$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31343a3a2f36342d3634203d3e20333939313635.roa File: 323430333a323530303a3430303a31343a3a2f36342d3634203d3e20333939313635.roa (raw, json) Hash identifier: REN4Kf86pOIu4lzIGPTTvGaGnye6CphaVyjFV8vQJ4s= Subject key identifier: 4D:01:C7:8F:65:02:F6:B4:88:BD:3A:37:B4:FA:91:81:07:ED:17:D3 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 2BE0E16F969E5E4404839254C205AA835C37B278 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31343a3a2f36342d3634203d3e20333939313635.roa Signing time: Sat 06 Jan 2024 11:34:17 +0000 ROA not before: Sat 06 Jan 2024 11:29:17 +0000 ROA not after: Sat 04 Jan 2025 11:34:17 +0000 asID: 399165 IP address blocks: 2403:2500:400:14::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 08:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:e0:e1:6f:96:9e:5e:44:04:83:92:54:c2:05:aa:83:5c:37:b2:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Jan 6 11:29:17 2024 GMT Not After : Jan 4 11:34:17 2025 GMT Subject: CN=4D01C78F6502F6B488BD3A37B4FA918107ED17D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:05:34:a0:be:c4:39:5b:f0:0e:a0:d8:b6: 9c:be:94:e7:b1:de:48:8e:37:30:eb:d6:9e:41:b9: 70:08:35:45:ee:07:c1:96:06:22:91:8f:3e:9b:8f: f0:d8:06:ff:6e:bd:ec:a0:47:3e:dd:7e:7e:dc:94: ef:62:f0:4a:95:66:f9:aa:c7:15:87:5c:12:7b:cc: 74:95:c9:18:ed:db:3b:2b:89:43:4c:d2:b7:12:0c: 80:8e:4f:9c:12:d9:ee:33:f2:6a:4f:28:ad:d7:0f: 4b:63:6e:5e:42:13:2d:86:56:4b:70:2b:48:e1:1e: 11:98:7a:22:00:de:a7:c2:b4:2e:a8:70:80:5f:17: 34:21:4d:92:3a:1a:87:f9:d5:37:98:5a:93:52:6b: e1:c7:c4:64:82:a9:0d:a4:05:97:18:36:f3:0d:17: af:7e:5d:d7:dd:ba:f9:56:04:0a:e4:bf:e4:40:a6: a7:97:e5:3e:ae:1d:37:30:3c:51:90:37:cc:94:61: cf:9f:10:a4:6d:34:f5:93:8f:50:9a:51:6e:ff:d5: c0:74:76:45:fa:ba:f1:bc:1a:75:d5:e0:e7:60:bb: 87:ef:0e:85:fc:d4:fc:e5:96:c6:88:9d:c4:99:4c: f0:1b:06:1a:ac:a1:8f:08:a0:bc:d3:ec:50:2f:21: 2b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:01:C7:8F:65:02:F6:B4:88:BD:3A:37:B4:FA:91:81:07:ED:17:D3 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a31343a3a2f36342d3634203d3e20333939313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:400:14::/64 Signature Algorithm: sha256WithRSAEncryption 87:6f:b9:b5:25:41:bb:89:de:bc:e1:48:df:37:7b:f4:14:73: 80:0b:65:fc:b7:b1:e4:89:c3:52:91:83:f9:2a:7e:00:b4:63: 46:e2:74:ca:2c:c6:ce:72:3c:b5:56:72:a1:3e:ad:7b:a0:a0: 60:2f:e5:4c:90:65:70:f7:6e:43:d4:03:df:1b:ba:0f:56:98: 55:51:f1:da:6b:9d:a6:37:67:86:81:7f:70:de:b5:b8:20:d3: d1:6f:2a:fb:2b:df:35:b3:5e:27:f5:d0:af:34:3c:6f:79:d4: 57:61:61:15:67:3f:57:13:3a:f2:bb:51:38:51:b1:0b:6b:59: 1b:59:15:3a:c9:b2:74:44:b8:32:0f:8f:4b:46:2d:54:ab:43: b8:fe:8c:bb:b7:4a:47:93:93:ea:c3:90:2c:29:f4:ab:d9:ed: 42:eb:a5:9e:51:33:2a:a5:78:a6:19:6e:67:2d:c1:1e:13:ab: 71:71:06:a4:c9:1d:02:b9:23:a9:0a:99:f1:46:17:32:ca:02: a4:36:26:f8:eb:97:ed:33:c8:9f:63:d8:6d:9d:6e:f9:d4:54: c2:3e:43:84:a8:91:0f:6c:e4:75:94:87:f4:27:e2:06:9f:02: e3:64:da:16:b3:3d:49:39:8b:0c:29:45:b1:49:f1:1a:d3:f6: be:8a:b4:7c -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUK+Dhb5aeXkQEg5JUwgWqg1w3sngwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDEwNjExMjkxN1oX DTI1MDEwNDExMzQxN1owMzExMC8GA1UEAxMoNEQwMUM3OEY2NTAyRjZCNDg4QkQz QTM3QjRGQTkxODEwN0VEMTdEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrTBTSgvsQ5W/AOoNi2nL6U57HeSI43MOvWnkG5cAg1Re4HwZYGIpGPPpuP 8NgG/2697KBHPt1+ftyU72LwSpVm+arHFYdcEnvMdJXJGO3bOyuJQ0zStxIMgI5P nBLZ7jPyak8ordcPS2NuXkITLYZWS3ArSOEeEZh6IgDep8K0LqhwgF8XNCFNkjoa h/nVN5hak1Jr4cfEZIKpDaQFlxg28w0Xr35d1926+VYECuS/5ECmp5flPq4dNzA8 UZA3zJRhz58QpG009ZOPUJpRbv/VwHR2Rfq68bwaddXg52C7h+8OhfzU/OWWxoid xJlM8BsGGqyhjwigvNPsUC8hK6MCAwEAAaOCAk8wggJLMB0GA1UdDgQWBBRNAceP ZQL2tIi9Oje0+pGBB+0X0zAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbAGCCsG AQUFBwELBIGjMIGgMIGdBggrBgEFBQcwC4aBkHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzQzMDMwM2EzMTM0M2EzYTJmMzYzNDJk MzYzNDIwM2QzZTIwMzMzOTM5MzEzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAJAMlAAQAABQwDQYJ KoZIhvcNAQELBQADggEBAIdvubUlQbuJ3rzhSN83e/QUc4ALZfy3seSJw1KRg/kq fgC0Y0bidMosxs5yPLVWcqE+rXugoGAv5UyQZXD3bkPUA98bug9WmFVR8dprnaY3 Z4aBf3Detbgg09FvKvsr3zWzXif10K80PG951FdhYRVnP1cTOvK7UThRsQtrWRtZ FTrJsnREuDIPj0tGLVSrQ7j+jLu3SkeTk+rDkCwp9KvZ7ULrpZ5RMyqleKYZbmct wR4Tq3FxBqTJHQK5I6kKmfFGFzLKAqQ2Jvjrl+0zyJ9j2G2dbvnUVMI+Q4SokQ9s 5HWUh/Qn4gafAuNk2hazPUk5iwwpRbFJ8RrT9r6KtHw= -----END CERTIFICATE-----Generated at Sat May 11 07:50:16 2024 by rpki-client on console-ams.rpki-client.org