$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS398465.roa File: AS398465.roa (raw, json) Hash identifier: sBFPJ2rf9GNIUbg14eTyqPNRFtWVM54P5zPWdof5HXU= Subject key identifier: 7A:F5:C6:CC:07:96:5D:4F:C4:FA:5C:CB:63:B6:40:1D:9E:22:CD:CE Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 648E28A8C003F25941110961BF1431BAABDC85FD Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS398465.roa Signing time: Fri 01 Mar 2024 10:05:52 +0000 ROA not before: Fri 01 Mar 2024 10:00:52 +0000 ROA not after: Fri 28 Feb 2025 10:05:52 +0000 asID: 398465 IP address blocks: 104.234.38.0/24 maxlen: 24 104.234.39.0/24 maxlen: 24 104.234.73.0/24 maxlen: 24 104.234.208.0/24 maxlen: 24 104.234.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 06 May 2024 20:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:8e:28:a8:c0:03:f2:59:41:11:09:61:bf:14:31:ba:ab:dc:85:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Mar 1 10:00:52 2024 GMT Not After : Feb 28 10:05:52 2025 GMT Subject: CN=7AF5C6CC07965D4FC4FA5CCB63B6401D9E22CDCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4a:79:45:2f:41:80:7f:32:77:a4:8d:65:02: 5b:ca:e9:c3:37:7a:fa:f0:da:ef:8f:43:2d:db:58: 75:39:d8:f8:4f:9a:b7:ed:43:9f:40:18:50:06:ca: f7:31:51:0c:0e:9d:c3:27:28:6c:bd:d5:a2:eb:3b: 40:77:7a:e4:a2:89:2e:d5:d0:73:ac:15:88:26:75: 30:2b:57:02:d6:61:df:a0:f8:12:e1:ce:a6:33:8d: 74:d7:36:8f:0e:c0:a4:1c:7b:3e:ed:d7:77:82:19: bf:b9:3f:7d:b5:a7:ab:f9:c1:1b:f4:c3:ba:45:16: 22:ba:46:bf:35:e4:99:e5:26:d7:cd:4f:5d:09:bd: fc:e3:fa:86:24:6d:96:39:3d:da:db:c1:41:89:9d: 0c:6c:15:75:0a:23:e4:66:96:ad:25:ac:e1:73:6d: f5:cb:20:e7:12:02:5c:d5:12:42:18:0b:55:88:33: 67:4b:d5:4e:4a:a3:ab:18:81:a6:70:33:14:0d:3b: b6:30:b5:0f:20:d9:45:df:22:dd:66:82:66:70:53: cf:ba:5a:2c:86:12:12:05:ca:57:05:33:71:16:cc: 53:49:cf:a7:22:d9:a8:76:12:bd:9c:37:79:ee:ef: e5:f6:38:0c:31:6e:a5:32:16:da:98:09:87:83:f9: 69:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F5:C6:CC:07:96:5D:4F:C4:FA:5C:CB:63:B6:40:1D:9E:22:CD:CE X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS398465.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.38.0/23 104.234.73.0/24 104.234.208.0/23 Signature Algorithm: sha256WithRSAEncryption 16:2c:89:25:ce:46:a3:47:a1:ae:2c:cd:0b:54:bb:f2:da:4e: 4e:02:d8:39:97:29:a4:35:ba:46:04:1f:a9:d5:ac:eb:66:71: 33:52:bb:65:db:32:c6:5f:47:95:21:ba:c8:24:aa:3c:da:ff: 67:d5:e3:59:6b:0d:fd:ef:89:a4:48:e8:7f:2c:55:40:78:f8: 1a:28:0a:75:17:e3:c0:68:9c:e2:77:20:af:6d:d0:a4:e0:d3: 16:55:05:ea:ce:4b:4d:5c:7c:52:7b:ba:cb:d7:25:49:46:2e: 8d:af:32:0a:ff:96:bb:c4:6b:56:86:11:46:e9:6f:d4:35:c6: 7c:3e:22:82:28:81:28:fb:0a:a0:76:35:72:2d:8d:c3:bf:f2: 14:1f:95:c6:b5:10:51:6a:83:24:cd:a1:c1:f9:be:4a:f7:d1: be:84:b4:b0:b0:db:c4:ad:fc:c0:7a:90:bc:b9:8f:d3:4f:cb: f6:15:12:38:c6:e1:0a:ae:4c:d2:aa:12:62:23:1a:27:27:e2: 91:a3:bf:10:ff:e4:17:2d:3c:c0:ed:cf:19:20:f4:e4:8c:f4: 2f:cd:e7:0c:70:17:8f:6b:a4:13:1c:7f:2f:cd:32:28:ba:e3: c0:db:c3:ae:59:f6:1e:7c:ab:e4:c3:35:fe:cd:fd:76:ea:c5: c0:7c:cd:eb -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgIUZI4oqMAD8llBEQlhvxQxuqvchf0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjQwMzAxMTAwMDUyWhcNMjUwMjI4MTAwNTUy WjAzMTEwLwYDVQQDEyg3QUY1QzZDQzA3OTY1RDRGQzRGQTVDQ0I2M0I2NDAxRDlF MjJDRENFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8kp5RS9BgH8y d6SNZQJbyunDN3r68Nrvj0Mt21h1Odj4T5q37UOfQBhQBsr3MVEMDp3DJyhsvdWi 6ztAd3rkooku1dBzrBWIJnUwK1cC1mHfoPgS4c6mM4101zaPDsCkHHs+7dd3ghm/ uT99taer+cEb9MO6RRYiuka/NeSZ5SbXzU9dCb384/qGJG2WOT3a28FBiZ0MbBV1 CiPkZpatJazhc231yyDnEgJc1RJCGAtViDNnS9VOSqOrGIGmcDMUDTu2MLUPINlF 3yLdZoJmcFPPuloshhISBcpXBTNxFsxTSc+nItmodhK9nDd57u/l9jgMMW6lMhba mAmHg/lp+QIDAQABo4ICizCCAocwHQYDVR0OBBYEFHr1xswHll1PxPpcy2O2QB2e Is3OMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzM5ODQ2NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAWjqJgMEAGjqSQMEAWjq0DANBgkq hkiG9w0BAQsFAAOCAQEAFiyJJc5Go0ehrizNC1S78tpOTgLYOZcppDW6RgQfqdWs 62ZxM1K7Zdsyxl9HlSG6yCSqPNr/Z9XjWWsN/e+JpEjofyxVQHj4GigKdRfjwGic 4ncgr23QpODTFlUF6s5LTVx8Unu6y9clSUYuja8yCv+Wu8RrVoYRRulv1DXGfD4i giiBKPsKoHY1ci2Nw7/yFB+VxrUQUWqDJM2hwfm+SvfRvoS0sLDbxK38wHqQvLmP 00/L9hUSOMbhCq5M0qoSYiMaJyfikaO/EP/kFy08wO3PGSD05Iz0L83nDHAXj2uk Exx/L80yKLrjwNvDrln2Hnyr5MM1/s39durFwHzN6w== -----END CERTIFICATE-----Generated at Sun May 5 21:10:16 2024 by rpki-client on console-fra.rpki-client.org