$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: 5UEWNgFjHQOYMJtUA5A9U7ezmPqi3VCplVTNmo7cAgk= Subject key identifier: B0:20:BC:25:46:E2:7F:DD:F7:BC:01:54:B0:56:3F:29:D3:3A:BD:A5 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 0D3A38E8EDE48FED6E0813C3E3EA0A59C6538233 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa Signing time: Tue 12 Nov 2024 09:11:42 +0000 ROA not before: Tue 12 Nov 2024 09:06:42 +0000 ROA not after: Tue 11 Nov 2025 09:11:42 +0000 asID: 21859 IP address blocks: 104.234.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 22:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:3a:38:e8:ed:e4:8f:ed:6e:08:13:c3:e3:ea:0a:59:c6:53:82:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Nov 12 09:06:42 2024 GMT Not After : Nov 11 09:11:42 2025 GMT Subject: CN=B020BC2546E27FDDF7BC0154B0563F29D33ABDA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:81:f7:28:a4:ac:95:15:51:12:b7:8f:04:9b: cb:e7:8d:74:d1:a6:ba:7a:a5:b5:68:7b:ea:71:63: 4e:9e:9d:58:a9:1f:b9:1f:f4:4d:f4:bd:56:f6:00: de:eb:5e:36:c8:70:f7:d6:81:a7:7e:21:3f:4b:7f: b3:0e:e9:70:43:ba:dc:87:e5:b1:7e:09:47:47:f2: c5:f4:1d:72:39:6c:88:5c:b9:7e:e1:eb:45:a6:92: d2:bd:67:5a:d9:c2:78:89:da:5c:2e:a1:08:3e:c9: 0c:2f:d5:81:39:3a:e8:bf:c2:de:c8:b2:f3:45:82: ca:33:aa:2d:c0:e4:eb:d4:ff:75:07:6b:d0:3e:f5: 67:34:19:ee:33:c8:28:2f:55:fb:e3:d8:90:ae:2a: 50:8c:7b:5e:81:6c:32:6e:99:6d:de:31:5e:44:be: 31:7d:44:03:2e:b2:03:34:30:0c:1f:d4:88:11:10: b8:b1:f0:0c:24:7e:46:15:55:37:50:86:20:3c:c2: 58:0c:34:81:98:ce:e6:71:3d:67:b6:e1:aa:3d:fa: 25:a5:34:54:f8:8a:41:73:66:01:e5:60:9b:94:fe: 11:56:bf:eb:a4:dc:79:d6:f6:81:08:a9:60:af:7f: 63:48:6e:82:61:f4:d9:94:52:6b:bf:00:85:45:5f: 8e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:20:BC:25:46:E2:7F:DD:F7:BC:01:54:B0:56:3F:29:D3:3A:BD:A5 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.28.0/24 Signature Algorithm: sha256WithRSAEncryption aa:2a:47:8b:50:10:9b:62:1c:73:0d:cb:01:fa:4a:f8:01:d6: 73:99:80:4e:83:1b:64:c1:33:e4:28:75:f5:13:18:8c:fd:a4: a9:42:55:50:90:55:5d:70:4c:64:e7:03:ed:a3:cb:6c:a0:ad: a2:0d:1c:57:82:8c:61:7d:80:68:2b:63:ee:51:fe:3b:77:fc: 4a:09:09:8a:19:3f:8d:ef:df:a4:96:ac:38:69:eb:7c:57:7d: 9f:b5:cc:4b:e8:f7:5d:e3:50:c6:39:01:b9:25:65:15:f0:f3: a9:a0:fb:13:8d:55:be:ed:0f:57:88:b7:0c:73:8b:5d:a7:2a: 7c:34:3d:8b:ba:6f:41:cc:65:6e:b5:50:25:98:9b:b9:1b:37: 67:dd:81:ff:7f:7a:83:95:32:2a:b8:69:16:52:e2:9b:c3:24: f1:19:f9:58:f2:6e:18:40:88:f1:22:5c:00:e6:eb:c9:65:df: 86:43:bd:33:a2:13:4c:60:ff:ca:24:8a:2e:1f:07:35:20:e1: 37:11:2c:d6:81:c5:4f:a9:2b:02:7a:10:bf:89:8f:ad:06:3e: 86:4f:4d:e7:32:5f:1b:cd:e8:e1:19:fb:f1:2b:b2:a2:67:65: d9:62:d6:60:70:a6:d4:ee:b9:fc:7b:09:35:e5:3f:99:18:da: d3:d8:61:c7 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUDTo46O3kj+1uCBPD4+oKWcZTgjMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjQxMTEyMDkwNjQyWhcNMjUxMTExMDkxMTQy WjAzMTEwLwYDVQQDEyhCMDIwQkMyNTQ2RTI3RkRERjdCQzAxNTRCMDU2M0YyOUQz M0FCREE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYH3KKSslRVR ErePBJvL54100aa6eqW1aHvqcWNOnp1YqR+5H/RN9L1W9gDe6142yHD31oGnfiE/ S3+zDulwQ7rch+WxfglHR/LF9B1yOWyIXLl+4etFppLSvWda2cJ4idpcLqEIPskM L9WBOTrov8LeyLLzRYLKM6otwOTr1P91B2vQPvVnNBnuM8goL1X749iQripQjHte gWwybplt3jFeRL4xfUQDLrIDNDAMH9SIERC4sfAMJH5GFVU3UIYgPMJYDDSBmM7m cT1ntuGqPfolpTRU+IpBc2YB5WCblP4RVr/rpNx51vaBCKlgr39jSG6CYfTZlFJr vwCFRV+OTQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFLAgvCVG4n/d97wBVLBWPynT Or2lMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzIxODU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAaOocMA0GCSqGSIb3DQEBCwUAA4IB AQCqKkeLUBCbYhxzDcsB+kr4AdZzmYBOgxtkwTPkKHX1ExiM/aSpQlVQkFVdcExk 5wPto8tsoK2iDRxXgoxhfYBoK2PuUf47d/xKCQmKGT+N79+klqw4aet8V32ftcxL 6Pdd41DGOQG5JWUV8POpoPsTjVW+7Q9XiLcMc4tdpyp8ND2Lum9BzGVutVAlmJu5 Gzdn3YH/f3qDlTIquGkWUuKbwyTxGflY8m4YQIjxIlwA5uvJZd+GQ70zohNMYP/K JIouHwc1IOE3ESzWgcVPqSsCehC/iY+tBj6GT03nMl8bzejhGfvxK7KiZ2XZYtZg cKbU7rn8ewk15T+ZGNrT2GHH -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:20 2024 by rpki-client on console-fra.rpki-client.org