$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: g5q1sCGJB+nEkJxXx0z2DKMXVJxxYy9+OXd0AZ1se1I= Subject key identifier: D6:DE:75:63:33:E2:EC:FF:75:95:87:41:06:DF:75:1D:78:02:B5:2B Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 3A6E30FC897CD425BFC0C6EFAC010C4703B26708 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa Signing time: Mon 15 Jul 2024 00:00:13 +0000 ROA not before: Sun 14 Jul 2024 23:55:13 +0000 ROA not after: Mon 14 Jul 2025 00:00:13 +0000 asID: 40676 IP address blocks: 104.234.134.0/24 maxlen: 24 104.234.156.0/24 maxlen: 24 104.234.172.0/24 maxlen: 24 104.234.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 22:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:6e:30:fc:89:7c:d4:25:bf:c0:c6:ef:ac:01:0c:47:03:b2:67:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Jul 14 23:55:13 2024 GMT Not After : Jul 14 00:00:13 2025 GMT Subject: CN=D6DE756333E2ECFF7595874106DF751D7802B52B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e2:4b:00:d0:d3:f7:12:f3:56:63:ed:df:d3: c5:04:a0:b4:76:19:4b:41:69:79:28:18:ed:a0:a5: 34:82:86:dd:ed:bf:80:88:62:cc:fb:05:0c:8d:16: b8:61:0b:dc:92:81:43:95:a2:f5:0d:b2:d3:78:40: ec:b3:90:08:83:28:54:1f:a1:a9:f7:c1:ed:c2:fa: ef:4f:21:21:34:ff:c1:70:9e:70:a5:8c:74:99:5e: 22:f4:09:66:94:4c:b2:72:2a:6f:55:34:36:85:50: a0:eb:78:00:24:90:ee:c5:84:7b:36:97:40:92:e3: 8e:48:da:50:89:2b:28:15:dc:3a:27:3a:c1:d0:90: 79:b4:c7:0e:ad:93:8a:19:5e:24:f5:80:1d:c4:12: 8c:bc:b5:b2:19:26:2e:9f:0f:4b:5e:d1:20:f5:7e: 41:d4:d8:f0:29:1e:01:fd:b9:3a:5e:1a:78:34:a6: 63:c5:57:60:d8:4f:bf:8e:d7:2a:44:63:0b:7a:f5: 91:bd:0a:c7:0d:98:1c:66:aa:bc:0f:a4:41:cc:30: d8:ec:8c:1d:68:2d:9e:aa:73:9e:96:6d:6b:e8:e6: 44:16:1d:a1:d5:73:86:1e:4b:ff:75:3f:d8:63:db: eb:1b:8c:f7:1a:05:26:48:fb:f7:8d:47:5d:a4:a6: ec:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:DE:75:63:33:E2:EC:FF:75:95:87:41:06:DF:75:1D:78:02:B5:2B X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.134.0/24 104.234.156.0/24 104.234.172.0/24 104.234.177.0/24 Signature Algorithm: sha256WithRSAEncryption 04:72:a0:35:68:b8:96:81:2f:c0:5a:80:f2:ea:d2:72:1b:b3: f6:89:75:95:38:3f:d8:99:b5:b8:a6:0d:d8:26:26:a7:0d:00: 2d:71:0d:8b:6f:11:41:51:bc:4d:a9:d4:f5:53:19:c8:34:6a: 74:19:02:b4:7f:5f:59:34:6e:b2:ba:47:c8:2e:29:18:83:1b: 03:f2:78:01:42:7a:0e:67:8d:ab:4e:1d:8c:2c:5c:26:d8:01: de:46:8c:80:91:7d:b0:61:5c:c4:2d:b7:d5:d3:90:1d:93:30: b0:8e:fb:6a:78:75:7c:8e:14:b5:16:a1:de:06:9f:42:4b:5f: 2f:78:1a:af:b0:ce:6b:0f:cf:3f:bd:57:c7:85:1d:82:9f:76: cc:28:fc:18:15:e2:a3:79:92:26:21:8d:45:de:19:48:3c:6a: b3:86:aa:3a:c8:6f:a6:74:99:0a:59:6a:06:1a:eb:b0:5a:22: b0:af:77:40:62:1e:e6:19:fd:e4:1d:f4:4d:35:62:92:a4:8b: 36:15:76:8b:1d:ac:7d:48:5f:ff:e0:f4:17:4e:fd:a0:29:db: 23:b0:c0:f9:1a:cd:16:02:46:c0:53:18:18:10:f9:f1:d3:1b: ee:5c:66:bc:ab:c2:b2:56:cb:92:b4:1c:6f:7b:81:b4:11:e7: ff:af:df:ee -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIUOm4w/Il81CW/wMbvrAEMRwOyZwgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjQwNzE0MjM1NTEzWhcNMjUwNzE0MDAwMDEz WjAzMTEwLwYDVQQDEyhENkRFNzU2MzMzRTJFQ0ZGNzU5NTg3NDEwNkRGNzUxRDc4 MDJCNTJCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+JLANDT9xLz VmPt39PFBKC0dhlLQWl5KBjtoKU0gobd7b+AiGLM+wUMjRa4YQvckoFDlaL1DbLT eEDss5AIgyhUH6Gp98HtwvrvTyEhNP/BcJ5wpYx0mV4i9AlmlEyycipvVTQ2hVCg 63gAJJDuxYR7NpdAkuOOSNpQiSsoFdw6JzrB0JB5tMcOrZOKGV4k9YAdxBKMvLWy GSYunw9LXtEg9X5B1NjwKR4B/bk6Xhp4NKZjxVdg2E+/jtcqRGMLevWRvQrHDZgc Zqq8D6RBzDDY7IwdaC2eqnOelm1r6OZEFh2h1XOGHkv/dT/YY9vrG4z3GgUmSPv3 jUddpKbs3wIDAQABo4ICkDCCAowwHQYDVR0OBBYEFNbedWMz4uz/dZWHQQbfdR14 ArUrMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEG CCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAaOqGAwQAaOqcAwQAaOqsAwQAaOqx MA0GCSqGSIb3DQEBCwUAA4IBAQAEcqA1aLiWgS/AWoDy6tJyG7P2iXWVOD/YmbW4 pg3YJianDQAtcQ2LbxFBUbxNqdT1UxnINGp0GQK0f19ZNG6yukfILikYgxsD8ngB QnoOZ42rTh2MLFwm2AHeRoyAkX2wYVzELbfV05AdkzCwjvtqeHV8jhS1FqHeBp9C S18veBqvsM5rD88/vVfHhR2Cn3bMKPwYFeKjeZImIY1F3hlIPGqzhqo6yG+mdJkK WWoGGuuwWiKwr3dAYh7mGf3kHfRNNWKSpIs2FXaLHax9SF//4PQXTv2gKdsjsMD5 Gs0WAkbAUxgYEPnx0xvuXGa8q8KyVsuStBxve4G0Eef/r9/u -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:21 2024 by rpki-client on console-fra.rpki-client.org