$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS211440.roa File: AS211440.roa (raw, json) Hash identifier: Dn8bwtNTxF0hZQiRLBRRrXHeRbUIyRe3wVYwznXfcpw= Subject key identifier: 40:70:A4:E9:22:E8:D0:9B:CC:5F:5A:91:BD:45:63:C5:6C:64:A2:F3 Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Certificate serial: 5EB6210643365C4C778857F3725508C1DA88AD5C Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS211440.roa Signing time: Wed 23 Apr 2025 08:27:15 +0000 ROA not before: Wed 23 Apr 2025 08:22:15 +0000 ROA not after: Wed 22 Apr 2026 08:27:15 +0000 asID: 211440 IP address blocks: 67.210.100.0/24 maxlen: 24 67.210.106.0/24 maxlen: 24 67.210.126.0/24 maxlen: 24 74.50.2.0/24 maxlen: 24 74.50.5.0/24 maxlen: 24 209.200.251.0/24 maxlen: 24 209.200.253.0/24 maxlen: 24 209.200.254.0/24 maxlen: 24 216.97.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 10:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b6:21:06:43:36:5c:4c:77:88:57:f3:72:55:08:c1:da:88:ad:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Validity Not Before: Apr 23 08:22:15 2025 GMT Not After : Apr 22 08:27:15 2026 GMT Subject: CN=4070A4E922E8D09BCC5F5A91BD4563C56C64A2F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:51:1f:cd:1b:bd:57:42:ab:d8:83:af:a6:c5: 7d:04:d7:b0:0b:cc:2d:dc:b6:a5:17:15:f9:81:0e: 9f:a5:d6:4c:70:11:7d:11:09:cd:30:66:1c:55:ec: 0d:9a:5d:15:9e:46:50:83:c8:5d:6a:14:a2:c0:be: e5:6e:d8:c6:ba:0b:58:01:4f:f6:56:40:bf:9f:22: d0:c0:4d:29:f6:26:b1:93:41:68:9d:fa:67:dc:bf: f9:68:29:e5:5b:92:2f:29:d1:9c:49:44:ff:93:0b: 08:74:bf:95:f7:56:a4:f7:55:c4:cd:20:f7:b1:e1: f8:34:2c:de:0d:f1:b4:f7:fe:01:4d:c4:d4:2a:6b: d9:16:af:f2:af:e4:f2:22:47:cb:de:71:be:96:e8: 6a:b8:14:26:9f:f3:4b:10:58:ab:d9:60:ec:fa:fc: e0:a5:53:b0:df:06:b0:6a:4b:8b:12:59:0d:00:25: c1:0f:bb:74:17:cb:7b:5a:77:99:63:e3:05:03:80: 5c:df:fc:54:13:bf:5b:40:60:ec:17:7a:6e:bf:46: b4:01:22:dc:93:54:6a:4d:19:90:97:46:5a:8a:c4: 66:e0:bf:01:09:14:b9:db:67:5c:94:b5:e5:b0:f6: 0c:4d:f8:46:01:8b:e2:6a:29:2a:d0:63:eb:83:cd: be:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:70:A4:E9:22:E8:D0:9B:CC:5F:5A:91:BD:45:63:C5:6C:64:A2:F3 X509v3 Authority Key Identifier: keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS211440.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.210.100.0/24 67.210.106.0/24 67.210.126.0/24 74.50.2.0/24 74.50.5.0/24 209.200.251.0/24 209.200.253.0-209.200.254.255 216.97.224.0/24 Signature Algorithm: sha256WithRSAEncryption a0:e3:11:21:c9:7a:4a:ca:c4:2f:ae:88:e8:bc:5c:97:3e:25: b2:83:60:e2:3b:60:7a:a5:ca:36:e3:c8:f5:01:d5:bd:7f:da: 50:9b:5b:28:04:3d:55:1e:4f:0a:e7:74:42:e9:cd:16:08:63: 9a:58:64:f6:13:50:41:a7:4f:83:25:6f:f1:15:1d:bf:f0:0f: b4:a2:c9:46:75:f9:6b:e5:d8:1f:24:44:64:b6:9a:77:70:6c: 44:9f:62:93:39:92:f5:6b:8a:3f:cd:0b:3e:bd:f5:0c:d9:22: d0:f5:dd:c8:d3:34:67:54:74:a9:59:a2:8f:d4:f2:5a:5b:86: 1e:d9:c7:03:ef:09:42:a6:bb:65:fd:e4:51:1b:de:8e:31:66: d6:04:8a:e0:eb:65:9f:47:35:2c:86:90:22:f1:27:13:6c:73: e5:58:c8:dc:2c:68:0a:77:f7:55:ac:79:8b:88:0f:c9:75:a3: 9f:be:ea:7f:66:49:31:15:82:a6:ef:82:72:b8:60:16:f6:44: 91:b1:3c:46:f6:94:09:41:59:10:e9:b0:2a:64:69:2b:3d:21: 27:f0:4b:57:9c:20:89:40:fe:94:c4:99:7a:a0:d0:a9:fa:f4: 75:71:a2:cb:2b:a1:50:a1:6b:4f:21:e1:00:52:b2:6c:bb:a9: cd:16:9b:2b -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgIUXrYhBkM2XEx3iFfzclUIwdqIrVwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDRkYTVkMTAzMjc3YzkzN2M1M2RjZTMwNWJkOWQ3OWMy YmE3OTQyNTM1N2JiNTZlZWQwHhcNMjUwNDIzMDgyMjE1WhcNMjYwNDIyMDgyNzE1 WjAzMTEwLwYDVQQDEyg0MDcwQTRFOTIyRThEMDlCQ0M1RjVBOTFCRDQ1NjNDNTZD NjRBMkYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVEfzRu9V0Kr 2IOvpsV9BNewC8wt3LalFxX5gQ6fpdZMcBF9EQnNMGYcVewNml0VnkZQg8hdahSi wL7lbtjGugtYAU/2VkC/nyLQwE0p9iaxk0Fonfpn3L/5aCnlW5IvKdGcSUT/kwsI dL+V91ak91XEzSD3seH4NCzeDfG09/4BTcTUKmvZFq/yr+TyIkfL3nG+luhquBQm n/NLEFir2WDs+vzgpVOw3wawakuLElkNACXBD7t0F8t7WneZY+MFA4Bc3/xUE79b QGDsF3puv0a0ASLck1RqTRmQl0ZaisRm4L8BCRS522dclLXlsPYMTfhGAYviaikq 0GPrg82+/wIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFEBwpOki6NCbzF9akb1FY8Vs ZKLzMB8GA1UdIwQYMBaAFFtA03PWcXxwTEg8oGWM+1JXxOk8MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODE0M2JmNjIwMTgyMTEzZWVhNDkwZDMzLzEv NUI0MEQzNzNENjcxN0M3MDRDNDgzQ0EwNjU4Q0ZCNTI1N0M0RTkzQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEz YjAyZTI5LzJiZDBmYWM2LTFhNDYtNDBiNS1iZTY2LTllMGY3YjU0ZGY3Ny80NGRh NWQxMDMyNzdjOTM3YzUzZGNlMzA1YmQ5ZDc5YzJiYTc5NDI1MzU3YmI1NmVlZC5j ZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4MTQzYmY2MjAxODIxMTNlZWE0 OTBkMzMvMS9BUzIxMTQ0MC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBR BggrBgEFBQcBBwEB/wRCMEAwPgQCAAEwOAMEAEPSZAMEAEPSagMEAEPSfgMEAEoy AgMEAEoyBQMEANHI+zAMAwQA0cj9AwQA0cj+AwQA2GHgMA0GCSqGSIb3DQEBCwUA A4IBAQCg4xEhyXpKysQvrojovFyXPiWyg2DiO2B6pco248j1AdW9f9pQm1soBD1V Hk8K53RC6c0WCGOaWGT2E1BBp0+DJW/xFR2/8A+0oslGdflr5dgfJERktpp3cGxE n2KTOZL1a4o/zQs+vfUM2SLQ9d3I0zRnVHSpWaKP1PJaW4Ye2ccD7wlCprtl/eRR G96OMWbWBIrg62WfRzUshpAi8ScTbHPlWMjcLGgKd/dVrHmLiA/JdaOfvup/Zkkx FYKm74JyuGAW9kSRsTxG9pQJQVkQ6bAqZGkrPSEn8EtXnCCJQP6UxJl6oNCp+vR1 caLLK6FQoWtPIeEAUrJsu6nNFpsr -----END CERTIFICATE-----Generated at Sat Apr 26 21:46:37 2025 by rpki-client