$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa File: 2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa (raw, json) Hash identifier: kmqWQmJUPVv4ozYfa1bJS46y1ZoaMQTr6dtZH4fycH4= Subject key identifier: EB:38:D3:24:33:E3:62:4C:63:DC:87:9D:1C:72:AA:C3:00:00:C5:D6 Certificate issuer: /CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Certificate serial: 010D0C9F432858456C531D71C411A6E2CB2BF480 Authority key identifier: 6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa Signing time: Wed 03 Apr 2024 13:00:37 +0000 ROA not before: Wed 03 Apr 2024 13:00:37 +0000 ROA not after: Tue 02 Jul 2024 13:00:37 +0000 asID: 20473 IP address blocks: 136.228.0.0/19 maxlen: 32 139.60.200.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:45:6c:53:1d:71:c4:11:a6:e2:cb:2b:f4:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d02a52e5-2b71-4124-bd29-60e90e59f47d Validity Not Before: Apr 3 13:00:37 2024 GMT Not After : Jul 2 13:00:37 2024 GMT Subject: CN=1d10c1a4-7943-46a9-8361-9c5cdde01051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:35:a4:27:f4:4e:38:67:19:46:98:29:70:ec: c0:1b:77:f6:47:26:70:8a:4a:47:1c:a2:a0:6d:e3: b7:04:1e:a1:2f:3e:2b:09:c0:53:0f:bd:df:e5:d6: ee:91:85:5b:c3:00:ed:cd:f4:f4:df:4b:37:9b:2d: 45:b7:c1:c7:25:da:8f:03:8b:a4:d1:89:b3:f2:22: 57:e5:46:06:80:1a:05:52:78:0b:d7:43:e5:a5:da: 1b:ca:04:9c:cb:47:8f:87:06:88:61:5c:b9:34:5b: d8:eb:ba:81:8e:28:80:dc:5b:a3:7b:9c:c4:40:3c: 8e:3c:6e:7c:bc:e4:90:09:ab:8b:6f:66:c7:44:20: 22:dd:00:08:93:4a:4f:64:8c:69:2a:cb:76:65:dc: 2f:64:e3:48:f1:18:80:13:ab:02:9b:5b:11:cb:f2: 59:ec:19:ad:ba:9f:1f:69:e0:68:54:eb:95:3a:9e: 55:65:2d:01:c6:88:40:53:ac:b4:9e:35:25:d6:b2: fe:31:fc:70:7d:9b:1b:2b:f8:57:03:83:75:8e:0a: da:c3:2a:db:26:bc:c8:15:1e:3c:89:9f:78:5a:94: 1a:da:78:cb:8a:97:c4:05:a9:65:ee:f3:ab:b0:03: 74:b8:49:9e:99:e7:ef:73:b8:43:f1:f5:14:36:79: 08:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:38:D3:24:33:E3:62:4C:63:DC:87:9D:1C:72:AA:C3:00:00:C5:D6 Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/2b25c4ea-3c39-374d-a823-2d9361d79fe6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d/d02a52e5-2b71-4124-bd29-60e90e59f47d.crl X509v3 Authority Key Identifier: keyid:6A:E5:9B:C3:03:E7:53:F0:08:74:CD:E2:23:96:C3:24:7E:39:E7:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/d02a52e5-2b71-4124-bd29-60e90e59f47d.cer sbgp-ipAddrBlock: critical IPv4: 136.228.0.0/19 139.60.200.0/21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 01:19:e5:2b:82:cf:0e:b4:f9:b7:be:9f:5c:b6:f7:35:fc:b6: c9:cf:10:ee:df:d4:35:f3:37:c4:0b:2e:bf:84:24:44:d0:e3: 6b:49:0d:aa:79:97:a1:35:22:36:0f:50:0c:98:03:15:e1:2b: 4b:f0:fa:c1:0d:56:8f:ae:6e:d6:77:32:e2:7d:dd:25:66:4b: 5a:7b:ed:3a:f1:4d:d3:a7:d8:f0:7d:5e:05:71:8e:6d:21:ed: 1c:d4:2e:21:d0:f0:86:8d:5a:36:6f:6a:93:c8:3d:ce:a5:6f: 46:b1:62:e4:89:47:e0:0a:a3:f7:f9:1a:f1:f4:d7:5a:b6:eb: c1:24:04:ff:2d:7e:c7:29:47:3f:0c:53:65:94:22:71:63:94: 1e:64:3b:eb:59:4f:24:72:19:29:2f:70:e5:bd:c1:99:4c:e2: 25:97:f6:37:a7:dc:62:84:a2:13:f0:e7:b0:20:8a:db:cf:7c: 66:78:ea:fb:0a:21:0d:b2:c3:d9:37:20:2b:e5:d5:cc:b5:7e: 8a:3c:25:95:00:4e:5d:af:59:db:61:e7:72:f8:e8:0b:21:a2: 4d:19:75:a7:1a:b0:b9:fe:75:90:55:7c:d2:0c:20:7b:f3:ff: c1:f6:79:0e:1d:d9:7a:10:5f:f8:c1:6d:1b:44:82:0a:8f:d4: fe:3e:52:9a -----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIUAQ0Mn0MoWEVsUx1xxBGm4ssr9IAwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZDAyYTUyZTUtMmI3MS00MTI0LWJkMjktNjBlOTBlNTlm NDdkMB4XDTI0MDQwMzEzMDAzN1oXDTI0MDcwMjEzMDAzN1owLzEtMCsGA1UEAxMk MWQxMGMxYTQtNzk0My00NmE5LTgzNjEtOWM1Y2RkZTAxMDUxMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzWkJ/ROOGcZRpgpcOzAG3f2RyZwikpHHKKg beO3BB6hLz4rCcBTD73f5dbukYVbwwDtzfT030s3my1Ft8HHJdqPA4uk0Ymz8iJX 5UYGgBoFUngL10PlpdobygScy0ePhwaIYVy5NFvY67qBjiiA3Fuje5zEQDyOPG58 vOSQCauLb2bHRCAi3QAIk0pPZIxpKst2ZdwvZONI8RiAE6sCm1sRy/JZ7Bmtup8f aeBoVOuVOp5VZS0BxohAU6y0njUl1rL+MfxwfZsbK/hXA4N1jgrawyrbJrzIFR48 iZ94WpQa2njLipfEBall7vOrsAN0uEmemefvc7hD8fUUNnkIVwIDAQABo4IDWzCC A1cwHQYDVR0OBBYEFOs40yQz42JMY9yHnRxyqsMAAMXWMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJh NTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5MGU1OWY0N2QvMmIyNWM0ZWEtM2MzOS0z NzRkLWE4MjMtMmQ5MzYxZDc5ZmU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvZDAyYTUyZTUtMmI3MS00MTI0LWJk MjktNjBlOTBlNTlmNDdkL2QwMmE1MmU1LTJiNzEtNDEyNC1iZDI5LTYwZTkwZTU5 ZjQ3ZC5jcmwwHwYDVR0jBBgwFoAUauWbwwPnU/AIdM3iI5bDJH4557EwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz OS1hMmYzLTYyOTlhM2IwMmUyOS9kMDJhNTJlNS0yYjcxLTQxMjQtYmQyOS02MGU5 MGU1OWY0N2QuY2VyMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFiOQAAwQD izzIMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0 cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI hvcNAQELBQADggEBAAEZ5SuCzw60+be+n1y29zX8tsnPEO7f1DXzN8QLLr+EJETQ 42tJDap5l6E1IjYPUAyYAxXhK0vw+sENVo+ubtZ3MuJ93SVmS1p77TrxTdOn2PB9 XgVxjm0h7RzULiHQ8IaNWjZvapPIPc6lb0axYuSJR+AKo/f5GvH011q268EkBP8t fscpRz8MU2WUInFjlB5kO+tZTyRyGSkvcOW9wZlM4iWX9jen3GKEohPw57AgitvP fGZ46vsKIQ2yw9k3ICvl1cy1foo8JZUATl2vWdth53L46Ashok0ZdacasLn+dZBV fNIMIHvz/8H2eQ4d2XoQX/jBbRtEggqP1P4+Upo= -----END CERTIFICATE-----Generated at Thu Apr 18 05:42:52 2024 by rpki-client on console-fra.rpki-client.org