$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: ZmAkrKv0895M6Xoh8p1vnmOGwH1BwPNRGnDLzCe4DpQ= Subject key identifier: 05:C8:49:D0:F2:ED:04:12:C0:16:3E:AF:F1:E8:B1:9D:D5:6F:3E:70 Certificate issuer: /CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2 Certificate serial: 54543717A42E4341155262A45238AC1A5BDB7413 Authority key identifier: D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa Signing time: Sat 09 May 2026 08:27:03 +0000 ROA not before: Sat 09 May 2026 08:22:03 +0000 ROA not after: Sat 08 May 2027 08:27:03 +0000 asID: 40676 IP address blocks: 157.254.8.0/24 maxlen: 24 157.254.155.0/24 maxlen: 24 157.254.191.0/24 maxlen: 24 157.254.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 May 2026 08:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:54:37:17:a4:2e:43:41:15:52:62:a4:52:38:ac:1a:5b:db:74:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2 Validity Not Before: May 9 08:22:03 2026 GMT Not After : May 8 08:27:03 2027 GMT Subject: CN=05C849D0F2ED0412C0163EAFF1E8B19DD56F3E70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ea:56:70:40:b5:56:ac:df:a5:b1:95:45:f7: 06:fc:07:a4:f3:b7:3d:e3:c9:6b:36:b3:3f:7b:b1: 37:f3:4c:46:08:f4:a5:94:04:fb:3e:71:d9:6a:df: c0:0b:aa:7c:13:ce:6f:80:50:e6:5f:38:13:b7:d2: 69:0e:72:c8:8b:b8:20:43:a1:c1:b4:09:4c:b1:e2: b1:79:3a:ba:a2:d1:af:06:b6:b0:5c:26:8f:5e:cc: fa:e6:e5:21:45:af:04:9b:e9:e8:dc:34:77:f3:bb: 1c:7a:b8:b0:45:7e:4f:10:67:83:24:f8:a0:4e:d7: d0:d2:89:d1:0d:e6:1c:97:e8:fe:8c:e9:17:0d:a9: e7:52:8e:ec:b9:0d:21:03:53:1e:36:2d:ed:9c:a6: fd:d5:e7:23:1e:3d:e9:42:38:81:85:1f:7e:3e:b7: d5:83:03:8a:13:1e:97:2c:d1:43:c1:41:ec:67:16: e3:1a:e0:7b:44:56:0e:81:d0:20:9b:7d:16:91:dd: fc:08:dd:7d:7d:9d:35:06:10:e4:09:ca:74:77:0f: 7f:73:99:05:fd:c4:0f:9c:0a:39:9f:5e:c9:0e:40: 40:24:0d:69:a5:39:a4:2e:8f:15:ce:08:de:6b:6b: a4:b4:e7:c7:ed:45:4f:e5:44:71:e4:de:30:17:57: 66:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C8:49:D0:F2:ED:04:12:C0:16:3E:AF:F1:E8:B1:9D:D5:6F:3E:70 X509v3 Authority Key Identifier: keyid:D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.254.8.0/24 157.254.155.0/24 157.254.191.0/24 157.254.250.0/24 Signature Algorithm: sha256WithRSAEncryption 11:0f:bb:67:59:69:48:ce:b7:96:c8:9f:16:ce:86:0a:23:6a: ca:ce:e4:71:8f:aa:9f:30:a7:b8:9d:f2:85:74:49:41:23:dc: 01:17:f6:54:6c:31:f1:96:7d:cd:8c:05:a3:39:3a:a6:1f:ac: 34:d4:77:fb:ba:04:66:d9:d6:b7:0f:d3:43:89:cc:d9:cf:e8: e2:40:d9:87:3b:e3:1d:d0:e2:4c:d8:a3:24:4b:f8:b6:6f:39: 5f:ec:5b:f8:c6:1a:41:9c:bc:f2:8c:1a:4f:7e:23:f1:c0:85: 88:c4:2a:b2:b5:74:ff:4a:70:8d:33:5c:07:07:7d:71:30:95: 28:f0:df:8d:ec:24:11:9a:d1:8d:91:63:da:59:01:2e:11:1d: 1a:01:89:22:06:70:25:74:21:4f:c1:ca:76:97:2e:03:6f:a3: 8b:a5:79:e4:ff:42:1f:18:c4:05:f3:19:e0:42:1d:06:0a:51: c0:cc:9b:83:70:e2:4c:f1:de:fc:1d:79:73:5a:f4:e8:68:2c: 2f:48:df:04:99:7d:5c:44:f7:9b:e7:7d:61:70:0b:06:1f:91: 34:0c:a5:67:9e:5f:60:7f:41:6e:2e:8b:c6:6c:50:51:22:37: 9c:c1:23:90:fa:f2:2e:69:ff:fd:92:b5:29:14:e6:8d:b7:0c: ed:81:fb:30 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIUVFQ3F6QuQ0EVUmKkUjisGlvbdBMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZWRlNzgxNjJjNzkwZjdhZTA5YzFmNTM0Y2M3YTJjZjQ4 NDcxYTI2M2Q5NGNjZjdmYjIwHhcNMjYwNTA5MDgyMjAzWhcNMjcwNTA4MDgyNzAz WjAzMTEwLwYDVQQDEygwNUM4NDlEMEYyRUQwNDEyQzAxNjNFQUZGMUU4QjE5REQ1 NkYzRTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOpWcEC1Vqzf pbGVRfcG/Aek87c948lrNrM/e7E380xGCPSllAT7PnHZat/AC6p8E85vgFDmXzgT t9JpDnLIi7ggQ6HBtAlMseKxeTq6otGvBrawXCaPXsz65uUhRa8Em+no3DR387sc eriwRX5PEGeDJPigTtfQ0onRDeYcl+j+jOkXDannUo7suQ0hA1MeNi3tnKb91ecj Hj3pQjiBhR9+PrfVgwOKEx6XLNFDwUHsZxbjGuB7RFYOgdAgm30Wkd38CN19fZ01 BhDkCcp0dw9/c5kF/cQPnAo5n17JDkBAJA1ppTmkLo8Vzgjea2uktOfH7UVP5URx 5N4wF1dmbwIDAQABo4ICkDCCAowwHQYDVR0OBBYEFAXISdDy7QQSwBY+r/HosZ3V bz5wMB8GA1UdIwQYMBaAFNP5zSiKljS1OWOP59+myFQnwwP5MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NjQ5MGY0NDUzYjdiLzAv RDNGOUNEMjg4QTk2MzRCNTM5NjM4RkU3REZBNkM4NTQyN0MzMDNGOS5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvMDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5 ZWYzMjIzLzQzYjdmYmY0LTRkZWYtNDkwNC04N2ZkLWU1OThiZjljZjJlMy9lZGU3 ODE2MmM3OTBmN2FlMDljMWY1MzRjYzdhMmNmNDg0NzFhMjYzZDk0Y2NmN2ZiMi5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYzZTAxODU2NDkwZjQ0 NTNiN2IvMC9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEG CCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAnf4IAwQAnf6bAwQAnf6/AwQAnf76 MA0GCSqGSIb3DQEBCwUAA4IBAQARD7tnWWlIzreWyJ8WzoYKI2rKzuRxj6qfMKe4 nfKFdElBI9wBF/ZUbDHxln3NjAWjOTqmH6w01Hf7ugRm2da3D9NDiczZz+jiQNmH O+Md0OJM2KMkS/i2bzlf7Fv4xhpBnLzyjBpPfiPxwIWIxCqytXT/SnCNM1wHB31x MJUo8N+N7CQRmtGNkWPaWQEuER0aAYkiBnAldCFPwcp2ly4Db6OLpXnk/0IfGMQF 8xngQh0GClHAzJuDcOJM8d78HXlzWvToaCwvSN8EmX1cRPeb531hcAsGH5E0DKVn nl9gf0FuLovGbFBRIjecwSOQ+vIuaf/9krUpFOaNtwztgfsw -----END CERTIFICATE-----Generated at Sun May 10 14:04:24 2026 by rpki-client