$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa File: 323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa (raw, json) Hash identifier: qTLOfqDFwrooMDSGR2+cYPXDSwVkMSG29JvqjH7iSLo= Subject key identifier: 54:2E:E0:64:28:5D:52:82:78:0B:3E:E6:6B:75:A1:36:C8:4D:21:26 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 3E8626C94899226122EBAEBE27E7B2F91F14540B Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa Signing time: Mon 02 Sep 2024 20:13:05 +0000 ROA not before: Mon 02 Sep 2024 20:08:05 +0000 ROA not after: Mon 01 Sep 2025 20:13:05 +0000 asID: 36236 IP address blocks: 2403:2500:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 13:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:86:26:c9:48:99:22:61:22:eb:ae:be:27:e7:b2:f9:1f:14:54:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Sep 2 20:08:05 2024 GMT Not After : Sep 1 20:13:05 2025 GMT Subject: CN=542EE064285D5282780B3EE66B75A136C84D2126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:b3:d9:81:fe:8c:75:80:3a:dc:51:98:61: 39:07:fb:76:df:65:80:31:fb:a4:82:c9:57:8b:19: 16:f3:70:33:04:0c:6f:5c:0d:92:79:5c:ba:8d:bb: 82:25:cd:bd:d0:a0:c6:f4:8a:e7:7b:25:84:d0:4d: 34:b7:db:0d:fa:c1:8e:0e:d3:47:c7:db:d1:6b:a8: d9:b8:ce:99:99:a2:a5:0a:e8:f4:68:3e:7f:83:e2: d3:a9:e7:90:83:74:9e:d9:f8:07:4e:55:83:ca:e5: 4f:7a:65:46:56:93:25:0e:7c:6a:8a:24:1c:77:69: 87:8a:32:da:06:ff:6d:74:73:12:f1:aa:cf:3c:e6: 4a:57:59:93:a1:9d:b7:58:8d:49:1d:8b:16:79:2c: e4:f9:41:56:af:c0:f8:48:e4:c5:5c:88:08:39:3d: 4a:e4:31:9a:f2:8b:a6:0b:4d:bf:f3:f7:84:36:b5: 8e:bd:9b:a1:a3:53:48:09:3b:94:85:e6:c0:38:67: ad:cb:3f:9b:d8:3e:8b:b2:93:0b:db:a5:ea:64:a0: 94:83:e7:7e:a0:57:f9:1b:76:db:d9:c7:43:b0:6b: 2a:79:94:21:be:27:fa:1f:e3:6b:6a:61:e5:8c:54: 3c:f2:a2:3d:91:7d:00:d3:36:8c:7e:66:45:ff:a3: 94:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2E:E0:64:28:5D:52:82:78:0B:3E:E6:6B:75:A1:36:C8:4D:21:26 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:4000::/48 Signature Algorithm: sha256WithRSAEncryption 98:d6:b8:73:19:10:e9:44:16:6c:6a:f0:70:8d:cb:1d:51:df: 09:27:54:17:fd:d3:e3:49:7e:ef:02:4a:a2:fc:bb:42:69:78: 82:0c:4b:a5:fb:f4:4a:cd:91:bb:1d:db:e4:38:42:7a:92:87: e3:5e:3e:c5:ea:f5:5b:4a:8b:0c:e2:6b:c9:41:48:a7:c8:f3: 05:09:32:9f:d1:a5:9e:5e:15:f5:49:09:63:a3:10:d7:42:77: ee:6b:d1:11:f4:d2:1c:28:f9:39:35:07:73:7b:d8:55:0e:e6: d6:3c:87:61:9b:14:8b:64:98:34:16:75:ec:2a:58:99:db:d1: 5f:0b:5e:10:6f:0b:2f:42:d8:28:d4:23:68:5b:dd:23:9d:80: 70:7a:d9:c5:6b:e5:77:9e:70:40:e8:45:99:c2:a0:28:d3:22: 32:dc:06:65:da:bf:2a:8e:a7:c2:89:b0:c1:d2:7c:96:fd:5a: 47:a1:3e:f2:5b:18:b2:16:d2:39:72:df:35:0a:8b:7b:62:93: 34:40:07:b2:4c:b3:e0:e6:2a:14:b0:01:ea:41:83:51:7e:6b: c2:d6:49:a7:fc:e4:c1:5d:36:66:7a:fc:e2:42:57:b7:c2:1f: 34:66:76:1f:07:56:f0:38:cf:b3:08:49:4c:8f:72:b7:40:95: 18:1b:48:0b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUPoYmyUiZImEi666+J+ey+R8UVAswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDkwMjIwMDgwNVoX DTI1MDkwMTIwMTMwNVowMzExMC8GA1UEAxMoNTQyRUUwNjQyODVENTI4Mjc4MEIz RUU2NkI3NUExMzZDODREMjEyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbfs9mB/ox1gDrcUZhhOQf7dt9lgDH7pILJV4sZFvNwMwQMb1wNknlcuo27 giXNvdCgxvSK53slhNBNNLfbDfrBjg7TR8fb0Wuo2bjOmZmipQro9Gg+f4Pi06nn kIN0ntn4B05Vg8rlT3plRlaTJQ58aookHHdph4oy2gb/bXRzEvGqzzzmSldZk6Gd t1iNSR2LFnks5PlBVq/A+EjkxVyICDk9SuQxmvKLpgtNv/P3hDa1jr2boaNTSAk7 lIXmwDhnrcs/m9g+i7KTC9ul6mSglIPnfqBX+Rt229nHQ7BrKnmUIb4n+h/ja2ph 5YxUPPKiPZF9ANM2jH5mRf+jlE0CAwEAAaOCAkcwggJDMB0GA1UdDgQWBBRULuBk KF1SgngLPuZrdaE2yE0hJjAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaoGCCsG AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzQzMDMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMlAEAAMA0GCSqGSIb3DQEB CwUAA4IBAQCY1rhzGRDpRBZsavBwjcsdUd8JJ1QX/dPjSX7vAkqi/LtCaXiCDEul +/RKzZG7HdvkOEJ6kofjXj7F6vVbSosM4mvJQUinyPMFCTKf0aWeXhX1SQljoxDX Qnfua9ER9NIcKPk5NQdze9hVDubWPIdhmxSLZJg0FnXsKliZ29FfC14QbwsvQtgo 1CNoW90jnYBwetnFa+V3nnBA6EWZwqAo0yIy3AZl2r8qjqfCibDB0nyW/VpHoT7y WxiyFtI5ct81Cot7YpM0QAeyTLPg5ioUsAHqQYNRfmvC1kmn/OTBXTZmevziQle3 wh80ZnYfB1bwOM+zCElMj3K3QJUYG0gL -----END CERTIFICATE-----Generated at Mon Nov 25 15:51:28 2024 by rpki-client on console-ams.rpki-client.org