$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS400039.roa File: AS400039.roa (raw, json) Hash identifier: dIecUnEWccdj6NH0pwMM/iq3wnQO+kfRRkzRJpI9z7M= Subject key identifier: 79:FC:85:E7:EC:AB:10:5E:C9:90:B5:0E:F6:74:48:97:59:A4:1B:C2 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 41EDE56A767EA86AA622D661CBC3C44E1DA0B261 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS400039.roa Signing time: Wed 20 Nov 2024 18:49:21 +0000 ROA not before: Wed 20 Nov 2024 18:44:21 +0000 ROA not after: Wed 19 Nov 2025 18:49:21 +0000 asID: 400039 IP address blocks: 104.234.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 01:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ed:e5:6a:76:7e:a8:6a:a6:22:d6:61:cb:c3:c4:4e:1d:a0:b2:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Nov 20 18:44:21 2024 GMT Not After : Nov 19 18:49:21 2025 GMT Subject: CN=79FC85E7ECAB105EC990B50EF674489759A41BC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:82:78:bb:64:5d:07:d1:47:61:3a:d8:37:3b: ab:48:b7:e6:6d:e2:73:b7:ac:45:06:d2:20:37:b4: f1:8d:f6:79:b8:90:58:3d:d4:95:a6:14:c7:3c:4a: 61:f4:9c:04:5a:07:9f:a9:d8:fd:fd:4e:c5:e2:ca: 0e:37:09:55:a1:d2:6c:23:8b:f1:a1:17:92:b7:ef: 1f:cd:b8:47:1d:f0:8f:ad:d9:a4:14:ec:5c:6f:71: 60:0b:82:ac:80:fa:f3:ce:e4:6a:e5:5d:c8:18:e7: 90:0e:d2:ad:58:b3:0d:a5:f5:1b:ac:01:3a:bb:a3: 21:a9:1e:04:e9:ee:fb:91:de:81:0c:ac:79:14:e3: 77:c1:a0:59:a7:f3:e4:18:ae:80:5b:e4:c6:fe:f6: 0a:a6:02:61:a7:6e:94:b6:78:86:08:8e:f5:e9:64: 4c:23:1c:dd:19:0f:f2:57:7a:36:50:de:b1:cc:31: 60:fe:cb:ea:9f:2c:1c:25:0d:f4:91:4a:b3:4a:c2: e7:43:d9:ff:29:71:aa:ab:00:ae:2a:77:5c:db:95: e6:6f:87:2c:64:ab:f6:c8:c7:97:32:bf:37:38:c9: 81:55:c0:de:ee:70:c6:c8:e0:c5:fc:e7:33:0b:7c: b6:96:81:dc:00:5b:44:53:80:d6:be:ef:db:3f:41: 0e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FC:85:E7:EC:AB:10:5E:C9:90:B5:0E:F6:74:48:97:59:A4:1B:C2 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS400039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.210.0/24 Signature Algorithm: sha256WithRSAEncryption 65:b8:51:d3:fe:0c:89:1a:a6:8c:80:7c:6a:3b:2d:2a:a5:2f: 82:a7:2f:66:eb:0b:f1:51:f2:78:f7:2a:bd:c9:d7:cf:bc:93: 97:b9:cb:a5:87:83:01:21:47:17:ae:46:a0:ec:a1:73:ca:61: f8:9d:ce:f0:e7:1a:80:b7:cc:b8:c5:49:12:e8:9f:60:de:6f: a1:06:1d:ef:d9:cb:d3:8a:9c:ca:f0:df:e7:18:bb:c5:94:00: d7:64:a8:31:e2:3c:3c:1a:bf:fa:93:30:4c:d6:af:ee:9d:1b: e1:25:02:94:75:22:7f:fe:b1:1c:1a:e1:19:2d:00:2d:b2:7d: 2c:e7:da:f5:0e:77:77:1c:41:47:41:3e:4c:54:0d:10:e7:21: 76:55:aa:44:ee:f1:f1:92:b8:4e:21:00:0f:93:6c:33:ba:87: 43:fb:0e:7a:c0:a9:a3:ee:a6:09:61:3a:48:d0:74:3c:d6:20: 6d:17:39:d5:0b:1e:d1:89:26:56:62:f4:04:c9:3e:61:00:0d: 0b:77:53:94:2d:43:3c:47:4d:38:8f:6c:81:3f:7a:51:a0:60: d7:65:8f:8f:44:ae:20:ab:81:cb:32:c4:fa:c3:0f:45:0a:54: 75:44:3b:78:63:34:fc:8f:72:14:fb:75:2d:35:6b:5c:bf:2f: 56:3b:1a:cd -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIUQe3lanZ+qGqmItZhy8PETh2gsmEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjQxMTIwMTg0NDIxWhcNMjUxMTE5MTg0OTIx WjAzMTEwLwYDVQQDEyg3OUZDODVFN0VDQUIxMDVFQzk5MEI1MEVGNjc0NDg5NzU5 QTQxQkMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIJ4u2RdB9FH YTrYNzurSLfmbeJzt6xFBtIgN7TxjfZ5uJBYPdSVphTHPEph9JwEWgefqdj9/U7F 4soONwlVodJsI4vxoReSt+8fzbhHHfCPrdmkFOxcb3FgC4KsgPrzzuRq5V3IGOeQ DtKtWLMNpfUbrAE6u6MhqR4E6e77kd6BDKx5FON3waBZp/PkGK6AW+TG/vYKpgJh p26UtniGCI716WRMIxzdGQ/yV3o2UN6xzDFg/svqnywcJQ30kUqzSsLnQ9n/KXGq qwCuKndc25Xmb4csZKv2yMeXMr83OMmBVcDe7nDGyODF/OczC3y2loHcAFtEU4DW vu/bP0EOrwIDAQABo4ICfzCCAnswHQYDVR0OBBYEFHn8hefsqxBeyZC1DvZ0SJdZ pBvCMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzQwMDAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGjq0jANBgkqhkiG9w0BAQsFAAOC AQEAZbhR0/4MiRqmjIB8ajstKqUvgqcvZusL8VHyePcqvcnXz7yTl7nLpYeDASFH F65GoOyhc8ph+J3O8OcagLfMuMVJEuifYN5voQYd79nL04qcyvDf5xi7xZQA12So MeI8PBq/+pMwTNav7p0b4SUClHUif/6xHBrhGS0ALbJ9LOfa9Q53dxxBR0E+TFQN EOchdlWqRO7x8ZK4TiEAD5NsM7qHQ/sOesCpo+6mCWE6SNB0PNYgbRc51Qse0Ykm VmL0BMk+YQANC3dTlC1DPEdNOI9sgT96UaBg12WPj0SuIKuByzLE+sMPRQpUdUQ7 eGM0/I9yFPt1LTVrXL8vVjsazQ== -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:08 2024 by rpki-client on console-ams.rpki-client.org