$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa File: 323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa (raw, json) Hash identifier: sC40bz9NL09w7d1T0oplC/NkhsEMuPnptaYO7iCpKy8= Subject key identifier: 96:A7:08:DC:98:A0:AB:AB:16:C7:92:42:30:17:53:AF:72:B2:F0:E3 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 0F03ADDC3476959952C99778AC1E51429875B8A5 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa Signing time: Mon 02 Oct 2023 19:55:33 +0000 ROA not before: Mon 02 Oct 2023 19:50:33 +0000 ROA not after: Mon 30 Sep 2024 19:55:33 +0000 asID: 36236 IP address blocks: 2403:2500:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:03:ad:dc:34:76:95:99:52:c9:97:78:ac:1e:51:42:98:75:b8:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Oct 2 19:50:33 2023 GMT Not After : Sep 30 19:55:33 2024 GMT Subject: CN=96A708DC98A0ABAB16C79242301753AF72B2F0E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:17:cb:b5:0c:d1:f2:b1:cd:df:22:7e:fd:d6: ba:40:e4:a8:09:66:9a:dd:49:b0:f4:3c:64:c6:90: af:bd:86:90:03:de:c4:35:e9:b1:19:d0:a8:2b:dc: a9:07:09:f5:68:76:21:0a:be:c0:d3:8f:35:4e:3d: 51:55:b1:40:7d:0a:0a:eb:b8:6e:6d:38:9f:63:14: c3:de:10:0b:04:d4:88:14:be:1c:ce:58:6e:7f:ab: b8:7a:ab:5b:ef:52:a6:05:5f:a9:62:a7:70:42:c9: 57:c2:bc:4d:5a:f4:28:28:b1:f7:02:d6:6d:c8:2e: 52:50:d3:9d:0c:c3:a9:e7:e5:d2:9f:f1:54:00:7d: 98:77:b2:05:b2:d2:bc:30:9b:94:a2:fc:9f:bc:31: 30:ef:51:01:0c:46:87:85:5c:84:ea:75:48:a6:23: 41:ec:a9:92:1f:32:ef:93:ae:ea:cc:56:0f:7e:94: ed:71:cd:c9:89:5c:f7:f9:ac:62:ce:67:91:38:ac: c4:07:dc:fa:95:20:ae:de:b0:89:c7:b1:a8:7f:f0: ba:e7:00:08:de:d9:ea:6d:60:84:89:e5:a5:7d:d0: fd:99:35:b4:8d:aa:92:c4:43:8a:7d:cc:5f:00:20: 44:13:60:a8:5c:a4:6b:fd:38:1b:bb:c7:93:14:b1: f0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A7:08:DC:98:A0:AB:AB:16:C7:92:42:30:17:53:AF:72:B2:F0:E3 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:8000::/48 Signature Algorithm: sha256WithRSAEncryption 7d:1a:e6:3b:0d:dd:47:78:04:c5:42:32:a1:75:ca:eb:33:9c: 24:fb:53:6d:e9:7a:b8:d8:94:66:d4:7a:e2:b7:e8:b3:23:f5: 40:b5:59:de:25:b7:3a:ad:c6:4f:a4:65:c3:b7:04:78:9b:7b: f1:db:d3:10:49:34:a3:4f:69:a9:f8:a2:59:51:77:1b:d3:12: 41:10:12:eb:d1:d0:ac:72:8b:c3:9e:d5:be:5d:ca:fd:6d:60: e0:a8:40:90:5c:0d:46:88:49:97:c7:92:5c:96:a6:21:31:9d: bd:97:ff:bf:e9:7b:0f:2b:94:8c:21:f5:97:df:08:e8:02:cb: db:91:b6:1c:51:33:2e:22:d5:1f:cc:f6:17:74:3d:7c:f8:77: 3f:7e:0c:6b:87:e7:c9:13:38:1e:ff:62:79:bb:e8:0b:e1:b6: 64:b5:e8:11:bf:c3:a4:01:f5:38:47:1d:02:8f:5f:3d:8a:41: 1b:d4:29:7b:14:52:3c:8a:81:15:35:14:26:2e:c5:7c:88:51: 1d:ef:73:05:25:30:cb:db:15:e9:5d:51:6c:22:c4:43:c5:5a: a3:11:52:0b:83:dc:76:30:cf:da:bc:3b:9f:74:18:ee:75:65: 4b:f5:1e:f2:ee:9d:90:70:43:bf:ed:85:9a:c8:19:98:db:78: c5:d8:e9:be -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUDwOt3DR2lZlSyZd4rB5RQph1uKUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTIzMTAwMjE5NTAzM1oX DTI0MDkzMDE5NTUzM1owMzExMC8GA1UEAxMoOTZBNzA4REM5OEEwQUJBQjE2Qzc5 MjQyMzAxNzUzQUY3MkIyRjBFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOkXy7UM0fKxzd8ifv3WukDkqAlmmt1JsPQ8ZMaQr72GkAPexDXpsRnQqCvc qQcJ9Wh2IQq+wNOPNU49UVWxQH0KCuu4bm04n2MUw94QCwTUiBS+HM5Ybn+ruHqr W+9SpgVfqWKncELJV8K8TVr0KCix9wLWbcguUlDTnQzDqefl0p/xVAB9mHeyBbLS vDCblKL8n7wxMO9RAQxGh4VchOp1SKYjQeypkh8y75Ou6sxWD36U7XHNyYlc9/ms Ys5nkTisxAfc+pUgrt6wicexqH/wuucACN7Z6m1ghInlpX3Q/Zk1tI2qksRDin3M XwAgRBNgqFyka/04G7vHkxSx8FMCAwEAAaOCAkcwggJDMB0GA1UdDgQWBBSWpwjc mKCrqxbHkkIwF1OvcrLw4zAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaoGCCsG AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzgzMDMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMlAIAAMA0GCSqGSIb3DQEB CwUAA4IBAQB9GuY7Dd1HeATFQjKhdcrrM5wk+1Nt6Xq42JRm1Hrit+izI/VAtVne Jbc6rcZPpGXDtwR4m3vx29MQSTSjT2mp+KJZUXcb0xJBEBLr0dCscovDntW+Xcr9 bWDgqECQXA1GiEmXx5JclqYhMZ29l/+/6XsPK5SMIfWX3wjoAsvbkbYcUTMuItUf zPYXdD18+Hc/fgxrh+fJEzge/2J5u+gL4bZktegRv8OkAfU4Rx0Cj189ikEb1Cl7 FFI8ioEVNRQmLsV8iFEd73MFJTDL2xXpXVFsIsRDxVqjEVILg9x2MM/avDufdBju dWVL9R7y7p2QcEO/7YWayBmY23jF2Om+ -----END CERTIFICATE-----Generated at Fri May 10 16:36:08 2024 by rpki-client on console-ams.rpki-client.org