
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a3a2f34382d3438203d3e203336323336.roa
File: 323430333a323530303a3430303a3a2f34382d3438203d3e203336323336.roa (raw, json)
Hash identifier: d4pCnphG7A+/vnW2kGkUXJZTCFoCbgUfk6JyP10oYLg=
Subject key identifier: D6:91:17:EA:4E:0B:27:2B:95:01:3B:D2:18:8F:68:DA:EA:F2:F5:49
Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Certificate serial: 56BD22E21F9ED2B1A36B7317B1E6ADC82841CCA3
Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a3a2f34382d3438203d3e203336323336.roa
Signing time: Mon 06 Jul 2026 20:29:08 +0000
ROA not before: Mon 06 Jul 2026 20:24:08 +0000
ROA not after: Mon 05 Jul 2027 20:29:08 +0000
asID: 36236
IP address blocks: 2403:2500:400::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 Jul 2026 02:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:bd:22:e2:1f:9e:d2:b1:a3:6b:73:17:b1:e6:ad:c8:28:41:cc:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Validity
Not Before: Jul 6 20:24:08 2026 GMT
Not After : Jul 5 20:29:08 2027 GMT
Subject: CN=D69117EA4E0B272B95013BD2188F68DAEAF2F549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1e:e1:8a:f2:e0:d5:44:96:99:ce:ec:9d:60:
79:24:a7:68:48:68:89:a3:90:dc:02:a0:bd:14:8e:
12:4f:96:b6:35:34:19:b0:97:20:b3:a5:b8:6f:61:
5c:50:1f:7e:b3:22:fe:fc:ff:7c:7a:ac:90:bd:a3:
0e:83:00:c4:8d:79:ba:cd:c4:78:0e:a8:8e:16:28:
48:d6:18:96:ea:ef:55:79:36:4e:33:62:c1:dc:6d:
05:09:9b:2a:2f:d7:7d:1c:2f:b0:d8:e0:f6:14:83:
0d:b9:38:24:94:45:38:c8:83:c1:26:38:4f:be:c2:
2d:4f:da:cf:97:68:a2:a9:b7:7a:70:d5:1b:d8:6d:
de:25:e5:47:08:54:0d:a7:dd:a9:fd:52:46:7b:59:
55:36:fe:bb:36:1e:d0:d9:4b:da:18:f5:50:aa:c5:
1b:03:9e:b5:48:7f:b7:1b:e8:e7:e7:f2:e1:ec:0f:
93:d2:e0:7d:1a:2e:47:f5:04:9b:61:3e:2c:37:b9:
35:78:95:1b:f1:24:bc:29:d4:3d:11:0d:c8:09:26:
5e:8c:25:27:d9:2a:b9:33:89:79:95:bb:0b:12:36:
5a:01:c5:f1:20:66:0a:b1:c5:44:4a:ed:67:d2:79:
73:63:91:c0:e0:d8:f5:f5:04:03:0c:b0:8d:98:46:
25:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:91:17:EA:4E:0B:27:2B:95:01:3B:D2:18:8F:68:DA:EA:F2:F5:49
X509v3 Authority Key Identifier:
keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3430303a3a2f34382d3438203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2500:400::/48
Signature Algorithm: sha256WithRSAEncryption
ea:a8:4e:34:43:e0:51:6e:66:0d:d8:87:c4:22:6c:58:54:fa:
7c:71:92:6c:26:e4:b4:32:60:76:15:a9:81:a7:fc:ed:8d:3a:
7c:0d:1e:98:ab:b1:f7:f9:1b:58:52:87:ec:2b:60:58:52:d9:
df:cf:d1:50:7a:ef:6d:62:f9:7d:8a:b7:5f:0b:f9:6a:0d:90:
04:1f:4f:bf:2a:56:d5:ca:f1:7c:91:5c:01:19:9e:e2:6d:26:
66:95:e0:1c:e2:e1:bf:87:06:30:a1:3e:04:88:f5:f3:9d:c0:
19:50:c3:86:d0:67:ad:5c:eb:c4:e2:8f:71:86:fc:9f:27:0b:
5d:71:4f:93:ac:e0:21:9c:3f:f3:a9:f3:f4:e0:75:f4:b7:28:
d1:68:7c:55:4b:a4:ef:a2:87:80:11:f7:09:54:cd:be:cc:89:
82:8e:b3:67:20:22:3d:68:4d:ed:40:33:85:08:1c:31:f1:56:
a4:74:1f:5a:ba:fa:37:72:c0:ee:81:3c:aa:4c:2b:b7:b5:22:
9a:a1:9e:97:04:94:a2:a3:ae:b7:ee:86:27:de:32:84:78:18:
16:2a:9a:df:68:37:a9:b8:8c:08:a1:36:90:21:7f:50:1f:76:
06:75:a0:0d:28:3d:86:68:05:43:95:c4:f5:18:e8:79:bd:ef:
62:85:bc:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 11:49:48 2026 by rpki-client