$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS20473.roa File: AS20473.roa (raw, json) Hash identifier: fXR4v/F0puQID8K9VOJAEpIdv4IeIEtnlsSXo9j+I7k= Subject key identifier: 18:04:2B:DE:71:0A:A2:F2:F1:73:71:05:36:B0:46:1B:61:4B:B1:D3 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 5F936F96A1CFE5FBCF8187BF3A868D60F70A3BB2 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS20473.roa Signing time: Sat 06 Apr 2024 10:00:23 +0000 ROA not before: Sat 06 Apr 2024 09:55:23 +0000 ROA not after: Sat 05 Apr 2025 10:00:23 +0000 asID: 20473 IP address blocks: 98.142.241.0/24 maxlen: 24 104.234.94.0/24 maxlen: 24 104.234.95.0/24 maxlen: 24 104.234.150.0/24 maxlen: 24 104.234.193.0/24 maxlen: 24 104.234.226.0/24 maxlen: 24 104.234.242.0/24 maxlen: 24 206.53.50.0/24 maxlen: 24 206.53.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 08 May 2024 09:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:93:6f:96:a1:cf:e5:fb:cf:81:87:bf:3a:86:8d:60:f7:0a:3b:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Apr 6 09:55:23 2024 GMT Not After : Apr 5 10:00:23 2025 GMT Subject: CN=18042BDE710AA2F2F173710536B0461B614BB1D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:22:83:89:30:4c:a1:18:57:5a:04:e0:b6:ac: a2:1c:ba:a0:01:ce:54:19:5d:53:38:6a:65:4f:c0: 28:85:ba:a0:80:dd:06:eb:78:81:e1:de:11:52:2f: e6:5a:d0:a5:d2:5d:2d:e5:9d:ce:a1:46:6c:80:d4: 1c:a6:b8:89:77:28:f5:da:05:30:88:dc:0c:51:1b: 6e:35:5b:1e:d1:6a:2c:01:0d:7f:d8:54:f6:f5:f4: d9:0e:e5:5d:a4:80:a2:ce:2c:bb:7b:c4:03:3d:ef: 89:9c:8d:24:7c:d3:84:e1:e8:6a:5a:79:aa:56:cd: bf:5c:9a:dd:fe:7b:bd:8a:cc:95:79:d4:a2:7c:ab: 22:96:68:2b:a3:40:84:6a:a0:88:eb:2d:cf:ad:54: d5:94:45:7f:1c:66:59:d9:df:ce:f8:cb:ee:7c:e6: 4f:47:da:97:0f:51:d2:46:52:ed:a6:ce:fe:78:32: bd:28:8e:50:02:9f:86:13:e4:78:ee:18:98:fd:bf: c1:f1:f0:ed:de:df:3f:8a:05:1d:bb:c5:50:6d:39: 48:d7:67:ca:68:fc:0b:85:44:ba:26:c0:4e:dd:7a: 12:45:19:d3:b5:8a:2a:e0:b4:f2:64:a2:0f:58:7e: 25:a9:04:64:59:42:8e:f0:a0:7a:0a:df:b9:18:65: 4e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:04:2B:DE:71:0A:A2:F2:F1:73:71:05:36:B0:46:1B:61:4B:B1:D3 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS20473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.142.241.0/24 104.234.94.0/23 104.234.150.0/24 104.234.193.0/24 104.234.226.0/24 104.234.242.0/24 206.53.50.0/24 206.53.56.0/24 Signature Algorithm: sha256WithRSAEncryption c5:c5:12:d8:cf:ca:6a:72:cb:ea:6a:77:1b:dc:80:9c:e0:00: 26:64:ed:d9:40:d3:e6:0c:5b:86:11:53:f0:7b:de:7a:fa:f3: de:24:39:c8:47:fe:18:e5:cf:f5:9e:9a:8f:f5:1b:90:56:b1: 66:c1:85:23:a7:fc:ab:b8:38:0e:3d:ef:3c:c4:54:fe:7b:3c: dc:d7:4f:0d:ca:be:e9:87:9b:41:e9:ec:69:ed:5e:62:50:50: 90:aa:30:a9:ac:f8:fe:df:7e:fe:fb:da:57:3c:ab:b4:18:29: f0:9e:94:37:71:29:f1:d5:88:c1:e6:6e:df:95:d4:3c:5e:62: a3:61:a4:75:7d:58:12:a7:a5:a6:fb:70:3b:10:4a:48:8f:c2: 2d:cc:ae:86:52:fe:42:e7:36:dc:7f:5c:47:ab:aa:72:f9:f0: 2b:f0:45:f2:63:14:4a:c6:4a:e3:ae:a5:d8:75:59:b1:fd:a7: e3:b0:42:79:5d:b6:37:64:03:9a:5a:47:74:b1:1b:95:b0:30: 34:d0:d2:12:a8:57:3c:57:a6:31:c8:27:4e:9d:5f:d8:c5:66: 07:09:ff:88:6b:da:e5:a1:63:c2:bc:ed:ec:5b:cc:91:9b:09: 09:2f:56:b6:f8:bd:8f:b0:67:a7:cc:19:1c:be:48:0f:59:75: ae:67:13:c4 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgIUX5NvlqHP5fvPgYe/OoaNYPcKO7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjQwNDA2MDk1NTIzWhcNMjUwNDA1MTAwMDIz WjAzMTEwLwYDVQQDEygxODA0MkJERTcxMEFBMkYyRjE3MzcxMDUzNkIwNDYxQjYx NEJCMUQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CKDiTBMoRhX WgTgtqyiHLqgAc5UGV1TOGplT8AohbqggN0G63iB4d4RUi/mWtCl0l0t5Z3OoUZs gNQcpriJdyj12gUwiNwMURtuNVse0WosAQ1/2FT29fTZDuVdpICiziy7e8QDPe+J nI0kfNOE4ehqWnmqVs2/XJrd/nu9isyVedSifKsilmgro0CEaqCI6y3PrVTVlEV/ HGZZ2d/O+MvufOZPR9qXD1HSRlLtps7+eDK9KI5QAp+GE+R47hiY/b/B8fDt3t8/ igUdu8VQbTlI12fKaPwLhUS6JsBO3XoSRRnTtYoq4LTyZKIPWH4lqQRkWUKO8KB6 Ct+5GGVO6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgEK95xCqLy8XNxBTawRhth S7HTMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzIwNDczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEkG CCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAYo7xAwQBaOpeAwQAaOqWAwQAaOrB AwQAaOriAwQAaOryAwQAzjUyAwQAzjU4MA0GCSqGSIb3DQEBCwUAA4IBAQDFxRLY z8pqcsvqancb3ICc4AAmZO3ZQNPmDFuGEVPwe956+vPeJDnIR/4Y5c/1npqP9RuQ VrFmwYUjp/yruDgOPe88xFT+ezzc108Nyr7ph5tB6exp7V5iUFCQqjCprPj+337+ +9pXPKu0GCnwnpQ3cSnx1YjB5m7fldQ8XmKjYaR1fVgSp6Wm+3A7EEpIj8ItzK6G Uv5C5zbcf1xHq6py+fAr8EXyYxRKxkrjrqXYdVmx/afjsEJ5XbY3ZAOaWkd0sRuV sDA00NISqFc8V6YxyCdOnV/YxWYHCf+Ia9rloWPCvO3sW8yRmwkJL1a2+L2PsGen zBkcvkgPWXWuZxPE -----END CERTIFICATE-----Generated at Tue May 7 07:12:31 2024 by rpki-client on console-ams.rpki-client.org