$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: GUB+3FfkSJaL9FIBGgOxvNn0y/KYIP7UxFKxigFY+pY= Subject key identifier: 59:BA:AB:3F:6D:60:8F:BE:38:7E:A2:5B:3A:97:A8:06:7C:C0:7D:66 Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Certificate serial: 4CC56C6B2175C084A39EB6E6B80BCBA54B67E747 Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS40676.roa Signing time: Thu 11 Jun 2026 13:00:22 +0000 ROA not before: Thu 11 Jun 2026 12:55:22 +0000 ROA not after: Thu 10 Jun 2027 13:00:22 +0000 asID: 40676 IP address blocks: 72.11.131.0/24 maxlen: 24 72.11.158.0/24 maxlen: 24 107.173.215.0/24 maxlen: 24 198.23.218.0/24 maxlen: 24 208.76.43.0/24 maxlen: 24 209.200.228.0/24 maxlen: 24 216.227.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 13 Jun 2026 23:52:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:c5:6c:6b:21:75:c0:84:a3:9e:b6:e6:b8:0b:cb:a5:4b:67:e7:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Validity Not Before: Jun 11 12:55:22 2026 GMT Not After : Jun 10 13:00:22 2027 GMT Subject: CN=59BAAB3F6D608FBE387EA25B3A97A8067CC07D66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ab:e2:a0:66:8b:a9:ab:9d:93:42:19:2f:fd: 5c:ca:42:99:e2:b7:cf:4f:50:cd:54:9f:f8:66:84: 9c:2f:a3:d2:3a:6e:06:1b:34:ec:36:25:b0:3c:ba: b3:24:a2:a1:77:fa:d8:db:48:5f:3e:8c:eb:d4:17: 25:9a:5f:41:e4:70:00:88:ca:cb:37:01:a0:4a:86: 36:a2:22:83:48:8c:ea:79:3d:64:4b:2e:01:63:ad: 5c:13:f0:cd:ab:44:ac:6c:04:00:65:ee:10:b2:54: 00:9e:62:36:0b:c5:3d:df:8f:d6:9a:82:2d:ff:03: 8e:4d:56:88:02:bc:69:77:8c:3e:4d:cc:e3:ae:ca: 90:be:ad:e4:f3:aa:bf:e6:70:7a:65:14:0c:b5:f7: 79:20:c5:6c:d2:00:e6:e9:b4:80:7e:a5:d3:02:e2: 4e:8b:00:1f:23:d4:85:13:da:81:50:47:74:01:d7: 2e:70:93:47:09:df:19:7a:74:85:bf:82:36:5b:53: 6f:59:d6:13:86:86:b3:01:c5:cb:ce:c5:8b:ea:c2: 04:77:95:79:9d:f8:9c:c3:20:ee:1f:3e:92:ba:26: 5b:8e:10:c9:e0:51:c0:63:48:89:7c:59:39:e8:dc: f0:27:f5:7e:c5:01:15:56:74:ba:3d:70:70:69:bb: 31:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BA:AB:3F:6D:60:8F:BE:38:7E:A2:5B:3A:97:A8:06:7C:C0:7D:66 X509v3 Authority Key Identifier: keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.11.131.0/24 72.11.158.0/24 107.173.215.0/24 198.23.218.0/24 208.76.43.0/24 209.200.228.0/24 216.227.216.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:8c:6f:12:1b:62:6b:f3:b7:2b:e7:7f:9e:c0:dd:0c:84:e0: a5:0a:5b:b0:1d:fc:19:81:ce:fb:6d:c6:fe:39:d5:da:b1:48: 00:79:6d:c5:a1:a1:df:ec:35:0e:8f:b8:fa:44:64:ea:0d:76: ba:f5:42:d5:30:a4:52:d9:f3:52:16:ca:b4:40:0b:2e:16:e2: 72:03:8b:5e:ad:fd:fd:a7:12:5d:8a:c7:e0:c8:78:2e:06:4e: 9d:ad:a7:34:55:52:09:f0:02:65:fd:74:d3:41:c1:6b:01:9c: df:8b:6e:b6:e6:a6:5f:c3:0e:8a:8a:84:b5:52:81:40:3a:b1: 38:78:43:4e:b1:16:ef:dc:13:5e:11:52:28:a2:0b:b9:88:ae: a2:cf:de:f5:ed:17:e6:f1:6a:d8:fc:dd:e1:74:50:3c:f4:56: 3e:3b:d3:8f:79:a1:cc:78:b1:09:98:46:0c:16:5a:1d:ff:03: a8:3b:02:3d:5d:35:94:ed:b6:16:c2:bd:f8:e7:1b:88:71:08: 7f:3d:47:17:28:db:74:5b:af:a4:23:b2:6b:31:91:e5:33:0f: b3:b7:42:5c:fc:f8:fc:1e:db:ac:e8:09:44:5c:6b:88:a1:5a: e3:1e:e5:c8:6c:7f:41:02:09:1a:ba:eb:e3:e3:99:f4:af:09: dd:11:fe:5c -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgIUTMVsayF1wISjnrbmuAvLpUtn50cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDRkYTVkMTAzMjc3YzkzN2M1M2RjZTMwNWJkOWQ3OWMy YmE3OTQyNTM1N2JiNTZlZWQwHhcNMjYwNjExMTI1NTIyWhcNMjcwNjEwMTMwMDIy WjAzMTEwLwYDVQQDEyg1OUJBQUIzRjZENjA4RkJFMzg3RUEyNUIzQTk3QTgwNjdD QzA3RDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqvioGaLqaud k0IZL/1cykKZ4rfPT1DNVJ/4ZoScL6PSOm4GGzTsNiWwPLqzJKKhd/rY20hfPozr 1Bclml9B5HAAiMrLNwGgSoY2oiKDSIzqeT1kSy4BY61cE/DNq0SsbAQAZe4QslQA nmI2C8U934/WmoIt/wOOTVaIArxpd4w+TczjrsqQvq3k86q/5nB6ZRQMtfd5IMVs 0gDm6bSAfqXTAuJOiwAfI9SFE9qBUEd0AdcucJNHCd8ZenSFv4I2W1NvWdYThoaz AcXLzsWL6sIEd5V5nficwyDuHz6SuiZbjhDJ4FHAY0iJfFk56NzwJ/V+xQEVVnS6 PXBwabsxzQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFm6qz9tYI++OH6iWzqXqAZ8 wH1mMB8GA1UdIwQYMBaAFFtA03PWcXxwTEg8oGWM+1JXxOk8MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODE0M2JmNjIwMTgyMTEzZWVhNDkwZDMzLzEv NUI0MEQzNzNENjcxN0M3MDRDNDgzQ0EwNjU4Q0ZCNTI1N0M0RTkzQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEz YjAyZTI5LzJiZDBmYWM2LTFhNDYtNDBiNS1iZTY2LTllMGY3YjU0ZGY3Ny80NGRh NWQxMDMyNzdjOTM3YzUzZGNlMzA1YmQ5ZDc5YzJiYTc5NDI1MzU3YmI1NmVlZC5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4MTQzYmY2MjAxODIxMTNlZWE0 OTBkMzMvMS9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMG CCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQASAuDAwQASAueAwQAa63XAwQAxhfa AwQA0EwrAwQA0cjkAwQA2OPYMA0GCSqGSIb3DQEBCwUAA4IBAQBqjG8SG2Jr87cr 53+ewN0MhOClCluwHfwZgc77bcb+OdXasUgAeW3FoaHf7DUOj7j6RGTqDXa69ULV MKRS2fNSFsq0QAsuFuJyA4terf39pxJdisfgyHguBk6drac0VVIJ8AJl/XTTQcFr AZzfi2625qZfww6KioS1UoFAOrE4eENOsRbv3BNeEVIoogu5iK6iz9717Rfm8WrY /N3hdFA89FY+O9OPeaHMeLEJmEYMFlod/wOoOwI9XTWU7bYWwr345xuIcQh/PUcX KNt0W6+kI7JrMZHlMw+zt0Jc/Pj8Htus6AlEXGuIoVrjHuXIbH9BAgkauuvj45n0 rwndEf5c -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:17 2026 by rpki-client