$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS23470.roa File: AS23470.roa (raw, json) Hash identifier: 37IwegAiClXdlDdypFrc1lCm+c0V3EaAeV6nQCEUbgY= Subject key identifier: 73:FD:28:0A:02:40:70:FA:4B:CB:64:74:C7:D4:04:D0:9E:D5:E2:90 Certificate issuer: /CN=ec93568485034d6f590126278015e55786765323f329d6aa05 Certificate serial: 02C81F5CF8F53F82A545B6778C27A20A4AAF666A Authority key identifier: BB:27:B3:7B:58:F0:56:06:E1:5F:52:CA:24:2E:A1:D4:FE:B6:B3:04 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/ec93568485034d6f590126278015e55786765323f329d6aa05.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS23470.roa Signing time: Tue 28 Jan 2025 10:28:26 +0000 ROA not before: Tue 28 Jan 2025 10:23:26 +0000 ROA not after: Tue 27 Jan 2026 10:28:26 +0000 asID: 23470 IP address blocks: 140.99.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/BB27B37B58F05606E15F52CA242EA1D4FEB6B304.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/BB27B37B58F05606E15F52CA242EA1D4FEB6B304.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/ec93568485034d6f590126278015e55786765323f329d6aa05.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/c556b910-dc6c-4228-adf3-8828ac96ee60.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/c556b910-dc6c-4228-adf3-8828ac96ee60.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c8:1f:5c:f8:f5:3f:82:a5:45:b6:77:8c:27:a2:0a:4a:af:66:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ec93568485034d6f590126278015e55786765323f329d6aa05 Validity Not Before: Jan 28 10:23:26 2025 GMT Not After : Jan 27 10:28:26 2026 GMT Subject: CN=73FD280A024070FA4BCB6474C7D404D09ED5E290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0d:27:d9:23:e6:3b:07:1f:7c:9a:1f:30:60: ff:c1:a1:18:85:b5:9d:07:37:45:75:64:0b:10:50: f1:bc:96:0c:c6:95:ee:a9:a8:8b:b2:49:bb:78:73: fd:6f:8c:1d:4b:df:ab:b6:85:6c:8c:12:14:78:b7: cf:f2:d1:0b:fe:4b:d7:81:a4:f4:dd:d9:84:ef:3b: 4f:a9:b2:a1:c2:85:e6:7d:0e:c3:db:35:5b:6f:76: 54:38:6c:36:d2:44:e0:b7:41:69:46:40:73:5f:91: a6:25:a5:d3:e1:c4:cb:e5:b8:c0:fb:e1:3a:41:70: 75:27:58:8f:c2:cc:36:79:9d:cb:a5:73:6d:9e:39: 43:d5:ef:b0:e2:b7:10:65:e3:65:aa:08:97:de:26: 35:aa:36:2c:52:4f:37:ac:da:c0:23:91:5b:22:01: 68:f2:6d:27:2d:1d:08:1b:5c:04:f1:74:eb:44:08: bc:b2:51:5c:57:7a:f1:f5:48:f3:f3:d8:9d:a5:0a: 06:c8:81:ea:df:e7:ea:aa:ce:05:6d:b5:0a:aa:06: ee:16:59:1b:ea:d4:36:ef:39:77:f9:34:28:93:08: 92:7a:d7:a6:14:57:10:b7:bf:51:78:46:f1:64:b5: 54:9e:cc:c0:29:08:5b:ac:99:f3:74:3d:77:cc:44: 0e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FD:28:0A:02:40:70:FA:4B:CB:64:74:C7:D4:04:D0:9E:D5:E2:90 X509v3 Authority Key Identifier: keyid:BB:27:B3:7B:58:F0:56:06:E1:5F:52:CA:24:2E:A1:D4:FE:B6:B3:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/BB27B37B58F05606E15F52CA242EA1D4FEB6B304.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/ec93568485034d6f590126278015e55786765323f329d6aa05.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS23470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.99.223.0/24 Signature Algorithm: sha256WithRSAEncryption 87:94:ab:77:32:70:7c:9e:b2:b5:d4:a0:28:52:d3:0c:c6:94: 4f:5f:6c:7d:87:14:09:89:48:01:86:79:de:32:a7:c9:91:60: ac:1b:7b:07:26:b9:66:ce:d4:58:3f:03:81:6f:78:4f:2d:b9: 31:7b:05:e2:ac:00:61:63:56:f6:6e:e3:37:f7:16:3e:58:6a: 27:04:77:fc:e3:6d:99:e0:42:d8:c3:d8:98:33:43:f5:be:59: a8:29:84:bf:66:36:b1:f5:66:ad:8f:70:e9:68:e5:cd:c3:83: 68:79:8a:02:b2:34:b6:96:a6:43:d0:56:2e:92:b2:fb:bd:d5: 56:7c:a9:15:63:4d:ac:b4:98:76:d3:91:ee:44:04:fc:b8:3d: 03:45:5f:2b:ce:57:69:e0:5b:83:e2:98:0c:c8:39:b2:ac:98: f5:59:de:ff:1c:fb:42:e1:5b:da:79:0a:66:88:da:65:4c:3f: 6a:0a:a9:4b:bd:8c:47:04:d0:28:51:d9:68:7d:da:ea:e6:59: 58:6a:d6:a3:76:ad:f3:62:3f:1e:8c:fe:55:ce:e8:ea:b0:36: 57:63:c9:dc:ed:68:62:45:d1:33:e1:db:bb:12:c5:6c:96:bd: 29:0f:fe:d1:b6:cc:a2:3d:09:43:6b:05:22:69:41:43:21:d2: 96:d9:23:48 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUAsgfXPj1P4KlRbZ3jCeiCkqvZmowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZWM5MzU2ODQ4NTAzNGQ2ZjU5MDEyNjI3ODAxNWU1NTc4 Njc2NTMyM2YzMjlkNmFhMDUwHhcNMjUwMTI4MTAyMzI2WhcNMjYwMTI3MTAyODI2 WjAzMTEwLwYDVQQDEyg3M0ZEMjgwQTAyNDA3MEZBNEJDQjY0NzRDN0Q0MDREMDlF RDVFMjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQ0n2SPmOwcf fJofMGD/waEYhbWdBzdFdWQLEFDxvJYMxpXuqaiLskm7eHP9b4wdS9+rtoVsjBIU eLfP8tEL/kvXgaT03dmE7ztPqbKhwoXmfQ7D2zVbb3ZUOGw20kTgt0FpRkBzX5Gm JaXT4cTL5bjA++E6QXB1J1iPwsw2eZ3LpXNtnjlD1e+w4rcQZeNlqgiX3iY1qjYs Uk83rNrAI5FbIgFo8m0nLR0IG1wE8XTrRAi8slFcV3rx9Ujz89idpQoGyIHq3+fq qs4FbbUKqgbuFlkb6tQ27zl3+TQokwiSetemFFcQt79ReEbxZLVUnszAKQhbrJnz dD13zEQOdQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFHP9KAoCQHD6S8tkdMfUBNCe 1eKQMB8GA1UdIwQYMBaAFLsns3tY8FYG4V9SyiQuodT+trMEMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTgzN2ZkMGRmMGE3MGM4LzAv QkIyN0IzN0I1OEYwNTYwNkUxNUY1MkNBMjQyRUExRDRGRUI2QjMwNC5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3 ZTk3MWFjL2M1NTZiOTEwLWRjNmMtNDIyOC1hZGYzLTg4MjhhYzk2ZWU2MC9lYzkz NTY4NDg1MDM0ZDZmNTkwMTI2Mjc4MDE1ZTU1Nzg2NzY1MzIzZjMyOWQ2YWEwNS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODM3ZmQwZGYw YTcwYzgvMC9BUzIzNDcwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjGPfMA0GCSqGSIb3DQEBCwUAA4IB AQCHlKt3MnB8nrK11KAoUtMMxpRPX2x9hxQJiUgBhnneMqfJkWCsG3sHJrlmztRY PwOBb3hPLbkxewXirABhY1b2buM39xY+WGonBHf8422Z4ELYw9iYM0P1vlmoKYS/ Zjax9Watj3DpaOXNw4NoeYoCsjS2lqZD0FYukrL7vdVWfKkVY02stJh205HuRAT8 uD0DRV8rzldp4FuD4pgMyDmyrJj1Wd7/HPtC4VvaeQpmiNplTD9qCqlLvYxHBNAo Udlofdrq5llYatajdq3zYj8ejP5VzujqsDZXY8nc7WhiRdEz4du7EsVslr0pD/7R tsyiPQlDawUiaUFDIdKW2SNI -----END CERTIFICATE-----Generated at Sun Apr 6 07:08:06 2025 by rpki-client