$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS20001.roa File: AS20001.roa (raw, json) Hash identifier: Ae/vEba85EZ05JFrdAhPQQVHb1Sn/GlVkzS4J5UtQH4= Subject key identifier: E9:C7:F1:29:75:82:6C:DA:4B:55:F9:0F:64:7E:41:84:B7:71:E5:50 Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Certificate serial: 121FDC6C86EC328E53D9561A1F4F96974E5848B0 Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS20001.roa Signing time: Sun 25 May 2025 16:55:26 +0000 ROA not before: Sun 25 May 2025 16:50:26 +0000 ROA not after: Sun 24 May 2026 16:55:26 +0000 asID: 20001 IP address blocks: 74.50.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 17:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:1f:dc:6c:86:ec:32:8e:53:d9:56:1a:1f:4f:96:97:4e:58:48:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Validity Not Before: May 25 16:50:26 2025 GMT Not After : May 24 16:55:26 2026 GMT Subject: CN=E9C7F12975826CDA4B55F90F647E4184B771E550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:db:09:1d:c1:7b:2a:3e:ce:75:ac:f3:45:5a: 0a:0f:04:e3:27:b0:ef:59:6f:b8:a1:de:25:a2:ac: 9c:dc:80:ce:07:43:18:a2:9c:9a:b2:e8:bf:c7:36: 0d:0d:d8:81:c1:4c:12:6a:ae:2a:18:7f:8d:89:ae: 2c:cf:6f:a0:a0:c0:13:b0:b8:e4:e5:d6:b3:b3:78: 0a:07:59:7b:a3:bd:d3:51:72:7c:d6:68:0f:cf:99: fa:9d:1b:33:05:26:c9:a5:da:b4:2a:c9:b1:3c:ae: e2:00:17:12:8f:59:ac:c0:8b:a6:87:a3:c0:f9:c4: 7f:80:e2:3a:b2:6a:24:77:5c:61:91:7c:2a:35:85: cc:4a:9a:2d:68:fb:c2:5b:0f:bb:3e:7e:62:33:fb: fe:dc:91:8c:f6:5b:a2:2c:1a:5b:a2:46:41:c7:19: 3c:53:21:5e:6b:32:d4:26:aa:20:29:00:ec:d0:c1: 00:3e:54:52:2c:bd:e7:4f:0e:5f:53:fa:f7:df:fd: 82:87:f2:84:4f:96:34:8a:e5:50:6d:e7:ec:85:9f: ec:cc:b4:a6:8a:db:56:a5:7b:b7:ba:d5:7a:58:94: 29:8d:1c:83:56:c5:eb:83:75:6e:62:3e:5c:43:a6: 9e:45:2e:c9:4d:b7:09:cc:7d:b8:5a:f7:08:cf:ce: 24:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C7:F1:29:75:82:6C:DA:4B:55:F9:0F:64:7E:41:84:B7:71:E5:50 X509v3 Authority Key Identifier: keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS20001.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.50.16.0/20 Signature Algorithm: sha256WithRSAEncryption b5:40:dc:71:98:12:41:2f:2e:a9:0b:a7:2d:b9:ba:af:11:7c: 20:60:03:71:d4:c6:79:32:69:07:d7:0f:52:f8:80:11:4d:ad: 2c:e8:d9:91:07:26:4e:16:9f:98:56:b4:a7:2d:92:a3:8a:f8: 4f:e3:b6:e5:57:64:9c:f4:1b:d2:b4:80:fc:cd:09:7c:c4:bb: 4a:3f:5a:31:b0:5c:70:16:75:20:62:90:59:38:a6:1f:82:0d: ca:a1:6e:8b:ce:a7:c3:44:ba:55:b8:b9:92:c6:12:c1:dc:ab: 05:3f:98:34:5d:d1:78:53:b0:7c:d2:e4:cb:1e:e4:8b:3d:d6: 87:b3:de:6f:a9:71:93:2e:2a:0f:8e:42:bf:57:8b:87:14:97: 97:88:db:31:c9:44:c8:8c:5f:db:54:a1:7d:0f:5f:cd:81:0b: e8:48:ce:e6:da:3b:ca:ba:73:00:72:2e:23:7b:92:c2:d5:d1: 2c:14:77:39:5a:94:30:94:1f:b3:6e:d0:43:1a:bc:a8:fa:42: bf:54:79:6e:2b:14:fd:c9:81:ce:97:5f:40:7e:91:dc:04:ae: 35:2a:6d:a1:35:61:64:a4:ca:c2:ce:49:70:ee:67:3d:72:bc: af:b5:35:a4:01:ea:07:34:0a:6d:2d:c8:56:7e:32:9d:04:69: 4a:a4:10:e1 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUEh/cbIbsMo5T2VYaH0+Wl05YSLAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDRkYTVkMTAzMjc3YzkzN2M1M2RjZTMwNWJkOWQ3OWMy YmE3OTQyNTM1N2JiNTZlZWQwHhcNMjUwNTI1MTY1MDI2WhcNMjYwNTI0MTY1NTI2 WjAzMTEwLwYDVQQDEyhFOUM3RjEyOTc1ODI2Q0RBNEI1NUY5MEY2NDdFNDE4NEI3 NzFFNTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNsJHcF7Kj7O dazzRVoKDwTjJ7DvWW+4od4loqyc3IDOB0MYopyasui/xzYNDdiBwUwSaq4qGH+N ia4sz2+goMATsLjk5dazs3gKB1l7o73TUXJ81mgPz5n6nRszBSbJpdq0KsmxPK7i ABcSj1mswIumh6PA+cR/gOI6smokd1xhkXwqNYXMSpotaPvCWw+7Pn5iM/v+3JGM 9luiLBpbokZBxxk8UyFeazLUJqogKQDs0MEAPlRSLL3nTw5fU/r33/2Ch/KET5Y0 iuVQbefshZ/szLSmittWpXu3utV6WJQpjRyDVsXrg3VuYj5cQ6aeRS7JTbcJzH24 WvcIz84kzQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFOnH8Sl1gmzaS1X5D2R+QYS3 ceVQMB8GA1UdIwQYMBaAFFtA03PWcXxwTEg8oGWM+1JXxOk8MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODE0M2JmNjIwMTgyMTEzZWVhNDkwZDMzLzEv NUI0MEQzNzNENjcxN0M3MDRDNDgzQ0EwNjU4Q0ZCNTI1N0M0RTkzQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEz YjAyZTI5LzJiZDBmYWM2LTFhNDYtNDBiNS1iZTY2LTllMGY3YjU0ZGY3Ny80NGRh NWQxMDMyNzdjOTM3YzUzZGNlMzA1YmQ5ZDc5YzJiYTc5NDI1MzU3YmI1NmVlZC5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4MTQzYmY2MjAxODIxMTNlZWE0 OTBkMzMvMS9BUzIwMDAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQESjIQMA0GCSqGSIb3DQEBCwUAA4IB AQC1QNxxmBJBLy6pC6ctubqvEXwgYANx1MZ5MmkH1w9S+IARTa0s6NmRByZOFp+Y VrSnLZKjivhP47blV2Sc9BvStID8zQl8xLtKP1oxsFxwFnUgYpBZOKYfgg3KoW6L zqfDRLpVuLmSxhLB3KsFP5g0XdF4U7B80uTLHuSLPdaHs95vqXGTLioPjkK/V4uH FJeXiNsxyUTIjF/bVKF9D1/NgQvoSM7m2jvKunMAci4je5LC1dEsFHc5WpQwlB+z btBDGryo+kK/VHluKxT9yYHOl19AfpHcBK41Km2hNWFkpMrCzklw7mc9cryvtTWk AeoHNAptLchWfjKdBGlKpBDh -----END CERTIFICATE-----Generated at Sat Jun 7 03:59:04 2025 by rpki-client