$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a31343a3a2f36342d3634203d3e20333939313634.roa File: 323430333a323530303a383030303a31343a3a2f36342d3634203d3e20333939313634.roa (raw, json) Hash identifier: YsI4DsBAxfjkJxpPH5/nZwYhOZPG58rcp/lVpA0RVi0= Subject key identifier: DA:3B:F6:54:4C:BF:0D:A9:C6:26:21:15:72:40:EC:7A:41:8D:0F:09 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 76A4C96BD61A5E36922B7E7EA72F2E785CB4F5E8 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a31343a3a2f36342d3634203d3e20333939313634.roa Signing time: Sat 06 Jan 2024 11:34:17 +0000 ROA not before: Sat 06 Jan 2024 11:29:17 +0000 ROA not after: Sat 04 Jan 2025 11:34:17 +0000 asID: 399164 IP address blocks: 2403:2500:8000:14::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 08:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:a4:c9:6b:d6:1a:5e:36:92:2b:7e:7e:a7:2f:2e:78:5c:b4:f5:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Jan 6 11:29:17 2024 GMT Not After : Jan 4 11:34:17 2025 GMT Subject: CN=DA3BF6544CBF0DA9C62621157240EC7A418D0F09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:76:bb:e0:98:f6:45:ea:23:a9:87:e5:19:f7: ab:a2:74:a4:8b:e7:a3:6e:2c:5a:78:a3:d6:68:d9: cf:f7:41:0c:dd:a6:43:bc:f8:6f:90:00:6b:33:a5: 2b:8b:7b:3d:3d:99:7c:9f:d2:50:61:de:46:d2:48: bf:60:4d:72:45:67:a4:a2:ac:41:3f:63:41:59:5b: 2a:ab:06:a5:5f:d6:c5:05:ae:6a:df:15:ab:7c:04: 36:9b:82:9f:3f:21:54:7c:65:c7:16:2c:bd:88:42: 94:84:9e:d0:ff:53:b0:b9:c7:0d:09:cd:43:1e:e1: f4:78:83:fd:0e:1e:21:80:e3:d2:2b:80:99:fd:17: 82:78:d6:ed:69:7c:dc:e3:65:66:94:95:2a:a2:16: 1e:d1:24:44:3b:02:4c:3f:1f:e9:d4:a1:b0:77:47: 2f:d4:5d:94:14:2c:db:09:4a:ce:d2:a7:06:64:5c: 61:1a:ee:ee:35:95:f2:51:e5:76:6f:b7:47:77:e8: ec:38:ec:96:54:1d:ee:d0:6e:97:41:a0:86:70:4f: 48:fc:7c:b0:60:10:97:08:97:57:ef:95:15:c3:7b: 25:d7:d4:e5:8a:0a:7c:99:24:cb:c4:3a:5a:fb:30: d0:0d:f3:78:71:1b:6a:fc:b1:1d:0d:30:10:64:dc: 60:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3B:F6:54:4C:BF:0D:A9:C6:26:21:15:72:40:EC:7A:41:8D:0F:09 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a31343a3a2f36342d3634203d3e20333939313634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:8000:14::/64 Signature Algorithm: sha256WithRSAEncryption 64:4c:da:f1:ba:a0:0c:80:7e:07:49:9b:b9:c1:d9:81:7a:14: 33:99:59:b7:ad:aa:b7:4b:c0:ab:44:ca:de:58:77:e8:a1:a1: 62:ca:29:5b:c5:d1:48:f4:62:68:78:4b:8a:9a:7c:44:88:ba: c9:35:d1:15:e6:da:3b:e0:2f:1b:b3:94:a4:75:ab:a7:20:46: bf:37:dc:2e:18:f8:bf:38:e4:90:e7:8d:ea:e4:8c:c5:c4:58: 09:99:96:51:5e:d2:40:e4:a4:a1:cc:90:10:dc:96:a3:98:34: d9:38:48:f1:07:41:62:c0:14:82:0f:c9:cb:ee:07:f8:bc:2e: c2:38:f1:54:2b:cc:64:0d:df:46:f6:4b:f9:56:46:b6:d1:0b: e7:b4:c4:ac:c4:96:4d:98:86:f6:70:bf:95:d4:2d:48:7e:42: 49:f6:8c:7e:e1:ca:d0:06:57:de:13:b9:85:2b:5b:5a:79:92: 6c:16:fe:d9:a6:14:7a:a0:45:b6:17:f0:cf:8e:30:d1:f0:49: 6d:b3:28:36:66:06:ed:94:6a:60:ac:d6:69:c3:e8:60:95:62: 87:0c:3f:17:1f:5e:b9:70:d5:0a:e8:7b:1e:16:12:a9:79:0f: af:ed:29:3b:34:a7:04:48:ad:ae:e9:a4:4c:eb:3f:b9:0d:cc: 22:a2:2d:25 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUdqTJa9YaXjaSK35+py8ueFy09egwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDEwNjExMjkxN1oX DTI1MDEwNDExMzQxN1owMzExMC8GA1UEAxMoREEzQkY2NTQ0Q0JGMERBOUM2MjYy MTE1NzI0MEVDN0E0MThEMEYwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJt2u+CY9kXqI6mH5Rn3q6J0pIvno24sWnij1mjZz/dBDN2mQ7z4b5AAazOl K4t7PT2ZfJ/SUGHeRtJIv2BNckVnpKKsQT9jQVlbKqsGpV/WxQWuat8Vq3wENpuC nz8hVHxlxxYsvYhClISe0P9TsLnHDQnNQx7h9HiD/Q4eIYDj0iuAmf0XgnjW7Wl8 3ONlZpSVKqIWHtEkRDsCTD8f6dShsHdHL9RdlBQs2wlKztKnBmRcYRru7jWV8lHl dm+3R3fo7DjsllQd7tBul0GghnBPSPx8sGAQlwiXV++VFcN7JdfU5YoKfJkky8Q6 Wvsw0A3zeHEbavyxHQ0wEGTcYF0CAwEAAaOCAlEwggJNMB0GA1UdDgQWBBTaO/ZU TL8NqcYmIRVyQOx6QY0PCTAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbIGCCsG AQUFBwELBIGlMIGiMIGfBggrBgEFBQcwC4aBknJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzgzMDMwMzAzYTMxMzQzYTNhMmYzNjM0 MmQzNjM0MjAzZDNlMjAzMzM5MzkzMTM2MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwJAYIKwYBBQUHAQcBAf8EFTATMBEEAgACMAsDCQAkAyUAgAAAFDAN BgkqhkiG9w0BAQsFAAOCAQEAZEza8bqgDIB+B0mbucHZgXoUM5lZt62qt0vAq0TK 3lh36KGhYsopW8XRSPRiaHhLipp8RIi6yTXRFebaO+AvG7OUpHWrpyBGvzfcLhj4 vzjkkOeN6uSMxcRYCZmWUV7SQOSkocyQENyWo5g02ThI8QdBYsAUgg/Jy+4H+Lwu wjjxVCvMZA3fRvZL+VZGttEL57TErMSWTZiG9nC/ldQtSH5CSfaMfuHK0AZX3hO5 hStbWnmSbBb+2aYUeqBFthfwz44w0fBJbbMoNmYG7ZRqYKzWacPoYJVihww/Fx9e uXDVCuh7HhYSqXkPr+0pOzSnBEitrumkTOs/uQ3MIqItJQ== -----END CERTIFICATE-----Generated at Sat May 11 07:50:16 2024 by rpki-client on console-ams.rpki-client.org