$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31323a3a2f36342d3634203d3e20333939313635.roa File: 323430333a323530303a3430303a31323a3a2f36342d3634203d3e20333939313635.roa (raw, json) Hash identifier: h2OpqDfIFdLXOsVXiLs8dupYWuafN2ACy0LTvadLlpQ= Subject key identifier: 1A:F8:B5:51:C2:22:2F:13:17:27:81:55:82:26:31:76:52:92:D1:88 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 4259D909C8967AD4B791FD0CCFA48F8297D65466 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31323a3a2f36342d3634203d3e20333939313635.roa Signing time: Sat 07 Dec 2024 12:13:27 +0000 ROA not before: Sat 07 Dec 2024 12:08:27 +0000 ROA not after: Sat 06 Dec 2025 12:13:27 +0000 asID: 399165 IP address blocks: 2403:2500:400:12::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:59:d9:09:c8:96:7a:d4:b7:91:fd:0c:cf:a4:8f:82:97:d6:54:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000 Validity Not Before: Dec 7 12:08:27 2024 GMT Not After : Dec 6 12:13:27 2025 GMT Subject: CN=1AF8B551C2222F1317278155822631765292D188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:35:f6:22:9c:16:6e:2b:dc:23:df:a4:66:b9: 7e:95:aa:6d:77:1f:30:cc:34:64:96:c6:ab:1b:c0: 02:ff:f9:4b:85:f1:21:81:86:59:d6:0d:77:f0:1e: b0:b9:d6:cf:e3:df:39:67:2c:19:64:4d:f4:99:c4: 8a:13:c9:55:87:6d:4f:eb:02:f3:48:4f:b0:02:fa: ff:a2:21:ec:64:61:cd:aa:8b:9f:f2:52:bb:57:96: 86:83:34:95:d0:98:38:a7:f9:1f:46:4c:ad:b7:e7: 52:3d:65:48:2f:3a:52:2f:bc:ae:b4:ab:df:4d:ad: 9d:0e:2c:7c:77:cd:21:e2:56:71:1a:d5:e4:a2:f7: 64:a6:02:02:6d:7b:95:f9:ac:2a:8a:44:24:c7:49: 16:9b:dc:35:41:bf:5f:37:19:ce:99:8f:eb:ca:f1: 89:43:39:68:3e:22:26:98:d7:7b:14:63:16:ab:88: ac:2b:be:e8:12:64:55:60:48:63:e3:2b:f2:c7:15: b7:5f:8d:97:42:58:64:37:71:96:d8:9b:2e:2f:10: 18:7d:5c:b2:d3:14:86:e4:87:5a:ed:06:b5:6c:89: d3:cb:9c:aa:f9:ad:03:48:a8:c8:93:f0:07:46:0a: e9:60:a7:09:59:d7:fb:e5:67:ef:44:e2:ca:e0:42: 2a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F8:B5:51:C2:22:2F:13:17:27:81:55:82:26:31:76:52:92:D1:88 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31323a3a2f36342d3634203d3e20333939313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:400:12::/64 Signature Algorithm: sha256WithRSAEncryption 17:7c:49:bb:e7:aa:b2:9a:d9:eb:a1:fb:b5:e6:1f:e5:3a:b7: e7:f0:99:49:b5:16:f1:03:24:91:ed:26:99:a5:7d:60:b5:8a: 26:50:85:11:1b:3b:05:b9:d5:c4:b9:94:25:28:cd:08:59:60: f5:5f:bf:f3:0f:f7:ec:89:56:6f:88:f1:03:cc:24:0f:e1:18: be:67:8b:55:f6:e3:3c:07:48:ce:2a:c2:b8:25:f3:e5:a6:7c: d8:41:c9:e1:78:3c:56:ed:7d:a2:10:56:46:f3:c0:27:4b:dc: d9:1c:7e:62:70:ec:c4:6c:9f:09:49:dc:23:ec:8d:7f:c4:21: 24:66:10:83:e1:82:ef:70:52:3b:f9:8d:50:2c:5d:e0:56:67: 77:bb:5b:71:93:bc:d1:b8:07:04:45:a8:74:08:41:c5:72:c1: b5:b3:73:62:5f:cf:32:22:31:4f:ed:22:df:30:61:61:c0:16: b6:bf:d4:83:3d:a7:78:76:17:f5:09:63:0b:bc:a2:39:28:1c: 48:90:7c:94:60:75:7f:b5:a4:58:8b:4b:42:7d:de:58:9b:e8: 2f:aa:a3:a4:71:ff:c1:5d:f7:dc:9c:6c:7d:03:1f:80:86:9d: f9:4d:3d:b9:02:96:43:18:c5:32:cd:ca:0e:41:98:8d:52:06: 83:c2:c3:7d -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUQlnZCciWetS3kf0Mz6SPgpfWVGYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MTIwNzEyMDgyN1oX DTI1MTIwNjEyMTMyN1owMzExMC8GA1UEAxMoMUFGOEI1NTFDMjIyMkYxMzE3Mjc4 MTU1ODIyNjMxNzY1MjkyRDE4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANo19iKcFm4r3CPfpGa5fpWqbXcfMMw0ZJbGqxvAAv/5S4XxIYGGWdYNd/Ae sLnWz+PfOWcsGWRN9JnEihPJVYdtT+sC80hPsAL6/6Ih7GRhzaqLn/JSu1eWhoM0 ldCYOKf5H0ZMrbfnUj1lSC86Ui+8rrSr302tnQ4sfHfNIeJWcRrV5KL3ZKYCAm17 lfmsKopEJMdJFpvcNUG/XzcZzpmP68rxiUM5aD4iJpjXexRjFquIrCu+6BJkVWBI Y+Mr8scVt1+Nl0JYZDdxltibLi8QGH1cstMUhuSHWu0GtWyJ08ucqvmtA0ioyJPw B0YK6WCnCVnX++Vn70TiyuBCKk0CAwEAAaOCAk8wggJLMB0GA1UdDgQWBBQa+LVR wiIvExcngVWCJjF2UpLRiDAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbAGCCsG AQUFBwELBIGjMIGgMIGdBggrBgEFBQcwC4aBkHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzQzMDMwM2EzMTMyM2EzYTJmMzYzNDJk MzYzNDIwM2QzZTIwMzMzOTM5MzEzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAJAMlAAQAABIwDQYJ KoZIhvcNAQELBQADggEBABd8SbvnqrKa2euh+7XmH+U6t+fwmUm1FvEDJJHtJpml fWC1iiZQhREbOwW51cS5lCUozQhZYPVfv/MP9+yJVm+I8QPMJA/hGL5ni1X24zwH SM4qwrgl8+WmfNhByeF4PFbtfaIQVkbzwCdL3NkcfmJw7MRsnwlJ3CPsjX/EISRm EIPhgu9wUjv5jVAsXeBWZ3e7W3GTvNG4BwRFqHQIQcVywbWzc2JfzzIiMU/tIt8w YWHAFra/1IM9p3h2F/UJYwu8ojkoHEiQfJRgdX+1pFiLS0J93lib6C+qo6Rx/8Fd 99ycbH0DH4CGnflNPbkClkMYxTLNyg5BmI1SBoPCw30= -----END CERTIFICATE-----Generated at Tue Apr 8 11:30:10 2025 by rpki-client