$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a31323a3a2f36342d3634203d3e20333939313634.roa File: 323430333a323530303a383030303a31323a3a2f36342d3634203d3e20333939313634.roa (raw, json) Hash identifier: m2aDAFerkBsyh9Et9f6jB2SpaZWXvJNo9zqKVb1jGdk= Subject key identifier: BA:91:90:23:D9:79:65:22:A9:4B:43:89:D3:EB:2F:A3:C8:DC:91:F3 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 7F418DFB305E630D0ED3594D2EA39BACC937248E Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a31323a3a2f36342d3634203d3e20333939313634.roa Signing time: Sat 07 Dec 2024 12:13:27 +0000 ROA not before: Sat 07 Dec 2024 12:08:27 +0000 ROA not after: Sat 06 Dec 2025 12:13:27 +0000 asID: 399164 IP address blocks: 2403:2500:8000:12::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:41:8d:fb:30:5e:63:0d:0e:d3:59:4d:2e:a3:9b:ac:c9:37:24:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000 Validity Not Before: Dec 7 12:08:27 2024 GMT Not After : Dec 6 12:13:27 2025 GMT Subject: CN=BA919023D9796522A94B4389D3EB2FA3C8DC91F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:12:c3:e6:c1:74:0f:3c:1d:2b:97:18:9b:bc: 80:88:97:26:9b:a0:e3:fd:5d:d0:05:b9:99:64:70: 6e:6a:c8:8c:a1:f9:13:79:31:ec:ec:73:31:7c:9c: 8e:89:18:45:cd:83:44:08:ca:d0:87:08:72:56:f6: 7d:40:79:c2:3d:c0:94:61:ef:ea:ee:29:db:16:4d: a8:21:f7:1d:9d:5d:3c:9b:4f:98:38:c4:5b:e0:6b: 26:73:46:c6:59:b2:cd:59:2e:04:cd:90:95:a7:e3: cd:49:69:cd:c4:b1:a7:79:31:bb:39:e5:39:c7:ea: 5c:40:97:21:19:d7:4f:dd:e8:e1:7e:bb:56:71:88: 25:ad:63:ac:eb:fd:49:1e:8a:10:73:37:1b:80:f0: dd:a4:0b:90:cd:d5:9f:b8:0e:37:59:b7:12:e6:6e: 96:35:97:09:6b:63:b6:00:0f:12:41:f7:f8:3a:87: 83:20:3d:30:7c:06:92:27:5c:29:2b:31:b3:f1:c0: b3:ff:97:bb:d7:3d:1e:ab:0b:df:1b:19:dd:55:7f: 8a:61:d8:e5:c6:c2:d2:47:fa:87:5e:be:69:37:bc: 26:db:9b:d2:e1:36:60:df:42:3c:4a:28:62:29:72: 29:85:bd:80:d6:44:ce:b8:66:16:66:44:e3:57:87: 1c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:91:90:23:D9:79:65:22:A9:4B:43:89:D3:EB:2F:A3:C8:DC:91:F3 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a31323a3a2f36342d3634203d3e20333939313634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:8000:12::/64 Signature Algorithm: sha256WithRSAEncryption e6:b6:74:2e:df:b9:9e:08:6d:55:05:6c:45:47:e5:05:fc:12: f5:0e:af:4f:36:b3:48:61:d8:e2:d4:bc:e6:63:e7:5a:ad:ee: 90:0b:dc:3b:f4:b1:fb:a8:1c:87:84:ec:fd:f7:a4:8f:99:83: 44:6d:3b:c2:07:fb:91:b3:32:c6:4e:37:87:93:ea:5c:bc:0b: 16:09:f3:6f:ee:c8:22:38:0e:d8:ee:87:80:0b:7f:d0:77:e8: 96:0d:fd:c0:ff:28:4a:f7:54:79:bf:ff:53:52:38:75:13:8f: 34:3f:99:60:30:aa:f9:96:d0:ab:cc:48:5f:ee:2d:b0:cc:df: 8b:37:c1:7f:01:8e:bb:fe:7f:55:71:77:a6:11:8c:c7:fe:e7: 8a:3f:ec:94:82:1a:e0:3d:2e:f8:3d:24:8e:82:d0:79:71:6f: 77:e9:65:f3:09:7a:4c:7a:ac:05:82:69:03:c4:a5:65:33:f7: 96:c0:01:8d:74:94:0a:8e:df:9f:49:53:29:cb:55:31:26:3f: fa:10:f9:c2:e8:95:6e:6d:8a:4f:32:b7:9e:80:9c:43:3d:e9: cc:41:8a:41:6d:9e:ad:77:bc:c3:10:cd:36:b7:9d:ea:87:b9: e3:c9:97:e2:30:74:48:e7:2d:bf:8a:0c:94:8a:27:cb:2c:7d: c4:e7:81:16 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUf0GN+zBeYw0O01lNLqObrMk3JI4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MTIwNzEyMDgyN1oX DTI1MTIwNjEyMTMyN1owMzExMC8GA1UEAxMoQkE5MTkwMjNEOTc5NjUyMkE5NEI0 Mzg5RDNFQjJGQTNDOERDOTFGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANUSw+bBdA88HSuXGJu8gIiXJpug4/1d0AW5mWRwbmrIjKH5E3kx7OxzMXyc jokYRc2DRAjK0IcIclb2fUB5wj3AlGHv6u4p2xZNqCH3HZ1dPJtPmDjEW+BrJnNG xlmyzVkuBM2QlafjzUlpzcSxp3kxuznlOcfqXECXIRnXT93o4X67VnGIJa1jrOv9 SR6KEHM3G4Dw3aQLkM3Vn7gON1m3EuZuljWXCWtjtgAPEkH3+DqHgyA9MHwGkidc KSsxs/HAs/+Xu9c9HqsL3xsZ3VV/imHY5cbC0kf6h16+aTe8Jtub0uE2YN9CPEoo YilyKYW9gNZEzrhmFmZE41eHHA8CAwEAAaOCAlEwggJNMB0GA1UdDgQWBBS6kZAj 2XllIqlLQ4nT6y+jyNyR8zAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbIGCCsG AQUFBwELBIGlMIGiMIGfBggrBgEFBQcwC4aBknJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzgzMDMwMzAzYTMxMzIzYTNhMmYzNjM0 MmQzNjM0MjAzZDNlMjAzMzM5MzkzMTM2MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwJAYIKwYBBQUHAQcBAf8EFTATMBEEAgACMAsDCQAkAyUAgAAAEjAN BgkqhkiG9w0BAQsFAAOCAQEA5rZ0Lt+5nghtVQVsRUflBfwS9Q6vTzazSGHY4tS8 5mPnWq3ukAvcO/Sx+6gch4Ts/fekj5mDRG07wgf7kbMyxk43h5PqXLwLFgnzb+7I IjgO2O6HgAt/0Hfolg39wP8oSvdUeb//U1I4dROPND+ZYDCq+ZbQq8xIX+4tsMzf izfBfwGOu/5/VXF3phGMx/7nij/slIIa4D0u+D0kjoLQeXFvd+ll8wl6THqsBYJp A8SlZTP3lsABjXSUCo7fn0lTKctVMSY/+hD5wuiVbm2KTzK3noCcQz3pzEGKQW2e rXe8wxDNNred6oe548mX4jB0SOctv4oMlIonyyx9xOeBFg== -----END CERTIFICATE-----Generated at Tue Apr 8 11:37:26 2025 by rpki-client