$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS200017.roa File: AS200017.roa (raw, json) Hash identifier: tM4EhKfmfT0D09pWRtdWMaQZiOJj44CyBnRNLDdedL0= Subject key identifier: 53:0B:F1:94:C5:04:18:61:10:99:F0:C1:3A:CE:5A:C3:43:65:DC:C9 Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Certificate serial: 6BD43EB7E329FC9FF3B16868F24FD188D39DE9F1 Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS200017.roa Signing time: Tue 06 Feb 2024 09:13:36 +0000 ROA not before: Tue 06 Feb 2024 09:08:36 +0000 ROA not after: Tue 04 Feb 2025 09:13:36 +0000 asID: 200017 IP address blocks: 67.210.127.0/24 maxlen: 24 209.200.248.0/24 maxlen: 24 216.97.236.0/23 maxlen: 24 216.97.238.0/23 maxlen: 24 216.227.220.0/24 maxlen: 24 216.227.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 02 May 2024 02:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d4:3e:b7:e3:29:fc:9f:f3:b1:68:68:f2:4f:d1:88:d3:9d:e9:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Validity Not Before: Feb 6 09:08:36 2024 GMT Not After : Feb 4 09:13:36 2025 GMT Subject: CN=530BF194C50418611099F0C13ACE5AC34365DCC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b3:ec:ad:a9:bb:40:2a:63:88:51:a2:ba:20: f7:58:4d:3d:02:cc:04:da:77:61:bf:c6:a2:5d:3f: 84:d4:23:6a:80:36:c6:87:93:6a:dc:d4:f2:7e:c2: 2d:db:7c:f4:84:dc:dc:19:5c:a5:51:fb:e4:9e:e8: 17:66:d3:d0:1a:93:40:66:58:fc:00:28:9c:3e:b3: 62:56:5a:e7:a8:5e:3b:07:8a:4f:d8:35:9b:1e:e3: 80:a8:b7:f2:42:3e:e2:2e:bd:40:5c:f9:6b:66:67: 86:ab:a2:51:95:e7:dd:00:25:79:4a:92:50:78:11: 92:95:51:94:8c:8d:d7:f1:2e:d6:ff:70:42:ec:db: 60:05:f3:ef:ca:35:33:38:45:6a:e8:33:e0:68:2d: cd:3a:ab:3f:2b:1c:62:92:64:bd:a5:95:e3:84:80: f0:bb:d3:82:89:d2:bb:d7:f3:d5:73:c5:3d:7e:e7: 7b:ad:2d:e7:38:14:47:be:67:25:c4:ee:69:24:9a: 61:00:0c:32:92:a8:d6:24:67:57:7e:34:59:7a:d4: 7a:ec:a9:e0:f8:b2:54:84:a4:9c:9c:56:50:29:aa: 4c:2a:c8:23:38:64:30:9a:3d:d6:2b:8b:66:44:bd: e5:79:7c:9b:ad:8f:1f:f6:e8:b5:a3:2e:42:f8:9f: 31:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0B:F1:94:C5:04:18:61:10:99:F0:C1:3A:CE:5A:C3:43:65:DC:C9 X509v3 Authority Key Identifier: keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS200017.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.210.127.0/24 209.200.248.0/24 216.97.236.0/22 216.227.220.0/24 216.227.222.0/24 Signature Algorithm: sha256WithRSAEncryption 34:8c:80:e0:51:51:e1:20:7d:08:8f:c6:22:46:fe:1f:44:a5: 95:02:d4:0a:21:bf:c9:f1:d9:30:09:e8:27:a2:64:63:40:83: 16:d5:52:4f:31:58:72:2d:cb:bc:86:d8:a9:b5:bc:50:19:89: c9:6e:e3:85:da:11:db:a8:61:ae:04:07:f7:c4:01:f2:9e:a6: 0b:f0:63:e7:39:62:12:8b:f3:67:d7:40:18:9f:8c:85:f4:12: 46:ea:57:8e:65:85:b2:9c:bf:3a:1a:60:bc:f8:f6:6e:0d:5e: a6:6a:7e:be:15:20:31:e5:2a:72:27:43:7d:f8:de:e1:90:b7: 92:78:80:52:f9:67:22:aa:6c:ba:f8:52:97:ad:d1:9f:95:93: f1:87:5a:73:8e:53:b6:f0:26:e6:52:6d:e9:e5:58:a0:18:c4: 9a:99:00:fd:a9:d2:c1:82:df:2a:2c:c8:d3:ee:17:6b:34:f5: e4:bd:b5:b1:24:d9:21:70:15:e9:df:06:67:c6:55:37:1a:39: 92:4e:5c:34:ab:45:3f:2b:d1:4c:8d:2a:c2:68:5d:df:71:7f: 9d:6b:7f:80:a4:1b:1d:50:e1:97:55:77:4d:e7:79:02:b7:6b: 20:4a:b9:fe:03:ea:31:14:6f:e4:05:2e:0d:85:31:60:d3:9d: 53:af:c3:2f -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgIUa9Q+t+Mp/J/zsWho8k/RiNOd6fEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDRkYTVkMTAzMjc3YzkzN2M1M2RjZTMwNWJkOWQ3OWMy YmE3OTQyNTM1N2JiNTZlZWQwHhcNMjQwMjA2MDkwODM2WhcNMjUwMjA0MDkxMzM2 WjAzMTEwLwYDVQQDEyg1MzBCRjE5NEM1MDQxODYxMTA5OUYwQzEzQUNFNUFDMzQz NjVEQ0M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprPsram7QCpj iFGiuiD3WE09AswE2ndhv8aiXT+E1CNqgDbGh5Nq3NTyfsIt23z0hNzcGVylUfvk nugXZtPQGpNAZlj8ACicPrNiVlrnqF47B4pP2DWbHuOAqLfyQj7iLr1AXPlrZmeG q6JRlefdACV5SpJQeBGSlVGUjI3X8S7W/3BC7NtgBfPvyjUzOEVq6DPgaC3NOqs/ KxxikmS9pZXjhIDwu9OCidK71/PVc8U9fud7rS3nOBRHvmclxO5pJJphAAwykqjW JGdXfjRZetR67Kng+LJUhKScnFZQKapMKsgjOGQwmj3WK4tmRL3leXybrY8f9ui1 oy5C+J8xwwIDAQABo4IClzCCApMwHQYDVR0OBBYEFFML8ZTFBBhhEJnwwTrOWsND ZdzJMB8GA1UdIwQYMBaAFFtA03PWcXxwTEg8oGWM+1JXxOk8MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODE0M2JmNjIwMTgyMTEzZWVhNDkwZDMzLzEv NUI0MEQzNzNENjcxN0M3MDRDNDgzQ0EwNjU4Q0ZCNTI1N0M0RTkzQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEz YjAyZTI5LzJiZDBmYWM2LTFhNDYtNDBiNS1iZTY2LTllMGY3YjU0ZGY3Ny80NGRh NWQxMDMyNzdjOTM3YzUzZGNlMzA1YmQ5ZDc5YzJiYTc5NDI1MzU3YmI1NmVlZC5j ZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4MTQzYmY2MjAxODIxMTNlZWE0 OTBkMzMvMS9BUzIwMDAxNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3 BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAEPSfwMEANHI+AMEAthh7AMEANjj 3AMEANjj3jANBgkqhkiG9w0BAQsFAAOCAQEANIyA4FFR4SB9CI/GIkb+H0SllQLU CiG/yfHZMAnoJ6JkY0CDFtVSTzFYci3LvIbYqbW8UBmJyW7jhdoR26hhrgQH98QB 8p6mC/Bj5zliEovzZ9dAGJ+MhfQSRupXjmWFspy/OhpgvPj2bg1epmp+vhUgMeUq cidDffje4ZC3kniAUvlnIqpsuvhSl63Rn5WT8Ydac45TtvAm5lJt6eVYoBjEmpkA /anSwYLfKizI0+4XazT15L21sSTZIXAV6d8GZ8ZVNxo5kk5cNKtFPyvRTI0qwmhd 33F/nWt/gKQbHVDhl1V3Ted5ArdrIEq5/gPqMRRv5AUuDYUxYNOdU6/DLw== -----END CERTIFICATE-----Generated at Wed May 1 00:35:08 2024 by rpki-client on console-ams.rpki-client.org