$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa File: 8548b407-be60-3815-ad3f-2a6c01accdd7.roa (raw, json) Hash identifier: AetQp2IvVgNw1CyzhUiU0MCGUTbbFjmvEAh4HRvL7mA= Subject key identifier: 88:BA:36:63:54:6C:00:E2:D6:D0:1B:A0:4D:54:C0:36:5B:1E:9B:7D Certificate issuer: /CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Certificate serial: 010D0C9F432858473D25F6F783BEDB6AD11FEA00 Authority key identifier: D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa Signing time: Tue 17 Sep 2024 01:00:31 +0000 ROA not before: Tue 17 Sep 2024 01:00:31 +0000 ROA not after: Mon 16 Dec 2024 02:00:31 +0000 asID: 198148 IP address blocks: 63.216.56.0/21 maxlen: 24 63.216.82.0/23 maxlen: 24 63.216.142.0/23 maxlen: 24 63.216.144.0/22 maxlen: 24 63.216.152.0/22 maxlen: 24 63.216.156.0/24 maxlen: 24 63.216.168.0/21 maxlen: 24 63.216.176.0/24 maxlen: 24 63.217.16.0/23 maxlen: 24 63.217.24.0/23 maxlen: 24 63.217.40.0/21 maxlen: 24 63.217.59.0/24 maxlen: 24 63.217.66.0/24 maxlen: 24 63.217.72.0/22 maxlen: 24 63.217.80.0/21 maxlen: 24 63.217.120.0/22 maxlen: 24 63.217.237.0/24 maxlen: 24 63.217.254.0/24 maxlen: 24 63.218.0.0/22 maxlen: 24 63.218.10.0/23 maxlen: 24 63.218.18.0/23 maxlen: 24 63.218.43.0/24 maxlen: 24 63.218.56.0/23 maxlen: 24 63.218.60.0/22 maxlen: 24 63.218.76.0/23 maxlen: 24 63.218.107.0/24 maxlen: 24 63.218.114.0/23 maxlen: 24 63.218.116.0/23 maxlen: 24 63.218.144.0/23 maxlen: 24 63.218.156.0/23 maxlen: 24 63.218.158.0/23 maxlen: 24 63.218.162.0/23 maxlen: 24 63.218.164.0/23 maxlen: 24 63.218.174.0/23 maxlen: 24 63.218.204.0/23 maxlen: 24 63.218.210.0/23 maxlen: 24 63.218.213.0/24 maxlen: 24 63.218.214.0/23 maxlen: 24 63.218.228.0/23 maxlen: 24 63.218.240.0/23 maxlen: 24 63.218.248.0/23 maxlen: 24 63.218.252.0/23 maxlen: 24 63.218.254.0/23 maxlen: 24 63.219.16.0/22 maxlen: 24 63.220.0.0/21 maxlen: 24 63.221.136.0/21 maxlen: 24 63.221.152.0/21 maxlen: 24 63.221.200.0/21 maxlen: 24 63.222.7.0/24 maxlen: 24 63.222.16.0/21 maxlen: 24 63.222.45.0/24 maxlen: 24 63.223.17.0/24 maxlen: 24 63.223.20.0/24 maxlen: 24 63.223.31.0/24 maxlen: 24 63.223.34.0/24 maxlen: 24 63.223.44.0/24 maxlen: 24 63.223.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:3d:25:f6:f7:83:be:db:6a:d1:1f:ea:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0539e490-f62c-4bd3-8f28-c88eda220c48 Validity Not Before: Sep 17 01:00:31 2024 GMT Not After : Dec 16 02:00:31 2024 GMT Subject: CN=1de589b3-2f76-4aa0-a89f-aaf07ca4ff44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:24:49:34:e5:c4:26:69:07:e2:7c:8a:74:c2: 0a:05:76:8a:8c:54:26:92:a5:f7:0b:97:e1:dd:0b: d5:7d:dd:fd:91:67:a3:c0:4c:05:14:99:68:a6:50: 31:97:69:c5:de:00:b0:28:20:bc:85:d4:16:3e:aa: 85:7a:c0:ec:f1:72:27:c1:b7:7c:87:c3:a7:f5:24: 4d:82:bf:bf:7d:28:71:c8:66:c0:f1:27:e4:61:75: 55:d2:8a:70:09:9d:47:af:b8:6c:c8:a2:ab:4c:e6: 91:f1:ab:44:4d:36:0e:88:a5:26:10:11:68:a7:ac: 7a:c3:af:76:99:1e:24:62:55:3d:ba:ac:cb:be:32: 3a:b1:ca:9c:5c:b4:81:6b:ff:31:3e:83:02:ab:7d: bd:c4:15:1d:ee:75:27:f1:36:d2:10:d9:8e:0f:35: a1:37:df:f7:ad:17:51:4b:f6:d3:61:0d:63:24:53: b2:46:96:10:05:da:ee:51:91:0a:1d:94:74:46:46: 0a:03:ba:77:98:3f:fb:aa:2a:71:aa:67:20:0c:6a: da:9e:71:62:a1:e2:41:60:25:ea:d7:c2:d0:ab:eb: 87:1c:f5:fa:c4:ca:f9:d6:a4:f6:00:29:00:dd:d5: ce:27:9d:90:e2:90:d0:ff:ca:85:95:fb:3b:d4:58: bb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:BA:36:63:54:6C:00:E2:D6:D0:1B:A0:4D:54:C0:36:5B:1E:9B:7D Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/8548b407-be60-3815-ad3f-2a6c01accdd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl X509v3 Authority Key Identifier: keyid:D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer sbgp-ipAddrBlock: critical IPv4: 63.216.56.0/21 63.216.82.0/23 63.216.142.0-63.216.147.255 63.216.152.0-63.216.156.255 63.216.168.0-63.216.176.255 63.217.16.0/23 63.217.24.0/23 63.217.40.0/21 63.217.59.0/24 63.217.66.0/24 63.217.72.0/22 63.217.80.0/21 63.217.120.0/22 63.217.237.0/24 63.217.254.0/24 63.218.0.0/22 63.218.10.0/23 63.218.18.0/23 63.218.43.0/24 63.218.56.0/23 63.218.60.0/22 63.218.76.0/23 63.218.107.0/24 63.218.114.0-63.218.117.255 63.218.144.0/23 63.218.156.0/22 63.218.162.0-63.218.165.255 63.218.174.0/23 63.218.204.0/23 63.218.210.0/23 63.218.213.0-63.218.215.255 63.218.228.0/23 63.218.240.0/23 63.218.248.0/23 63.218.252.0/22 63.219.16.0/22 63.220.0.0/21 63.221.136.0/21 63.221.152.0/21 63.221.200.0/21 63.222.7.0/24 63.222.16.0/21 63.222.45.0/24 63.223.17.0/24 63.223.20.0/24 63.223.31.0/24 63.223.34.0/24 63.223.44.0/24 63.223.192.0/20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 8d:8f:14:b5:ea:5e:48:60:6a:25:b8:0a:f6:01:3d:26:af:5f: 13:bb:23:97:43:a7:8f:4c:32:cd:e3:19:31:f3:b9:95:f0:c7: b3:80:d4:c9:36:cc:84:9e:ba:7a:e5:2f:57:d9:e5:98:4f:de: d4:46:8a:3d:78:4e:4d:b6:e3:52:b0:6c:df:e3:bf:4e:b7:3e: e9:12:93:c6:ab:c6:bf:b4:b5:b2:bc:47:ec:84:18:97:69:35: 68:e8:22:23:4e:d4:16:ae:f1:a1:3c:50:38:10:f7:7a:ba:22: 15:ec:91:b9:ab:03:c4:9e:7f:d2:23:f0:f7:74:b4:99:ab:b1: 97:68:be:e4:fb:ff:65:49:76:2d:38:af:22:be:ff:fe:0e:9f: af:49:26:ab:8a:1c:35:c6:d4:fa:50:c0:7b:87:25:be:c5:c1: db:67:30:cc:fa:2a:86:d1:dd:b0:e3:ef:b0:8f:b6:5c:3b:db: 70:66:46:01:9c:9b:aa:b8:99:a6:14:9c:1c:dd:29:f5:65:79: 61:15:43:78:94:ec:49:aa:68:a3:8c:73:b6:cf:36:ae:db:ef: 2d:bf:b0:15:b8:c3:99:89:ed:27:c4:c8:1f:c0:2a:7f:85:9f: 2e:28:17:4c:15:6d:42:39:b2:ca:be:c7:d4:08:d4:6f:2e:6f: 17:93:9c:7e -----BEGIN CERTIFICATE----- MIIHnTCCBoWgAwIBAgIUAQ0Mn0MoWEc9Jfb3g77batEf6gAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkMDUzOWU0OTAtZjYyYy00YmQzLThmMjgtYzg4ZWRhMjIw YzQ4MB4XDTI0MDkxNzAxMDAzMVoXDTI0MTIxNjAyMDAzMVowLzEtMCsGA1UEAxMk MWRlNTg5YjMtMmY3Ni00YWEwLWE4OWYtYWFmMDdjYTRmZjQ0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSRJNOXEJmkH4nyKdMIKBXaKjFQmkqX3C5fh 3QvVfd39kWejwEwFFJloplAxl2nF3gCwKCC8hdQWPqqFesDs8XInwbd8h8On9SRN gr+/fShxyGbA8SfkYXVV0opwCZ1Hr7hsyKKrTOaR8atETTYOiKUmEBFop6x6w692 mR4kYlU9uqzLvjI6scqcXLSBa/8xPoMCq329xBUd7nUn8TbSENmODzWhN9/3rRdR S/bTYQ1jJFOyRpYQBdruUZEKHZR0RkYKA7p3mD/7qipxqmcgDGrannFioeJBYCXq 18LQq+uHHPX6xMr51qT2ACkA3dXOJ52Q4pDQ/8qFlfs71Fi7KQIDAQABo4IErzCC BKswHQYDVR0OBBYEFIi6NmNUbADi1tAboE1UwDZbHpt9MIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5 ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhlZGEyMjBjNDgvODU0OGI0MDctYmU2MC0z ODE1LWFkM2YtMmE2YzAxYWNjZGQ3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMDUzOWU0OTAtZjYyYy00YmQzLThm MjgtYzg4ZWRhMjIwYzQ4LzA1MzllNDkwLWY2MmMtNGJkMy04ZjI4LWM4OGVkYTIy MGM0OC5jcmwwHwYDVR0jBBgwFoAU0ToQMzWxBhO5Z5LsPpF3qYEVn+cwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhl ZGEyMjBjNDguY2VyMIIBdwYIKwYBBQUHAQcBAf8EggFmMIIBYjCCAV4EAgABMIIB VgMEAz/YOAMEAT/YUjAMAwQBP9iOAwQCP9iQMAwDBAM/2JgDBAA/2JwwDAMEAz/Y qAMEAD/YsAMEAT/ZEAMEAT/ZGAMEAz/ZKAMEAD/ZOwMEAD/ZQgMEAj/ZSAMEAz/Z UAMEAj/ZeAMEAD/Z7QMEAD/Z/gMEAj/aAAMEAT/aCgMEAT/aEgMEAD/aKwMEAT/a OAMEAj/aPAMEAT/aTAMEAD/aazAMAwQBP9pyAwQBP9p0AwQBP9qQAwQCP9qcMAwD BAE/2qIDBAE/2qQDBAE/2q4DBAE/2swDBAE/2tIwDAMEAD/a1QMEAz/a0AMEAT/a 5AMEAT/a8AMEAT/a+AMEAj/a/AMEAj/bEAMEAz/cAAMEAz/diAMEAz/dmAMEAz/d yAMEAD/eBwMEAz/eEAMEAD/eLQMEAD/fEQMEAD/fFAMEAD/fHwMEAD/fIgMEAD/f LAMEBD/fwDBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEW LGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0G CSqGSIb3DQEBCwUAA4IBAQCNjxS16l5IYGoluAr2AT0mr18TuyOXQ6ePTDLN4xkx 87mV8MezgNTJNsyEnrp65S9X2eWYT97URoo9eE5NtuNSsGzf479Otz7pEpPGq8a/ tLWyvEfshBiXaTVo6CIjTtQWrvGhPFA4EPd6uiIV7JG5qwPEnn/SI/D3dLSZq7GX aL7k+/9lSXYtOK8ivv/+Dp+vSSarihw1xtT6UMB7hyW+xcHbZzDM+iqG0d2w4++w j7ZcO9twZkYBnJuquJmmFJwc3Sn1ZXlhFUN4lOxJqmijjHO2zzau2+8tv7AVuMOZ ie0nxMgfwCp/hZ8uKBdMFW1CObLKvsfUCNRvLm8Xk5x+ -----END CERTIFICATE-----Generated at Thu Nov 21 23:38:45 2024 by rpki-client on console-ams.rpki-client.org