$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa File: 8548b407-be60-3815-ad3f-2a6c01accdd7.roa (raw, json) Hash identifier: uSQ65W2BvBW5VUffNiRGDLsiu+xpQqviU1XeZvLkfmA= Subject key identifier: B6:97:F3:31:20:BB:DA:18:93:FE:E0:8F:DE:89:81:B5:7E:ED:78:49 Certificate issuer: /CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Certificate serial: 010D0C9F432858457D1325A8564B46D4EEB26300 Authority key identifier: D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa Signing time: Tue 09 Apr 2024 13:00:34 +0000 ROA not before: Tue 09 Apr 2024 13:00:34 +0000 ROA not after: Mon 08 Jul 2024 13:00:34 +0000 asID: 198148 IP address blocks: 63.221.136.0/21 maxlen: 24 63.220.0.0/21 maxlen: 24 63.221.200.0/21 maxlen: 24 63.221.152.0/21 maxlen: 24 63.222.16.0/21 maxlen: 24 63.222.7.0/24 maxlen: 24 63.218.213.0/24 maxlen: 24 63.217.254.0/24 maxlen: 24 63.218.210.0/23 maxlen: 24 63.218.76.0/23 maxlen: 24 63.218.204.0/23 maxlen: 24 63.218.240.0/23 maxlen: 24 63.218.228.0/23 maxlen: 24 63.216.176.0/24 maxlen: 24 63.218.214.0/23 maxlen: 24 63.216.168.0/21 maxlen: 24 63.223.34.0/24 maxlen: 24 63.222.45.0/24 maxlen: 24 63.219.16.0/22 maxlen: 24 63.218.254.0/23 maxlen: 24 63.223.20.0/24 maxlen: 24 63.218.252.0/23 maxlen: 24 63.223.17.0/24 maxlen: 24 63.223.192.0/20 maxlen: 24 63.223.31.0/24 maxlen: 24 63.223.44.0/24 maxlen: 24 63.216.152.0/22 maxlen: 24 63.216.142.0/23 maxlen: 24 63.216.144.0/22 maxlen: 24 63.217.24.0/23 maxlen: 24 63.218.248.0/23 maxlen: 24 63.218.0.0/22 maxlen: 24 63.218.107.0/24 maxlen: 24 63.218.60.0/22 maxlen: 24 63.218.144.0/23 maxlen: 24 63.218.116.0/23 maxlen: 24 63.217.66.0/24 maxlen: 24 63.218.56.0/23 maxlen: 24 63.218.174.0/23 maxlen: 24 63.217.80.0/21 maxlen: 24 63.218.164.0/23 maxlen: 24 63.217.120.0/22 maxlen: 24 63.216.82.0/23 maxlen: 24 63.216.56.0/21 maxlen: 24 63.217.16.0/23 maxlen: 24 63.218.18.0/23 maxlen: 24 63.217.72.0/22 maxlen: 24 63.218.10.0/23 maxlen: 24 63.218.43.0/24 maxlen: 24 63.218.114.0/23 maxlen: 24 63.218.162.0/23 maxlen: 24 63.218.158.0/23 maxlen: 24 63.216.156.0/24 maxlen: 24 63.218.156.0/23 maxlen: 24 63.217.237.0/24 maxlen: 24 63.217.59.0/24 maxlen: 24 63.217.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:7d:13:25:a8:56:4b:46:d4:ee:b2:63:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Validity Not Before: Apr 9 13:00:34 2024 GMT Not After : Jul 8 13:00:34 2024 GMT Subject: CN=997b7fd1-ce4f-4d5c-923e-d3dea2be3da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:05:1e:25:d8:37:ce:ec:61:c2:d6:aa:42:01: 5f:13:1e:c8:3d:97:f9:c9:72:d4:db:0e:9f:ac:4e: 02:d7:9c:9a:de:3d:f9:76:fc:fd:d0:a8:1b:ca:e5: 70:f1:1c:f6:20:db:88:aa:6b:92:5e:57:ca:7e:a1: cd:ba:cf:21:d9:28:40:dc:5b:14:06:3d:10:d8:cc: a6:08:0e:fa:77:21:45:84:29:f6:08:e1:14:4a:e1: 47:48:cb:15:0b:10:4b:71:88:c9:ef:7c:6d:66:5a: b2:62:f3:ff:2b:db:6f:9e:64:b8:20:15:09:40:0c: 33:73:72:18:93:10:39:bc:18:d9:c0:5b:6f:d4:53: c6:0a:f1:e9:97:c3:81:46:e9:23:55:97:48:21:30: 10:b5:fa:74:f7:c8:d6:3b:24:4c:eb:cc:c6:84:c7: 31:a2:a3:ee:a0:73:c0:5a:56:6d:3d:3c:d4:4f:fa: 94:50:c2:d7:be:93:01:e7:6a:a7:19:5e:52:68:af: 39:86:48:a1:11:86:6d:3d:16:de:0d:28:23:e6:00: c7:72:94:0d:91:3b:94:99:95:18:70:16:9e:ab:0f: a4:f9:e0:6d:48:95:4c:c2:c0:3b:e1:fb:4c:e8:fa: 76:eb:aa:db:31:bb:29:90:16:b2:4c:b9:cb:ca:2e: 4b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:97:F3:31:20:BB:DA:18:93:FE:E0:8F:DE:89:81:B5:7E:ED:78:49 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl X509v3 Authority Key Identifier: keyid:D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer sbgp-ipAddrBlock: critical IPv4: 63.216.56.0/21 63.216.82.0/23 63.216.142.0-63.216.147.255 63.216.152.0-63.216.156.255 63.216.168.0-63.216.176.255 63.217.16.0/23 63.217.24.0/23 63.217.40.0/21 63.217.59.0/24 63.217.66.0/24 63.217.72.0/22 63.217.80.0/21 63.217.120.0/22 63.217.237.0/24 63.217.254.0/24 63.218.0.0/22 63.218.10.0/23 63.218.18.0/23 63.218.43.0/24 63.218.56.0/23 63.218.60.0/22 63.218.76.0/23 63.218.107.0/24 63.218.114.0-63.218.117.255 63.218.144.0/23 63.218.156.0/22 63.218.162.0-63.218.165.255 63.218.174.0/23 63.218.204.0/23 63.218.210.0/23 63.218.213.0-63.218.215.255 63.218.228.0/23 63.218.240.0/23 63.218.248.0/23 63.218.252.0/22 63.219.16.0/22 63.220.0.0/21 63.221.136.0/21 63.221.152.0/21 63.221.200.0/21 63.222.7.0/24 63.222.16.0/21 63.222.45.0/24 63.223.17.0/24 63.223.20.0/24 63.223.31.0/24 63.223.34.0/24 63.223.44.0/24 63.223.192.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 47:91:00:51:d2:24:43:da:96:3c:ae:bf:61:2d:11:d7:4f:f2: aa:c4:d1:61:c7:73:80:c5:0d:a6:35:f2:e0:a2:e0:a8:76:df: 8b:f0:e9:4f:0b:a1:7e:4c:af:57:24:7e:e4:39:7e:ef:e0:97: 28:20:41:5d:32:34:3d:86:d3:fe:f2:8f:ec:41:a7:a3:3a:98: 0f:63:a9:2a:62:b6:e1:5b:9d:0d:f4:00:ec:ef:4f:50:b4:f6: 9b:31:c8:c3:13:bb:a8:ad:09:8c:15:f0:47:3e:72:26:1a:9c: 44:2c:b7:23:96:c8:04:6e:b0:88:1f:27:2f:0c:54:03:a0:0d: 28:72:88:25:64:2d:b9:63:49:f5:71:9a:0d:19:8d:11:fa:c2: 66:e7:f6:bc:7d:89:61:67:92:15:b2:6b:70:13:e8:3c:8a:32: 1d:d7:32:c7:4c:84:e7:78:6c:60:e1:9d:6e:81:3a:6f:e7:5d: 55:db:29:63:1c:51:ed:d7:ae:2d:e9:76:fb:8a:df:ba:d7:e8: c4:d1:64:3f:e6:f6:6b:87:85:04:f0:0c:8f:14:d8:58:bc:28: 1b:73:8a:d0:57:2d:b2:ca:44:a8:fa:58:3e:0c:04:a5:5a:4a: 0a:30:11:f3:f5:9e:d4:14:6e:1f:04:54:12:4a:a9:ba:43:8a: 27:07:27:9e -----BEGIN CERTIFICATE----- MIIHnTCCBoWgAwIBAgIUAQ0Mn0MoWEV9EyWoVktG1O6yYwAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMDUzOWU0OTAtZjYyYy00YmQzLThmMjgtYzg4ZWRhMjIw YzQ4MB4XDTI0MDQwOTEzMDAzNFoXDTI0MDcwODEzMDAzNFowLzEtMCsGA1UEAxMk OTk3YjdmZDEtY2U0Zi00ZDVjLTkyM2UtZDNkZWEyYmUzZGE5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQUeJdg3zuxhwtaqQgFfEx7IPZf5yXLU2w6f rE4C15ya3j35dvz90KgbyuVw8Rz2INuIqmuSXlfKfqHNus8h2ShA3FsUBj0Q2Mym CA76dyFFhCn2COEUSuFHSMsVCxBLcYjJ73xtZlqyYvP/K9tvnmS4IBUJQAwzc3IY kxA5vBjZwFtv1FPGCvHpl8OBRukjVZdIITAQtfp098jWOyRM68zGhMcxoqPuoHPA WlZtPTzUT/qUUMLXvpMB52qnGV5SaK85hkihEYZtPRbeDSgj5gDHcpQNkTuUmZUY cBaeqw+k+eBtSJVMwsA74ftM6Pp266rbMbspkBayTLnLyi5L4wIDAQABo4IErzCC BKswHQYDVR0OBBYEFLaX8zEgu9oYk/7gj96JgbV+7XhJMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5 ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhlZGEyMjBjNDgvODU0OGI0MDctYmU2MC0z ODE1LWFkM2YtMmE2YzAxYWNjZGQ3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMDUzOWU0OTAtZjYyYy00YmQzLThm MjgtYzg4ZWRhMjIwYzQ4LzA1MzllNDkwLWY2MmMtNGJkMy04ZjI4LWM4OGVkYTIy MGM0OC5jcmwwHwYDVR0jBBgwFoAU0ToQMzWxBhO5Z5LsPpF3qYEVn+cwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhl ZGEyMjBjNDguY2VyMIIBdwYIKwYBBQUHAQcBAf8EggFmMIIBYjCCAV4EAgABMIIB VgMEAz/YOAMEAT/YUjAMAwQBP9iOAwQCP9iQMAwDBAM/2JgDBAA/2JwwDAMEAz/Y qAMEAD/YsAMEAT/ZEAMEAT/ZGAMEAz/ZKAMEAD/ZOwMEAD/ZQgMEAj/ZSAMEAz/Z UAMEAj/ZeAMEAD/Z7QMEAD/Z/gMEAj/aAAMEAT/aCgMEAT/aEgMEAD/aKwMEAT/a OAMEAj/aPAMEAT/aTAMEAD/aazAMAwQBP9pyAwQBP9p0AwQBP9qQAwQCP9qcMAwD BAE/2qIDBAE/2qQDBAE/2q4DBAE/2swDBAE/2tIwDAMEAD/a1QMEAz/a0AMEAT/a 5AMEAT/a8AMEAT/a+AMEAj/a/AMEAj/bEAMEAz/cAAMEAz/diAMEAz/dmAMEAz/d yAMEAD/eBwMEAz/eEAMEAD/eLQMEAD/fEQMEAD/fFAMEAD/fHwMEAD/fIgMEAD/f LAMEBD/fwDBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEW LGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0G CSqGSIb3DQEBCwUAA4IBAQBHkQBR0iRD2pY8rr9hLRHXT/KqxNFhx3OAxQ2mNfLg ouCodt+L8OlPC6F+TK9XJH7kOX7v4JcoIEFdMjQ9htP+8o/sQaejOpgPY6kqYrbh W50N9ADs709QtPabMcjDE7uorQmMFfBHPnImGpxELLcjlsgEbrCIHycvDFQDoA0o coglZC25Y0n1cZoNGY0R+sJm5/a8fYlhZ5IVsmtwE+g8ijId1zLHTITneGxg4Z1u gTpv511V2yljHFHt164t6Xb7it+61+jE0WQ/5vZrh4UE8AyPFNhYvCgbc4rQVy2y ykSo+lg+DASlWkoKMBHz9Z7UFG4fBFQSSqm6Q4onByee -----END CERTIFICATE-----Generated at Tue May 7 21:45:30 2024 by rpki-client on console-fra.rpki-client.org