$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40605.roa File: AS40605.roa (raw, json) Hash identifier: BHk0VXh6Ztg2ntmNz+90kp8YOfNsp+zSac/zDcn25F0= Subject key identifier: 24:53:D5:D0:5D:CC:77:E8:F2:08:E9:82:49:14:46:8E:41:3E:E8:91 Certificate issuer: /CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Certificate serial: 6010EC53D389142AE54043CEA1C2D4611B1F1661 Authority key identifier: 27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40605.roa Signing time: Fri 22 Aug 2025 11:33:29 +0000 ROA not before: Fri 22 Aug 2025 11:28:29 +0000 ROA not after: Fri 21 Aug 2026 11:33:29 +0000 asID: 40605 IP address blocks: 40.27.48.0/24 maxlen: 24 40.27.49.0/24 maxlen: 24 40.27.50.0/24 maxlen: 24 40.27.52.0/24 maxlen: 24 40.27.53.0/24 maxlen: 24 40.27.54.0/24 maxlen: 24 40.27.55.0/24 maxlen: 24 40.27.133.0/24 maxlen: 24 40.27.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 07:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:10:ec:53:d3:89:14:2a:e5:40:43:ce:a1:c2:d4:61:1b:1f:16:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Validity Not Before: Aug 22 11:28:29 2025 GMT Not After : Aug 21 11:33:29 2026 GMT Subject: CN=2453D5D05DCC77E8F208E9824914468E413EE891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f3:e3:67:ae:86:f3:d6:c8:ad:61:08:6f:2b: 54:c3:9a:4a:33:6f:40:e3:8f:b0:a3:76:10:54:cb: f4:1f:56:16:14:f4:00:59:f0:f2:e5:52:e7:6a:a5: 4f:16:df:d8:47:6f:d2:64:45:13:9f:49:c4:98:0a: 96:dc:3b:e7:03:37:d9:b9:69:80:1d:3b:35:3c:ff: 22:9c:a7:02:2c:fa:b8:33:16:55:78:e9:56:b8:72: 89:0f:f1:2d:63:a5:fa:b0:d0:25:01:a5:85:b2:52: ce:5d:f3:81:b2:07:8c:07:d0:5a:d8:28:46:08:4c: bc:ac:5b:62:51:8a:84:08:a0:63:5e:37:f8:5c:60: 55:c2:6a:8b:ac:1f:8a:e2:f2:df:89:09:b5:cc:38: de:a1:7f:54:26:99:90:68:c5:ed:cf:db:0e:9b:34: 73:29:fb:7a:ac:8c:78:7d:9e:a5:7f:b9:08:d7:af: ed:a8:32:7a:d6:cb:4b:f4:a1:59:24:0d:42:28:c6: c9:8e:82:5f:34:21:c0:cd:43:88:ff:39:5f:1f:24: 06:bf:25:ee:02:3d:4d:b1:2b:1a:ad:98:8f:95:67: cf:f4:3a:84:87:01:8d:43:1f:31:65:6a:c9:f0:42: 3e:c6:ee:6a:d0:3e:36:1f:9d:1c:c0:63:b7:83:89: dd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:53:D5:D0:5D:CC:77:E8:F2:08:E9:82:49:14:46:8E:41:3E:E8:91 X509v3 Authority Key Identifier: keyid:27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS40605.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.27.48.0-40.27.50.255 40.27.52.0/22 40.27.133.0-40.27.134.255 Signature Algorithm: sha256WithRSAEncryption 9f:be:50:42:06:bd:f3:19:93:9b:e2:05:ef:6b:53:17:e0:64: 88:8d:e8:e4:34:71:06:b2:a2:18:d6:54:a1:99:ff:9f:fe:e7: f5:e0:9f:18:5f:fc:60:ac:ea:73:2f:69:c0:e8:a6:0b:28:c2: 2c:98:48:2d:27:6a:e8:8d:42:ea:81:3e:3c:f5:6e:47:94:54: b6:50:fc:45:08:c5:08:32:4a:70:3e:61:63:da:d3:26:78:7e: e6:ad:80:84:23:9c:d9:58:81:56:cd:0e:f9:90:fa:f1:bf:a6: d6:cf:05:67:66:f2:dd:75:bb:3c:53:7f:82:f1:e2:1d:43:83: 3e:89:3c:7c:e0:66:99:dd:df:bd:c9:a3:d2:f4:43:06:b7:48: 9a:26:6f:2d:66:90:bd:22:49:29:05:c0:66:00:e0:99:be:2f: f8:77:c4:57:d7:8e:3f:d9:69:04:b0:4e:e4:14:8e:6d:dd:0e: ab:a2:4f:ac:14:f7:ae:e0:eb:af:ab:b6:dd:20:cf:e2:1d:f6: 84:a1:12:15:55:d5:dc:c8:d4:9a:ac:a2:99:6c:d3:83:77:17: b9:73:3b:4f:45:84:a1:bd:50:72:84:6f:73:b9:c1:f5:77:92: e4:22:c2:2e:79:d7:96:19:94:83:8b:0b:ae:64:ac:2d:9c:76: c6:71:9e:dd -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgIUYBDsU9OJFCrlQEPOocLUYRsfFmEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODk4MTIwNGI5MzQxMzU0MGY3ZDViODZmMGY5ZTc0ZjFk YWFkZTMxZGYwZGIwZjM4OGUwHhcNMjUwODIyMTEyODI5WhcNMjYwODIxMTEzMzI5 WjAzMTEwLwYDVQQDEygyNDUzRDVEMDVEQ0M3N0U4RjIwOEU5ODI0OTE0NDY4RTQx M0VFODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/PjZ66G89bI rWEIbytUw5pKM29A44+wo3YQVMv0H1YWFPQAWfDy5VLnaqVPFt/YR2/SZEUTn0nE mAqW3DvnAzfZuWmAHTs1PP8inKcCLPq4MxZVeOlWuHKJD/EtY6X6sNAlAaWFslLO XfOBsgeMB9Ba2ChGCEy8rFtiUYqECKBjXjf4XGBVwmqLrB+K4vLfiQm1zDjeoX9U JpmQaMXtz9sOmzRzKft6rIx4fZ6lf7kI16/tqDJ61stL9KFZJA1CKMbJjoJfNCHA zUOI/zlfHyQGvyXuAj1NsSsarZiPlWfP9DqEhwGNQx8xZWrJ8EI+xu5q0D42H50c wGO3g4ndxQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFCRT1dBdzHfo8gjpgkkURo5B PuiRMB8GA1UdIwQYMBaAFCeK6Mq422vdgtde3W2FDRkgDR+TMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTg0Zjc1M2RjNjQxMTlkLzUv Mjc4QUU4Q0FCOERCNkJERDgyRDc1RURENkQ4NTBEMTkyMDBEMUY5My5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1LzJhMTM1NGM3LWFiY2EtNDFiNi04YjIxLTRlMzVhOGQ5YzJiNC84OTgx MjA0YjkzNDEzNTQwZjdkNWI4NmYwZjllNzRmMWRhYWRlMzFkZjBkYjBmMzg4ZS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODRmNzUzZGM2 NDExOWQvNS9BUzQwNjA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDsG CCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiMAwDBAQoGzADBAAoGzIDBAIoGzQwDAME ACgbhQMEACgbhjANBgkqhkiG9w0BAQsFAAOCAQEAn75QQga98xmTm+IF72tTF+Bk iI3o5DRxBrKiGNZUoZn/n/7n9eCfGF/8YKzqcy9pwOimCyjCLJhILSdq6I1C6oE+ PPVuR5RUtlD8RQjFCDJKcD5hY9rTJnh+5q2AhCOc2ViBVs0O+ZD68b+m1s8FZ2by 3XW7PFN/gvHiHUODPok8fOBmmd3fvcmj0vRDBrdImiZvLWaQvSJJKQXAZgDgmb4v +HfEV9eOP9lpBLBO5BSObd0Oq6JPrBT3ruDrr6u23SDP4h32hKESFVXV3MjUmqyi mWzTg3cXuXM7T0WEob1QcoRvc7nB9XeS5CLCLnnXlhmUg4sLrmSsLZx2xnGe3Q== -----END CERTIFICATE-----Generated at Sat Aug 23 18:35:26 2025 by rpki-client