$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3530303a3a2f34312d3431203d3e203336323336.roa File: 323430333a323530303a3530303a3a2f34312d3431203d3e203336323336.roa (raw, json) Hash identifier: xtfWa/+kLXWUFJGqk6D3h9wb8a+ydM8nNmcxYIMtits= Subject key identifier: DF:61:3D:D8:37:DF:3A:F7:90:50:94:7A:84:E9:40:EC:53:6F:10:1A Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 60ECA61BA3DEDDBA706D068690E0C8140BCBA88A Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3530303a3a2f34312d3431203d3e203336323336.roa Signing time: Tue 26 Aug 2025 19:14:15 +0000 ROA not before: Tue 26 Aug 2025 19:09:15 +0000 ROA not after: Tue 25 Aug 2026 19:14:15 +0000 asID: 36236 IP address blocks: 2403:2500:500::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 16:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ec:a6:1b:a3:de:dd:ba:70:6d:06:86:90:e0:c8:14:0b:cb:a8:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 26 19:09:15 2025 GMT Not After : Aug 25 19:14:15 2026 GMT Subject: CN=DF613DD837DF3AF79050947A84E940EC536F101A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e2:31:b0:74:07:31:de:00:30:ea:84:fb:a2: 49:3a:f8:39:9d:db:2a:d3:43:82:40:d8:25:1a:68: 1f:82:0d:6b:14:af:c6:94:89:c5:b2:00:2d:36:ec: f9:e6:c7:50:0c:d8:b3:ec:50:06:16:77:58:05:8b: 5c:ff:68:af:fc:50:59:14:b6:78:8e:d5:8c:35:15: 92:0e:15:9f:43:ca:88:cb:f8:e9:bf:45:a7:07:9b: bd:47:cd:27:73:4a:8d:c2:68:c8:c1:3a:0d:04:b6: 77:cc:ad:8e:e1:a7:8c:e3:75:c8:b5:ed:73:7d:d7: be:90:72:10:4f:62:72:04:78:09:b0:87:d1:dc:9b: a4:7a:66:ec:d7:23:03:37:a6:7a:4b:d7:2a:79:71: 65:30:eb:ee:65:c6:05:be:ce:67:81:62:a1:b9:2c: 8d:d9:28:85:0e:2f:e6:c1:12:bc:5c:b0:df:46:5a: 0d:68:f4:d5:d5:fe:0e:ef:6d:f7:ba:48:3f:71:1a: c5:5d:8c:03:40:eb:0f:f2:5d:db:25:11:80:3c:aa: 29:a6:14:ed:f5:77:31:80:3a:d0:34:ae:31:79:52: 58:40:5d:6f:d5:52:01:ae:ed:de:d3:a1:a8:54:99: 51:82:42:05:a3:9b:b0:9f:cb:06:1f:5c:a1:a1:36: 8d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:61:3D:D8:37:DF:3A:F7:90:50:94:7A:84:E9:40:EC:53:6F:10:1A X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3530303a3a2f34312d3431203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:500::/41 Signature Algorithm: sha256WithRSAEncryption 28:b6:ef:79:a3:4d:31:0b:ec:87:b0:2c:d3:e8:5f:f6:52:a8: b6:21:9b:3c:6f:8b:38:88:d4:0e:c2:d8:4a:3a:57:2f:69:f0: 34:09:7d:86:86:c3:fa:ec:00:75:08:8b:c9:34:8c:9c:15:2c: dc:ce:6e:79:55:c4:74:f7:cd:d4:4f:b8:71:f9:2f:41:a1:60: e7:84:00:db:65:f9:64:cb:58:cf:c4:9e:d4:b5:cd:0c:3c:c4: 37:1e:71:dd:c9:44:aa:f7:cb:07:22:c9:01:d9:1e:b0:74:3e: 86:06:23:88:77:2e:db:3a:fb:e8:01:72:c1:63:11:8d:dc:30: cc:21:0c:11:d9:e2:68:01:9a:6f:16:87:2c:fc:a2:ba:83:c2: 17:07:a5:b8:ef:4c:29:f1:d1:fa:7d:04:8d:9a:a4:5a:41:85: e0:20:8b:4f:02:0b:dd:3a:c4:a9:e9:a7:af:59:dd:64:bb:1c: e9:f2:94:d2:c0:61:de:3e:59:cf:c2:da:27:d8:f4:eb:e1:c2: f3:9e:57:81:96:a2:89:7e:d2:c1:a5:ed:67:78:87:39:8a:c6: ea:2a:65:5c:c9:ba:3b:02:fe:06:f8:b8:c0:5b:a7:68:ed:e0: d7:10:a5:c1:97:e5:74:b3:bf:f0:64:be:91:90:1d:ee:7c:c2: 3b:da:99:98 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUYOymG6Pe3bpwbQaGkODIFAvLqIowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgyNjE5MDkxNVoX DTI2MDgyNTE5MTQxNVowMzExMC8GA1UEAxMoREY2MTNERDgzN0RGM0FGNzkwNTA5 NDdBODRFOTQwRUM1MzZGMTAxQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANDiMbB0BzHeADDqhPuiSTr4OZ3bKtNDgkDYJRpoH4INaxSvxpSJxbIALTbs +ebHUAzYs+xQBhZ3WAWLXP9or/xQWRS2eI7VjDUVkg4Vn0PKiMv46b9FpwebvUfN J3NKjcJoyME6DQS2d8ytjuGnjON1yLXtc33XvpByEE9icgR4CbCH0dybpHpm7Ncj AzemekvXKnlxZTDr7mXGBb7OZ4FiobksjdkohQ4v5sESvFyw30ZaDWj01dX+Du9t 97pIP3EaxV2MA0DrD/Jd2yURgDyqKaYU7fV3MYA60DSuMXlSWEBdb9VSAa7t3tOh qFSZUYJCBaObsJ/LBh9coaE2jXsCAwEAAaOCAkUwggJBMB0GA1UdDgQWBBTfYT3Y N98695BQlHqE6UDsU28QGjAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgagGCCsG AQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzUzMDMwM2EzYTJmMzQzMTJkMzQzMTIw M2QzZTIwMzMzNjMyMzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHByQDJQAFADANBgkqhkiG9w0BAQsF AAOCAQEAKLbveaNNMQvsh7As0+hf9lKotiGbPG+LOIjUDsLYSjpXL2nwNAl9hobD +uwAdQiLyTSMnBUs3M5ueVXEdPfN1E+4cfkvQaFg54QA22X5ZMtYz8Se1LXNDDzE Nx5x3clEqvfLByLJAdkesHQ+hgYjiHcu2zr76AFywWMRjdwwzCEMEdniaAGabxaH LPyiuoPCFweluO9MKfHR+n0EjZqkWkGF4CCLTwIL3TrEqemnr1ndZLsc6fKU0sBh 3j5Zz8LaJ9j06+HC855XgZaiiX7SwaXtZ3iHOYrG6iplXMm6OwL+Bvi4wFunaO3g 1xClwZfldLO/8GS+kZAd7nzCO9qZmA== -----END CERTIFICATE-----Generated at Sun Sep 7 09:20:22 2025 by rpki-client