 14:da:38:2b:d1:67:e6:b0:5c:8e:98:2f:3a:98:1f: 8d:f3:f1:ff:17:83:3f:9f:35:ef:ce:e3:ed:60:f8: 0c:a0:4f:a6:18:49:21:af:1f:f8:d0:01:a4:66:93: 0d:17:57:84:a4:69:3b:64:51:50:92:3a:b5:6c:e9: a5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3C:5F:2A:52:8F:28:F9:44:58:18:0B:AD:E8:5B:7D:40:ED:33:8F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/c1337ef0-f7e6-384f-a349-52b7ab3af9de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129/aa31a4a0-7b77-4f56-8f89-01525b506129.crl X509v3 Authority Key Identifier: keyid:58:89:4D:59:3D:A0:9D:73:D6:96:20:6E:85:EB:9B:B1:BA:9B:66:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/aa31a4a0-7b77-4f56-8f89-01525b506129.cer sbgp-ipAddrBlock: critical IPv4: 24.213.96.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption b4:70:b3:d8:b9:40:4e:f7:2e:5c:2e:14:ad:44:58:8f:33:e4: 84:4b:19:a3:83:ce:39:cb:79:fc:43:e5:a6:f9:2a:da:05:ed: fd:68:a8:48:49:1f:b5:d5:35:e9:23:7a:3c:f5:e9:04:f9:61: 0e:8e:de:d3:a1:76:e4:9d:fa:08:72:7d:0b:57:6a:43:2e:f1: f8:e6:3d:79:d6:cb:d5:3c:58:29:e0:6d:c6:82:75:2c:2b:ae: 8e:3b:2d:3e:d1:a9:24:f4:a2:3d:b7:5b:3d:32:3c:87:38:e0: 16:71:61:d5:60:db:db:5f:32:31:8d:10:10:6e:ba:36:10:11: 23:c2:1f:97:af:3a:56:b3:6a:97:4f:bd:2d:7e:5b:0e:15:5c: a1:56:cc:bf:8b:b3:d0:7d:da:ea:dc:fd:7a:c2:39:ae:30:49: a3:b7:5c:04:d5:8b:bc:bc:bb:32:48:aa:5c:ff:77:50:09:fe: 55:0d:d3:f5:21:d5:4d:19:14:74:76:76:06:16:73:9e:db:d1: 0d:3b:d6:b6:b0:02:fe:b3:86:43:a8:7c:97:bf:7f:13:fe:da: 37:d2:01:e0:06:98:10:09:43:ea:55:1c:93:26:70:6a:21:57: 86:71:69:49:ca:d7:49:c7:9a:5e:5a:ee:87:e2:89:fc:99:3d: 3b:02:aa:e5 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEgCWERUVQkoVQkDkIAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkYWEzMWE0YTAtN2I3Ny00ZjU2LThmODktMDE1MjViNTA2 MTI5MB4XDTI0MTEyNjE2MTYyMVoXDTI1MDIyNDE2MTYyMVowLzEtMCsGA1UEAxMk NmMwMzZjN2UtNjRlYi00Yzg1LTk5NDEtMDFmMWFmNGNmNDA2MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSzKdLce0rmokkPnR1Q81A06nHCI//h6PaWE wlTixhdZ3n2iQYZCpfHfIot/SVKCAS4lovoX5AvCfoerJ5JK/eV+DP8kw3Wq4Mt+ J2zRbexd0y3QRCfiyIq72VsOcbaek3b7e0BIipQOsshc4IPqEmS6ts/z+f5NRcJl DBN3EkZ772y1lv6ClOcAtJhPowhFraxqEh6gE2Gv71PqL3k94PP1P10AXYBfuAQw bO05iwFkwMgZwS4kDE36Cgex085DBYkU2jgr0WfmsFyOmC86mB+N8/H/F4M/nzXv zuPtYPgMoE+mGEkhrx/40AGkZpMNF1eEpGk7ZFFQkjq1bOmlEQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFNY8XypSjyj5RFgYC63oW31A7TOPMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9hYTMx YTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUyNWI1MDYxMjkvYzEzMzdlZjAtZjdlNi0z ODRmLWEzNDktNTJiN2FiM2FmOWRlLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02 Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvYWEzMWE0YTAtN2I3Ny00ZjU2LThm ODktMDE1MjViNTA2MTI5L2FhMzFhNGEwLTdiNzctNGY1Ni04Zjg5LTAxNTI1YjUw NjEyOS5jcmwwHwYDVR0jBBgwFoAUWIlNWT2gnXPWliBuheubsbqbZj0wDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm Ny1iNTk5LWU5ZDBlOTgxZDliZi9hYTMxYTRhMC03Yjc3LTRmNTYtOGY4OS0wMTUy NWI1MDYxMjkuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEGNVgMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBALRws9i5QE73LlwuFK1EWI8z5IRLGaODzjnLefxD5ab5KtoF7f1oqEhJ H7XVNekjejz16QT5YQ6O3tOhduSd+ghyfQtXakMu8fjmPXnWy9U8WCngbcaCdSwr ro47LT7RqST0oj23Wz0yPIc44BZxYdVg29tfMjGNEBBuujYQESPCH5evOlazapdP vS1+Ww4VXKFWzL+Ls9B92urc/XrCOa4wSaO3XATVi7y8uzJIqlz/d1AJ/lUN0/Uh 1U0ZFHR2dgYWc57b0Q071rawAv6zhkOofJe/fxP+2jfSAeAGmBAJQ+pVHJMmcGoh V4ZxaUnK10nHml5a7ofiifyZPTsCquU= -----END CERTIFICATE-----Generated at Fri Dec 27 23:45:12 2024 by rpki-client on console-fra.rpki-client.org