$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31323a3a2f36342d3634203d3e20333939313635.roa File: 323430333a323530303a3430303a31323a3a2f36342d3634203d3e20333939313635.roa (raw, json) Hash identifier: TcZsdPS/DGvkU9eo2rBdp9uAkhhpAXCEDSaxJmG8juM= Subject key identifier: 31:C5:D1:7F:58:3A:FC:81:44:6D:5F:0A:0B:85:C1:FB:E8:3F:D4:4A Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 0B60B9E4C1FA1D037C1470ECA1AF3F1F05244608 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31323a3a2f36342d3634203d3e20333939313635.roa Signing time: Sat 06 Jan 2024 11:34:17 +0000 ROA not before: Sat 06 Jan 2024 11:29:17 +0000 ROA not after: Sat 04 Jan 2025 11:34:17 +0000 asID: 399165 IP address blocks: 2403:2500:400:12::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 08:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:60:b9:e4:c1:fa:1d:03:7c:14:70:ec:a1:af:3f:1f:05:24:46:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Jan 6 11:29:17 2024 GMT Not After : Jan 4 11:34:17 2025 GMT Subject: CN=31C5D17F583AFC81446D5F0A0B85C1FBE83FD44A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9f:08:3f:c4:3c:87:9f:51:36:5a:f4:69:6e: e6:e6:06:81:2f:13:cd:02:a6:85:b8:f1:ac:24:be: 58:29:fa:51:56:05:ef:e2:96:59:c7:ca:90:b1:7d: 7c:ab:98:84:d9:3d:3a:04:06:4b:13:f2:ce:8e:88: af:13:ff:d8:fa:a8:00:92:59:66:16:bc:a0:eb:3b: 07:82:2c:3f:1b:a4:19:70:93:bc:06:bd:68:43:1f: f3:77:60:04:94:05:cb:71:a5:9d:3b:bc:56:16:1d: b5:1a:17:06:f8:63:5b:0d:09:29:53:e5:3e:18:0f: 6d:64:6a:f6:db:b8:89:c4:4a:17:1b:64:9e:6b:e1: 96:34:08:02:71:ae:5c:7b:d1:a3:1a:a0:44:00:44: 29:d0:4f:50:61:7b:a8:51:6a:8c:0c:fd:ab:b8:d6: cc:6c:f9:b9:f0:41:de:e9:3f:2a:ed:67:bc:c0:1b: 96:b2:82:7f:97:77:1a:30:a9:83:40:74:72:f5:7d: b4:6a:cb:d7:7b:bb:80:8d:c9:2b:2f:9f:79:9d:f1: a7:31:78:93:d1:4a:d6:f5:f4:9e:6e:e9:96:3a:7c: ea:5a:5b:59:d4:95:c0:cd:30:35:71:66:7c:57:ff: 19:7b:c1:7c:36:95:43:7e:92:75:2c:07:7a:e0:87: 45:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C5:D1:7F:58:3A:FC:81:44:6D:5F:0A:0B:85:C1:FB:E8:3F:D4:4A X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31323a3a2f36342d3634203d3e20333939313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:400:12::/64 Signature Algorithm: sha256WithRSAEncryption 2b:94:c8:3f:e4:78:b0:68:af:07:e9:f7:db:d9:68:3f:f0:5c: 9b:d8:c3:b3:97:02:7d:4c:01:83:60:91:57:84:d2:bc:39:89: f8:e5:73:ed:87:99:4a:d8:d4:e0:2a:f2:96:40:4d:f3:46:40: 19:85:30:97:ba:3c:a9:69:cd:77:c4:d1:db:ca:2e:80:3b:6f: 28:7e:8d:6a:ad:a1:89:be:41:28:cb:77:ae:5c:64:56:d0:5f: d0:cb:a1:36:94:94:fc:df:36:39:79:10:9d:f7:0e:b0:3b:07: b8:f4:09:3d:e2:58:64:1e:3c:ae:9b:6a:2e:62:54:07:30:90: 54:39:95:ed:ce:34:c1:07:5b:0e:d4:7f:4b:24:9b:3a:61:f2: c8:3d:d3:04:55:83:03:fa:64:27:c5:82:2b:f9:9c:7d:9b:cf: 17:44:8a:aa:11:6c:d4:81:5e:09:06:c4:79:05:41:6d:d1:41: a0:c9:92:cc:63:98:34:21:95:f0:8c:9d:4e:1d:c4:df:41:36: a5:e9:97:8b:22:5f:96:e9:e0:f8:10:36:5f:e6:b7:b7:98:3a: 2f:96:fd:e3:b1:b2:d0:c1:65:c9:b1:5b:58:2a:7f:68:08:ce: 1d:90:84:c9:f8:06:85:a9:be:51:cd:4f:27:12:fd:9f:80:78: 29:05:05:17 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUC2C55MH6HQN8FHDsoa8/HwUkRggwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDEwNjExMjkxN1oX DTI1MDEwNDExMzQxN1owMzExMC8GA1UEAxMoMzFDNUQxN0Y1ODNBRkM4MTQ0NkQ1 RjBBMEI4NUMxRkJFODNGRDQ0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqfCD/EPIefUTZa9Glu5uYGgS8TzQKmhbjxrCS+WCn6UVYF7+KWWcfKkLF9 fKuYhNk9OgQGSxPyzo6IrxP/2PqoAJJZZha8oOs7B4IsPxukGXCTvAa9aEMf83dg BJQFy3GlnTu8VhYdtRoXBvhjWw0JKVPlPhgPbWRq9tu4icRKFxtknmvhljQIAnGu XHvRoxqgRABEKdBPUGF7qFFqjAz9q7jWzGz5ufBB3uk/Ku1nvMAblrKCf5d3GjCp g0B0cvV9tGrL13u7gI3JKy+feZ3xpzF4k9FK1vX0nm7pljp86lpbWdSVwM0wNXFm fFf/GXvBfDaVQ36SdSwHeuCHRcsCAwEAAaOCAk8wggJLMB0GA1UdDgQWBBQxxdF/ WDr8gURtXwoLhcH76D/USjAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbAGCCsG AQUFBwELBIGjMIGgMIGdBggrBgEFBQcwC4aBkHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzQzMDMwM2EzMTMyM2EzYTJmMzYzNDJk MzYzNDIwM2QzZTIwMzMzOTM5MzEzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAJAMlAAQAABIwDQYJ KoZIhvcNAQELBQADggEBACuUyD/keLBorwfp99vZaD/wXJvYw7OXAn1MAYNgkVeE 0rw5ifjlc+2HmUrY1OAq8pZATfNGQBmFMJe6PKlpzXfE0dvKLoA7byh+jWqtoYm+ QSjLd65cZFbQX9DLoTaUlPzfNjl5EJ33DrA7B7j0CT3iWGQePK6bai5iVAcwkFQ5 le3ONMEHWw7Uf0skmzph8sg90wRVgwP6ZCfFgiv5nH2bzxdEiqoRbNSBXgkGxHkF QW3RQaDJksxjmDQhlfCMnU4dxN9BNqXpl4siX5bp4PgQNl/mt7eYOi+W/eOxstDB ZcmxW1gqf2gIzh2QhMn4BoWpvlHNTycS/Z+AeCkFBRc= -----END CERTIFICATE-----Generated at Sat May 11 07:50:16 2024 by rpki-client on console-ams.rpki-client.org