$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7029.roa File: AS7029.roa (raw, json) Hash identifier: sMxrphXXWlEDRkMAYjm77jcjuJckDAwPigYckCaBVkY= Subject key identifier: 9C:69:86:FD:71:1E:3E:65:7D:CF:82:63:BC:4E:7C:C4:FA:40:F3:72 Certificate issuer: /CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Certificate serial: 0549F1D8C37E9CB3AD489F1FC21BCEC54A6AE725 Authority key identifier: 27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7029.roa Signing time: Thu 03 Jul 2025 18:06:14 +0000 ROA not before: Thu 03 Jul 2025 18:01:14 +0000 ROA not after: Thu 02 Jul 2026 18:06:14 +0000 asID: 7029 IP address blocks: 40.27.0.0/21 maxlen: 24 40.27.28.0/22 maxlen: 24 40.27.40.0/21 maxlen: 24 40.27.56.0/21 maxlen: 24 40.27.140.0/22 maxlen: 24 40.27.248.0/21 maxlen: 24 40.223.16.0/21 maxlen: 24 40.223.80.0/21 maxlen: 24 40.223.122.0/24 maxlen: 24 40.223.184.0/21 maxlen: 24 40.223.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 21 Jul 2025 03:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:49:f1:d8:c3:7e:9c:b3:ad:48:9f:1f:c2:1b:ce:c5:4a:6a:e7:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Validity Not Before: Jul 3 18:01:14 2025 GMT Not After : Jul 2 18:06:14 2026 GMT Subject: CN=9C6986FD711E3E657DCF8263BC4E7CC4FA40F372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e2:7e:64:81:4e:a2:33:45:f5:28:f1:cb:7f: 83:5c:2e:1e:99:57:3e:50:ed:e6:27:fb:7a:90:97: 97:e5:95:19:5d:11:56:a7:bd:08:da:93:6d:ce:ec: c5:c0:5d:74:4d:9f:7c:9f:6a:4f:7f:f3:df:98:59: 15:ca:3d:ff:2a:68:1a:dc:fd:a2:9c:2b:a0:4c:97: b6:31:aa:77:f8:66:e9:03:8d:2a:3b:42:63:2e:7d: 9b:97:07:b3:02:92:05:04:76:2a:87:1f:69:47:db: 29:31:ad:70:a1:96:12:60:3e:25:f4:bb:58:94:54: 04:b4:4f:fc:4a:c8:ed:a7:1e:39:64:bb:6e:f7:22: 59:72:15:6a:2c:9f:5d:a2:76:43:1b:d5:73:9f:a1: 9e:be:1e:c9:03:c3:b3:72:67:b6:3e:8f:27:69:ec: d9:ef:4f:e2:ba:5c:cc:5b:05:fe:e2:d0:dd:1e:b4: 6e:9f:5b:bf:43:d7:38:c6:72:e2:c3:0a:52:f6:61: 85:7f:f8:1a:97:b9:cd:75:e3:e8:52:ee:73:a8:68: 84:d5:0c:3a:be:c1:6a:74:c2:64:21:63:ec:c4:be: 12:ef:9f:e7:37:c3:10:b0:d8:ab:7e:c3:03:b4:3a: e7:3a:e3:5e:6a:f9:3a:2e:a9:69:16:25:70:79:bd: 08:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:69:86:FD:71:1E:3E:65:7D:CF:82:63:BC:4E:7C:C4:FA:40:F3:72 X509v3 Authority Key Identifier: keyid:27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7029.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.27.0.0/21 40.27.28.0/22 40.27.40.0/21 40.27.56.0/21 40.27.140.0/22 40.27.248.0/21 40.223.16.0/21 40.223.80.0/21 40.223.122.0/24 40.223.184.0/21 40.223.245.0/24 Signature Algorithm: sha256WithRSAEncryption 65:c4:3c:cd:ae:a8:26:24:d8:e3:b6:a4:15:61:a6:19:6f:df: a3:c3:10:9d:b4:5b:c7:1a:12:f1:c1:47:b3:d4:f9:f7:bb:b7: 0b:80:ac:6d:c3:70:67:96:69:3f:1c:5b:7e:74:89:21:00:25: 3a:c6:3e:ec:6d:33:29:c4:6b:fd:0f:91:e2:36:30:ef:51:7c: 37:5a:0c:9f:9a:3f:81:96:ab:90:f3:0c:82:d2:b5:1c:89:71: 2e:a0:04:7a:a7:27:36:c7:c0:aa:dc:d1:00:52:6c:d2:23:93: 7a:20:f1:8e:43:3c:68:e8:e4:b5:cb:56:7f:01:56:e7:bd:08: f6:65:4a:ce:66:ff:cc:34:e4:62:93:3d:1b:1e:da:e7:6c:c1: 01:0d:30:15:d5:70:80:75:67:c6:f0:fa:ed:75:6f:fb:ab:d3: b4:cd:a5:cb:8a:9a:97:25:ff:8d:d8:21:c8:fe:26:85:b9:a4: df:a3:af:a4:0f:c0:38:41:ba:63:02:ea:a8:8e:0d:a9:07:7d: ed:df:b7:10:5d:e5:ae:4b:3b:dd:da:38:b6:83:05:7d:41:16: 5d:9b:0a:eb:a7:e5:ef:33:8e:75:60:6d:88:87:f1:e3:42:54: dd:38:0a:10:c2:2a:44:31:aa:9c:a8:ec:d7:50:7e:b6:89:fe: 8d:ea:a7:12 -----BEGIN CERTIFICATE----- MIIFuTCCBKGgAwIBAgIUBUnx2MN+nLOtSJ8fwhvOxUpq5yUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODk4MTIwNGI5MzQxMzU0MGY3ZDViODZmMGY5ZTc0ZjFk YWFkZTMxZGYwZGIwZjM4OGUwHhcNMjUwNzAzMTgwMTE0WhcNMjYwNzAyMTgwNjE0 WjAzMTEwLwYDVQQDEyg5QzY5ODZGRDcxMUUzRTY1N0RDRjgyNjNCQzRFN0NDNEZB NDBGMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eJ+ZIFOojNF 9Sjxy3+DXC4emVc+UO3mJ/t6kJeX5ZUZXRFWp70I2pNtzuzFwF10TZ98n2pPf/Pf mFkVyj3/Kmga3P2inCugTJe2Map3+GbpA40qO0JjLn2blwezApIFBHYqhx9pR9sp Ma1woZYSYD4l9LtYlFQEtE/8Ssjtpx45ZLtu9yJZchVqLJ9donZDG9Vzn6Gevh7J A8Ozcme2Po8naezZ70/iulzMWwX+4tDdHrRun1u/Q9c4xnLiwwpS9mGFf/gal7nN dePoUu5zqGiE1Qw6vsFqdMJkIWPsxL4S75/nN8MQsNirfsMDtDrnOuNeavk6Lqlp FiVweb0InwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFJxphv1xHj5lfc+CY7xOfMT6 QPNyMB8GA1UdIwQYMBaAFCeK6Mq422vdgtde3W2FDRkgDR+TMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTg0Zjc1M2RjNjQxMTlkLzUv Mjc4QUU4Q0FCOERCNkJERDgyRDc1RURENkQ4NTBEMTkyMDBEMUY5My5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1LzJhMTM1NGM3LWFiY2EtNDFiNi04YjIxLTRlMzVhOGQ5YzJiNC84OTgx MjA0YjkzNDEzNTQwZjdkNWI4NmYwZjllNzRmMWRhYWRlMzFkZjBkYjBmMzg4ZS5j ZXIwbgYIKwYBBQUHAQsEYjBgMF4GCCsGAQUFBzALhlJyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODRmNzUzZGM2 NDExOWQvNS9BUzcwMjkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwWwYI KwYBBQUHAQcBAf8ETDBKMEgEAgABMEIDBAMoGwADBAIoGxwDBAMoGygDBAMoGzgD BAIoG4wDBAMoG/gDBAMo3xADBAMo31ADBAAo33oDBAMo37gDBAAo3/UwDQYJKoZI hvcNAQELBQADggEBAGXEPM2uqCYk2OO2pBVhphlv36PDEJ20W8caEvHBR7PU+fe7 twuArG3DcGeWaT8cW350iSEAJTrGPuxtMynEa/0PkeI2MO9RfDdaDJ+aP4GWq5Dz DILStRyJcS6gBHqnJzbHwKrc0QBSbNIjk3og8Y5DPGjo5LXLVn8BVue9CPZlSs5m /8w05GKTPRse2udswQENMBXVcIB1Z8bw+u11b/ur07TNpcuKmpcl/43YIcj+JoW5 pN+jr6QPwDhBumMC6qiODakHfe3ftxBd5a5LO93aOLaDBX1BFl2bCuun5e8zjnVg bYiH8eNCVN04ChDCKkQxqpyo7NdQfraJ/o3qpxI= -----END CERTIFICATE-----Generated at Sun Jul 20 14:07:50 2025 by rpki-client