$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa File: 323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa (raw, json) Hash identifier: InA7lknCH689Djatabh9Z1LCkltKCSKx1QbtILe5Y4U= Subject key identifier: 12:90:FA:09:ED:7A:00:FA:F9:27:0A:C1:A8:86:1F:53:77:40:B0:8A Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 44473DF46833EBE0C960D2DEEA3BE3B1DBAF07BC Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa Signing time: Mon 02 Oct 2023 19:55:33 +0000 ROA not before: Mon 02 Oct 2023 19:50:33 +0000 ROA not after: Mon 30 Sep 2024 19:55:33 +0000 asID: 36236 IP address blocks: 2403:2500:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 08:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:47:3d:f4:68:33:eb:e0:c9:60:d2:de:ea:3b:e3:b1:db:af:07:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Oct 2 19:50:33 2023 GMT Not After : Sep 30 19:55:33 2024 GMT Subject: CN=1290FA09ED7A00FAF9270AC1A8861F537740B08A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ba:4c:50:8b:7c:b4:b9:2f:d1:89:5e:0d:15: 11:b4:19:02:16:a1:8c:81:30:9b:66:0e:10:68:58: 77:50:b3:13:68:c5:7f:07:6b:cb:fc:05:92:24:81: 2b:5a:fb:d9:a0:74:28:6f:08:68:ba:98:78:8b:40: 5e:30:02:9d:46:55:41:55:94:9f:5d:8b:80:19:92: 97:d1:df:f4:05:16:2e:f4:dc:75:a6:c8:f9:ff:2f: fb:86:eb:49:a0:ad:48:a8:77:e4:9a:b6:d2:bb:a5: a7:bc:f4:e3:18:48:4c:58:93:db:83:32:1a:75:18: f5:07:57:bd:f7:c4:a1:f7:c7:64:74:9d:e4:d8:a6: c0:eb:e6:6e:85:06:52:ff:39:61:c8:77:a8:e0:5b: be:89:da:2c:3c:72:d3:c3:7c:6a:d7:f3:0f:eb:76: f8:c5:60:48:2e:7e:5d:6a:3b:ec:66:cf:97:35:bc: 4d:b6:55:d5:f4:2c:91:de:6a:51:99:e0:5f:e6:21: 3b:51:eb:94:57:b4:41:6d:03:09:05:c0:79:66:24: 7b:86:87:01:60:fd:41:a5:b0:8a:cf:7a:e7:8a:1f: 2b:08:41:91:f1:e6:fa:26:78:49:80:c2:a0:04:da: 58:fb:4e:0b:9d:dd:1b:4d:04:4d:a7:d1:11:1e:62: 15:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:90:FA:09:ED:7A:00:FA:F9:27:0A:C1:A8:86:1F:53:77:40:B0:8A X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:4000::/48 Signature Algorithm: sha256WithRSAEncryption af:15:de:0c:8b:3c:00:a7:4f:83:b9:81:8c:42:f1:7e:00:e4: 7c:31:86:d1:d2:df:eb:83:c0:00:a9:78:f3:78:e9:e8:1c:5d: b3:44:a3:5c:77:76:9b:96:34:96:f3:13:9f:0f:79:ca:44:d8: 72:c8:2a:e5:bd:63:a9:b2:c5:50:f4:b4:b4:bf:38:7f:84:f5: 6c:98:3a:a5:3c:8a:b5:7e:58:73:2f:75:2c:be:dc:d4:75:bb: ff:72:b5:81:42:66:b9:8d:45:21:87:b8:c2:6e:a8:97:0e:ad: 91:d0:2f:6d:4a:06:07:ff:54:7f:56:50:d7:95:d5:e1:f4:b7: ea:81:8e:cd:81:fc:e6:3c:7d:b5:a2:2d:02:39:5a:54:30:92: fb:ac:13:73:1d:24:a4:4d:54:28:ee:2f:77:eb:ac:f0:8d:3c: b9:2c:0c:5d:1e:a9:4c:1e:3e:ee:5e:12:4c:81:51:c2:61:6b: e5:a9:64:42:18:86:35:30:eb:de:38:4e:07:45:2b:66:c5:8f: 5d:50:44:7a:ce:ba:f6:4f:a9:39:ad:fc:ae:d4:a4:e6:8d:bf: 17:c8:79:c6:6c:3f:07:1b:10:13:97:b6:34:69:48:f8:5b:5a: bf:4c:79:0a:23:23:bc:00:9c:06:f9:12:ba:38:4b:7d:08:3b: c1:df:aa:fe -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUREc99Ggz6+DJYNLe6jvjsduvB7wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTIzMTAwMjE5NTAzM1oX DTI0MDkzMDE5NTUzM1owMzExMC8GA1UEAxMoMTI5MEZBMDlFRDdBMDBGQUY5Mjcw QUMxQTg4NjFGNTM3NzQwQjA4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKq6TFCLfLS5L9GJXg0VEbQZAhahjIEwm2YOEGhYd1CzE2jFfwdry/wFkiSB K1r72aB0KG8IaLqYeItAXjACnUZVQVWUn12LgBmSl9Hf9AUWLvTcdabI+f8v+4br SaCtSKh35Jq20rulp7z04xhITFiT24MyGnUY9QdXvffEoffHZHSd5NimwOvmboUG Uv85Ych3qOBbvonaLDxy08N8atfzD+t2+MVgSC5+XWo77GbPlzW8TbZV1fQskd5q UZngX+YhO1HrlFe0QW0DCQXAeWYke4aHAWD9QaWwis9654ofKwhBkfHm+iZ4SYDC oATaWPtOC53dG00ETafRER5iFakCAwEAAaOCAkcwggJDMB0GA1UdDgQWBBQSkPoJ 7XoA+vknCsGohh9Td0CwijAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaoGCCsG AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzQzMDMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMlAEAAMA0GCSqGSIb3DQEB CwUAA4IBAQCvFd4MizwAp0+DuYGMQvF+AOR8MYbR0t/rg8AAqXjzeOnoHF2zRKNc d3abljSW8xOfD3nKRNhyyCrlvWOpssVQ9LS0vzh/hPVsmDqlPIq1flhzL3UsvtzU dbv/crWBQma5jUUhh7jCbqiXDq2R0C9tSgYH/1R/VlDXldXh9LfqgY7NgfzmPH21 oi0COVpUMJL7rBNzHSSkTVQo7i9366zwjTy5LAxdHqlMHj7uXhJMgVHCYWvlqWRC GIY1MOveOE4HRStmxY9dUER6zrr2T6k5rfyu1KTmjb8XyHnGbD8HGxATl7Y0aUj4 W1q/THkKIyO8AJwG+RK6OEt9CDvB36r+ -----END CERTIFICATE-----Generated at Sat May 11 08:02:54 2024 by rpki-client on console-fra.rpki-client.org