$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS153509.roa File: AS153509.roa (raw, json) Hash identifier: Na/FnFkB28hls45QBOMiFnW+K3ra1G9APJmVtMeYA74= Subject key identifier: 05:3B:FA:3B:3F:64:EF:65:47:F5:AD:40:3C:98:E9:AD:46:59:07:40 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 4CA8BAE9B5F859CD96AAE784830CB47DB4D8EFCB Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS153509.roa Signing time: Sun 12 Jan 2025 11:56:05 +0000 ROA not before: Sun 12 Jan 2025 11:51:05 +0000 ROA not after: Sun 11 Jan 2026 11:56:05 +0000 asID: 153509 IP address blocks: 104.234.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Feb 2025 09:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:a8:ba:e9:b5:f8:59:cd:96:aa:e7:84:83:0c:b4:7d:b4:d8:ef:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Jan 12 11:51:05 2025 GMT Not After : Jan 11 11:56:05 2026 GMT Subject: CN=053BFA3B3F64EF6547F5AD403C98E9AD46590740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:4f:78:69:32:27:02:1c:16:87:97:3e:bb:61: 9f:4a:97:5a:a4:c7:8a:a8:82:8e:2e:78:cf:18:74: bb:99:80:7f:70:69:85:85:e7:07:af:31:5a:a4:69: 40:79:60:75:4f:9c:f0:fd:f7:bd:26:f6:69:d4:34: 6b:a3:b1:6a:03:1c:a4:81:db:dc:5e:34:34:e5:12: b2:96:30:22:69:19:84:a0:21:b3:77:46:7e:1e:b8: 80:2d:77:c3:01:2d:6d:68:22:7b:ac:76:c8:92:a2: 5b:14:9c:c5:b6:94:6d:8f:0e:cf:45:2a:dd:6e:b1: 6e:c4:13:12:c2:ed:a7:49:07:4d:3e:ee:36:64:f7: 57:09:84:33:19:5c:79:a9:2a:fc:16:9f:f0:5a:12: 66:b9:e1:78:eb:f9:a4:ed:a2:64:07:80:61:2d:73: c4:00:74:1a:c4:87:a5:1d:1e:d3:1a:9d:9f:88:85: 21:e8:cd:cf:5b:b2:c8:84:c2:33:1f:22:db:c4:22: 59:f9:07:89:ed:cf:d3:7c:ad:c6:1f:fb:00:05:89: c7:22:47:e5:08:3e:b8:15:d1:6c:0f:b1:ae:fc:bc: f5:72:90:4e:21:f7:65:a0:f5:87:8d:e5:74:a9:41: e3:0c:43:af:d5:0f:49:c8:65:ce:17:71:4d:ea:07: cb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3B:FA:3B:3F:64:EF:65:47:F5:AD:40:3C:98:E9:AD:46:59:07:40 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS153509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.133.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:0a:96:bd:47:7a:86:9f:5a:dd:d7:1b:87:a7:e8:b7:6e:a4: 1e:71:74:da:11:7c:cf:07:56:58:c0:69:b6:a2:03:22:04:50: 18:d7:d0:ef:23:fd:6b:64:3e:2d:33:f1:3a:91:ad:5b:e1:15: 06:22:f6:b2:bd:83:5b:17:e4:5a:f5:a1:40:58:00:8d:de:16: b0:f8:64:08:bc:54:01:92:37:ee:b9:aa:cd:9e:74:12:16:48: 33:87:36:7e:d6:81:4d:b1:ce:94:ab:48:b0:92:7a:d5:74:b9: 30:0f:3f:9e:5e:69:35:f8:6d:a8:aa:81:14:ac:23:80:90:bb: 2a:f4:e8:0e:48:84:76:8e:d6:9d:5b:81:f1:a3:cb:f7:96:9e: 44:c9:ad:2f:78:30:e5:53:ac:1d:91:af:1a:6c:f8:e3:75:f3: 96:2d:4a:19:e6:e1:23:66:77:7a:5a:54:77:8d:85:4a:0e:91: 0c:28:24:54:7c:a5:64:3c:f6:79:de:35:04:4b:34:5b:c9:4a: a4:f4:67:72:34:bb:42:2c:43:2c:9e:01:cd:cc:14:3f:a6:f0: 6e:d1:6f:f2:69:70:21:18:ad:49:b4:50:29:34:74:01:14:6e: 1f:f4:67:4f:19:71:93:f9:72:2d:0b:56:21:ba:3e:16:4b:f7: aa:08:e9:36 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIUTKi66bX4Wc2WqueEgwy0fbTY78swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjUwMTEyMTE1MTA1WhcNMjYwMTExMTE1NjA1 WjAzMTEwLwYDVQQDEygwNTNCRkEzQjNGNjRFRjY1NDdGNUFENDAzQzk4RTlBRDQ2 NTkwNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7094aTInAhwW h5c+u2GfSpdapMeKqIKOLnjPGHS7mYB/cGmFhecHrzFapGlAeWB1T5zw/fe9JvZp 1DRro7FqAxykgdvcXjQ05RKyljAiaRmEoCGzd0Z+HriALXfDAS1taCJ7rHbIkqJb FJzFtpRtjw7PRSrdbrFuxBMSwu2nSQdNPu42ZPdXCYQzGVx5qSr8Fp/wWhJmueF4 6/mk7aJkB4BhLXPEAHQaxIelHR7TGp2fiIUh6M3PW7LIhMIzHyLbxCJZ+QeJ7c/T fK3GH/sABYnHIkflCD64FdFsD7Gu/Lz1cpBOIfdloPWHjeV0qUHjDEOv1Q9JyGXO F3FN6gfLAQIDAQABo4ICfzCCAnswHQYDVR0OBBYEFAU7+js/ZO9lR/WtQDyY6a1G WQdAMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzE1MzUwOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGjqhTANBgkqhkiG9w0BAQsFAAOC AQEAnAqWvUd6hp9a3dcbh6fot26kHnF02hF8zwdWWMBptqIDIgRQGNfQ7yP9a2Q+ LTPxOpGtW+EVBiL2sr2DWxfkWvWhQFgAjd4WsPhkCLxUAZI37rmqzZ50EhZIM4c2 ftaBTbHOlKtIsJJ61XS5MA8/nl5pNfhtqKqBFKwjgJC7KvToDkiEdo7WnVuB8aPL 95aeRMmtL3gw5VOsHZGvGmz443Xzli1KGebhI2Z3elpUd42FSg6RDCgkVHylZDz2 ed41BEs0W8lKpPRncjS7QixDLJ4BzcwUP6bwbtFv8mlwIRitSbRQKTR0ARRuH/Rn Txlxk/lyLQtWIbo+Fkv3qgjpNg== -----END CERTIFICATE-----Generated at Wed Feb 5 08:57:21 2025 by rpki-client