$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS7029.roa File: AS7029.roa (raw, json) Hash identifier: 9W3OKJ8U7VK5BWiwfjFhlFGlKi29GkzbFvfQ8Krg+us= Subject key identifier: 5D:9E:CE:AD:36:45:4B:A1:4D:76:D0:42:72:D5:FF:88:12:E0:9B:66 Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Certificate serial: 1A33D9B6940EEFF19E042EE21BC2FF0546796400 Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS7029.roa Signing time: Tue 03 Jun 2025 17:56:25 +0000 ROA not before: Tue 03 Jun 2025 17:51:25 +0000 ROA not after: Tue 02 Jun 2026 17:56:25 +0000 asID: 7029 IP address blocks: 67.210.108.0/24 maxlen: 24 67.210.109.0/24 maxlen: 24 89.35.93.0/24 maxlen: 24 89.35.94.0/24 maxlen: 24 89.35.95.0/24 maxlen: 24 162.213.1.0/24 maxlen: 24 198.23.222.0/24 maxlen: 24 208.76.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 06 Jun 2025 07:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:33:d9:b6:94:0e:ef:f1:9e:04:2e:e2:1b:c2:ff:05:46:79:64:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Validity Not Before: Jun 3 17:51:25 2025 GMT Not After : Jun 2 17:56:25 2026 GMT Subject: CN=5D9ECEAD36454BA14D76D04272D5FF8812E09B66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4a:59:c7:9b:ad:45:a1:13:c5:8d:2d:b9:67: be:26:37:30:20:77:c8:a8:d8:b3:7e:65:c7:3d:fe: 48:b9:d4:18:7d:fe:02:92:81:3f:48:72:09:cb:1a: 57:f4:b8:df:14:11:01:d7:ea:34:43:84:e2:c1:6c: b1:00:9f:4b:eb:48:d3:4e:b1:de:ef:cb:55:f5:b2: 52:75:ed:57:3a:46:58:fd:40:eb:be:7f:22:28:d4: 1e:7f:bb:6d:bb:b1:00:f6:84:dd:0e:7a:c3:61:47: 4a:77:1a:35:87:52:31:38:3d:06:e7:7b:dd:76:f3: 63:6e:e5:bc:54:4a:2e:fc:db:d4:77:77:d2:25:20: 87:b3:c2:e4:f6:c4:85:70:de:93:fe:42:ef:df:d5: 11:12:b6:fa:31:5c:1b:09:6c:c8:df:fb:0e:e6:51: cd:87:cf:4a:48:00:dc:95:fb:26:f7:fb:3d:08:a5: a8:c4:45:33:1b:4b:cd:8b:50:72:06:21:80:36:c4: 92:80:0e:7f:6f:a7:89:77:5c:4f:3d:c9:69:02:e7: e6:62:51:61:97:25:cb:48:55:f9:83:96:04:85:04: b5:02:a1:15:de:ed:df:93:7c:40:af:f3:f7:81:87: de:03:1c:ed:0b:29:83:8f:3d:f5:f0:0d:06:29:eb: 12:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:9E:CE:AD:36:45:4B:A1:4D:76:D0:42:72:D5:FF:88:12:E0:9B:66 X509v3 Authority Key Identifier: keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS7029.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.210.108.0/23 89.35.93.0-89.35.95.255 162.213.1.0/24 198.23.222.0/24 208.76.41.0/24 Signature Algorithm: sha256WithRSAEncryption 96:ac:d8:4a:2a:d2:01:69:f3:50:0e:65:ed:4c:7f:7e:8f:d1: 89:09:c7:cd:6f:67:2c:9e:82:d5:76:d9:49:10:4e:2d:d6:d7: 57:b0:30:9c:75:56:da:b4:fc:25:2c:8b:7c:7c:37:b0:df:65: 33:73:34:0d:e0:2e:7b:f1:ed:5a:cb:1e:5b:a1:75:cb:2c:08: 17:44:52:76:f0:3b:d6:45:6f:dc:43:d6:47:b1:6d:df:9e:1d: 50:66:4c:f6:f5:9f:46:dd:1d:5e:24:c1:95:3c:0c:ff:7b:8f: aa:14:ce:6d:74:b0:28:07:8b:21:5c:c0:98:9b:4b:22:86:87: 38:39:eb:2a:18:ce:26:21:68:f2:b9:e0:95:bf:78:16:0b:53: 44:f4:c0:ed:e7:fe:56:d4:40:d2:40:09:71:31:05:1e:3d:20: c4:cf:f4:05:b1:7f:68:29:de:62:48:4b:cb:94:fa:59:f2:1b: bb:f0:a9:62:20:96:bc:5e:2e:e9:6b:7f:9f:cc:95:0a:8e:c7: 2f:e9:b2:e3:c9:bb:ef:c7:22:b1:b3:4d:a6:0d:b9:2b:8c:49: 90:ac:0e:fe:68:12:66:6b:a1:d0:d0:33:37:0f:fe:53:bd:95: a2:fe:67:cd:7b:af:42:54:02:44:36:dc:4e:da:4d:19:b6:75: 57:cc:4c:83 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUGjPZtpQO7/GeBC7iG8L/BUZ5ZAAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDRkYTVkMTAzMjc3YzkzN2M1M2RjZTMwNWJkOWQ3OWMy YmE3OTQyNTM1N2JiNTZlZWQwHhcNMjUwNjAzMTc1MTI1WhcNMjYwNjAyMTc1NjI1 WjAzMTEwLwYDVQQDEyg1RDlFQ0VBRDM2NDU0QkExNEQ3NkQwNDI3MkQ1RkY4ODEy RTA5QjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2kpZx5utRaET xY0tuWe+JjcwIHfIqNizfmXHPf5IudQYff4CkoE/SHIJyxpX9LjfFBEB1+o0Q4Ti wWyxAJ9L60jTTrHe78tV9bJSde1XOkZY/UDrvn8iKNQef7ttu7EA9oTdDnrDYUdK dxo1h1IxOD0G53vddvNjbuW8VEou/NvUd3fSJSCHs8Lk9sSFcN6T/kLv39URErb6 MVwbCWzI3/sO5lHNh89KSADclfsm9/s9CKWoxEUzG0vNi1ByBiGANsSSgA5/b6eJ d1xPPclpAufmYlFhlyXLSFX5g5YEhQS1AqEV3u3fk3xAr/P3gYfeAxztCymDjz31 8A0GKesSjwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFF2ezq02RUuhTXbQQnLV/4gS 4JtmMB8GA1UdIwQYMBaAFFtA03PWcXxwTEg8oGWM+1JXxOk8MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODE0M2JmNjIwMTgyMTEzZWVhNDkwZDMzLzEv NUI0MEQzNzNENjcxN0M3MDRDNDgzQ0EwNjU4Q0ZCNTI1N0M0RTkzQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEz YjAyZTI5LzJiZDBmYWM2LTFhNDYtNDBiNS1iZTY2LTllMGY3YjU0ZGY3Ny80NGRh NWQxMDMyNzdjOTM3YzUzZGNlMzA1YmQ5ZDc5YzJiYTc5NDI1MzU3YmI1NmVlZC5j ZXIwbgYIKwYBBQUHAQsEYjBgMF4GCCsGAQUFBzALhlJyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4MTQzYmY2MjAxODIxMTNlZWE0 OTBkMzMvMS9BUzcwMjkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwPwYI KwYBBQUHAQcBAf8EMDAuMCwEAgABMCYDBAFD0mwwDAMEAFkjXQMEBVkjQAMEAKLV AQMEAMYX3gMEANBMKTANBgkqhkiG9w0BAQsFAAOCAQEAlqzYSirSAWnzUA5l7Ux/ fo/RiQnHzW9nLJ6C1XbZSRBOLdbXV7AwnHVW2rT8JSyLfHw3sN9lM3M0DeAue/Ht WsseW6F1yywIF0RSdvA71kVv3EPWR7Ft354dUGZM9vWfRt0dXiTBlTwM/3uPqhTO bXSwKAeLIVzAmJtLIoaHODnrKhjOJiFo8rnglb94FgtTRPTA7ef+VtRA0kAJcTEF Hj0gxM/0BbF/aCneYkhLy5T6WfIbu/CpYiCWvF4u6Wt/n8yVCo7HL+my48m778ci sbNNpg25K4xJkKwO/mgSZmuh0NAzNw/+U72Vov5nzXuvQlQCRDbcTtpNGbZ1V8xM gw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:10:43 2025 by rpki-client