
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa
File: 323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa (raw, json)
Hash identifier: XHocwvyx5WXHiWmdrQw1MxArKJcuQ5JYeYAjstn4PeM=
Subject key identifier: 3F:81:85:1E:8E:3C:B2:C6:4D:0C:8A:B3:A1:59:4D:34:0A:83:C2:6F
Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Certificate serial: 43FE8C40C34D86C60571D7C46DCD55B760060D44
Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa
Signing time: Mon 06 Jul 2026 20:29:07 +0000
ROA not before: Mon 06 Jul 2026 20:24:07 +0000
ROA not after: Mon 05 Jul 2027 20:29:07 +0000
asID: 36236
IP address blocks: 2403:2500:8000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 Jul 2026 02:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:fe:8c:40:c3:4d:86:c6:05:71:d7:c4:6d:cd:55:b7:60:06:0d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Validity
Not Before: Jul 6 20:24:07 2026 GMT
Not After : Jul 5 20:29:07 2027 GMT
Subject: CN=3F81851E8E3CB2C64D0C8AB3A1594D340A83C26F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c8:f7:62:03:d4:7b:74:b9:1d:63:17:e7:bf:
2c:44:9a:60:81:a0:f4:d1:b0:11:e2:89:c1:0d:8e:
6d:69:28:ce:3a:46:83:10:f5:9e:bc:3f:c4:86:92:
25:2f:bf:d1:95:cb:f5:ec:eb:bf:b8:14:24:30:8f:
23:6b:67:36:6b:40:8c:f5:e0:b7:a1:d3:4d:a6:4c:
5b:f9:8c:87:d9:e8:5d:c7:2a:61:d1:f4:b2:0e:84:
f0:21:f0:d3:cc:db:9a:f7:26:eb:01:d6:3c:a0:75:
e9:74:f8:fe:a0:7d:85:df:d1:b5:63:cd:fb:48:2e:
73:da:68:ad:47:ec:f9:a8:fa:16:de:4c:0c:b5:3d:
65:13:84:37:d8:fc:55:75:10:69:44:d6:16:2d:4c:
c3:83:93:7a:d4:58:64:7c:76:d7:84:67:d7:1e:22:
23:ae:72:22:13:fe:b3:f7:20:fa:98:1f:b1:39:63:
8d:df:a4:7e:e8:ea:71:b1:c2:24:f9:5d:70:68:54:
75:3c:e8:04:95:2f:7c:bc:01:70:4d:4b:e0:e4:97:
11:14:34:0e:ae:5c:95:7b:ab:e6:f4:99:1b:0a:8d:
81:7c:8c:e6:da:96:77:38:37:d7:ea:4c:ef:3c:f7:
ac:92:b4:f7:87:12:52:15:f1:8c:ae:53:43:6e:bb:
4d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:81:85:1E:8E:3C:B2:C6:4D:0C:8A:B3:A1:59:4D:34:0A:83:C2:6F
X509v3 Authority Key Identifier:
keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:2500:8000::/48
Signature Algorithm: sha256WithRSAEncryption
63:b3:5c:b1:5c:e0:2f:c4:47:c9:6a:c2:98:62:4e:f4:f4:e4:
56:ea:af:2d:01:8c:06:b9:e0:c6:ce:73:9e:d5:ba:30:ec:4a:
e2:10:e3:d4:32:f3:06:ba:e5:b1:aa:77:75:79:f8:75:fd:00:
8b:9c:65:0c:3e:a5:9c:f1:f6:c8:3b:b0:7d:46:84:10:77:9e:
2c:4b:b2:a0:09:57:2e:33:ca:8f:38:f8:7d:87:9a:61:49:87:
23:75:49:e1:57:00:07:41:2e:e6:39:6f:bc:ef:71:24:da:3b:
75:3a:c5:8a:2e:8c:dd:0f:98:bb:d8:7f:e4:54:eb:79:3d:53:
e1:9a:4f:fb:e7:50:ea:4d:0d:4a:05:11:f2:ff:9c:68:73:06:
b7:0a:64:eb:97:65:35:02:97:a9:a3:93:83:fe:86:00:3e:3f:
7d:a1:10:fc:26:1e:5f:3d:f9:7f:3d:94:67:b0:b4:c4:0c:46:
ba:5e:d8:1b:28:d3:db:fd:33:62:74:f7:21:8f:65:df:f7:2f:
03:36:fb:7c:c0:6d:0c:04:0e:dd:88:58:13:b6:31:ef:de:85:
e1:91:73:7a:32:b0:68:70:5a:fe:0f:3e:9a:45:a9:d0:e4:55:
3e:83:e5:bd:3f:7e:fa:7c:2b:53:91:7b:39:be:f4:37:70:58:
95:65:36:a2
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgIUQ/6MQMNNhsYFcdfEbc1Vt2AGDUQwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0
QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI2MDcwNjIwMjQwN1oX
DTI3MDcwNTIwMjkwN1owMzExMC8GA1UEAxMoM0Y4MTg1MUU4RTNDQjJDNjREMEM4
QUIzQTE1OTREMzQwQTgzQzI2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALvI92ID1Ht0uR1jF+e/LESaYIGg9NGwEeKJwQ2ObWkozjpGgxD1nrw/xIaS
JS+/0ZXL9ezrv7gUJDCPI2tnNmtAjPXgt6HTTaZMW/mMh9noXccqYdH0sg6E8CHw
08zbmvcm6wHWPKB16XT4/qB9hd/RtWPN+0guc9porUfs+aj6Ft5MDLU9ZROEN9j8
VXUQaUTWFi1Mw4OTetRYZHx214Rn1x4iI65yIhP+s/cg+pgfsTljjd+kfujqcbHC
JPldcGhUdTzoBJUvfLwBcE1L4OSXERQ0Dq5clXur5vSZGwqNgXyM5tqWdzg31+pM
7zz3rJK094cSUhXxjK5TQ267TbECAwEAAaOCAkcwggJDMB0GA1UdDgQWBBQ/gYUe
jjyyxk0MirOhWU00CoPCbzAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x
hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr
aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2
ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE
RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y
cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3
QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaoGCCsG
AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp
bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4
Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzgzMDMwMzAzYTNhMmYzNDM4MmQzNDM4
MjAzZDNlMjAzMzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMlAIAAMA0GCSqGSIb3DQEB
CwUAA4IBAQBjs1yxXOAvxEfJasKYYk709ORW6q8tAYwGueDGznOe1bow7EriEOPU
MvMGuuWxqnd1efh1/QCLnGUMPqWc8fbIO7B9RoQQd54sS7KgCVcuM8qPOPh9h5ph
SYcjdUnhVwAHQS7mOW+873Ek2jt1OsWKLozdD5i72H/kVOt5PVPhmk/751DqTQ1K
BRHy/5xocwa3CmTrl2U1Apepo5OD/oYAPj99oRD8Jh5fPfl/PZRnsLTEDEa6Xtgb
KNPb/TNidPchj2Xf9y8DNvt8wG0MBA7diFgTtjHv3oXhkXN6MrBocFr+Dz6aRanQ
5FU+g+W9P376fCtTkXs5vvQ3cFiVZTai
-----END CERTIFICATE-----
Generated at Tue Jul 7 11:49:47 2026 by rpki-client