$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa File: AS40676.roa (raw, json) Hash identifier: KlVu3bsfve5xGkOn9jMQXyMdWhYQpSwowU0y3p860fY= Subject key identifier: CA:A3:D1:AD:55:AC:61:0C:63:B9:4A:DF:02:1D:3D:85:4B:F7:D9:78 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 39A7D2DA1EA77CD451293AC955641A36B50D67D9 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa Signing time: Sat 09 May 2026 08:27:06 +0000 ROA not before: Sat 09 May 2026 08:22:06 +0000 ROA not after: Sat 08 May 2027 08:27:06 +0000 asID: 40676 IP address blocks: 104.234.102.0/24 maxlen: 24 104.234.107.0/24 maxlen: 24 104.234.114.0/24 maxlen: 24 104.234.134.0/24 maxlen: 24 104.234.151.0/24 maxlen: 24 104.234.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 10:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a7:d2:da:1e:a7:7c:d4:51:29:3a:c9:55:64:1a:36:b5:0d:67:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: May 9 08:22:06 2026 GMT Not After : May 8 08:27:06 2027 GMT Subject: CN=CAA3D1AD55AC610C63B94ADF021D3D854BF7D978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:55:81:b4:11:2d:37:71:38:f3:84:66:66:f4: 93:a1:72:e2:c7:3b:66:4e:98:85:34:98:1a:54:6f: 8d:9e:9b:b3:c8:f9:59:98:92:a3:1a:d5:f1:14:ef: 6e:52:87:f4:4b:68:50:0b:ac:58:d7:32:43:51:80: 6b:ab:b1:82:bb:95:54:46:51:3e:29:11:28:50:75: 4f:77:0b:29:40:eb:f6:34:5a:6c:59:79:ab:01:69: 7b:93:fc:ec:a9:ba:8f:30:f1:0f:eb:cd:eb:72:e5: 08:e6:77:44:47:76:9d:30:7c:d2:25:5c:18:ae:d9: 01:83:61:76:c8:ba:b8:cf:52:82:81:b4:7a:ad:f3: e5:6a:f8:cf:57:e8:7f:db:c4:05:5a:3b:ce:11:ed: a9:99:37:8a:36:c1:13:0a:e4:ec:0e:6e:fe:8a:1c: 17:fb:98:0e:67:5b:10:ca:df:91:be:35:3e:84:f5: bb:7c:dd:d8:ad:70:7f:d3:87:a7:ca:2c:24:7b:cc: 23:3b:58:90:d5:c1:8f:9c:e3:30:18:54:be:95:49: b7:a2:c5:3a:0c:40:04:92:bf:80:33:32:29:20:dd: f6:c6:3f:a9:f2:5b:e3:83:21:a5:f8:25:88:46:1e: 1e:0d:40:53:c3:85:69:ac:99:88:1e:40:e2:85:c8: 08:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A3:D1:AD:55:AC:61:0C:63:B9:4A:DF:02:1D:3D:85:4B:F7:D9:78 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS40676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.102.0/24 104.234.107.0/24 104.234.114.0/24 104.234.134.0/24 104.234.151.0/24 104.234.157.0/24 Signature Algorithm: sha256WithRSAEncryption a6:c4:c3:21:4a:06:9f:ae:59:e6:e7:0c:7a:69:67:cc:1b:b3: 00:79:f4:fc:e3:3e:eb:da:38:08:49:a4:ab:73:22:ea:53:e1: db:94:70:c6:61:da:4e:9e:13:f0:d1:aa:1a:2d:e2:21:ae:6d: 91:fe:87:df:34:e5:98:10:91:81:18:ad:e1:ca:c6:09:5f:bb: 21:1f:e0:e3:f4:09:3c:ae:2b:cc:0f:29:cc:61:73:b1:9e:de: ff:f6:18:d7:a3:d5:70:f9:04:ff:06:25:c2:2f:ef:a8:75:63: f7:29:e1:81:26:30:74:82:07:19:a6:bc:0d:6f:0f:63:d8:94: f0:57:5c:72:62:5c:bb:91:73:a7:ed:d8:11:22:38:af:21:3f: 5d:f0:af:d3:b3:8b:44:68:f8:cd:ab:08:88:d8:99:f5:16:59: a3:d6:af:75:fc:f3:98:27:0f:88:b0:a7:f3:9f:74:dd:27:db: 84:4c:ff:9a:23:69:43:14:8b:60:16:d8:0d:61:8c:76:65:6e: 0f:aa:8c:31:fa:d4:93:62:22:55:87:3e:a1:a8:a2:9f:fa:9a: 59:12:ba:07:da:36:42:a8:1e:e5:13:23:26:e0:c6:97:7c:60: 2a:f0:13:e3:9b:e9:de:e8:8f:fc:59:b7:f5:c8:32:e4:19:d7: 72:66:39:b4 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUOafS2h6nfNRRKTrJVWQaNrUNZ9kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjYwNTA5MDgyMjA2WhcNMjcwNTA4MDgyNzA2 WjAzMTEwLwYDVQQDEyhDQUEzRDFBRDU1QUM2MTBDNjNCOTRBREYwMjFEM0Q4NTRC RjdEOTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1WBtBEtN3E4 84RmZvSToXLixztmTpiFNJgaVG+NnpuzyPlZmJKjGtXxFO9uUof0S2hQC6xY1zJD UYBrq7GCu5VURlE+KREoUHVPdwspQOv2NFpsWXmrAWl7k/zsqbqPMPEP683rcuUI 5ndER3adMHzSJVwYrtkBg2F2yLq4z1KCgbR6rfPlavjPV+h/28QFWjvOEe2pmTeK NsETCuTsDm7+ihwX+5gOZ1sQyt+RvjU+hPW7fN3YrXB/04enyiwke8wjO1iQ1cGP nOMwGFS+lUm3osU6DEAEkr+AMzIpIN32xj+p8lvjgyGl+CWIRh4eDUBTw4VprJmI HkDihcgItQIDAQABo4ICnDCCApgwHQYDVR0OBBYEFMqj0a1VrGEMY7lK3wIdPYVL 99l4MB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzQwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0G CCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAaOpmAwQAaOprAwQAaOpyAwQAaOqG AwQAaOqXAwQAaOqdMA0GCSqGSIb3DQEBCwUAA4IBAQCmxMMhSgafrlnm5wx6aWfM G7MAefT84z7r2jgISaSrcyLqU+HblHDGYdpOnhPw0aoaLeIhrm2R/offNOWYEJGB GK3hysYJX7shH+Dj9Ak8rivMDynMYXOxnt7/9hjXo9Vw+QT/BiXCL++odWP3KeGB JjB0ggcZprwNbw9j2JTwV1xyYly7kXOn7dgRIjivIT9d8K/Ts4tEaPjNqwiI2Jn1 Flmj1q91/POYJw+IsKfzn3TdJ9uETP+aI2lDFItgFtgNYYx2ZW4Pqowx+tSTYiJV hz6hqKKf+ppZEroH2jZCqB7lEyMm4MaXfGAq8BPjm+ne6I/8Wbf1yDLkGddyZjm0 -----END CERTIFICATE-----Generated at Tue May 12 22:49:29 2026 by rpki-client