$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS7018.roa File: AS7018.roa (raw, json) Hash identifier: GVSgsUFBO7WNCZ8WasGxJhPvgi0bkWRdrT+njXO2y9U= Subject key identifier: A7:DC:3D:65:F1:43:D8:FB:12:0F:F4:9B:F0:84:9E:37:81:0A:6C:1B Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 0CA85E64C0091522E005D008160A39D01B8BAE00 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS7018.roa Signing time: Mon 18 Nov 2024 15:19:32 +0000 ROA not before: Mon 18 Nov 2024 15:14:32 +0000 ROA not after: Mon 17 Nov 2025 15:19:32 +0000 asID: 7018 IP address blocks: 104.234.9.0/24 maxlen: 24 104.234.73.0/24 maxlen: 24 104.234.83.0/24 maxlen: 24 104.234.122.0/24 maxlen: 24 104.234.158.0/23 maxlen: 24 104.234.208.0/23 maxlen: 23 104.234.208.0/24 maxlen: 24 104.234.209.0/24 maxlen: 24 104.234.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 22:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a8:5e:64:c0:09:15:22:e0:05:d0:08:16:0a:39:d0:1b:8b:ae:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Nov 18 15:14:32 2024 GMT Not After : Nov 17 15:19:32 2025 GMT Subject: CN=A7DC3D65F143D8FB120FF49BF0849E37810A6C1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4e:28:12:b4:e6:d6:f8:9d:d9:76:54:3e:bd: d0:fb:52:9a:72:2c:4b:96:b2:e2:c9:43:87:e2:8f: cf:99:8a:df:01:03:78:2e:8d:d1:53:54:2e:ef:5a: e5:88:75:74:0f:6f:61:c4:3f:2d:cc:ed:5e:2c:96: c7:09:fa:37:05:f0:8f:4d:94:2b:77:85:1f:f7:ec: 82:4d:28:e0:6c:cf:7d:93:1a:57:bd:9d:6c:0e:10: 57:70:18:47:71:6a:3f:f4:e3:a9:02:fc:7c:25:6d: 41:a0:dd:7a:81:f1:0f:cc:6b:c4:12:7b:77:8d:70: 46:d5:7b:37:f8:4a:13:de:e6:61:e0:45:3a:a6:20: ee:01:31:a7:6f:a4:b1:8b:3e:ff:15:ad:1f:70:6a: 28:0c:37:ab:89:28:15:79:6a:0a:77:ef:f1:7a:2e: 74:31:94:82:9d:74:be:32:4f:30:4c:ac:80:ce:a6: 15:63:62:15:83:dc:aa:54:fb:26:46:ca:8d:6f:cf: 2c:c2:33:50:0f:28:58:39:de:86:ce:a5:13:44:60: 57:cd:6b:9f:a3:d6:4d:e0:aa:35:6d:54:3f:2c:44: 7f:dc:02:61:62:72:95:78:63:9e:d1:8b:fd:02:a2: 86:d5:03:27:62:c7:6b:2d:78:d4:58:06:35:f0:1c: f8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DC:3D:65:F1:43:D8:FB:12:0F:F4:9B:F0:84:9E:37:81:0A:6C:1B X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS7018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.9.0/24 104.234.73.0/24 104.234.83.0/24 104.234.122.0/24 104.234.158.0/23 104.234.208.0/23 104.234.250.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:aa:7d:06:fa:e3:5f:02:56:61:ad:18:42:67:6c:91:16:59: 7f:56:e4:a9:5f:ed:9d:5d:db:63:47:30:b4:b6:99:46:ed:f0: a6:c9:80:01:a2:6c:e1:6f:86:3b:d0:80:9c:c3:9f:84:dd:5b: 14:8b:1b:3f:0f:52:dd:69:d9:a8:bd:4f:6f:39:b6:0d:ca:81: 26:ca:e6:6b:b3:ae:cb:85:75:5f:71:28:66:49:82:95:48:c4: eb:cf:a6:b9:94:2c:0f:d6:7a:dc:86:99:2a:eb:d3:65:45:a3: 6e:a9:f3:46:e5:f8:33:ee:89:2f:0c:2f:db:4d:27:97:82:a3: 85:c4:02:3d:2f:32:92:b8:d1:cc:27:a2:a7:3f:89:c7:4a:b4: 9d:3a:82:24:9d:8a:77:be:06:11:2a:68:46:17:1a:d6:85:a1: bf:bb:02:0f:f6:e4:51:d3:46:14:92:26:ed:e9:22:37:b6:66: c2:ff:19:1c:36:84:9d:25:d6:cd:e6:22:8c:82:8e:9a:6d:b5: 40:69:d8:6e:ed:e3:35:56:4c:30:31:87:ea:83:59:fb:d1:ff: 50:6c:e9:c6:4c:f1:1b:4a:55:eb:b4:84:1d:c3:47:76:a4:50: b2:5a:1a:84:08:b8:fb:d2:7f:62:ce:9a:09:49:6f:52:7f:cd: 44:ca:43:de -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgIUDKheZMAJFSLgBdAIFgo50BuLrgAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjQxMTE4MTUxNDMyWhcNMjUxMTE3MTUxOTMy WjAzMTEwLwYDVQQDEyhBN0RDM0Q2NUYxNDNEOEZCMTIwRkY0OUJGMDg0OUUzNzgx MEE2QzFCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuE4oErTm1vid 2XZUPr3Q+1KacixLlrLiyUOH4o/PmYrfAQN4Lo3RU1Qu71rliHV0D29hxD8tzO1e LJbHCfo3BfCPTZQrd4Uf9+yCTSjgbM99kxpXvZ1sDhBXcBhHcWo/9OOpAvx8JW1B oN16gfEPzGvEEnt3jXBG1Xs3+EoT3uZh4EU6piDuATGnb6Sxiz7/Fa0fcGooDDer iSgVeWoKd+/xei50MZSCnXS+Mk8wTKyAzqYVY2IVg9yqVPsmRsqNb88swjNQDyhY Od6GzqUTRGBXzWufo9ZN4Ko1bVQ/LER/3AJhYnKVeGOe0Yv9AqKG1QMnYsdrLXjU WAY18Bz4iQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKfcPWXxQ9j7Eg/0m/CEnjeB CmwbMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbgYIKwYBBQUHAQsEYjBgMF4GCCsGAQUFBzALhlJyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzcwMTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwQwYI KwYBBQUHAQcBAf8ENDAyMDAEAgABMCoDBABo6gkDBABo6kkDBABo6lMDBABo6noD BAFo6p4DBAFo6tADBABo6vowDQYJKoZIhvcNAQELBQADggEBAFqqfQb6418CVmGt GEJnbJEWWX9W5Klf7Z1d22NHMLS2mUbt8KbJgAGibOFvhjvQgJzDn4TdWxSLGz8P Ut1p2ai9T285tg3KgSbK5muzrsuFdV9xKGZJgpVIxOvPprmULA/WetyGmSrr02VF o26p80bl+DPuiS8ML9tNJ5eCo4XEAj0vMpK40cwnoqc/icdKtJ06giSdine+BhEq aEYXGtaFob+7Ag/25FHTRhSSJu3pIje2ZsL/GRw2hJ0l1s3mIoyCjppttUBp2G7t 4zVWTDAxh+qDWfvR/1Bs6cZM8RtKVeu0hB3DR3akULJaGoQIuPvSf2LOmglJb1J/ zUTKQ94= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:21 2024 by rpki-client on console-fra.rpki-client.org