$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31333a3a2f36342d3634203d3e20333939313635.roa File: 323430333a323530303a3430303a31333a3a2f36342d3634203d3e20333939313635.roa (raw, json) Hash identifier: 636sd38WSicdQ7gsPZBcQxS3EUcSYEmsoukyTP24b5U= Subject key identifier: 83:80:21:03:99:1D:32:58:27:EE:46:F0:22:EA:4A:05:DF:F6:ED:72 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 6AAF94FB908378959A6B6338C5647C362005AFE3 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31333a3a2f36342d3634203d3e20333939313635.roa Signing time: Sat 07 Dec 2024 12:13:27 +0000 ROA not before: Sat 07 Dec 2024 12:08:27 +0000 ROA not after: Sat 06 Dec 2025 12:13:27 +0000 asID: 399165 IP address blocks: 2403:2500:400:13::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Feb 2025 21:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:af:94:fb:90:83:78:95:9a:6b:63:38:c5:64:7c:36:20:05:af:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000 Validity Not Before: Dec 7 12:08:27 2024 GMT Not After : Dec 6 12:13:27 2025 GMT Subject: CN=83802103991D325827EE46F022EA4A05DFF6ED72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2f:f9:48:3f:08:15:59:a3:dd:ba:cc:32:f9: 0e:52:08:19:b2:28:20:e0:aa:ba:78:08:be:f2:1a: 23:ca:d0:e5:4d:e9:23:54:c8:82:0c:c0:f5:25:6b: c6:d2:75:73:b2:5c:da:79:db:c1:f2:bc:7c:fd:3e: 2c:3b:b5:36:43:cd:fe:cb:76:b7:b1:00:03:ae:4f: 9a:09:07:fe:fc:f1:39:eb:64:fa:34:94:d3:3c:e2: 1d:a6:06:b0:2b:65:47:26:ac:f1:fc:a6:d9:33:fd: cf:8b:8a:1b:d0:4f:fc:96:80:39:c3:ee:e0:2d:3d: 68:52:2d:f9:b4:57:45:b0:7a:0a:b1:4f:02:0a:02: e9:b3:1f:bb:43:99:fd:d1:85:91:6d:50:5c:ca:12: 90:69:0c:3e:bb:f1:e9:01:6e:be:6c:a0:62:a3:45: df:88:b1:ec:30:b2:66:4e:a3:23:3c:51:38:6d:72: 8b:7a:77:06:7f:38:63:dd:b4:e1:9f:e5:69:be:fc: 71:df:cd:31:3f:ad:a3:fb:e3:b6:af:30:ca:15:db: 90:67:6b:48:ec:77:32:15:0e:74:7d:73:de:7a:de: d8:18:60:4d:b4:d6:8b:88:43:3c:c2:06:98:23:34: 08:13:ea:88:39:43:d6:2c:08:cc:5d:41:70:1c:73: a7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:80:21:03:99:1D:32:58:27:EE:46:F0:22:EA:4A:05:DF:F6:ED:72 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31333a3a2f36342d3634203d3e20333939313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:400:13::/64 Signature Algorithm: sha256WithRSAEncryption eb:5a:57:30:57:85:50:b7:a1:33:54:f9:a0:ae:6d:c4:0a:9b: 09:40:b8:51:1c:e7:38:de:78:c6:b7:37:8f:a0:7f:82:41:e8: e2:ca:02:3f:02:06:c0:38:13:b6:a5:ff:d9:f1:38:8a:07:6f: 15:9c:a9:da:c3:05:7a:f0:92:75:4b:8e:c6:22:e0:bb:cc:f9: 38:27:af:70:f9:4c:dd:e5:49:fd:af:a4:77:dc:8b:fc:f4:9b: 2e:6c:56:51:de:b8:92:7d:32:17:26:1a:78:6f:e7:6b:68:32: 71:ce:f2:0d:99:69:e7:d5:6b:8a:20:d8:fa:2e:13:36:ef:45: 01:44:47:fd:bf:13:d8:fe:d1:0f:b6:d2:ae:e8:60:17:30:3f: 33:d0:c5:c3:c9:81:fc:03:1b:45:00:c7:03:28:d0:12:fb:2e: c4:3d:ef:e4:64:9b:39:0f:de:52:92:2c:ce:00:26:57:b5:3c: 32:b3:e9:b2:0d:37:7a:55:35:b1:94:64:d8:e5:d9:e0:2f:0f: 3b:0d:30:7a:66:45:21:e1:34:4a:c4:e1:fe:93:2a:2f:42:e1: a5:6e:16:f8:bf:38:af:03:4a:ef:c4:5e:d3:9d:05:d4:68:df: 19:3d:29:3c:58:0a:7f:2c:9b:19:ce:c1:90:a5:f9:ef:1b:e9: 36:26:26:01 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUaq+U+5CDeJWaa2M4xWR8NiAFr+MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MTIwNzEyMDgyN1oX DTI1MTIwNjEyMTMyN1owMzExMC8GA1UEAxMoODM4MDIxMDM5OTFEMzI1ODI3RUU0 NkYwMjJFQTRBMDVERkY2RUQ3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgv+Ug/CBVZo926zDL5DlIIGbIoIOCqungIvvIaI8rQ5U3pI1TIggzA9SVr xtJ1c7Jc2nnbwfK8fP0+LDu1NkPN/st2t7EAA65PmgkH/vzxOetk+jSU0zziHaYG sCtlRyas8fym2TP9z4uKG9BP/JaAOcPu4C09aFIt+bRXRbB6CrFPAgoC6bMfu0OZ /dGFkW1QXMoSkGkMPrvx6QFuvmygYqNF34ix7DCyZk6jIzxROG1yi3p3Bn84Y920 4Z/lab78cd/NMT+to/vjtq8wyhXbkGdrSOx3MhUOdH1z3nre2BhgTbTWi4hDPMIG mCM0CBPqiDlD1iwIzF1BcBxzp6MCAwEAAaOCAk8wggJLMB0GA1UdDgQWBBSDgCED mR0yWCfuRvAi6koF3/btcjAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbAGCCsG AQUFBwELBIGjMIGgMIGdBggrBgEFBQcwC4aBkHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzQzMDMwM2EzMTMzM2EzYTJmMzYzNDJk MzYzNDIwM2QzZTIwMzMzOTM5MzEzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAJAMlAAQAABMwDQYJ KoZIhvcNAQELBQADggEBAOtaVzBXhVC3oTNU+aCubcQKmwlAuFEc5zjeeMa3N4+g f4JB6OLKAj8CBsA4E7al/9nxOIoHbxWcqdrDBXrwknVLjsYi4LvM+Tgnr3D5TN3l Sf2vpHfci/z0my5sVlHeuJJ9MhcmGnhv52toMnHO8g2ZaefVa4og2PouEzbvRQFE R/2/E9j+0Q+20q7oYBcwPzPQxcPJgfwDG0UAxwMo0BL7LsQ97+RkmzkP3lKSLM4A Jle1PDKz6bINN3pVNbGUZNjl2eAvDzsNMHpmRSHhNErE4f6TKi9C4aVuFvi/OK8D Su/EXtOdBdRo3xk9KTxYCn8smxnOwZCl+e8b6TYmJgE= -----END CERTIFICATE-----Generated at Sun Feb 16 20:33:29 2025 by rpki-client