$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7843.roa File: AS7843.roa (raw, json) Hash identifier: BEqCxP7Wc/22IiBXECO80gCxF9SsUmjkqKGV83PlVB0= Subject key identifier: 5E:E3:13:75:CD:58:5F:15:34:6F:99:DB:1A:4B:E8:7B:11:A7:68:96 Certificate issuer: /CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Certificate serial: 1D2007C18AC5BB133A4385B217FFCB8B47BD4D8B Authority key identifier: 27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7843.roa Signing time: Thu 19 Jun 2025 09:39:35 +0000 ROA not before: Thu 19 Jun 2025 09:34:35 +0000 ROA not after: Thu 18 Jun 2026 09:39:35 +0000 asID: 7843 IP address blocks: 40.27.0.0/21 maxlen: 24 40.27.40.0/21 maxlen: 24 40.27.248.0/21 maxlen: 24 40.223.16.0/21 maxlen: 24 40.223.80.0/21 maxlen: 24 40.223.122.0/24 maxlen: 24 40.223.184.0/21 maxlen: 24 40.223.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 07:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:20:07:c1:8a:c5:bb:13:3a:43:85:b2:17:ff:cb:8b:47:bd:4d:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e Validity Not Before: Jun 19 09:34:35 2025 GMT Not After : Jun 18 09:39:35 2026 GMT Subject: CN=5EE31375CD585F15346F99DB1A4BE87B11A76896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:7c:29:90:78:34:b6:84:b0:42:32:f9:7a: 95:40:0d:9c:db:25:bf:8b:3d:0d:2e:6c:3f:f4:38: f4:49:3e:fd:76:b4:1b:f7:e9:f1:58:09:e2:a3:88: ba:c5:60:2e:2f:8e:39:4a:21:b0:36:8a:a8:11:bc: 56:02:0d:d3:19:e9:c9:57:3e:16:35:02:1b:fe:5e: 31:21:ff:04:ca:17:53:e1:71:cd:61:90:a4:9d:94: 79:e7:ed:ab:37:f0:4c:37:4d:93:0f:f2:b4:c5:29: 8b:47:c0:8d:78:ec:d6:c5:e6:be:d3:08:34:94:59: a8:02:a3:fb:10:83:c5:47:98:76:9b:1b:07:3a:5e: a5:5f:3d:89:aa:dc:ae:f8:1a:5c:07:d3:a3:41:ef: 41:ff:65:69:b8:be:b9:e5:e7:4d:d9:9c:9d:5b:63: f7:04:37:7c:6e:b7:06:ab:0d:2e:e6:a3:71:93:91: 3b:4c:f5:00:2e:fb:94:84:d6:f8:26:25:d1:92:cd: 52:66:be:42:39:77:22:44:45:eb:42:a8:af:4d:39: 11:5e:16:ad:20:7e:1c:d7:bf:19:5a:c2:9f:9c:b3: c8:e8:7e:8d:68:11:d5:c1:47:b5:a7:9f:a3:2a:75: 91:86:b3:05:13:70:3a:00:7a:c9:e6:83:c6:7a:14: 3b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E3:13:75:CD:58:5F:15:34:6F:99:DB:1A:4B:E8:7B:11:A7:68:96 X509v3 Authority Key Identifier: keyid:27:8A:E8:CA:B8:DB:6B:DD:82:D7:5E:DD:6D:85:0D:19:20:0D:1F:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/278AE8CAB8DB6BDD82D75EDD6D850D19200D1F93.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/2a1354c7-abca-41b6-8b21-4e35a8d9c2b4/8981204b93413540f7d5b86f0f9e74f1daade31df0db0f388e.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410184f753dc64119d/5/AS7843.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.27.0.0/21 40.27.40.0/21 40.27.248.0/21 40.223.16.0/21 40.223.80.0/21 40.223.122.0/24 40.223.184.0/21 40.223.245.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:06:f5:dd:f8:df:10:d3:64:b0:50:ec:b5:8b:4b:0b:38:c1: 6b:80:9a:b4:78:d5:10:57:3e:c2:47:93:23:84:d0:d7:ce:73: ad:54:22:2b:77:b2:8f:8b:b0:e1:62:fd:82:a2:64:2b:f7:d1: a0:7f:9d:47:18:e7:40:cd:44:99:3a:40:84:1e:b1:db:1e:b5: 63:c5:22:43:73:5b:54:2b:01:49:c1:8c:34:a4:de:44:0c:19: a5:ae:96:16:81:7c:da:94:36:53:a9:c6:74:42:e9:8f:67:72: 1e:40:fc:1d:c1:2c:c0:d7:64:70:b6:53:f4:98:d3:a8:94:b5: a4:92:f5:79:8a:ff:04:f7:54:9b:0d:9e:c1:5f:b9:b3:7d:d4: f9:a9:1b:9b:ac:fc:d1:9d:27:e0:d4:98:4c:b2:48:a8:07:91: d4:c3:01:ed:58:b6:10:d3:bf:48:b7:0b:7f:ab:96:61:ac:cd: f5:38:6f:50:cc:4d:32:ce:b8:0e:ab:13:cc:ed:7a:10:9f:37: cf:b2:f8:8e:c6:36:7e:ff:0b:72:62:1a:a3:33:f7:65:da:d1: 48:93:42:0b:e9:c7:d8:35:89:f8:9c:7c:3e:cc:55:17:cd:d9: 1a:12:c2:0c:d3:19:cf:ea:c6:2c:11:66:64:23:16:fe:94:3e: 99:df:ba:f3 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgIUHSAHwYrFuxM6Q4WyF//Li0e9TYswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODk4MTIwNGI5MzQxMzU0MGY3ZDViODZmMGY5ZTc0ZjFk YWFkZTMxZGYwZGIwZjM4OGUwHhcNMjUwNjE5MDkzNDM1WhcNMjYwNjE4MDkzOTM1 WjAzMTEwLwYDVQQDEyg1RUUzMTM3NUNENTg1RjE1MzQ2Rjk5REIxQTRCRTg3QjEx QTc2ODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYF8KZB4NLaE sEIy+XqVQA2c2yW/iz0NLmw/9Dj0ST79drQb9+nxWAnio4i6xWAuL445SiGwNoqo EbxWAg3TGenJVz4WNQIb/l4xIf8EyhdT4XHNYZCknZR55+2rN/BMN02TD/K0xSmL R8CNeOzWxea+0wg0lFmoAqP7EIPFR5h2mxsHOl6lXz2Jqtyu+BpcB9OjQe9B/2Vp uL655edN2ZydW2P3BDd8brcGqw0u5qNxk5E7TPUALvuUhNb4JiXRks1SZr5COXci REXrQqivTTkRXhatIH4c178ZWsKfnLPI6H6NaBHVwUe1p5+jKnWRhrMFE3A6AHrJ 5oPGehQ77wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFF7jE3XNWF8VNG+Z2xpL6HsR p2iWMB8GA1UdIwQYMBaAFCeK6Mq422vdgtde3W2FDRkgDR+TMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTg0Zjc1M2RjNjQxMTlkLzUv Mjc4QUU4Q0FCOERCNkJERDgyRDc1RURENkQ4NTBEMTkyMDBEMUY5My5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1LzJhMTM1NGM3LWFiY2EtNDFiNi04YjIxLTRlMzVhOGQ5YzJiNC84OTgx MjA0YjkzNDEzNTQwZjdkNWI4NmYwZjllNzRmMWRhYWRlMzFkZjBkYjBmMzg4ZS5j ZXIwbgYIKwYBBQUHAQsEYjBgMF4GCCsGAQUFBzALhlJyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODRmNzUzZGM2 NDExOWQvNS9BUzc4NDMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwSQYI KwYBBQUHAQcBAf8EOjA4MDYEAgABMDADBAMoGwADBAMoGygDBAMoG/gDBAMo3xAD BAMo31ADBAAo33oDBAMo37gDBAAo3/UwDQYJKoZIhvcNAQELBQADggEBAJ0G9d34 3xDTZLBQ7LWLSws4wWuAmrR41RBXPsJHkyOE0NfOc61UIit3so+LsOFi/YKiZCv3 0aB/nUcY50DNRJk6QIQesdsetWPFIkNzW1QrAUnBjDSk3kQMGaWulhaBfNqUNlOp xnRC6Y9nch5A/B3BLMDXZHC2U/SY06iUtaSS9XmK/wT3VJsNnsFfubN91PmpG5us /NGdJ+DUmEyySKgHkdTDAe1YthDTv0i3C3+rlmGszfU4b1DMTTLOuA6rE8ztehCf N8+y+I7GNn7/C3JiGqMz92Xa0UiTQgvpx9g1ificfD7MVRfN2RoSwgzTGc/qxiwR ZmQjFv6UPpnfuvM= -----END CERTIFICATE-----Generated at Sun Jun 29 16:34:13 2025 by rpki-client