$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: luRZOiEuk3UzQaIjZzmJLG9YEO1P1PbDXgdQ80IQ02g= Subject key identifier: 59:70:D8:95:42:8A:81:03:2C:14:E8:4F:37:D2:7C:92:B2:90:DB:DF Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 764356337145B3CD7B15DC9B0D6118A7BD5055D0 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa Signing time: Wed 31 Jan 2024 11:12:55 +0000 ROA not before: Wed 31 Jan 2024 11:07:55 +0000 ROA not after: Wed 29 Jan 2025 11:12:55 +0000 asID: 21859 IP address blocks: 104.234.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 09:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:43:56:33:71:45:b3:cd:7b:15:dc:9b:0d:61:18:a7:bd:50:55:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Jan 31 11:07:55 2024 GMT Not After : Jan 29 11:12:55 2025 GMT Subject: CN=5970D895428A81032C14E84F37D27C92B290DBDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:bb:fd:62:d0:2e:05:62:7d:a0:31:35:eb:3f: 56:98:68:06:74:44:69:3c:50:60:d5:e7:c5:32:31: 86:d6:cd:13:eb:23:e3:74:54:31:43:1e:ce:14:22: 5c:b9:fe:14:6d:13:8d:98:ff:eb:fa:39:bf:09:92: 7b:3c:6b:2c:83:16:82:45:5e:71:b7:04:e7:e0:72: 72:6c:f4:b4:75:2a:6e:61:f1:a3:d4:01:ff:b3:13: e9:a2:b2:7e:6f:fa:a7:66:35:22:26:7d:f8:5e:a9: 81:89:53:e3:5c:8b:29:82:5d:58:43:53:02:99:77: 5c:c9:cb:b9:37:73:7f:8a:3c:26:f7:71:c8:44:90: 36:ad:95:56:1a:99:9f:ee:0b:47:e4:c4:95:45:d1: 84:66:c4:15:f2:c3:d2:3c:0b:0e:d5:d4:1c:1c:bd: 57:af:f7:95:07:82:3e:58:38:77:cb:af:80:df:c7: 14:d2:bc:9e:a0:53:03:db:f5:3f:21:74:11:81:7b: 89:1a:91:fe:ce:5b:44:f4:05:1d:0f:c5:6f:f9:3e: 17:b4:d8:39:ee:01:ea:b5:91:f0:08:c2:b1:ad:00: 59:ad:6e:3b:00:dd:95:6b:1f:ad:c8:be:4e:00:f2: 4d:cc:f0:5e:6e:ae:80:e7:ed:a8:60:38:f9:fb:28: b9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:70:D8:95:42:8A:81:03:2C:14:E8:4F:37:D2:7C:92:B2:90:DB:DF X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.18.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:78:34:27:47:f6:b0:d6:a6:96:cb:38:d7:7c:04:18:76:28: 32:cc:d3:c5:04:1b:1f:ee:a4:e5:1d:51:34:e2:3e:9c:d6:a3: 24:ef:9c:61:99:a7:a7:9d:03:ab:53:2b:fb:34:d1:28:66:08: 75:f2:78:ca:25:e4:5b:8b:cf:ac:cd:63:b7:1b:0d:01:4c:c8: 61:a4:c9:a3:88:c1:d5:29:69:83:19:a1:1d:cb:61:fd:d9:fd: 0c:8c:7f:79:5c:0f:cb:48:58:01:dc:e6:fc:f3:b1:5f:3e:14: 57:59:19:89:93:fa:b5:b9:3c:8c:c6:ea:e9:e0:f0:e1:20:d5: 80:7a:2e:3b:cd:68:78:87:d6:d6:1f:6d:70:ba:07:da:9d:4b: ab:da:20:dd:2f:26:c9:68:df:4b:27:21:3a:7f:cd:5a:51:d1: 00:f9:37:c8:60:d9:8a:57:71:57:4d:ae:24:89:9e:a0:b1:be: 0d:c9:de:81:ec:39:79:0c:dc:e8:33:cd:b7:ae:44:36:2c:9d: 81:ae:1a:59:a0:98:f6:d4:dc:e0:c5:25:85:60:97:85:16:1f: 75:bb:e8:1d:06:75:a5:ec:06:c7:99:c3:79:a9:12:41:9d:e6: ee:59:c4:f8:42:da:7c:2e:d1:80:a1:53:fc:05:84:03:87:dc: a2:74:dd:ad -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUdkNWM3FFs817FdybDWEYp71QVdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjQwMTMxMTEwNzU1WhcNMjUwMTI5MTExMjU1 WjAzMTEwLwYDVQQDEyg1OTcwRDg5NTQyOEE4MTAzMkMxNEU4NEYzN0QyN0M5MkIy OTBEQkRGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+Lv9YtAuBWJ9 oDE16z9WmGgGdERpPFBg1efFMjGG1s0T6yPjdFQxQx7OFCJcuf4UbRONmP/r+jm/ CZJ7PGssgxaCRV5xtwTn4HJybPS0dSpuYfGj1AH/sxPporJ+b/qnZjUiJn34XqmB iVPjXIspgl1YQ1MCmXdcycu5N3N/ijwm93HIRJA2rZVWGpmf7gtH5MSVRdGEZsQV 8sPSPAsO1dQcHL1Xr/eVB4I+WDh3y6+A38cU0ryeoFMD2/U/IXQRgXuJGpH+zltE 9AUdD8Vv+T4XtNg57gHqtZHwCMKxrQBZrW47AN2Vax+tyL5OAPJNzPBebq6A5+2o YDj5+yi5XQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFFlw2JVCioEDLBToTzfSfJKy kNvfMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzIxODU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBaOoSMA0GCSqGSIb3DQEBCwUAA4IB AQCdeDQnR/aw1qaWyzjXfAQYdigyzNPFBBsf7qTlHVE04j6c1qMk75xhmaennQOr Uyv7NNEoZgh18njKJeRbi8+szWO3Gw0BTMhhpMmjiMHVKWmDGaEdy2H92f0MjH95 XA/LSFgB3Ob887FfPhRXWRmJk/q1uTyMxurp4PDhINWAei47zWh4h9bWH21wugfa nUur2iDdLybJaN9LJyE6f81aUdEA+TfIYNmKV3FXTa4kiZ6gsb4Nyd6B7Dl5DNzo M823rkQ2LJ2BrhpZoJj21NzgxSWFYJeFFh91u+gdBnWl7AbHmcN5qRJBnebuWcT4 Qtp8LtGAoVP8BYQDh9yidN2t -----END CERTIFICATE-----Generated at Thu May 2 08:02:19 2024 by rpki-client on console-ams.rpki-client.org