$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132373a3a2f36342d3634203d3e20333939313730.roa File: 323430333a323530303a393030303a3132373a3a2f36342d3634203d3e20333939313730.roa (raw, json) Hash identifier: HvDfQKU5St3HWoBTlarvlvk0+i8jNaslTtFewpyFGrc= Subject key identifier: E4:15:6D:D8:AB:B4:6B:E9:F9:0A:A9:7F:E4:3C:C2:DB:47:AE:B8:52 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 78CE52775E4805BAB73DBDE623EC718D8C5B3CE0 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132373a3a2f36342d3634203d3e20333939313730.roa Signing time: Sat 06 Jan 2024 12:34:19 +0000 ROA not before: Sat 06 Jan 2024 12:29:19 +0000 ROA not after: Sat 04 Jan 2025 12:34:19 +0000 asID: 399170 IP address blocks: 2403:2500:9000:127::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 08:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ce:52:77:5e:48:05:ba:b7:3d:bd:e6:23:ec:71:8d:8c:5b:3c:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Jan 6 12:29:19 2024 GMT Not After : Jan 4 12:34:19 2025 GMT Subject: CN=E4156DD8ABB46BE9F90AA97FE43CC2DB47AEB852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:49:e6:91:f8:d6:b3:81:39:be:23:14:4c:d4: 71:c6:9e:e1:b2:72:8f:0d:0e:2b:96:ec:a1:21:51: 94:2b:da:e8:c5:b5:ef:57:61:8c:8f:61:a7:5c:51: ec:53:08:bf:7c:8a:6d:8e:ba:38:cc:91:24:a8:c4: 63:9b:90:7b:1a:de:f4:0f:0b:38:bb:d3:ee:e1:c0: 08:67:c0:91:2a:ee:2a:bb:18:d6:29:ed:3e:80:2d: c2:e5:7a:3a:3c:12:47:4b:65:b0:57:9d:12:2c:6a: 4b:92:a3:1b:09:fb:31:36:10:dc:f1:36:a0:d5:ea: 20:51:d0:75:dc:20:78:8a:2b:a3:68:17:3f:7f:78: 2b:99:ca:37:28:88:19:27:30:db:a0:bc:0d:d8:13: d3:a3:d1:9a:8f:da:42:53:37:64:08:32:ac:3e:9c: 97:b7:32:cd:88:f8:c3:38:ba:25:47:7d:cc:f8:25: 14:70:21:9a:0f:51:87:9f:6b:ed:42:f2:ec:c5:de: 03:80:66:bf:ed:6d:e6:a3:46:d5:ed:d3:34:ad:ee: 4a:07:c6:2c:56:59:7a:94:0c:38:e8:ff:8b:5f:f9: 9c:9a:58:56:b5:06:c9:78:ef:be:75:44:b6:ea:dd: 3f:b0:d6:d8:3d:2a:ed:b7:1f:52:f2:fc:15:c6:de: f0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:15:6D:D8:AB:B4:6B:E9:F9:0A:A9:7F:E4:3C:C2:DB:47:AE:B8:52 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132373a3a2f36342d3634203d3e20333939313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:9000:127::/64 Signature Algorithm: sha256WithRSAEncryption 29:d4:af:d1:76:e2:ab:a7:d6:fb:a7:37:8f:b5:e1:9c:66:3c: eb:1a:30:36:a9:f4:4c:c5:f4:ce:38:c6:31:c0:c7:3e:58:16: d4:6f:48:8e:96:8e:04:dc:e8:cf:e6:a3:1a:f2:1e:ce:57:f0: 3f:26:8c:4a:5a:17:82:c7:bd:e5:b0:a2:ee:fb:49:bd:50:e1: 80:33:a9:77:e1:5f:2e:e8:67:41:59:2c:2a:56:52:59:48:6c: 77:e8:29:2c:68:52:fe:6d:9e:80:60:ec:1e:c5:b2:1e:d9:b0: b4:2a:bb:5d:7a:6b:29:c9:3f:a5:04:14:1d:8b:69:8b:b3:c7: f4:c4:45:d6:cf:99:00:19:a8:57:0c:70:0a:22:84:18:84:0c: 74:ed:ef:e4:4b:1a:c1:86:08:6e:23:26:52:51:8a:b6:89:61: 6f:cc:8d:ec:21:d4:0b:e9:42:61:0b:f0:36:0e:c0:11:3a:e6: 08:b6:f0:98:d8:5e:49:aa:84:a9:39:24:a1:2e:ab:5f:b2:c9: 15:c5:8f:09:5a:e4:ee:05:a2:0f:b5:1c:41:1e:51:05:0a:b5: 0b:79:d4:b0:6b:ed:e9:0e:83:25:8e:88:64:54:de:0e:9a:45: 17:89:ff:ce:22:9f:50:5b:5c:8e:ce:96:fc:1e:21:c7:dd:5b: ce:c4:67:2c -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUeM5Sd15IBbq3Pb3mI+xxjYxbPOAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDEwNjEyMjkxOVoX DTI1MDEwNDEyMzQxOVowMzExMC8GA1UEAxMoRTQxNTZERDhBQkI0NkJFOUY5MEFB OTdGRTQzQ0MyREI0N0FFQjg1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPFJ5pH41rOBOb4jFEzUccae4bJyjw0OK5bsoSFRlCva6MW171dhjI9hp1xR 7FMIv3yKbY66OMyRJKjEY5uQexre9A8LOLvT7uHACGfAkSruKrsY1intPoAtwuV6 OjwSR0tlsFedEixqS5KjGwn7MTYQ3PE2oNXqIFHQddwgeIoro2gXP394K5nKNyiI GScw26C8DdgT06PRmo/aQlM3ZAgyrD6cl7cyzYj4wzi6JUd9zPglFHAhmg9Rh59r 7ULy7MXeA4Bmv+1t5qNG1e3TNK3uSgfGLFZZepQMOOj/i1/5nJpYVrUGyXjvvnVE turdP7DW2D0q7bcfUvL8Fcbe8N8CAwEAAaOCAlMwggJPMB0GA1UdDgQWBBTkFW3Y q7Rr6fkKqX/kPMLbR664UjAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbQGCCsG AQUFBwELBIGnMIGkMIGhBggrBgEFBQcwC4aBlHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzkzMDMwMzAzYTMxMzIzNzNhM2EyZjM2 MzQyZDM2MzQyMDNkM2UyMDMzMzkzOTMxMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAkBggrBgEFBQcBBwEB/wQVMBMwEQQCAAIwCwMJACQDJQCQAAEn MA0GCSqGSIb3DQEBCwUAA4IBAQAp1K/RduKrp9b7pzePteGcZjzrGjA2qfRMxfTO OMYxwMc+WBbUb0iOlo4E3OjP5qMa8h7OV/A/JoxKWheCx73lsKLu+0m9UOGAM6l3 4V8u6GdBWSwqVlJZSGx36CksaFL+bZ6AYOwexbIe2bC0KrtdemspyT+lBBQdi2mL s8f0xEXWz5kAGahXDHAKIoQYhAx07e/kSxrBhghuIyZSUYq2iWFvzI3sIdQL6UJh C/A2DsAROuYItvCY2F5JqoSpOSShLqtfsskVxY8JWuTuBaIPtRxBHlEFCrULedSw a+3pDoMljohkVN4OmkUXif/OIp9QW1yOzpb8HiHH3VvOxGcs -----END CERTIFICATE-----Generated at Sat May 11 07:50:16 2024 by rpki-client on console-ams.rpki-client.org