$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: rPBkmACCFHKATpphtUnNK6smAWtIeJ8f69E0mCIqSso= Subject key identifier: 94:ED:D5:F6:C3:CC:B3:E0:E3:12:20:80:E4:5A:B8:42:62:EC:7D:97 Certificate issuer: /CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Certificate serial: 70B675A4FBE184353F9B4976CAE90C1DE20BB173 Authority key identifier: 27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40676.roa Signing time: Sun 02 Nov 2025 01:37:28 +0000 ROA not before: Sun 02 Nov 2025 01:32:28 +0000 ROA not after: Sun 01 Nov 2026 01:37:28 +0000 asID: 40676 IP address blocks: 40.27.4.0/22 maxlen: 24 40.27.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 13:55:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:b6:75:a4:fb:e1:84:35:3f:9b:49:76:ca:e9:0c:1d:e2:0b:b1:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Validity Not Before: Nov 2 01:32:28 2025 GMT Not After : Nov 1 01:37:28 2026 GMT Subject: CN=94EDD5F6C3CCB3E0E3122080E45AB84262EC7D97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:6d:9b:ac:93:80:74:a4:98:bc:2e:23:1d: 20:73:56:5b:86:66:26:73:8c:be:a5:0d:78:0b:ef: ee:4a:02:3b:b0:5c:68:0b:5f:9c:44:33:cb:76:39: 60:54:23:f4:de:ee:1d:9e:ac:5c:9e:c2:ab:e5:05: 27:24:e3:47:92:67:6c:00:bb:76:aa:8a:f7:96:19: ff:98:cd:a0:a8:d7:33:6a:1f:5e:25:04:1f:41:04: af:62:3f:4b:5e:e1:c1:e2:a3:e6:f0:bf:8e:27:cf: 27:52:05:a1:2a:24:da:b4:c9:6e:d1:f0:fa:54:2c: b7:09:2f:b0:cd:99:d6:23:e7:66:a7:dc:43:d5:69: d0:85:80:c9:0c:66:6c:b4:f7:90:a4:f6:98:d7:cd: ae:98:3a:a2:7b:c0:94:d5:c3:1d:1d:72:e9:61:26: 79:fd:8e:dc:cf:3b:d5:b4:e4:a5:01:1a:4c:b6:bd: 7d:1a:7a:5c:ee:db:f9:4d:37:d2:ae:d1:93:a1:31: b4:60:d4:2b:c9:c8:01:43:95:a1:6c:9e:28:3a:17: 21:ba:d6:e1:cd:16:9c:da:62:41:a1:15:7f:2d:40: 1a:2d:95:c0:21:af:64:89:58:42:39:de:b1:aa:b3: bf:a1:39:ba:d1:d0:31:54:4e:d1:81:91:c0:54:61: 7e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:ED:D5:F6:C3:CC:B3:E0:E3:12:20:80:E4:5A:B8:42:62:EC:7D:97 X509v3 Authority Key Identifier: keyid:27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.27.4.0/22 40.27.32.0/22 Signature Algorithm: sha256WithRSAEncryption 15:c7:9f:29:6e:f5:90:df:63:70:54:4c:ce:0a:f6:cd:14:b3: 4d:de:0d:42:68:21:7c:f5:54:bf:a7:de:24:8d:9e:c5:1e:40: 88:59:5f:ff:87:21:a6:c9:b3:41:02:8f:bb:e4:f3:61:e8:d1: 1b:af:f9:14:ea:5f:cf:46:77:60:73:c4:1c:2a:47:8a:b9:03: 15:4b:8b:d9:a9:3b:4b:ad:33:40:47:93:27:47:26:e8:f5:10: 4d:73:ed:39:1b:ec:ba:92:b0:f2:bc:e4:77:46:ef:dd:df:e0: 6d:ab:09:79:be:cb:91:1a:bf:5a:05:1d:0e:9c:8b:f1:61:9e: 3b:29:92:85:32:cf:cf:a6:36:8d:e0:a2:bf:8f:18:3d:3f:6a: 9a:31:d1:8f:7a:c3:06:f4:ca:28:d9:04:eb:b3:4d:55:08:89: e3:75:27:f5:d4:fb:85:16:34:3f:6d:49:44:7c:67:50:d9:51: ab:35:ca:f8:d7:51:16:75:0e:cd:c3:e6:9d:cd:15:86:25:b7: 28:3a:16:53:18:87:e1:e4:df:3d:8f:6e:10:93:18:35:2b:c7: f0:e6:89:69:d7:69:bf:17:89:22:64:d6:e7:e5:b5:2a:3d:ef: 30:f9:88:c5:ef:c4:9d:ab:2f:88:49:ff:b1:e1:91:3f:52:12: e3:83:2c:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUcLZ1pPvhhDU/m0l2yukMHeILsXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODk4MTIwNGI5MzQxMzU0MGY3ZDViODZmMGY5ZTc0ZjFk YWFkZTMxZGYwZGIwZjM4OGUwHhcNMjUxMTAyMDEzMjI4WhcNMjYxMTAxMDEzNzI4 WjAzMTEwLwYDVQQDEyg5NEVERDVGNkMzQ0NCM0UwRTMxMjIwODBFNDVBQjg0MjYy RUM3RDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzvdtm6yTgHSk mLwuIx0gc1ZbhmYmc4y+pQ14C+/uSgI7sFxoC1+cRDPLdjlgVCP03u4dnqxcnsKr 5QUnJONHkmdsALt2qor3lhn/mM2gqNczah9eJQQfQQSvYj9LXuHB4qPm8L+OJ88n UgWhKiTatMlu0fD6VCy3CS+wzZnWI+dmp9xD1WnQhYDJDGZstPeQpPaY182umDqi e8CU1cMdHXLpYSZ5/Y7czzvVtOSlARpMtr19Gnpc7tv5TTfSrtGToTG0YNQrycgB Q5WhbJ4oOhchutbhzRac2mJBoRV/LUAaLZXAIa9kiVhCOd6xqrO/oTm60dAxVE7R gZHAVGF+nwIDAQABo4IChDCCAoAwHQYDVR0OBBYEFJTt1fbDzLPg4xIggORauEJi 7H2XMB8GA1UdIwQYMBaAFCeK6Mq422vdgtde3W2FDRkgDR+TMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTg0Zjc1M2RjNjQxMTlkLzUv Mjc4QUU4Q0FCOERCNkJERDgyRDc1RURENkQ4NTBEMTkyMDBEMUY5My5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1LzJhMTM1NGM3LWFiY2EtNDFiNi04YjIxLTRlMzVhOGQ5YzJiNC84OTgx MjA0YjkzNDEzNTQwZjdkNWI4NmYwZjllNzRmMWRhYWRlMzFkZjBkYjBmMzg4ZS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODRmNzUzZGM2 NDExOWQvNS9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCKBsEAwQCKBsgMA0GCSqGSIb3DQEB CwUAA4IBAQAVx58pbvWQ32NwVEzOCvbNFLNN3g1CaCF89VS/p94kjZ7FHkCIWV// hyGmybNBAo+75PNh6NEbr/kU6l/PRndgc8QcKkeKuQMVS4vZqTtLrTNAR5MnRybo 9RBNc+05G+y6krDyvOR3Ru/d3+Btqwl5vsuRGr9aBR0OnIvxYZ47KZKFMs/PpjaN 4KK/jxg9P2qaMdGPesMG9Moo2QTrs01VCInjdSf11PuFFjQ/bUlEfGdQ2VGrNcr4 11EWdQ7Nw+adzRWGJbcoOhZTGIfh5N89j24Qkxg1K8fw5olp12m/F4kiZNbn5bUq Pe8w+YjF78Sdqy+ISf+x4ZE/UhLjgyxK -----END CERTIFICATE-----Generated at Tue Nov 4 23:01:17 2025 by rpki-client