$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS136258.roa File: AS136258.roa (raw, json) Hash identifier: sU+uFjJwg9iuWPwe3f+KWzmukIEDKEceWIT3puOJGtI= Subject key identifier: AF:4F:11:11:7F:4B:0E:29:87:94:1B:80:A3:2E:B2:69:7E:21:8B:D2 Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Certificate serial: 4DC339C36F061560319D380F5ADE0B2B150BC978 Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS136258.roa Signing time: Mon 07 Apr 2025 12:20:11 +0000 ROA not before: Mon 07 Apr 2025 12:15:11 +0000 ROA not after: Mon 06 Apr 2026 12:20:11 +0000 asID: 136258 IP address blocks: 23.95.72.0/22 maxlen: 24 23.95.76.0/23 maxlen: 24 23.95.79.0/24 maxlen: 24 104.168.10.0/24 maxlen: 24 107.174.114.0/24 maxlen: 24 107.175.82.0/24 maxlen: 24 172.245.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 10:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c3:39:c3:6f:06:15:60:31:9d:38:0f:5a:de:0b:2b:15:0b:c9:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Validity Not Before: Apr 7 12:15:11 2025 GMT Not After : Apr 6 12:20:11 2026 GMT Subject: CN=AF4F11117F4B0E2987941B80A32EB2697E218BD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d1:cb:34:ea:a4:62:57:19:b0:60:ff:f0:1d: 15:1f:1d:89:24:48:1f:f7:1f:ff:ba:c1:5d:30:c7: 04:50:5c:24:4d:de:26:aa:44:4a:d0:68:1c:89:ff: 76:22:8a:12:72:87:b1:9a:38:46:bf:13:76:68:c7: df:b3:fb:86:f9:e8:1d:25:b9:fb:bf:67:b5:39:29: 9e:f5:22:5c:f6:06:cd:1c:87:b4:62:52:3a:57:5d: 93:04:12:46:1b:05:54:2b:df:df:d1:28:21:03:b9: d3:de:ca:de:31:6c:e6:d5:2f:d5:dd:09:fd:c5:be: 1f:09:e7:92:62:00:80:bb:26:37:9f:3e:e6:12:a6: c0:48:32:c0:da:d4:4a:09:17:2c:28:f3:03:f1:66: 14:8f:ba:89:d9:c6:d4:94:bf:ca:bb:73:d2:cb:ee: a6:09:e6:c6:98:76:be:35:d5:86:97:20:1f:b0:c4: 26:6e:97:fd:2f:b0:08:20:5b:1e:a0:7f:48:c3:cb: f3:b3:19:bc:e0:6d:68:d3:59:20:35:5f:7e:6e:0f: 78:1a:b3:2a:ee:58:0f:6a:e3:3e:8e:f5:ce:9d:f1: 18:42:64:48:a5:08:c3:72:42:22:76:6e:d1:16:78: e0:26:1e:91:ed:f3:15:0f:00:5a:4a:5e:a8:01:bc: fa:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:4F:11:11:7F:4B:0E:29:87:94:1B:80:A3:2E:B2:69:7E:21:8B:D2 X509v3 Authority Key Identifier: keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS136258.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.95.72.0-23.95.77.255 23.95.79.0/24 104.168.10.0/24 107.174.114.0/24 107.175.82.0/24 172.245.232.0/21 Signature Algorithm: sha256WithRSAEncryption 60:24:ff:f5:1c:84:be:c8:ba:ac:99:a7:19:a9:3c:73:e2:84: bc:6e:3e:2a:5f:fe:dd:04:b1:70:c9:cf:e0:ae:ce:a2:a1:b5: d7:90:4a:6a:2f:13:a5:58:71:df:b8:c8:19:97:95:37:05:01: e0:b4:58:ea:7d:ca:43:90:aa:cb:95:a7:b7:8e:e4:34:3b:2e: 26:46:cb:a0:fa:6e:2e:f2:41:7c:b7:1c:a7:dd:69:2b:eb:6f: 27:57:26:3d:75:0d:48:be:c1:e3:c2:13:9d:92:7c:03:f5:94: c3:9d:93:36:22:cd:69:ef:73:81:98:31:ec:e6:9f:5c:97:57: cf:47:01:50:fc:74:81:2e:46:53:ee:83:18:43:f9:89:36:3b: 28:11:a8:64:97:65:3e:de:37:3c:6b:5a:28:d2:ae:69:13:bd: 5e:3f:8e:d5:ad:60:47:ba:ad:1e:c2:55:b9:32:72:8e:64:78: 9a:a8:8e:42:a0:23:78:a3:78:34:ee:0e:c7:42:62:22:61:23: 48:5f:f2:67:70:28:c5:55:69:59:7d:ca:87:5f:50:c2:69:88: 64:16:98:00:e0:34:1b:97:34:e2:a6:f7:75:4b:aa:57:8d:f4: 61:31:cc:e0:57:ed:f8:12:40:69:66:c5:02:4a:18:cc:99:1e: 15:d9:e8:05 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgIUTcM5w28GFWAxnTgPWt4LKxULyXgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDRkYTVkMTAzMjc3YzkzN2M1M2RjZTMwNWJkOWQ3OWMy YmE3OTQyNTM1N2JiNTZlZWQwHhcNMjUwNDA3MTIxNTExWhcNMjYwNDA2MTIyMDEx WjAzMTEwLwYDVQQDEyhBRjRGMTExMTdGNEIwRTI5ODc5NDFCODBBMzJFQjI2OTdF MjE4QkQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tHLNOqkYlcZ sGD/8B0VHx2JJEgf9x//usFdMMcEUFwkTd4mqkRK0Ggcif92IooScoexmjhGvxN2 aMffs/uG+egdJbn7v2e1OSme9SJc9gbNHIe0YlI6V12TBBJGGwVUK9/f0SghA7nT 3sreMWzm1S/V3Qn9xb4fCeeSYgCAuyY3nz7mEqbASDLA2tRKCRcsKPMD8WYUj7qJ 2cbUlL/Ku3PSy+6mCebGmHa+NdWGlyAfsMQmbpf9L7AIIFseoH9Iw8vzsxm84G1o 01kgNV9+bg94GrMq7lgPauM+jvXOnfEYQmRIpQjDckIidm7RFnjgJh6R7fMVDwBa Sl6oAbz6cQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK9PERF/Sw4ph5QbgKMusml+ IYvSMB8GA1UdIwQYMBaAFFtA03PWcXxwTEg8oGWM+1JXxOk8MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODE0M2JmNjIwMTgyMTEzZWVhNDkwZDMzLzEv NUI0MEQzNzNENjcxN0M3MDRDNDgzQ0EwNjU4Q0ZCNTI1N0M0RTkzQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEz YjAyZTI5LzJiZDBmYWM2LTFhNDYtNDBiNS1iZTY2LTllMGY3YjU0ZGY3Ny80NGRh NWQxMDMyNzdjOTM3YzUzZGNlMzA1YmQ5ZDc5YzJiYTc5NDI1MzU3YmI1NmVlZC5j ZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4MTQzYmY2MjAxODIxMTNlZWE0 OTBkMzMvMS9BUzEzNjI1OC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBF BggrBgEFBQcBBwEB/wQ2MDQwMgQCAAEwLDAMAwQDF19IAwQBF19MAwQAF19PAwQA aKgKAwQAa65yAwQAa69SAwQDrPXoMA0GCSqGSIb3DQEBCwUAA4IBAQBgJP/1HIS+ yLqsmacZqTxz4oS8bj4qX/7dBLFwyc/grs6iobXXkEpqLxOlWHHfuMgZl5U3BQHg tFjqfcpDkKrLlae3juQ0Oy4mRsug+m4u8kF8txyn3Wkr628nVyY9dQ1IvsHjwhOd knwD9ZTDnZM2Is1p73OBmDHs5p9cl1fPRwFQ/HSBLkZT7oMYQ/mJNjsoEahkl2U+ 3jc8a1oo0q5pE71eP47VrWBHuq0ewlW5MnKOZHiaqI5CoCN4o3g07g7HQmIiYSNI X/JncCjFVWlZfcqHX1DCaYhkFpgA4DQblzTipvd1S6pXjfRhMczgV+34EkBpZsUC ShjMmR4V2egF -----END CERTIFICATE-----Generated at Sat Apr 26 18:34:16 2025 by rpki-client