$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: ekl5R3sbP2KmBiWkxuXPsA4pPNOyvnRLdCQNDULb7Zk= Subject key identifier: 9D:A9:31:5E:6F:E3:F2:2A:78:C0:A2:5F:63:C9:B9:EA:54:F0:76:38 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 0B72149A37C8307CF83F9536F68013F1C49DE861 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS14618.roa Signing time: Wed 27 Nov 2024 07:55:22 +0000 ROA not before: Wed 27 Nov 2024 07:50:22 +0000 ROA not after: Wed 26 Nov 2025 07:55:22 +0000 asID: 14618 IP address blocks: 104.234.13.0/24 maxlen: 24 104.234.137.0/24 maxlen: 24 104.234.141.0/24 maxlen: 24 104.234.143.0/24 maxlen: 24 104.234.160.0/24 maxlen: 24 104.234.175.0/24 maxlen: 24 104.234.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 06:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:72:14:9a:37:c8:30:7c:f8:3f:95:36:f6:80:13:f1:c4:9d:e8:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Nov 27 07:50:22 2024 GMT Not After : Nov 26 07:55:22 2025 GMT Subject: CN=9DA9315E6FE3F22A78C0A25F63C9B9EA54F07638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1e:e1:4b:dd:f0:52:39:59:1e:b5:0d:c0:2e: a9:7b:4e:92:27:91:f4:9c:38:33:2d:6e:2e:7b:bd: ba:92:28:0a:dc:e5:b5:29:5f:48:13:c9:6c:d1:94: f2:2d:e0:a9:e8:3d:39:ab:d1:53:80:d2:4b:3b:10: 34:0a:90:ff:e7:f8:6a:73:93:0d:ce:bb:0d:ab:d3: 78:99:22:02:4c:57:ba:47:08:8c:28:e2:78:eb:15: 6b:60:19:e4:79:1d:2e:8b:5b:5b:e5:65:b1:f0:0b: 6e:cd:60:e7:4e:37:37:c7:f4:c9:be:7d:e8:42:f6: 37:99:91:ed:63:18:87:fd:6e:89:17:f4:54:a1:59: 0f:cf:6d:de:eb:07:3e:2c:e4:a7:91:16:60:fc:65: 63:9d:90:b6:f4:ca:52:8f:00:2e:0f:98:cf:57:0e: 54:a0:d2:ed:df:89:e3:0e:70:7f:76:2a:1e:0d:6c: d1:c9:5f:35:4f:81:2c:d3:1b:e4:24:04:92:c7:ef: 92:e6:53:50:ae:b6:52:86:84:ea:17:2f:b8:5f:6e: e4:30:68:72:bc:9f:45:42:40:29:f0:4e:d3:94:9d: a5:f1:3f:d8:d5:e0:58:29:b4:17:a0:01:59:0c:15: e8:56:71:aa:71:75:9f:73:cd:7e:90:66:f7:8f:72: a4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A9:31:5E:6F:E3:F2:2A:78:C0:A2:5F:63:C9:B9:EA:54:F0:76:38 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.13.0/24 104.234.137.0/24 104.234.141.0/24 104.234.143.0/24 104.234.160.0/24 104.234.175.0/24 104.234.187.0/24 Signature Algorithm: sha256WithRSAEncryption 40:ff:ca:a6:6b:82:5c:c8:f6:c6:ca:40:cb:49:29:29:f4:dc: 9b:d9:a4:06:2f:d2:7e:6c:4c:f3:b3:a3:6a:f5:71:c6:67:79: 96:66:df:4e:e2:0b:70:8c:bd:47:e9:f5:05:8c:e6:5b:6e:cd: 24:a8:6e:39:73:c2:36:03:be:9c:e9:54:f3:7c:3e:d6:11:1b: cb:e5:2c:89:22:24:d9:40:7e:56:c5:5b:07:a0:14:42:a1:75: 19:ec:06:89:1b:47:65:bc:73:b4:20:47:72:40:00:63:9b:65: 22:a0:08:53:69:94:df:ea:bc:ed:07:b7:4e:23:c6:e7:18:2e: 89:9b:43:03:63:63:87:1c:27:c4:75:66:69:f5:90:fd:d3:4c: 49:69:7e:6f:6c:7e:35:11:11:49:76:bc:52:a5:94:cf:90:2f: 2f:cc:93:70:bf:0a:b5:9a:1a:c6:f9:4d:2e:6d:11:be:ff:99: 9e:4e:3e:2d:02:20:58:62:1d:c2:33:98:d0:a8:3f:47:48:81: 3b:a5:56:10:30:52:db:b7:1e:97:f3:95:52:1d:e8:48:02:c5: 9f:2d:90:f1:8d:37:e2:d9:c1:ca:0d:ee:17:bf:33:28:b1:c8: ad:0d:17:95:ca:60:b6:4d:0e:e5:06:dc:5b:62:6d:dc:1f:3d: ee:20:98:dd -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgIUC3IUmjfIMHz4P5U29oAT8cSd6GEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjQxMTI3MDc1MDIyWhcNMjUxMTI2MDc1NTIy WjAzMTEwLwYDVQQDEyg5REE5MzE1RTZGRTNGMjJBNzhDMEEyNUY2M0M5QjlFQTU0 RjA3NjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxx7hS93wUjlZ HrUNwC6pe06SJ5H0nDgzLW4ue726kigK3OW1KV9IE8ls0ZTyLeCp6D05q9FTgNJL OxA0CpD/5/hqc5MNzrsNq9N4mSICTFe6RwiMKOJ46xVrYBnkeR0ui1tb5WWx8Atu zWDnTjc3x/TJvn3oQvY3mZHtYxiH/W6JF/RUoVkPz23e6wc+LOSnkRZg/GVjnZC2 9MpSjwAuD5jPVw5UoNLt34njDnB/dioeDWzRyV81T4Es0xvkJASSx++S5lNQrrZS hoTqFy+4X27kMGhyvJ9FQkAp8E7TlJ2l8T/Y1eBYKbQXoAFZDBXoVnGqcXWfc81+ kGb3j3KktwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJ2pMV5v4/IqeMCiX2PJuepU 8HY4MB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzE0NjE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMG CCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAaOoNAwQAaOqJAwQAaOqNAwQAaOqP AwQAaOqgAwQAaOqvAwQAaOq7MA0GCSqGSIb3DQEBCwUAA4IBAQBA/8qma4JcyPbG ykDLSSkp9Nyb2aQGL9J+bEzzs6Nq9XHGZ3mWZt9O4gtwjL1H6fUFjOZbbs0kqG45 c8I2A76c6VTzfD7WERvL5SyJIiTZQH5WxVsHoBRCoXUZ7AaJG0dlvHO0IEdyQABj m2UioAhTaZTf6rztB7dOI8bnGC6Jm0MDY2OHHCfEdWZp9ZD900xJaX5vbH41ERFJ drxSpZTPkC8vzJNwvwq1mhrG+U0ubRG+/5meTj4tAiBYYh3CM5jQqD9HSIE7pVYQ MFLbtx6X85VSHehIAsWfLZDxjTfi2cHKDe4XvzMoscitDReVymC2TQ7lBtxbYm3c Hz3uIJjd -----END CERTIFICATE-----Generated at Sun Feb 16 15:04:08 2025 by rpki-client