$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: KEn99luM0/c5x3nmbfbWLNZMOkaprjUjeJlVRRxQYHs= Subject key identifier: F3:D5:CA:C1:E6:93:EC:07:A9:C9:9D:22:B4:76:98:CC:BE:36:90:0B Certificate issuer: /CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Certificate serial: 6588E67C7CB32F5718A62D046C3C13F090A384BA Authority key identifier: 27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40676.roa Signing time: Sun 01 Mar 2026 06:22:59 +0000 ROA not before: Sun 01 Mar 2026 06:17:59 +0000 ROA not after: Sun 28 Feb 2027 06:22:59 +0000 asID: 40676 IP address blocks: 40.27.59.0/24 maxlen: 24 40.27.90.0/24 maxlen: 24 40.27.92.0/24 maxlen: 24 40.27.104.0/24 maxlen: 24 40.27.115.0/24 maxlen: 24 40.27.131.0/24 maxlen: 24 40.27.157.0/24 maxlen: 24 40.27.193.0/24 maxlen: 24 40.223.12.0/24 maxlen: 24 40.223.15.0/24 maxlen: 24 40.223.19.0/24 maxlen: 24 40.223.87.0/24 maxlen: 24 40.223.184.0/24 maxlen: 24 40.223.186.0/24 maxlen: 24 40.223.187.0/24 maxlen: 24 40.223.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 20:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:88:e6:7c:7c:b3:2f:57:18:a6:2d:04:6c:3c:13:f0:90:a3:84:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Validity Not Before: Mar 1 06:17:59 2026 GMT Not After : Feb 28 06:22:59 2027 GMT Subject: CN=F3D5CAC1E693EC07A9C99D22B47698CCBE36900B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:b5:61:d1:5a:b7:55:c0:9f:32:0e:c5:18: 8e:45:75:6c:11:84:9e:34:2a:f3:3b:54:1f:f5:1a: cb:f5:3c:97:14:0e:6d:99:c8:97:35:92:cc:c3:57: 9f:cc:75:b7:67:b7:4f:9f:80:ac:da:95:0a:06:a9: fa:32:e0:6d:73:af:e5:04:3b:85:44:5b:6b:8a:47: 0b:56:41:a4:9e:a7:49:c6:3f:8d:20:d3:cc:07:04: ff:ee:dd:8e:fd:65:90:09:83:35:fd:1a:b9:a2:8d: 1f:f8:21:20:cb:20:d8:20:28:38:01:18:01:e1:c9: 47:be:93:e2:ad:73:bc:77:52:31:d5:6b:2a:bc:64: b3:e9:02:96:e5:8a:83:02:a9:b6:36:ff:be:38:53: 5d:d8:0d:e1:1d:2a:b1:b7:af:1d:3a:02:a4:1d:7a: ba:c8:a6:45:ed:a4:a2:14:73:86:72:a7:55:ec:b1: 7b:f0:9a:f7:c7:ff:10:f9:54:c0:19:3c:e2:24:cd: 2e:54:86:5e:2f:49:9d:6d:94:c7:27:56:d1:ba:d4: f4:03:2b:12:b6:6d:c0:67:be:6a:0e:25:60:50:70: 04:1d:ac:3e:67:2c:7c:16:41:7e:91:31:e4:81:f4: ab:40:e3:3d:8f:aa:47:4e:ec:ac:32:83:3f:de:d5: 47:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D5:CA:C1:E6:93:EC:07:A9:C9:9D:22:B4:76:98:CC:BE:36:90:0B X509v3 Authority Key Identifier: keyid:27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.27.59.0/24 40.27.90.0/24 40.27.92.0/24 40.27.104.0/24 40.27.115.0/24 40.27.131.0/24 40.27.157.0/24 40.27.193.0/24 40.223.12.0/24 40.223.15.0/24 40.223.19.0/24 40.223.87.0/24 40.223.184.0/24 40.223.186.0/23 40.223.254.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:b7:78:b9:af:1e:ea:67:36:be:f4:c0:de:92:14:37:79:07: 76:46:4e:41:b0:22:4d:8d:a6:f0:53:84:ef:98:b5:c7:4b:b0: 84:ca:f1:b5:ce:71:7a:40:e8:76:29:30:de:2e:48:d7:42:26: fa:38:c9:f8:27:8b:23:8b:37:52:ab:cf:22:42:d6:95:f2:1b: ba:9d:1e:ec:15:25:5f:69:89:a9:27:dc:c8:a5:a1:2e:4a:7b: fe:f8:d8:68:a2:13:54:0a:65:6c:33:33:4c:23:26:f2:d8:01: fd:44:a5:9c:10:da:76:70:70:b9:65:8f:b0:19:12:94:66:c4: b3:74:e1:b1:ba:02:62:52:56:86:0c:c6:cb:6c:3c:f8:65:85: 8c:74:2d:be:7d:f5:fd:84:ea:5f:67:a0:ab:71:bd:07:5d:93: 02:98:99:32:f3:6b:c5:19:67:34:74:44:74:11:fb:ae:55:2c: df:0c:2d:f8:a9:7f:9b:aa:13:a6:82:d5:cf:b2:da:e1:be:19: 6f:eb:01:1d:86:9c:79:ba:8f:02:28:71:00:21:90:3c:03:e5: d4:ef:fa:ac:d0:a2:b1:96:8d:7d:d7:13:c5:66:99:fa:a9:27: 2c:25:f3:9d:c0:9c:22:d5:59:18:17:e2:b5:c9:16:29:43:f0: 59:0f:d9:10 -----BEGIN CERTIFICATE----- MIIF0jCCBLqgAwIBAgIUZYjmfHyzL1cYpi0EbDwT8JCjhLowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODk4MTIwNGI5MzQxMzU0MGY3ZDViODZmMGY5ZTc0ZjFk YWFkZTMxZGYwZGIwZjM4OGUwHhcNMjYwMzAxMDYxNzU5WhcNMjcwMjI4MDYyMjU5 WjAzMTEwLwYDVQQDEyhGM0Q1Q0FDMUU2OTNFQzA3QTlDOTlEMjJCNDc2OThDQ0JF MzY5MDBCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygu1YdFat1XA nzIOxRiORXVsEYSeNCrzO1Qf9RrL9TyXFA5tmciXNZLMw1efzHW3Z7dPn4Cs2pUK Bqn6MuBtc6/lBDuFRFtrikcLVkGknqdJxj+NINPMBwT/7t2O/WWQCYM1/Rq5oo0f +CEgyyDYICg4ARgB4clHvpPirXO8d1Ix1WsqvGSz6QKW5YqDAqm2Nv++OFNd2A3h HSqxt68dOgKkHXq6yKZF7aSiFHOGcqdV7LF78Jr3x/8Q+VTAGTziJM0uVIZeL0md bZTHJ1bRutT0AysStm3AZ75qDiVgUHAEHaw+Zyx8FkF+kTHkgfSrQOM9j6pHTuys MoM/3tVHvQIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFPPVysHmk+wHqcmdIrR2mMy+ NpALMB8GA1UdIwQYMBaAFCeK6Mq422vdgtde3W2FDRkgDR+TMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTg0Zjc1M2RjNjQxMTlkLzUv Mjc4QUU4Q0FCOERCNkJERDgyRDc1RURENkQ4NTBEMTkyMDBEMUY5My5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1LzJhMTM1NGM3LWFiY2EtNDFiNi04YjIxLTRlMzVhOGQ5YzJiNC84OTgx MjA0YjkzNDEzNTQwZjdkNWI4NmYwZjllNzRmMWRhYWRlMzFkZjBkYjBmMzg4ZS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODRmNzUzZGM2 NDExOWQvNS9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMHMG CCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQAKBs7AwQAKBtaAwQAKBtcAwQAKBto AwQAKBtzAwQAKBuDAwQAKBudAwQAKBvBAwQAKN8MAwQAKN8PAwQAKN8TAwQAKN9X AwQAKN+4AwQBKN+6AwQAKN/+MA0GCSqGSIb3DQEBCwUAA4IBAQBOt3i5rx7qZza+ 9MDekhQ3eQd2Rk5BsCJNjabwU4TvmLXHS7CEyvG1znF6QOh2KTDeLkjXQib6OMn4 J4sjizdSq88iQtaV8hu6nR7sFSVfaYmpJ9zIpaEuSnv++NhoohNUCmVsMzNMIyby 2AH9RKWcENp2cHC5ZY+wGRKUZsSzdOGxugJiUlaGDMbLbDz4ZYWMdC2+ffX9hOpf Z6Crcb0HXZMCmJky82vFGWc0dER0EfuuVSzfDC34qX+bqhOmgtXPstrhvhlv6wEd hpx5uo8CKHEAIZA8A+XU7/qs0KKxlo191xPFZpn6qScsJfOdwJwi1VkYF+K1yRYp Q/BZD9kQ -----END CERTIFICATE-----Generated at Mon Mar 2 01:23:24 2026 by rpki-client