$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: akqlDbvne9sAVL19Z4TdF/6Ku8BICo/S0XgJjWajfAc= Subject key identifier: FF:F9:2B:BB:98:29:1A:7D:1F:CA:8E:CE:1F:3C:0A:82:72:FE:D5:34 Certificate issuer: /CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2 Certificate serial: 09F39352CC71A49723EB82ACBC2E796ADD71058F Authority key identifier: D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa Signing time: Sat 08 Mar 2025 15:14:16 +0000 ROA not before: Sat 08 Mar 2025 15:09:16 +0000 ROA not after: Sat 07 Mar 2026 15:14:16 +0000 asID: 40676 IP address blocks: 157.254.92.0/23 maxlen: 24 157.254.94.0/23 maxlen: 24 157.254.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 09:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f3:93:52:cc:71:a4:97:23:eb:82:ac:bc:2e:79:6a:dd:71:05:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2 Validity Not Before: Mar 8 15:09:16 2025 GMT Not After : Mar 7 15:14:16 2026 GMT Subject: CN=FFF92BBB98291A7D1FCA8ECE1F3C0A8272FED534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:65:c8:1f:82:1e:23:ed:7c:15:6c:d4:aa:e2: b9:72:3a:75:8a:83:c0:aa:00:03:c7:b0:97:84:02: 68:8e:6d:dc:fd:0d:01:3a:c9:da:61:15:3a:c9:c5: 17:57:9f:cd:c5:69:c1:bf:5c:e9:3e:77:f2:55:2f: ae:1e:aa:13:dd:b3:0a:37:d5:42:fd:08:aa:af:01: 97:fa:47:b7:6f:98:cf:3e:c4:2b:f8:e2:d6:5d:d3: 70:29:d7:10:4d:45:cd:76:e6:da:ad:ce:6d:81:3b: 6f:d7:05:53:c2:72:75:90:ea:a2:22:df:b2:e6:18: e0:f4:5f:a6:b5:3c:f0:6c:9f:88:0d:03:b7:50:3a: 06:6d:b5:2d:92:63:68:f2:a1:98:ea:2c:96:21:9d: 44:40:45:3c:ff:5d:31:51:1d:59:7b:04:37:1e:74: 5d:8c:89:e3:f1:e7:76:7f:ea:ff:0d:71:ef:ca:ba: 2a:7d:55:55:ab:da:24:d8:c8:07:54:1e:05:8c:7a: 03:a6:eb:44:bf:b7:77:39:b6:4f:5a:80:cc:70:31: de:8f:50:1b:a8:ed:39:a5:27:1e:4d:02:7c:2b:17: ed:fd:bf:19:a9:a5:0d:4b:fe:09:08:86:a2:3e:62: 13:cb:32:bb:31:28:63:37:2d:f9:af:f3:84:7a:99: aa:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F9:2B:BB:98:29:1A:7D:1F:CA:8E:CE:1F:3C:0A:82:72:FE:D5:34 X509v3 Authority Key Identifier: keyid:D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.254.92.0/22 157.254.250.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:cf:11:ba:41:27:0b:65:21:53:9d:fe:68:92:eb:30:19:c8: 1d:47:7e:e2:f6:df:7f:0d:46:99:4d:63:22:f3:d5:22:c2:94: 02:b8:b2:37:c7:f7:96:ef:ed:76:b5:da:e3:30:a7:d4:26:7c: b8:3f:c0:cb:7d:94:a4:42:80:fa:5b:04:3c:9a:8c:cc:b7:d2: f7:e0:fd:c3:c5:92:f1:5c:a1:bf:8f:fb:72:f1:35:3f:f6:3a: 52:e7:e5:4c:3b:33:39:a5:95:3d:ff:40:30:ff:65:b2:ca:e7: 6b:0a:51:01:1b:4d:2e:9a:11:55:00:d4:d5:de:0e:c2:d2:98: 41:f6:29:81:98:9d:73:da:42:c3:7d:e5:21:9c:ca:ec:00:6a: e2:41:e5:a9:3c:5a:e9:60:54:64:ad:22:52:ac:35:c3:d3:27: 2d:db:81:f4:a0:2a:18:f2:e7:6a:3c:42:b3:57:60:55:23:08: cc:e7:a7:ca:f6:d4:ae:b6:95:90:b9:d2:d6:97:07:a8:9a:ad: 70:86:95:38:a8:48:49:1b:fa:86:4f:e4:fa:27:ee:3a:21:33: 0a:20:f6:5f:b5:c6:f2:28:b0:9a:8c:a8:1f:7c:5b:32:29:02: e1:82:02:bd:8b:b5:96:be:04:5c:b3:3e:6b:99:fd:cf:2c:26: e3:f7:ea:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUCfOTUsxxpJcj64KsvC55at1xBY8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZWRlNzgxNjJjNzkwZjdhZTA5YzFmNTM0Y2M3YTJjZjQ4 NDcxYTI2M2Q5NGNjZjdmYjIwHhcNMjUwMzA4MTUwOTE2WhcNMjYwMzA3MTUxNDE2 WjAzMTEwLwYDVQQDEyhGRkY5MkJCQjk4MjkxQTdEMUZDQThFQ0UxRjNDMEE4Mjcy RkVENTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGXIH4IeI+18 FWzUquK5cjp1ioPAqgADx7CXhAJojm3c/Q0BOsnaYRU6ycUXV5/NxWnBv1zpPnfy VS+uHqoT3bMKN9VC/QiqrwGX+ke3b5jPPsQr+OLWXdNwKdcQTUXNdubarc5tgTtv 1wVTwnJ1kOqiIt+y5hjg9F+mtTzwbJ+IDQO3UDoGbbUtkmNo8qGY6iyWIZ1EQEU8 /10xUR1ZewQ3HnRdjInj8ed2f+r/DXHvyroqfVVVq9ok2MgHVB4FjHoDputEv7d3 ObZPWoDMcDHej1AbqO05pSceTQJ8Kxft/b8ZqaUNS/4JCIaiPmITyzK7MShjNy35 r/OEepmq6QIDAQABo4IChDCCAoAwHQYDVR0OBBYEFP/5K7uYKRp9H8qOzh88CoJy /tU0MB8GA1UdIwQYMBaAFNP5zSiKljS1OWOP59+myFQnwwP5MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NjQ5MGY0NDUzYjdiLzAv RDNGOUNEMjg4QTk2MzRCNTM5NjM4RkU3REZBNkM4NTQyN0MzMDNGOS5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvMDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5 ZWYzMjIzLzQzYjdmYmY0LTRkZWYtNDkwNC04N2ZkLWU1OThiZjljZjJlMy9lZGU3 ODE2MmM3OTBmN2FlMDljMWY1MzRjYzdhMmNmNDg0NzFhMjYzZDk0Y2NmN2ZiMi5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYzZTAxODU2NDkwZjQ0 NTNiN2IvMC9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCnf5cAwQAnf76MA0GCSqGSIb3DQEB CwUAA4IBAQAtzxG6QScLZSFTnf5okuswGcgdR37i9t9/DUaZTWMi89UiwpQCuLI3 x/eW7+12tdrjMKfUJny4P8DLfZSkQoD6WwQ8mozMt9L34P3DxZLxXKG/j/ty8TU/ 9jpS5+VMOzM5pZU9/0Aw/2WyyudrClEBG00umhFVANTV3g7C0phB9imBmJ1z2kLD feUhnMrsAGriQeWpPFrpYFRkrSJSrDXD0yct24H0oCoY8udqPEKzV2BVIwjM56fK 9tSutpWQudLWlweomq1whpU4qEhJG/qGT+T6J+46ITMKIPZftcbyKLCajKgffFsy KQLhggK9i7WWvgRcsz5rmf3PLCbj9+ov -----END CERTIFICATE-----Generated at Sat Apr 5 10:53:30 2025 by rpki-client