$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: 6VLVeXvZGU4h5/8JExM6CGZPEPqt9594LX4DPwylq9U= Subject key identifier: 8B:A1:10:5B:FE:AE:BD:CE:25:25:71:75:27:9A:FE:D8:F2:29:E9:2F Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Certificate serial: 5CF9EC20C6B01168AA3C07F4939CD7190E7E9F79 Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS40676.roa Signing time: Sat 06 Sep 2025 00:05:58 +0000 ROA not before: Sat 06 Sep 2025 00:00:58 +0000 ROA not after: Sat 05 Sep 2026 00:05:58 +0000 asID: 40676 IP address blocks: 107.173.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 05:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f9:ec:20:c6:b0:11:68:aa:3c:07:f4:93:9c:d7:19:0e:7e:9f:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed Validity Not Before: Sep 6 00:00:58 2025 GMT Not After : Sep 5 00:05:58 2026 GMT Subject: CN=8BA1105BFEAEBDCE25257175279AFED8F229E92F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:84:93:ae:63:90:6d:7f:cf:9d:1b:72:05:1d: af:4c:9e:f4:57:70:31:d8:ef:0c:7c:42:59:b6:53: d2:77:bc:44:b2:6c:fc:6b:f9:ce:7f:5f:97:ff:5e: 58:50:28:df:4f:96:23:b0:a9:e9:1b:7c:5d:2f:4e: 1a:ed:a1:13:46:4b:6d:2a:62:81:5a:17:33:4e:c4: 95:6f:2f:3c:bb:f4:7b:1f:4e:5f:ae:45:df:27:c0: 8e:cd:19:c5:da:6d:c3:ed:e1:9b:3e:54:c8:6a:14: eb:c1:a8:9e:62:5a:e8:5f:87:fb:9f:6b:33:1e:6e: fc:87:81:d6:5b:6d:54:be:98:d2:f9:03:fb:91:de: 4c:16:b0:31:1d:90:91:e0:78:02:b1:97:b1:c6:e0: ab:40:a2:43:9b:7e:4d:3e:12:58:b8:d6:cb:df:c3: 63:92:10:3e:c3:19:a1:79:93:5f:a5:bf:8c:7f:e0: 38:6b:af:a5:db:18:13:39:1d:81:eb:2c:c4:88:32: 1d:fb:81:43:f2:55:83:c8:86:f8:7f:66:4c:39:57: 4b:0f:3b:66:e5:4a:53:c6:3e:88:ec:7e:2f:4f:c9: cc:11:f8:5d:21:99:70:0d:e2:e3:da:e5:10:c9:79: 60:02:e4:b5:20:79:03:22:7b:70:69:3a:3a:ec:97: 93:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A1:10:5B:FE:AE:BD:CE:25:25:71:75:27:9A:FE:D8:F2:29:E9:2F X509v3 Authority Key Identifier: keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.173.215.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:36:2e:df:38:6a:57:de:ca:b1:5c:ed:3d:79:25:8f:ef:7d: 77:b3:b1:5e:96:18:0b:76:e4:ba:91:71:aa:a6:3c:6e:5f:1e: 3a:2a:8a:5f:ce:3a:dc:24:a4:d4:34:49:da:9b:14:15:58:e3: 34:65:bb:28:78:d8:61:e1:aa:fc:de:23:26:91:eb:5c:64:6c: 92:dd:8a:e9:03:c9:2b:21:8d:6b:68:d9:93:88:5b:f2:09:53: 05:66:28:b8:1b:89:c6:ce:bb:81:3f:5a:3d:24:f5:4d:b5:fc: 73:f6:e9:0e:fa:d0:ca:1e:63:4c:e7:85:89:27:00:9d:47:dc: 13:ff:5c:a5:5f:86:fb:4d:2c:45:a2:f5:8c:4e:c1:87:36:9f: da:1c:58:17:cb:68:52:33:27:78:60:33:80:80:34:ba:dd:98: 73:f9:78:9f:9e:24:55:30:cd:c7:7d:d6:9e:c4:a9:6e:d4:82: 5b:9f:40:49:95:21:9c:fd:f5:d4:ac:ee:72:52:30:36:95:26: c2:27:b6:a2:50:42:e7:30:76:05:c3:5a:94:8f:e1:c1:9d:42: 22:5c:f7:18:2c:8f:5a:49:37:2e:d8:69:37:04:fd:65:08:33: c0:be:90:e5:55:f4:08:35:7d:a2:c2:0c:bb:cb:48:99:18:e2: 66:38:c6:d4 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIUXPnsIMawEWiqPAf0k5zXGQ5+n3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDRkYTVkMTAzMjc3YzkzN2M1M2RjZTMwNWJkOWQ3OWMy YmE3OTQyNTM1N2JiNTZlZWQwHhcNMjUwOTA2MDAwMDU4WhcNMjYwOTA1MDAwNTU4 WjAzMTEwLwYDVQQDEyg4QkExMTA1QkZFQUVCRENFMjUyNTcxNzUyNzlBRkVEOEYy MjlFOTJGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxISTrmOQbX/P nRtyBR2vTJ70V3Ax2O8MfEJZtlPSd7xEsmz8a/nOf1+X/15YUCjfT5YjsKnpG3xd L04a7aETRkttKmKBWhczTsSVby88u/R7H05frkXfJ8COzRnF2m3D7eGbPlTIahTr waieYlroX4f7n2szHm78h4HWW21UvpjS+QP7kd5MFrAxHZCR4HgCsZexxuCrQKJD m35NPhJYuNbL38NjkhA+wxmheZNfpb+Mf+A4a6+l2xgTOR2B6yzEiDId+4FD8lWD yIb4f2ZMOVdLDztm5UpTxj6I7H4vT8nMEfhdIZlwDeLj2uUQyXlgAuS1IHkDIntw aTo67JeTtwIDAQABo4ICfjCCAnowHQYDVR0OBBYEFIuhEFv+rr3OJSVxdSea/tjy KekvMB8GA1UdIwQYMBaAFFtA03PWcXxwTEg8oGWM+1JXxOk8MA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRmODE0M2JmNjIwMTgyMTEzZWVhNDkwZDMzLzEv NUI0MEQzNzNENjcxN0M3MDRDNDgzQ0EwNjU4Q0ZCNTI1N0M0RTkzQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEz YjAyZTI5LzJiZDBmYWM2LTFhNDYtNDBiNS1iZTY2LTllMGY3YjU0ZGY3Ny80NGRh NWQxMDMyNzdjOTM3YzUzZGNlMzA1YmQ5ZDc5YzJiYTc5NDI1MzU3YmI1NmVlZC5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4MTQzYmY2MjAxODIxMTNlZWE0 OTBkMzMvMS9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAa63XMA0GCSqGSIb3DQEBCwUAA4IB AQAaNi7fOGpX3sqxXO09eSWP7313s7FelhgLduS6kXGqpjxuXx46KopfzjrcJKTU NEnamxQVWOM0ZbsoeNhh4ar83iMmketcZGyS3YrpA8krIY1raNmTiFvyCVMFZii4 G4nGzruBP1o9JPVNtfxz9ukO+tDKHmNM54WJJwCdR9wT/1ylX4b7TSxFovWMTsGH Np/aHFgXy2hSMyd4YDOAgDS63Zhz+XifniRVMM3HfdaexKlu1IJbn0BJlSGc/fXU rO5yUjA2lSbCJ7aiUELnMHYFw1qUj+HBnUIiXPcYLI9aSTcu2Gk3BP1lCDPAvpDl VfQINX2iwgy7y0iZGOJmOMbU -----END CERTIFICATE-----Generated at Tue Nov 4 23:03:47 2025 by rpki-client