$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/323430373a636463303a3a2f33322d3438203d3e203338313336.roa File: 323430373a636463303a3a2f33322d3438203d3e203338313336.roa (raw, json) Hash identifier: E/iWUzr8mY4I9/EKi0Ny4oAFvSVSVhEt9Jt/vhQC6Vc= Subject key identifier: A6:7E:17:D2:6A:67:86:CA:6E:8B:67:EC:3C:7B:EA:B7:4D:53:C4:1D Certificate issuer: /CN=A916C75D0000/serialNumber=ADBE1A0F46F9C77B0D249FD6A438B48B7FB21BCF Certificate serial: 2C3B19D1C6977AF78B9F6313B7FA16AD03155640 Authority key identifier: AD:BE:1A:0F:46:F9:C7:7B:0D:24:9F:D6:A4:38:B4:8B:7F:B2:1B:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rb4aD0b5x3sNJJ_WpDi0i3-yG88.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/323430373a636463303a3a2f33322d3438203d3e203338313336.roa Signing time: Fri 18 Jul 2025 07:36:59 +0000 ROA not before: Fri 18 Jul 2025 07:31:59 +0000 ROA not after: Fri 17 Jul 2026 07:36:59 +0000 asID: 38136 IP address blocks: 2407:cdc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/ADBE1A0F46F9C77B0D249FD6A438B48B7FB21BCF.crl rsync://rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/ADBE1A0F46F9C77B0D249FD6A438B48B7FB21BCF.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rb4aD0b5x3sNJJ_WpDi0i3-yG88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 20:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:3b:19:d1:c6:97:7a:f7:8b:9f:63:13:b7:fa:16:ad:03:15:56:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C75D0000, serialNumber=ADBE1A0F46F9C77B0D249FD6A438B48B7FB21BCF Validity Not Before: Jul 18 07:31:59 2025 GMT Not After : Jul 17 07:36:59 2026 GMT Subject: CN=A67E17D26A6786CA6E8B67EC3C7BEAB74D53C41D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0f:a2:71:0e:ce:5c:dd:2f:4e:d7:ee:46:e9: 84:85:fa:00:a9:87:7c:ec:ac:7a:b0:b3:ef:20:85: d6:4f:ef:50:b8:a2:19:20:2f:6d:b2:a6:74:54:dd: bc:e6:1c:07:b6:9f:62:fe:20:e6:69:92:d3:2c:2b: 26:2d:53:0f:cd:e1:19:23:58:3b:82:8d:a0:a4:ae: 59:0d:aa:81:95:6d:78:ce:eb:d4:96:92:b2:2c:08: d7:00:04:23:fd:ce:bf:4b:ae:3e:18:37:ac:fd:42: f8:72:ba:46:67:cf:9c:4b:7d:5d:d4:dc:18:b9:01: 52:91:dd:4e:1b:cc:69:eb:39:69:c7:a6:d5:fb:ae: be:de:1d:29:2d:1e:38:6d:d7:29:4b:ee:23:f9:ae: c3:07:dd:bf:62:53:44:44:24:e4:0d:bf:ad:09:9d: 55:34:f1:a6:b6:ba:bd:38:ff:94:e1:9e:81:ab:69: 6b:f9:b6:4f:08:6c:4c:33:ff:71:a8:43:67:a0:54: 5e:6f:1b:8a:75:8a:26:3f:b5:45:f7:2f:00:46:67: 77:7e:6a:50:94:8e:c3:43:08:f9:e6:50:89:d4:f9: 6c:b2:dc:cb:0c:58:76:2a:01:ec:6b:fc:0f:12:e1: d6:c8:17:aa:16:47:45:9c:dd:72:16:34:6e:21:fb: 87:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7E:17:D2:6A:67:86:CA:6E:8B:67:EC:3C:7B:EA:B7:4D:53:C4:1D X509v3 Authority Key Identifier: keyid:AD:BE:1A:0F:46:F9:C7:7B:0D:24:9F:D6:A4:38:B4:8B:7F:B2:1B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/ADBE1A0F46F9C77B0D249FD6A438B48B7FB21BCF.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rb4aD0b5x3sNJJ_WpDi0i3-yG88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/323430373a636463303a3a2f33322d3438203d3e203338313336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:cdc0::/32 Signature Algorithm: sha256WithRSAEncryption 5e:83:e6:0a:cc:02:79:d3:da:83:df:5d:06:4e:db:18:a1:70: 0a:a8:99:87:bd:24:5b:e4:a3:bd:fd:1d:91:ac:f3:d8:d0:e5: 07:24:05:a0:5c:34:3b:53:0d:cc:4c:e1:0f:7a:78:45:a7:3e: a3:db:63:3a:cd:5d:28:f2:78:09:22:09:51:8c:d8:d6:00:27: 54:e7:d0:4d:7b:c0:0d:10:28:d3:b0:2f:4c:3b:49:2b:a8:bf: 4d:3f:78:f6:18:3b:2b:34:ca:d4:2c:e0:4c:76:29:b8:2c:e3: dc:a3:d1:86:3b:7e:da:35:7d:c8:83:4a:8b:a7:5f:eb:02:98: b7:d1:47:77:b9:ba:07:ff:50:2e:2d:d5:dc:a5:67:dd:a7:a0: 38:71:22:bb:01:c5:ee:d1:76:cd:0c:84:79:dd:d7:fa:06:2e: 0c:59:7b:97:85:ca:37:12:e5:12:c1:3b:d3:ba:ee:0c:5d:da: d3:cc:26:3e:23:96:f7:23:dd:3f:ad:c3:4d:cd:0f:bc:58:b4: 4d:fa:67:1f:2f:2e:48:89:5b:f8:f2:58:97:6f:d3:f3:c0:06: 58:ee:f7:ca:87:7c:07:b1:fb:f1:4b:4a:cd:01:a2:ce:e7:bd: 57:13:cc:39:1a:3e:54:ff:28:e1:c4:06:53:04:e2:c8:0f:bc: 9d:8e:04:a2 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgIULDsZ0caXeveLn2MTt/oWrQMVVkAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNkM3NUQwMDAwMTEwLwYDVQQFEyhBREJFMUEwRjQ2 RjlDNzdCMEQyNDlGRDZBNDM4QjQ4QjdGQjIxQkNGMB4XDTI1MDcxODA3MzE1OVoX DTI2MDcxNzA3MzY1OVowMzExMC8GA1UEAxMoQTY3RTE3RDI2QTY3ODZDQTZFOEI2 N0VDM0M3QkVBQjc0RDUzQzQxRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKgPonEOzlzdL07X7kbphIX6AKmHfOyserCz7yCF1k/vULiiGSAvbbKmdFTd vOYcB7afYv4g5mmS0ywrJi1TD83hGSNYO4KNoKSuWQ2qgZVteM7r1JaSsiwI1wAE I/3Ov0uuPhg3rP1C+HK6RmfPnEt9XdTcGLkBUpHdThvMaes5acem1fuuvt4dKS0e OG3XKUvuI/muwwfdv2JTREQk5A2/rQmdVTTxpra6vTj/lOGegatpa/m2TwhsTDP/ cahDZ6BUXm8binWKJj+1RfcvAEZnd35qUJSOw0MI+eZQidT5bLLcywxYdioB7Gv8 DxLh1sgXqhZHRZzdchY0biH7h50CAwEAAaOCAjswggI3MB0GA1UdDgQWBBSmfhfS ameGym6LZ+w8e+q3TVPEHTAfBgNVHSMEGDAWgBStvhoPRvnHew0kn9akOLSLf7Ib zzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjkxNGUwYWE2MDE5MTU5 ZjJmYjI3MGNhOC8xL0FEQkUxQTBGNDZGOUM3N0IwRDI0OUZENkE0MzhCNDhCN0ZC MjFCQ0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL3JiNGFEMGI1eDNzTkpKX1dwRGkwaTMteUc4OC5jZXIwgaAGCCsG AQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjkxNGUwYWE2MDE5MTU5ZjJmYjI3MGNh OC8xLzMyMzQzMDM3M2E2MzY0NjMzMDNhM2EyZjMzMzIyZDM0MzgyMDNkM2UyMDMz MzgzMTMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUH AQcBAf8EETAPMA0EAgACMAcDBQAkB83AMA0GCSqGSIb3DQEBCwUAA4IBAQBeg+YK zAJ509qD310GTtsYoXAKqJmHvSRb5KO9/R2RrPPY0OUHJAWgXDQ7Uw3MTOEPenhF pz6j22M6zV0o8ngJIglRjNjWACdU59BNe8ANECjTsC9MO0krqL9NP3j2GDsrNMrU LOBMdim4LOPco9GGO37aNX3Ig0qLp1/rApi30Ud3uboH/1AuLdXcpWfdp6A4cSK7 AcXu0XbNDIR53df6Bi4MWXuXhco3EuUSwTvTuu4MXdrTzCY+I5b3I90/rcNNzQ+8 WLRN+mcfLy5IiVv48liXb9PzwAZY7vfKh3wHsfvxS0rNAaLO571XE8w5Gj5U/yjh xAZTBOLID7ydjgSi -----END CERTIFICATE-----Generated at Sun Jul 20 09:21:11 2025 by rpki-client