$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: iNpr/dWsOuGhZHenG0Iyv6QA2Gq8/Y/9aDXCqrSFSq4= Subject key identifier: D5:68:1A:B4:87:26:67:86:0C:8F:88:B3:EF:5F:2E:AB:7E:7F:D3:F2 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 3E4E6086923DA884206BC4155625F8CB8FD5E1E8 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa Signing time: Mon 23 Jun 2025 12:35:04 +0000 ROA not before: Mon 23 Jun 2025 12:30:04 +0000 ROA not after: Mon 22 Jun 2026 12:35:04 +0000 asID: 40676 IP address blocks: 104.234.134.0/24 maxlen: 24 104.234.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 29 Jun 2025 15:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:4e:60:86:92:3d:a8:84:20:6b:c4:15:56:25:f8:cb:8f:d5:e1:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Jun 23 12:30:04 2025 GMT Not After : Jun 22 12:35:04 2026 GMT Subject: CN=D5681AB4872667860C8F88B3EF5F2EAB7E7FD3F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fb:b2:68:7c:81:55:f8:c5:82:be:f6:b5:98: ba:50:f7:34:b9:3f:66:b9:ec:f1:03:ec:5a:6c:d3: bb:45:72:8d:e0:f0:0c:e6:8d:49:5c:84:bc:e4:67: ce:41:80:4d:ee:8b:70:76:bf:19:17:51:e2:1c:50: 85:35:ef:eb:86:1b:6e:76:17:2e:74:93:cd:0c:ab: 78:ad:c3:bd:a1:8b:5d:ad:3c:a6:a2:0a:f5:30:fb: 1d:e5:7a:d1:53:d8:33:6c:88:54:7b:b4:41:d1:ba: fa:03:b9:23:8a:d3:18:15:2d:e2:2a:e6:97:43:47: 97:bf:68:4e:b0:e1:43:df:27:2e:70:7f:1c:f9:19: ef:cf:57:05:0e:80:57:be:7a:cc:29:ca:1b:d6:d4: ff:3e:5c:9c:d8:b0:d8:c1:68:06:dc:ca:68:02:d0: b2:19:f7:2f:66:89:dc:c6:09:07:cc:90:93:bf:05: a5:f0:28:0b:aa:c7:bd:3c:be:79:1c:0a:68:c2:39: 0a:7a:b1:5f:0a:9d:18:fb:94:b4:16:47:86:ce:d0: f3:92:f5:f6:51:94:ec:5d:90:49:1b:0d:35:cf:f0: 71:a2:3a:82:69:95:50:c8:a7:88:cf:04:2d:6f:c8: a8:9f:2d:30:d5:15:f5:77:aa:1b:05:0f:95:95:4e: fd:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:68:1A:B4:87:26:67:86:0C:8F:88:B3:EF:5F:2E:AB:7E:7F:D3:F2 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.134.0/24 104.234.177.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:9a:67:7a:11:49:30:70:e2:1c:0e:64:98:6f:2c:1e:5a:b2: 9b:b6:86:83:bf:f1:25:4d:6f:86:ef:61:3c:0d:e4:9d:79:5a: 2e:fe:ac:61:ed:70:a9:b5:f9:58:e6:fd:94:97:c8:4e:2c:77: b9:b0:3e:f3:bb:05:f3:ea:88:5d:b2:25:5a:b8:15:c6:df:04: b5:4d:ed:bb:71:e9:3e:1b:a2:6d:59:0a:56:a7:ce:e4:d7:33: 57:25:e9:05:15:23:0d:e6:58:c1:55:3b:69:f5:41:5e:42:66: a1:78:92:77:3c:cf:c9:e8:af:a3:54:6a:14:ca:0f:86:0c:08: 83:d6:15:b9:39:f3:2a:e3:ee:9e:63:7e:71:69:52:0e:bb:88: d6:aa:46:06:27:f1:d1:63:3f:bc:3f:a6:c7:ae:50:f4:05:58: 95:e3:08:e3:02:11:d3:51:34:28:23:8c:3b:7c:42:72:f8:ae: dc:f9:86:67:3d:4a:2f:2a:bc:15:b5:ac:5e:bf:66:c9:03:ca: c5:00:2e:4c:32:95:40:31:21:5b:6f:ce:d8:9b:03:8b:7c:9b: b0:06:81:1b:72:d4:d9:b7:3b:06:45:fd:f5:94:aa:d9:9c:65: 26:4d:79:b7:32:a5:fa:cd:22:5b:7b:f1:9f:6e:7c:d9:45:cb: 00:cb:08:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUPk5ghpI9qIQga8QVViX4y4/V4egwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjUwNjIzMTIzMDA0WhcNMjYwNjIyMTIzNTA0 WjAzMTEwLwYDVQQDEyhENTY4MUFCNDg3MjY2Nzg2MEM4Rjg4QjNFRjVGMkVBQjdF N0ZEM0YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PuyaHyBVfjF gr72tZi6UPc0uT9muezxA+xabNO7RXKN4PAM5o1JXIS85GfOQYBN7otwdr8ZF1Hi HFCFNe/rhhtudhcudJPNDKt4rcO9oYtdrTymogr1MPsd5XrRU9gzbIhUe7RB0br6 A7kjitMYFS3iKuaXQ0eXv2hOsOFD3ycucH8c+Rnvz1cFDoBXvnrMKcob1tT/Plyc 2LDYwWgG3MpoAtCyGfcvZoncxgkHzJCTvwWl8CgLqse9PL55HApowjkKerFfCp0Y +5S0FkeGztDzkvX2UZTsXZBJGw01z/BxojqCaZVQyKeIzwQtb8iony0w1RX1d6ob BQ+VlU79gQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFNVoGrSHJmeGDI+Is+9fLqt+ f9PyMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAaOqGAwQAaOqxMA0GCSqGSIb3DQEB CwUAA4IBAQB+mmd6EUkwcOIcDmSYbyweWrKbtoaDv/ElTW+G72E8DeSdeVou/qxh 7XCptflY5v2Ul8hOLHe5sD7zuwXz6ohdsiVauBXG3wS1Te27cek+G6JtWQpWp87k 1zNXJekFFSMN5ljBVTtp9UFeQmaheJJ3PM/J6K+jVGoUyg+GDAiD1hW5OfMq4+6e Y35xaVIOu4jWqkYGJ/HRYz+8P6bHrlD0BViV4wjjAhHTUTQoI4w7fEJy+K7c+YZn PUovKrwVtaxev2bJA8rFAC5MMpVAMSFbb87YmwOLfJuwBoEbctTZtzsGRf31lKrZ nGUmTXm3MqX6zSJbe/GfbnzZRcsAywjI -----END CERTIFICATE-----Generated at Sun Jun 29 01:28:18 2025 by rpki-client