$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7843.roa File: AS7843.roa (raw, json) Hash identifier: b3Gix4y3UYeuQiMFp8AmUOh2+x2NJh9U1iy3baGboiU= Subject key identifier: 0D:21:CF:F1:9F:F9:B4:06:EE:B3:EB:86:79:A7:CF:68:EF:E7:3F:50 Certificate issuer: /CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Certificate serial: 30A1A2D12FAE723867CF18BF00A3332D0F532F9B Authority key identifier: 27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7843.roa Signing time: Fri 26 Sep 2025 00:07:00 +0000 ROA not before: Fri 26 Sep 2025 00:02:00 +0000 ROA not after: Fri 25 Sep 2026 00:07:00 +0000 asID: 7843 IP address blocks: 40.27.0.0/21 maxlen: 24 40.27.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 13:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:a1:a2:d1:2f:ae:72:38:67:cf:18:bf:00:a3:33:2d:0f:53:2f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Validity Not Before: Sep 26 00:02:00 2025 GMT Not After : Sep 25 00:07:00 2026 GMT Subject: CN=0D21CFF19FF9B406EEB3EB8679A7CF68EFE73F50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b6:9b:35:b5:de:6d:c9:02:2c:cf:f4:62:eb: cd:6c:fe:e3:fd:8b:22:53:70:fc:3c:71:69:0e:f7: aa:db:9e:3d:dc:33:aa:c5:ae:b8:5d:fd:8b:a3:e8: 3a:10:1a:c4:a3:ad:a3:72:03:28:7b:90:3d:af:eb: f5:a6:57:37:a9:aa:87:50:ba:b9:a4:44:75:b0:61: 9c:71:f6:9c:ec:6f:1d:9a:bf:ca:d4:94:dd:47:11: df:5c:65:2e:ef:df:b5:7c:4f:35:ff:dd:6c:7e:24: e1:bd:ea:14:19:35:b2:38:c3:78:29:5c:42:d3:1c: c3:a6:07:26:bb:82:98:12:cc:4f:1f:9c:b8:36:e1: 9a:41:79:a0:24:86:7d:31:e5:cc:f1:d8:09:6e:53: cd:e7:f2:a8:a7:a7:e5:c9:4b:92:4e:ee:18:85:06: ca:5b:3a:af:8f:4d:8b:3a:ec:95:a8:dc:0a:18:f6: 1e:03:79:66:1d:ff:b0:7a:77:7a:58:6d:e5:e1:a4: c9:92:a6:bf:b3:75:26:0b:a0:41:c9:a2:e7:e2:00: e4:aa:3a:50:81:1f:3f:c0:d8:f0:82:15:9e:74:95: 5a:5c:d7:0e:86:ab:34:9f:e1:5e:ad:4c:34:8c:32: c7:4e:6e:03:39:0c:8f:f7:8f:75:64:d4:ff:dd:ab: 4a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:21:CF:F1:9F:F9:B4:06:EE:B3:EB:86:79:A7:CF:68:EF:E7:3F:50 X509v3 Authority Key Identifier: keyid:27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7843.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.27.0.0/21 40.27.40.0/21 Signature Algorithm: sha256WithRSAEncryption 00:c7:3d:91:2b:f6:68:b6:3d:41:64:78:0c:9c:ed:3a:19:87: 44:18:ff:5f:4f:44:fc:ee:12:45:8b:90:64:38:14:cc:38:c2: 26:18:2b:3b:9d:15:3f:26:4d:30:df:be:a0:f5:95:03:4e:58: 86:4d:4e:da:2f:22:16:4f:f9:8e:d1:24:c2:4a:b6:48:f3:47: 24:b6:23:90:0f:44:e3:b5:00:43:15:47:84:bc:db:62:85:59: f9:b8:71:69:e1:f5:18:fe:46:36:8a:a1:30:01:14:91:ab:4d: 5f:c4:ae:4b:94:9a:92:9e:f2:24:05:31:14:62:18:e1:4d:87: 93:1e:e0:1d:ce:d8:eb:cd:51:de:34:52:f1:55:64:7e:1d:c5: f0:f5:8d:e9:cc:3a:53:da:46:7a:d5:b3:d3:df:e6:fb:67:0a: e8:ff:17:ea:5c:5b:f9:79:e2:e1:43:bd:9a:3d:08:fc:aa:fc: 4f:40:ad:92:9f:11:c7:b1:9d:b6:f2:4c:91:62:e9:d6:06:6c: 5a:48:03:0d:60:9c:57:c4:4a:ab:48:6d:60:9c:cc:52:9e:61: 71:6f:95:69:04:e2:7d:df:a8:40:18:f8:d8:d2:37:29:e7:74: a6:4a:37:a2:c4:ce:e2:2f:08:46:ab:8a:a2:64:93:13:40:69: 79:42:3a:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIUMKGi0S+ucjhnzxi/AKMzLQ9TL5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODk4MTIwNGI5MzQxMzU0MGY3ZDViODZmMGY5ZTc0ZjFk YWFkZTMxZGYwZGIwZjM4OGUwHhcNMjUwOTI2MDAwMjAwWhcNMjYwOTI1MDAwNzAw WjAzMTEwLwYDVQQDEygwRDIxQ0ZGMTlGRjlCNDA2RUVCM0VCODY3OUE3Q0Y2OEVG RTczRjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrabNbXebckC LM/0YuvNbP7j/YsiU3D8PHFpDveq25493DOqxa64Xf2Lo+g6EBrEo62jcgMoe5A9 r+v1plc3qaqHULq5pER1sGGccfac7G8dmr/K1JTdRxHfXGUu79+1fE81/91sfiTh veoUGTWyOMN4KVxC0xzDpgcmu4KYEsxPH5y4NuGaQXmgJIZ9MeXM8dgJblPN5/Ko p6flyUuSTu4YhQbKWzqvj02LOuyVqNwKGPYeA3lmHf+wend6WG3l4aTJkqa/s3Um C6BByaLn4gDkqjpQgR8/wNjwghWedJVaXNcOhqs0n+FerUw0jDLHTm4DOQyP9491 ZNT/3atKOwIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFA0hz/Gf+bQG7rPrhnmnz2jv 5z9QMB8GA1UdIwQYMBaAFCeK6Mq422vdgtde3W2FDRkgDR+TMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTg0Zjc1M2RjNjQxMTlkLzUv Mjc4QUU4Q0FCOERCNkJERDgyRDc1RURENkQ4NTBEMTkyMDBEMUY5My5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1LzJhMTM1NGM3LWFiY2EtNDFiNi04YjIxLTRlMzVhOGQ5YzJiNC84OTgx MjA0YjkzNDEzNTQwZjdkNWI4NmYwZjllNzRmMWRhYWRlMzFkZjBkYjBmMzg4ZS5j ZXIwbgYIKwYBBQUHAQsEYjBgMF4GCCsGAQUFBzALhlJyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODRmNzUzZGM2 NDExOWQvNS9BUzc4NDMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYI KwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAMoGwADBAMoGygwDQYJKoZIhvcNAQEL BQADggEBAADHPZEr9mi2PUFkeAyc7ToZh0QY/19PRPzuEkWLkGQ4FMw4wiYYKzud FT8mTTDfvqD1lQNOWIZNTtovIhZP+Y7RJMJKtkjzRyS2I5APROO1AEMVR4S822KF Wfm4cWnh9Rj+RjaKoTABFJGrTV/ErkuUmpKe8iQFMRRiGOFNh5Me4B3O2OvNUd40 UvFVZH4dxfD1jenMOlPaRnrVs9Pf5vtnCuj/F+pcW/l54uFDvZo9CPyq/E9ArZKf EcexnbbyTJFi6dYGbFpIAw1gnFfESqtIbWCczFKeYXFvlWkE4n3fqEAY+NjSNynn dKZKN6LEzuIvCEariqJkkxNAaXlCOnE= -----END CERTIFICATE-----Generated at Mon Oct 20 06:37:59 2025 by rpki-client