$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132383a3a2f36342d3634203d3e20333939313730.roa File: 323430333a323530303a393030303a3132383a3a2f36342d3634203d3e20333939313730.roa (raw, json) Hash identifier: hWwdvbziS6I9s47Ww00FGlcVStpDBW6Tx+JRNVSdUSU= Subject key identifier: 2C:9B:44:F9:29:B0:4C:7B:D5:82:C0:D3:85:C9:7F:A1:46:70:AE:0F Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 77E1629D7EE3177137CF40E208209CBE609C56D6 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132383a3a2f36342d3634203d3e20333939313730.roa Signing time: Sat 07 Dec 2024 13:13:28 +0000 ROA not before: Sat 07 Dec 2024 13:08:28 +0000 ROA not after: Sat 06 Dec 2025 13:13:28 +0000 asID: 399170 IP address blocks: 2403:2500:9000:128::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e1:62:9d:7e:e3:17:71:37:cf:40:e2:08:20:9c:be:60:9c:56:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000 Validity Not Before: Dec 7 13:08:28 2024 GMT Not After : Dec 6 13:13:28 2025 GMT Subject: CN=2C9B44F929B04C7BD582C0D385C97FA14670AE0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c4:91:c4:2c:b3:a0:26:40:d8:72:7c:d7:6b: 30:14:42:ff:f4:d4:32:e0:dc:81:8c:4f:0f:df:ff: 00:a3:ff:f0:ab:77:ee:d7:ae:2c:ac:7f:d5:6f:0c: 29:4d:57:a9:4c:e3:c0:3c:b0:78:10:3f:f0:07:8e: f3:d9:fb:49:6e:d5:33:57:87:8c:5d:21:62:67:49: 8a:97:fb:53:1b:ae:3a:1d:5f:14:a2:e9:88:c5:93: 34:b7:fc:76:9c:40:2d:ab:3e:c3:17:e9:07:40:ce: ce:2b:9d:c8:e2:82:0d:55:01:8f:a2:3b:d2:d4:2d: 29:d5:ed:52:b2:80:af:44:22:d8:8b:d3:2e:f9:0f: 5b:2c:01:3b:2c:91:6e:25:df:ab:2e:88:fd:05:ea: 4d:f6:33:68:f5:df:29:33:47:4c:2a:88:22:1b:d4: 74:c3:90:18:26:04:fc:8b:a6:f0:bb:e7:00:b1:55: 46:82:06:1c:05:33:20:9e:4b:6c:9d:3b:e8:49:cf: 71:c8:46:a1:d0:76:07:fb:34:04:14:e6:cf:22:59: a1:e5:6c:ec:49:70:8d:f9:63:87:aa:9a:0e:b4:78: 64:c2:94:41:53:29:85:a6:3f:93:14:74:50:9a:5d: 24:ba:5e:62:fa:06:a7:07:0e:26:cf:c8:90:97:4c: d1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9B:44:F9:29:B0:4C:7B:D5:82:C0:D3:85:C9:7F:A1:46:70:AE:0F X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132383a3a2f36342d3634203d3e20333939313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:9000:128::/64 Signature Algorithm: sha256WithRSAEncryption af:73:21:46:f2:58:2d:78:b3:07:e2:a7:25:5c:98:a1:25:da: 09:9c:09:50:40:40:0e:5c:18:51:c6:0a:df:3e:d7:54:f1:07: e8:08:9f:8c:88:a4:fa:de:d5:3e:c1:58:0e:c7:f5:a2:bc:3d: 36:b2:26:e9:9a:1e:8e:51:99:6c:29:a3:03:8c:be:3c:47:25: 69:f8:65:dc:a4:97:1d:15:43:ff:3e:03:05:95:39:27:ee:bf: 9a:8e:dc:e4:1c:23:73:a6:56:cb:8d:06:2c:79:6c:26:30:1c: bb:50:0a:1c:9f:3f:e0:ad:f8:db:ec:a8:37:75:72:94:ea:91: 31:2f:71:63:60:81:a5:68:8c:c3:36:e4:51:29:26:81:ce:a2: 27:12:20:38:02:1f:1a:72:6c:cb:47:87:d7:33:fc:a9:9b:0f: 43:61:07:a0:2b:35:38:57:15:49:dc:7b:36:73:28:20:7f:9a: e4:d4:40:e4:ea:7a:64:b9:4d:01:30:9f:32:f3:fd:05:1a:de: 64:c8:a9:dc:9e:78:f7:49:1a:22:12:15:a7:da:84:b3:af:71: b7:2f:aa:c2:01:38:94:87:3f:9d:b3:35:09:e8:09:3e:34:e6: 08:07:c0:a0:6d:d9:ac:7f:4b:96:f2:da:c4:6d:24:f8:10:be: 9f:dc:07:cb -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUd+FinX7jF3E3z0DiCCCcvmCcVtYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MTIwNzEzMDgyOFoX DTI1MTIwNjEzMTMyOFowMzExMC8GA1UEAxMoMkM5QjQ0RjkyOUIwNEM3QkQ1ODJD MEQzODVDOTdGQTE0NjcwQUUwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbEkcQss6AmQNhyfNdrMBRC//TUMuDcgYxPD9//AKP/8Kt37teuLKx/1W8M KU1XqUzjwDyweBA/8AeO89n7SW7VM1eHjF0hYmdJipf7UxuuOh1fFKLpiMWTNLf8 dpxALas+wxfpB0DOziudyOKCDVUBj6I70tQtKdXtUrKAr0Qi2IvTLvkPWywBOyyR biXfqy6I/QXqTfYzaPXfKTNHTCqIIhvUdMOQGCYE/Ium8LvnALFVRoIGHAUzIJ5L bJ076EnPcchGodB2B/s0BBTmzyJZoeVs7Elwjfljh6qaDrR4ZMKUQVMphaY/kxR0 UJpdJLpeYvoGpwcOJs/IkJdM0f8CAwEAAaOCAlMwggJPMB0GA1UdDgQWBBQsm0T5 KbBMe9WCwNOFyX+hRnCuDzAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbQGCCsG AQUFBwELBIGnMIGkMIGhBggrBgEFBQcwC4aBlHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzkzMDMwMzAzYTMxMzIzODNhM2EyZjM2 MzQyZDM2MzQyMDNkM2UyMDMzMzkzOTMxMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAkBggrBgEFBQcBBwEB/wQVMBMwEQQCAAIwCwMJACQDJQCQAAEo MA0GCSqGSIb3DQEBCwUAA4IBAQCvcyFG8lgteLMH4qclXJihJdoJnAlQQEAOXBhR xgrfPtdU8QfoCJ+MiKT63tU+wVgOx/WivD02sibpmh6OUZlsKaMDjL48RyVp+GXc pJcdFUP/PgMFlTkn7r+ajtzkHCNzplbLjQYseWwmMBy7UAocnz/grfjb7Kg3dXKU 6pExL3FjYIGlaIzDNuRRKSaBzqInEiA4Ah8acmzLR4fXM/ypmw9DYQegKzU4VxVJ 3Hs2cyggf5rk1EDk6npkuU0BMJ8y8/0FGt5kyKncnnj3SRoiEhWn2oSzr3G3L6rC ATiUhz+dszUJ6Ak+NOYIB8Cgbdmsf0uW8trEbST4EL6f3AfL -----END CERTIFICATE-----Generated at Tue Apr 8 11:37:25 2025 by rpki-client