$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS200017.roa File: AS200017.roa (raw, json) Hash identifier: Wy4UILg4R7SS/nw6cYg4T3vnGpnlsGJxfXGikrjPh5g= Subject key identifier: BD:6A:07:1E:A6:03:1B:ED:5B:8E:B4:AE:CA:63:6F:C5:A0:9A:F0:52 Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Certificate serial: 3C162739EB91464EA1EB19C9FE52869D67B923E4 Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS200017.roa Signing time: Tue 07 Jan 2025 09:28:23 +0000 ROA not before: Tue 07 Jan 2025 09:23:23 +0000 ROA not after: Tue 06 Jan 2026 09:28:23 +0000 asID: 200017 IP address blocks: 67.210.127.0/24 maxlen: 24 209.200.248.0/24 maxlen: 24 216.97.236.0/23 maxlen: 24 216.97.238.0/23 maxlen: 24 216.227.220.0/24 maxlen: 24 216.227.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Apr 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:16:27:39:eb:91:46:4e:a1:eb:19:c9:fe:52:86:9d:67:b9:23:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Validity Not Before: Jan 7 09:23:23 2025 GMT Not After : Jan 6 09:28:23 2026 GMT Subject: CN=BD6A071EA6031BED5B8EB4AECA636FC5A09AF052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fb:89:36:42:ef:6e:10:30:ac:61:b7:fc:81: 77:56:b3:23:f1:f3:46:b2:36:60:f4:5c:0b:12:62: 91:06:06:39:19:78:40:6f:62:e0:18:a0:09:98:03: 99:f2:be:5c:60:de:df:5a:6c:d0:6b:79:1b:4a:bc: 4e:7d:01:85:75:5f:30:6e:c5:da:70:0f:2a:6e:0d: 64:1b:bd:c0:44:87:ec:ce:c0:e4:4c:0a:4a:6a:02: cb:40:fb:16:45:fe:0a:e8:9f:e8:a0:9b:44:f0:1d: bc:18:ca:1a:78:a2:77:6a:c7:81:ca:c8:bb:12:5d: eb:e1:4b:4a:61:55:f5:56:db:5c:6e:3a:18:65:08: 33:72:03:fc:c8:6c:ca:f2:e5:b2:3f:b1:47:e7:25: 94:b4:e2:a7:e8:c4:e1:14:33:21:ea:11:d0:f5:ef: 66:72:78:7f:ba:a1:74:32:be:5b:31:38:72:c1:c1: f0:78:68:16:08:0b:00:82:6d:df:b2:9c:e2:3c:82: 50:e0:85:5e:d2:0d:96:ad:e5:68:bf:cf:29:25:75: 99:e6:71:f7:0f:8c:41:67:33:88:3a:fc:52:66:d4: dc:c8:c7:87:06:57:53:b8:cb:dc:72:ec:69:d4:44: 4c:f4:04:96:9e:16:9f:86:a5:a0:f3:4e:79:d0:5d: 25:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6A:07:1E:A6:03:1B:ED:5B:8E:B4:AE:CA:63:6F:C5:A0:9A:F0:52 X509v3 Authority Key Identifier: keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS200017.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.210.127.0/24 209.200.248.0/24 216.97.236.0/22 216.227.220.0/24 216.227.222.0/24 Signature Algorithm: sha256WithRSAEncryption bf:d7:a3:fc:b8:95:ac:05:bc:07:7e:56:cb:5f:cd:83:e0:da: 5b:2a:6d:ba:af:a3:a8:e2:02:e7:da:32:f5:9d:21:a4:21:a7: 78:ab:31:a6:44:ec:66:4b:73:2a:69:81:11:58:59:60:81:97: 8c:f6:f7:7c:fb:22:58:8b:3d:2a:e8:bb:c5:cc:41:68:da:59: 8a:50:0a:15:44:4b:ef:1c:7c:92:24:8a:36:ea:71:f1:ac:24: 79:39:8b:60:08:ec:0e:f8:b0:43:c3:c1:b2:b0:12:02:27:a4: 56:6f:4c:9f:66:22:a8:94:77:38:3d:a8:65:95:b0:9a:b0:42: e8:26:3a:c3:a2:ea:e8:25:cb:25:11:12:fa:76:4e:61:3e:89: 96:f1:db:44:7f:b5:51:0a:72:90:90:23:18:a3:74:a6:e3:b1: 1d:58:1f:fb:88:dc:f6:3c:1e:00:e7:1e:9b:17:d8:32:ec:9d: cc:bc:95:1e:b8:4f:33:b4:3e:b1:3b:76:af:b6:d1:db:62:af: 49:00:3d:ef:60:63:7a:79:28:6c:fd:1d:b6:b9:af:4b:70:11: 3b:a9:c0:34:23:95:e1:68:b2:e7:63:46:ae:bc:d0:44:80:80: ec:48:49:6e:76:b2:a4:94:ce:07:4b:dd:ca:03:5c:74:43:fb: 9c:d9:2a:ee -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgIUPBYnOeuRRk6h6xnJ/lKGnWe5I+QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDRkYTVkMTAzMjc3YzkzN2M1M2RjZTMwNWJkOWQ3OWMy YmE3OTQyNTM1N2JiNTZlZWQwHhcNMjUwMTA3MDkyMzIzWhcNMjYwMTA2MDkyODIz WjAzMTEwLwYDVQQDEyhCRDZBMDcxRUE2MDMxQkVENUI4RUI0QUVDQTYzNkZDNUEw OUFGMDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPuJNkLvbhAw rGG3/IF3VrMj8fNGsjZg9FwLEmKRBgY5GXhAb2LgGKAJmAOZ8r5cYN7fWmzQa3kb SrxOfQGFdV8wbsXacA8qbg1kG73ARIfszsDkTApKagLLQPsWRf4K6J/ooJtE8B28 GMoaeKJ3aseBysi7El3r4UtKYVX1VttcbjoYZQgzcgP8yGzK8uWyP7FH5yWUtOKn 6MThFDMh6hHQ9e9mcnh/uqF0Mr5bMThywcHweGgWCAsAgm3fspziPIJQ4IVe0g2W reVov88pJXWZ5nH3D4xBZzOIOvxSZtTcyMeHBldTuMvccuxp1ERM9ASWnhafhqWg 80550F0lzQIDAQABo4IClzCCApMwHQYDVR0OBBYEFL1qBx6mAxvtW460rspjb8Wg mvBSMB8GA1UdIwQYMBaAFFtA03PWcXxwTEg8oGWM+1JXxOk8MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODE0M2JmNjIwMTgyMTEzZWVhNDkwZDMzLzEv NUI0MEQzNzNENjcxN0M3MDRDNDgzQ0EwNjU4Q0ZCNTI1N0M0RTkzQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEz YjAyZTI5LzJiZDBmYWM2LTFhNDYtNDBiNS1iZTY2LTllMGY3YjU0ZGY3Ny80NGRh NWQxMDMyNzdjOTM3YzUzZGNlMzA1YmQ5ZDc5YzJiYTc5NDI1MzU3YmI1NmVlZC5j ZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4MTQzYmY2MjAxODIxMTNlZWE0 OTBkMzMvMS9BUzIwMDAxNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3 BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAEPSfwMEANHI+AMEAthh7AMEANjj 3AMEANjj3jANBgkqhkiG9w0BAQsFAAOCAQEAv9ej/LiVrAW8B35Wy1/Ng+DaWypt uq+jqOIC59oy9Z0hpCGneKsxpkTsZktzKmmBEVhZYIGXjPb3fPsiWIs9Kui7xcxB aNpZilAKFURL7xx8kiSKNupx8awkeTmLYAjsDviwQ8PBsrASAiekVm9Mn2YiqJR3 OD2oZZWwmrBC6CY6w6Lq6CXLJRES+nZOYT6JlvHbRH+1UQpykJAjGKN0puOxHVgf +4jc9jweAOcemxfYMuydzLyVHrhPM7Q+sTt2r7bR22KvSQA972BjenkobP0dtrmv S3ARO6nANCOV4Wiy52NGrrzQRICA7EhJbnaypJTOB0vdygNcdEP7nNkq7g== -----END CERTIFICATE-----Generated at Sat Apr 5 04:32:25 2025 by rpki-client