$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: FwZzqS6G79ayb28ZTRRaBsFMhTdMcXV4+2+ApEW9AGg= Subject key identifier: DC:50:7E:F5:F2:AD:71:78:01:A9:3D:04:82:9C:7B:0A:9D:59:0C:33 Certificate issuer: /CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2 Certificate serial: 45E78DFFBCC72DD8C57DE45CEF2475DED65B507C Authority key identifier: D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa Signing time: Wed 18 Oct 2023 10:35:18 +0000 ROA not before: Wed 18 Oct 2023 10:30:18 +0000 ROA not after: Wed 16 Oct 2024 10:35:18 +0000 asID: 40676 IP address blocks: 157.254.40.0/23 maxlen: 24 157.254.42.0/23 maxlen: 24 157.254.44.0/23 maxlen: 24 157.254.46.0/23 maxlen: 24 157.254.80.0/23 maxlen: 24 157.254.82.0/23 maxlen: 24 157.254.84.0/23 maxlen: 24 157.254.86.0/23 maxlen: 24 157.254.88.0/23 maxlen: 24 157.254.90.0/23 maxlen: 24 157.254.92.0/23 maxlen: 24 157.254.94.0/23 maxlen: 24 157.254.132.0/22 maxlen: 24 157.254.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 04:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e7:8d:ff:bc:c7:2d:d8:c5:7d:e4:5c:ef:24:75:de:d6:5b:50:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2 Validity Not Before: Oct 18 10:30:18 2023 GMT Not After : Oct 16 10:35:18 2024 GMT Subject: CN=DC507EF5F2AD717801A93D04829C7B0A9D590C33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:60:5e:d7:f2:77:19:33:c3:c6:37:c2:93:c1: 2b:b6:44:ce:84:12:d9:d6:78:70:91:95:65:7c:d3: 4b:92:ac:03:7e:29:15:9d:e7:ef:8a:96:23:29:4a: 94:ab:ef:89:a2:91:ad:77:39:f2:93:61:86:7b:14: 85:72:17:aa:01:d2:00:4e:f6:6b:a4:bb:09:4a:57: 7f:3b:09:5e:91:c9:ed:4e:30:64:b1:6a:e9:f5:0f: f4:81:00:bc:39:ae:ca:b6:d5:73:c2:cb:cc:9d:81: 47:e8:87:f1:9a:83:d8:27:58:97:4a:cc:51:d8:8a: 4d:01:f1:53:f0:70:cb:91:21:b7:a2:9b:64:4d:b1: 9e:9c:58:d1:1a:41:0e:69:8a:3a:cb:b9:7e:19:f7: 20:23:b0:88:e7:23:07:a8:b9:a4:0c:33:d1:e1:6a: d9:fc:86:57:0e:35:2b:72:ca:c6:8a:b3:57:09:7c: e3:7a:40:95:85:ac:2f:70:a9:fa:2d:3b:96:3b:07: d5:be:3a:42:92:05:c3:30:ce:c6:9a:7e:0c:0c:89: a9:8a:10:9f:d4:76:ae:19:c9:41:24:ab:5d:b8:7f: 52:f2:06:ba:7d:53:9a:f4:87:5d:77:fa:d8:f1:68: c6:90:d4:ae:e7:0d:cf:ad:24:98:07:f4:1b:54:f1: d7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:50:7E:F5:F2:AD:71:78:01:A9:3D:04:82:9C:7B:0A:9D:59:0C:33 X509v3 Authority Key Identifier: keyid:D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.254.40.0/21 157.254.80.0/20 157.254.132.0-157.254.139.255 Signature Algorithm: sha256WithRSAEncryption 40:6b:4a:a7:27:b7:62:ac:c3:65:40:87:6c:3b:9a:69:80:53: 0d:5e:d9:44:54:a4:ce:3f:9b:50:6a:ab:c8:f3:cf:78:22:92: 8c:dd:1a:4b:86:24:e6:f8:40:e8:e9:b2:b1:56:2c:8f:d7:3d: af:1a:8c:20:0d:5e:bc:ad:52:8f:f8:7b:16:14:99:71:80:cc: dd:25:43:5b:b3:8e:1d:20:73:89:08:78:d2:27:9c:ce:53:68: 16:b8:5d:f0:84:b7:d8:8d:fe:37:ff:21:f1:3b:64:33:4d:ce: 90:5e:21:96:50:9e:15:c2:c2:21:fc:07:5e:f7:bb:0b:38:de: ca:16:0c:5c:90:79:38:59:69:a1:35:81:dd:48:02:3f:be:53: 3d:77:f5:19:23:c3:01:1d:06:23:2d:0a:a7:3c:4e:a8:35:e6: 41:e5:46:36:ed:3f:c2:6b:36:e2:1e:eb:18:6d:2c:b2:79:63: 7c:e8:90:a2:1d:35:97:e4:66:43:b1:b7:0c:57:32:45:a1:5a: e0:4c:c2:c1:f4:b8:43:59:ce:37:58:39:68:71:b8:7a:5c:06: 89:bf:3f:08:d1:64:6a:82:46:ba:03:dc:82:da:e9:1d:c9:85: f8:76:51:78:d2:f5:d0:32:a0:12:cb:b3:f0:70:ab:f8:97:0b: 70:18:23:91 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgIUReeN/7zHLdjFfeRc7yR13tZbUHwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZWRlNzgxNjJjNzkwZjdhZTA5YzFmNTM0Y2M3YTJjZjQ4 NDcxYTI2M2Q5NGNjZjdmYjIwHhcNMjMxMDE4MTAzMDE4WhcNMjQxMDE2MTAzNTE4 WjAzMTEwLwYDVQQDEyhEQzUwN0VGNUYyQUQ3MTc4MDFBOTNEMDQ4MjlDN0IwQTlE NTkwQzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGBe1/J3GTPD xjfCk8ErtkTOhBLZ1nhwkZVlfNNLkqwDfikVnefvipYjKUqUq++JopGtdznyk2GG exSFcheqAdIATvZrpLsJSld/OwlekcntTjBksWrp9Q/0gQC8Oa7KttVzwsvMnYFH 6IfxmoPYJ1iXSsxR2IpNAfFT8HDLkSG3optkTbGenFjRGkEOaYo6y7l+GfcgI7CI 5yMHqLmkDDPR4WrZ/IZXDjUrcsrGirNXCXzjekCVhawvcKn6LTuWOwfVvjpCkgXD MM7Gmn4MDImpihCf1HauGclBJKtduH9S8ga6fVOa9Iddd/rY8WjGkNSu5w3PrSSY B/QbVPHXnwIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFNxQfvXyrXF4Aak9BIKcewqd WQwzMB8GA1UdIwQYMBaAFNP5zSiKljS1OWOP59+myFQnwwP5MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NjQ5MGY0NDUzYjdiLzAv RDNGOUNEMjg4QTk2MzRCNTM5NjM4RkU3REZBNkM4NTQyN0MzMDNGOS5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvMDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5 ZWYzMjIzLzQzYjdmYmY0LTRkZWYtNDkwNC04N2ZkLWU1OThiZjljZjJlMy9lZGU3 ODE2MmM3OTBmN2FlMDljMWY1MzRjYzdhMmNmNDg0NzFhMjYzZDk0Y2NmN2ZiMi5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYzZTAxODU2NDkwZjQ0 NTNiN2IvMC9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDMG CCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQDnf4oAwQEnf5QMAwDBAKd/oQDBAKd /ogwDQYJKoZIhvcNAQELBQADggEBAEBrSqcnt2Ksw2VAh2w7mmmAUw1e2URUpM4/ m1Bqq8jzz3gikozdGkuGJOb4QOjpsrFWLI/XPa8ajCANXrytUo/4exYUmXGAzN0l Q1uzjh0gc4kIeNInnM5TaBa4XfCEt9iN/jf/IfE7ZDNNzpBeIZZQnhXCwiH8B173 uws43soWDFyQeThZaaE1gd1IAj++Uz139RkjwwEdBiMtCqc8Tqg15kHlRjbtP8Jr NuIe6xhtLLJ5Y3zokKIdNZfkZkOxtwxXMkWhWuBMwsH0uENZzjdYOWhxuHpcBom/ PwjRZGqCRroD3ILa6R3Jhfh2UXjS9dAyoBLLs/Bwq/iXC3AYI5E= -----END CERTIFICATE-----Generated at Fri May 3 04:35:25 2024 by rpki-client on console-ams.rpki-client.org