$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7029.roa File: AS7029.roa (raw, json) Hash identifier: Abg1r/aLG51WzCB5/sQXf8rkjMJYBUpTpqAr7LnMpR4= Subject key identifier: 8D:25:F7:0D:6E:08:CF:AF:D0:B0:7A:05:31:6E:C6:55:C7:18:EB:D6 Certificate issuer: /CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Certificate serial: 69FA3A83BC825DF6334CA4F752BBC06F05A1B3CB Authority key identifier: 27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7029.roa Signing time: Sat 28 Jun 2025 10:45:05 +0000 ROA not before: Sat 28 Jun 2025 10:40:05 +0000 ROA not after: Sat 27 Jun 2026 10:45:05 +0000 asID: 7029 IP address blocks: 40.27.0.0/21 maxlen: 24 40.27.40.0/21 maxlen: 24 40.27.140.0/22 maxlen: 24 40.27.248.0/21 maxlen: 24 40.223.16.0/21 maxlen: 24 40.223.80.0/21 maxlen: 24 40.223.122.0/24 maxlen: 24 40.223.184.0/21 maxlen: 24 40.223.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 29 Jun 2025 12:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:fa:3a:83:bc:82:5d:f6:33:4c:a4:f7:52:bb:c0:6f:05:a1:b3:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Validity Not Before: Jun 28 10:40:05 2025 GMT Not After : Jun 27 10:45:05 2026 GMT Subject: CN=8D25F70D6E08CFAFD0B07A05316EC655C718EBD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:24:e2:c4:48:1f:a8:62:f0:cd:7a:a1:e1:d4: ad:3b:2d:61:66:83:d6:b7:b3:2a:ea:07:1e:17:37: ca:1a:13:68:1c:2d:35:be:25:9a:ab:e7:1a:6a:c1: b6:c5:2c:28:ce:c8:37:2e:19:db:46:a4:30:4a:e2: 67:44:35:ab:c4:77:7f:bd:b8:59:b2:9c:76:2b:4e: 91:db:d4:ea:20:90:51:66:af:8d:6d:16:de:eb:e3: 50:5c:7d:19:ec:8d:30:1b:ca:ce:43:cb:fc:b6:d5: d4:23:57:6b:bb:13:d2:d0:74:ce:50:85:49:e1:19: f5:51:98:28:3e:a8:45:4a:86:33:96:00:01:18:b2: 66:59:29:a6:1b:94:15:5b:78:d7:17:58:5b:89:18: 1d:c4:fe:a6:3e:cd:e3:44:14:d2:15:04:45:9f:1e: a7:11:42:c6:a1:a6:e1:7c:a8:1f:a0:40:83:43:65: 2f:d2:1d:ca:36:39:c8:5a:e9:b0:84:84:d8:10:2c: d5:d3:b0:b1:41:dc:26:b4:51:1e:1d:44:8d:d8:85: e0:3c:d6:94:a0:9e:17:af:55:65:82:25:90:cd:a4: b7:63:26:96:85:fc:ff:14:1e:d1:6b:e7:d0:00:ed: 9e:1c:b7:e4:81:58:35:e1:7b:63:ca:4b:e0:15:95: fd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:25:F7:0D:6E:08:CF:AF:D0:B0:7A:05:31:6E:C6:55:C7:18:EB:D6 X509v3 Authority Key Identifier: keyid:27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7029.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.27.0.0/21 40.27.40.0/21 40.27.140.0/22 40.27.248.0/21 40.223.16.0/21 40.223.80.0/21 40.223.122.0/24 40.223.184.0/21 40.223.245.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:7d:e7:63:00:67:3e:5f:7b:fa:b2:61:6a:e3:66:2f:73:a6: 87:28:77:d9:49:b8:9c:5d:40:b9:c1:c0:db:a5:67:3b:d7:72: 2f:95:4b:7b:94:e6:dd:59:37:4a:96:85:4b:76:47:2e:a2:5a: b5:a3:29:28:e4:b3:fe:46:17:19:d7:4e:29:c2:8a:a1:34:56: 39:13:f5:4d:36:11:fe:a7:f4:be:17:b1:e8:20:86:28:d1:8c: 36:dc:f3:4c:2d:f3:9a:44:7e:62:9e:e6:8c:42:3f:cf:4a:7b: 1a:1a:0b:d5:9b:40:23:1a:5c:ba:47:50:4f:c7:b4:80:70:ae: 21:5f:53:5f:85:1e:92:f4:49:a2:65:d9:d8:f8:53:e6:50:e3: b9:dd:3d:65:49:db:43:eb:18:90:f5:85:bc:9d:ca:6b:b0:21: d3:a9:be:21:e0:db:1e:f9:a5:2a:00:7c:fb:7c:87:85:58:c2: cd:70:9d:d5:8a:79:7d:0d:f9:28:59:2e:f8:fc:5f:05:aa:34: eb:a1:3c:a1:c7:c6:35:41:d1:20:b2:42:f6:dd:d0:fd:ed:56: 00:24:88:42:bc:bf:1a:e6:75:6c:dd:62:bf:3d:db:33:fb:ff: 75:0a:08:d2:10:c2:d7:f7:82:06:a0:d9:3f:11:7a:ff:94:a0: 53:5f:bb:85 -----BEGIN CERTIFICATE----- MIIFrTCCBJWgAwIBAgIUafo6g7yCXfYzTKT3UrvAbwWhs8swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODk4MTIwNGI5MzQxMzU0MGY3ZDViODZmMGY5ZTc0ZjFk YWFkZTMxZGYwZGIwZjM4OGUwHhcNMjUwNjI4MTA0MDA1WhcNMjYwNjI3MTA0NTA1 WjAzMTEwLwYDVQQDEyg4RDI1RjcwRDZFMDhDRkFGRDBCMDdBMDUzMTZFQzY1NUM3 MThFQkQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiiTixEgfqGLw zXqh4dStOy1hZoPWt7Mq6gceFzfKGhNoHC01viWaq+caasG2xSwozsg3LhnbRqQw SuJnRDWrxHd/vbhZspx2K06R29TqIJBRZq+NbRbe6+NQXH0Z7I0wG8rOQ8v8ttXU I1druxPS0HTOUIVJ4Rn1UZgoPqhFSoYzlgABGLJmWSmmG5QVW3jXF1hbiRgdxP6m Ps3jRBTSFQRFnx6nEULGoabhfKgfoECDQ2Uv0h3KNjnIWumwhITYECzV07CxQdwm tFEeHUSN2IXgPNaUoJ4Xr1VlgiWQzaS3YyaWhfz/FB7Ra+fQAO2eHLfkgVg14Xtj ykvgFZX9PQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFI0l9w1uCM+v0LB6BTFuxlXH GOvWMB8GA1UdIwQYMBaAFCeK6Mq422vdgtde3W2FDRkgDR+TMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTg0Zjc1M2RjNjQxMTlkLzUv Mjc4QUU4Q0FCOERCNkJERDgyRDc1RURENkQ4NTBEMTkyMDBEMUY5My5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1LzJhMTM1NGM3LWFiY2EtNDFiNi04YjIxLTRlMzVhOGQ5YzJiNC84OTgx MjA0YjkzNDEzNTQwZjdkNWI4NmYwZjllNzRmMWRhYWRlMzFkZjBkYjBmMzg4ZS5j ZXIwbgYIKwYBBQUHAQsEYjBgMF4GCCsGAQUFBzALhlJyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODRmNzUzZGM2 NDExOWQvNS9BUzcwMjkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwTwYI KwYBBQUHAQcBAf8EQDA+MDwEAgABMDYDBAMoGwADBAMoGygDBAIoG4wDBAMoG/gD BAMo3xADBAMo31ADBAAo33oDBAMo37gDBAAo3/UwDQYJKoZIhvcNAQELBQADggEB ACp952MAZz5fe/qyYWrjZi9zpocod9lJuJxdQLnBwNulZzvXci+VS3uU5t1ZN0qW hUt2Ry6iWrWjKSjks/5GFxnXTinCiqE0VjkT9U02Ef6n9L4XsegghijRjDbc80wt 85pEfmKe5oxCP89KexoaC9WbQCMaXLpHUE/HtIBwriFfU1+FHpL0SaJl2dj4U+ZQ 47ndPWVJ20PrGJD1hbydymuwIdOpviHg2x75pSoAfPt8h4VYws1wndWKeX0N+ShZ Lvj8XwWqNOuhPKHHxjVB0SCyQvbd0P3tVgAkiEK8vxrmdWzdYr892zP7/3UKCNIQ wtf3ggag2T8Rev+UoFNfu4U= -----END CERTIFICATE-----Generated at Sun Jun 29 00:02:59 2025 by rpki-client