$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3330303a3a2f34382d3438203d3e203336323336.roa File: 323430333a323530303a3330303a3a2f34382d3438203d3e203336323336.roa (raw, json) Hash identifier: oY0E51BLI7lVGRvyzNiGnwfhgEyaAY4C/qUz+FFkT5s= Subject key identifier: 28:BE:6F:72:1C:F5:83:3E:D2:BD:E3:0F:5D:52:C6:6B:87:AE:F8:10 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 0C98DF5287436AB2744C0BEC617A67F4BA9D3F6E Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3330303a3a2f34382d3438203d3e203336323336.roa Signing time: Mon 02 Sep 2024 20:13:06 +0000 ROA not before: Mon 02 Sep 2024 20:08:06 +0000 ROA not after: Mon 01 Sep 2025 20:13:06 +0000 asID: 36236 IP address blocks: 2403:2500:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 22:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:98:df:52:87:43:6a:b2:74:4c:0b:ec:61:7a:67:f4:ba:9d:3f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Sep 2 20:08:06 2024 GMT Not After : Sep 1 20:13:06 2025 GMT Subject: CN=28BE6F721CF5833ED2BDE30F5D52C66B87AEF810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f8:fa:68:e3:6a:51:5c:ee:8a:12:59:a7:e8: ac:9b:2a:e3:c5:ee:5d:3c:6f:5a:6d:84:d0:e3:47: f2:09:92:5f:48:e1:fe:33:19:7a:8c:33:74:f4:6c: c4:6d:31:a8:31:f8:46:98:d3:ea:8a:88:d5:ee:e3: 8f:25:ec:2a:ed:07:cf:cf:6a:f0:73:c3:4b:e0:66: 52:27:5b:16:36:23:ef:52:21:a0:63:c8:69:33:19: ee:6b:09:9c:98:7f:b6:52:62:ba:fb:38:a4:f3:dd: 9b:38:de:5c:eb:90:d9:59:b7:6a:cc:b6:9a:c5:90: eb:d2:d3:9c:4f:c7:80:e8:92:a3:d2:fb:0c:64:ff: 09:80:6c:df:69:52:ef:50:a1:45:a2:ad:11:58:47: 4c:72:a4:1b:37:1d:7b:81:dc:0e:9c:6c:ad:8e:58: d5:c8:62:5e:82:fc:35:ca:9b:01:36:ac:84:b5:fd: 9e:bd:00:f0:04:2e:6e:43:36:39:69:f1:6d:c2:7b: d3:da:bc:35:de:33:d7:bf:eb:a2:c9:27:c9:82:89: a3:d8:77:f7:7a:f6:30:10:bd:9c:91:c4:ea:d4:43: 0b:9b:fa:2e:40:31:ef:c9:1d:71:0e:31:6d:37:67: 64:0a:c0:5a:1c:25:38:9c:be:dc:99:c1:e0:be:86: 78:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:BE:6F:72:1C:F5:83:3E:D2:BD:E3:0F:5D:52:C6:6B:87:AE:F8:10 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3330303a3a2f34382d3438203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:300::/48 Signature Algorithm: sha256WithRSAEncryption 22:2a:3c:e6:e1:59:5f:43:da:12:00:ab:49:d5:c2:86:12:ae: 78:12:a9:33:7d:d6:82:b8:fa:4e:49:52:a2:6a:ad:0a:f8:db: 30:7f:d6:aa:07:b2:29:be:c6:64:8e:ca:12:e2:51:ad:39:a8: 1c:53:e9:05:49:8b:a1:84:31:3e:3d:77:99:27:1f:f7:bb:39: 8e:27:9b:c5:e0:65:76:2c:ab:12:81:4d:52:07:51:ca:f4:5e: cb:95:45:40:2a:d4:24:2c:e7:b3:61:03:fe:96:63:8a:fb:3c: fe:db:15:0e:2f:76:57:52:68:47:14:44:b0:b7:55:1f:99:7b: e5:04:58:82:be:d2:6f:91:11:37:a9:ce:35:62:ff:11:89:f7: 8e:df:30:8d:7c:d4:a7:9d:a0:aa:e4:30:1e:d6:23:c4:62:9b: 6f:a5:7f:e2:84:d2:cd:01:25:c0:f4:17:c1:87:95:57:15:ea: 6e:02:66:a5:ee:6a:f9:25:7f:9f:7c:e8:d2:ba:2f:c0:d1:37: 5e:4c:43:27:13:e4:e2:5c:92:ef:3b:e4:62:07:c9:08:8a:57: e5:18:38:0f:ca:55:10:f5:cb:ec:e1:30:52:38:e0:33:7c:82: ce:7b:b8:99:ce:e5:9c:1b:da:c5:96:fa:a6:19:79:22:14:d9: c1:df:b3:0a -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUDJjfUodDarJ0TAvsYXpn9LqdP24wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDkwMjIwMDgwNloX DTI1MDkwMTIwMTMwNlowMzExMC8GA1UEAxMoMjhCRTZGNzIxQ0Y1ODMzRUQyQkRF MzBGNUQ1MkM2NkI4N0FFRjgxMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKr4+mjjalFc7ooSWaforJsq48XuXTxvWm2E0ONH8gmSX0jh/jMZeowzdPRs xG0xqDH4RpjT6oqI1e7jjyXsKu0Hz89q8HPDS+BmUidbFjYj71IhoGPIaTMZ7msJ nJh/tlJiuvs4pPPdmzjeXOuQ2Vm3asy2msWQ69LTnE/HgOiSo9L7DGT/CYBs32lS 71ChRaKtEVhHTHKkGzcde4HcDpxsrY5Y1chiXoL8NcqbATashLX9nr0A8AQubkM2 OWnxbcJ709q8Nd4z17/rosknyYKJo9h393r2MBC9nJHE6tRDC5v6LkAx78kdcQ4x bTdnZArAWhwlOJy+3JnB4L6GeHECAwEAAaOCAkUwggJBMB0GA1UdDgQWBBQovm9y HPWDPtK94w9dUsZrh674EDAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgagGCCsG AQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzMzMDMwM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzMzNjMyMzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDJQADADANBgkqhkiG9w0BAQsF AAOCAQEAIio85uFZX0PaEgCrSdXChhKueBKpM33Wgrj6TklSomqtCvjbMH/Wqgey Kb7GZI7KEuJRrTmoHFPpBUmLoYQxPj13mScf97s5jiebxeBldiyrEoFNUgdRyvRe y5VFQCrUJCzns2ED/pZjivs8/tsVDi92V1JoRxREsLdVH5l75QRYgr7Sb5ERN6nO NWL/EYn3jt8wjXzUp52gquQwHtYjxGKbb6V/4oTSzQElwPQXwYeVVxXqbgJmpe5q +SV/n3zo0rovwNE3XkxDJxPk4lyS7zvkYgfJCIpX5Rg4D8pVEPXL7OEwUjjgM3yC znu4mc7lnBvaxZb6phl5IhTZwd+zCg== -----END CERTIFICATE-----Generated at Thu Nov 21 23:34:58 2024 by rpki-client on console-ams.rpki-client.org