$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132383a3a2f36342d3634203d3e20333939313730.roa File: 323430333a323530303a393030303a3132383a3a2f36342d3634203d3e20333939313730.roa (raw, json) Hash identifier: bhbEAKzPtoKSA5yOOAhMnCVABRIw4qdTFSkREa4oBxY= Subject key identifier: 3D:C1:C3:F6:29:E8:7F:D7:E8:61:7A:0B:9D:47:92:51:F3:73:C4:29 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 36A1A261CF1C45365E907264A33BFF6678ED01EC Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132383a3a2f36342d3634203d3e20333939313730.roa Signing time: Sat 06 Jan 2024 12:34:19 +0000 ROA not before: Sat 06 Jan 2024 12:29:19 +0000 ROA not after: Sat 04 Jan 2025 12:34:19 +0000 asID: 399170 IP address blocks: 2403:2500:9000:128::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 13:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:a1:a2:61:cf:1c:45:36:5e:90:72:64:a3:3b:ff:66:78:ed:01:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Jan 6 12:29:19 2024 GMT Not After : Jan 4 12:34:19 2025 GMT Subject: CN=3DC1C3F629E87FD7E8617A0B9D479251F373C429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:44:45:72:0e:95:d0:1f:aa:be:0f:9b:5b:ee: 47:10:8e:7d:5f:dc:bc:32:86:3c:b5:65:5b:71:f9: d6:00:70:33:ba:04:a6:18:fb:f9:53:8f:3f:bc:6b: f9:a9:0a:c8:aa:b6:b9:a6:f9:5f:5c:4e:bb:09:ef: 75:98:bb:f2:51:42:04:dd:b4:96:e8:62:cd:0d:3b: c2:99:63:dd:99:ea:97:2d:7b:e3:17:c1:8b:30:11: 64:50:fa:cf:54:a5:0f:03:cc:34:c4:30:7a:41:06: 52:b6:a5:55:b1:b2:03:36:f3:6f:86:fd:e1:82:1b: d3:3e:3b:98:d6:a0:0f:db:39:48:fe:aa:1d:81:eb: 27:1f:60:03:15:3a:8b:cd:50:ec:89:a8:fd:ee:5b: b4:23:87:76:38:f1:c8:59:df:ee:6e:2d:51:66:f5: c5:ea:74:2c:2c:e0:3b:01:e4:b1:95:60:36:a4:cb: e1:b6:87:0d:df:c8:e9:06:fc:30:8d:56:66:72:49: 2d:01:35:c3:21:e9:ff:d5:c0:2e:2e:4f:06:0f:50: df:24:00:4b:0f:d4:cc:84:7b:b5:67:e9:a2:37:37: d5:2f:2c:90:81:cf:37:35:ce:54:3a:5a:61:8c:49: c8:54:10:33:a2:67:94:7a:c1:54:75:0c:7f:8a:57: ff:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C1:C3:F6:29:E8:7F:D7:E8:61:7A:0B:9D:47:92:51:F3:73:C4:29 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132383a3a2f36342d3634203d3e20333939313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:9000:128::/64 Signature Algorithm: sha256WithRSAEncryption 86:6e:b4:d3:d1:f0:a0:e7:64:db:06:eb:05:77:42:60:f0:40: 82:0d:70:61:77:21:a7:99:7c:75:93:dc:8f:40:6c:9a:ec:11: dc:b8:4d:af:91:65:46:ab:c0:d5:26:a6:2b:c2:c2:3c:46:76: fe:4b:c7:bb:6f:7c:52:8e:b6:92:17:6d:cc:fa:aa:85:b8:b8: 11:69:8c:c1:f6:93:ef:87:8c:e4:17:75:29:39:31:0f:3f:52: 45:e9:c9:7b:e7:f9:9d:e5:b7:53:b6:25:43:c3:7f:54:14:6b: 1d:f3:85:e3:01:dd:64:e1:05:1c:15:5d:e0:f3:c4:07:06:d2: c8:e7:0e:eb:b8:d6:47:81:b8:c6:91:36:85:40:31:91:eb:f9: 88:a8:86:e2:d9:b1:3b:82:e0:e6:19:5b:e4:88:35:91:7a:6a: 84:be:27:6f:c7:e7:fc:a6:bd:15:9a:77:05:18:9b:5f:f7:65: b0:cb:b7:49:b7:db:b3:83:5b:19:b5:38:72:72:ba:c2:44:c6: 89:a5:66:6d:dd:02:8a:c3:cd:91:c3:2c:4e:43:c7:99:af:59: 30:58:73:da:6a:f1:09:f8:41:9a:4a:59:f5:b7:e7:95:83:27: a6:f9:ea:3e:d8:db:f8:50:7c:3e:40:e0:c6:c5:c6:b3:16:c5: 9b:08:8d:e6 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUNqGiYc8cRTZekHJkozv/ZnjtAewwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDEwNjEyMjkxOVoX DTI1MDEwNDEyMzQxOVowMzExMC8GA1UEAxMoM0RDMUMzRjYyOUU4N0ZEN0U4NjE3 QTBCOUQ0NzkyNTFGMzczQzQyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpERXIOldAfqr4Pm1vuRxCOfV/cvDKGPLVlW3H51gBwM7oEphj7+VOPP7xr +akKyKq2uab5X1xOuwnvdZi78lFCBN20luhizQ07wplj3Znqly174xfBizARZFD6 z1SlDwPMNMQwekEGUralVbGyAzbzb4b94YIb0z47mNagD9s5SP6qHYHrJx9gAxU6 i81Q7Imo/e5btCOHdjjxyFnf7m4tUWb1xep0LCzgOwHksZVgNqTL4baHDd/I6Qb8 MI1WZnJJLQE1wyHp/9XALi5PBg9Q3yQASw/UzIR7tWfpojc31S8skIHPNzXOVDpa YYxJyFQQM6JnlHrBVHUMf4pX/6kCAwEAAaOCAlMwggJPMB0GA1UdDgQWBBQ9wcP2 Keh/1+hhegudR5JR83PEKTAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbQGCCsG AQUFBwELBIGnMIGkMIGhBggrBgEFBQcwC4aBlHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzkzMDMwMzAzYTMxMzIzODNhM2EyZjM2 MzQyZDM2MzQyMDNkM2UyMDMzMzkzOTMxMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAkBggrBgEFBQcBBwEB/wQVMBMwEQQCAAIwCwMJACQDJQCQAAEo MA0GCSqGSIb3DQEBCwUAA4IBAQCGbrTT0fCg52TbBusFd0Jg8ECCDXBhdyGnmXx1 k9yPQGya7BHcuE2vkWVGq8DVJqYrwsI8Rnb+S8e7b3xSjraSF23M+qqFuLgRaYzB 9pPvh4zkF3UpOTEPP1JF6cl75/md5bdTtiVDw39UFGsd84XjAd1k4QUcFV3g88QH BtLI5w7ruNZHgbjGkTaFQDGR6/mIqIbi2bE7guDmGVvkiDWRemqEvidvx+f8pr0V mncFGJtf92Wwy7dJt9uzg1sZtThycrrCRMaJpWZt3QKKw82RwyxOQ8eZr1kwWHPa avEJ+EGaSln1t+eVgyem+eo+2Nv4UHw+QODGxcazFsWbCI3m -----END CERTIFICATE-----Generated at Mon Nov 25 15:51:28 2024 by rpki-client on console-ams.rpki-client.org