$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132393a3a2f36342d3634203d3e20333939313730.roa File: 323430333a323530303a393030303a3132393a3a2f36342d3634203d3e20333939313730.roa (raw, json) Hash identifier: CHShRV1ZoxzngrINXgBQ46gtpatyF8pzAZTGIHAqM9w= Subject key identifier: 97:52:65:A0:34:96:A0:74:1C:5A:6A:31:BB:82:4D:A4:B7:C9:73:F4 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 4196C45CAADFED28F952F3646275FE0195D76B6E Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132393a3a2f36342d3634203d3e20333939313730.roa Signing time: Sat 06 Jan 2024 12:34:19 +0000 ROA not before: Sat 06 Jan 2024 12:29:19 +0000 ROA not after: Sat 04 Jan 2025 12:34:19 +0000 asID: 399170 IP address blocks: 2403:2500:9000:129::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:96:c4:5c:aa:df:ed:28:f9:52:f3:64:62:75:fe:01:95:d7:6b:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Jan 6 12:29:19 2024 GMT Not After : Jan 4 12:34:19 2025 GMT Subject: CN=975265A03496A0741C5A6A31BB824DA4B7C973F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:22:b4:0e:67:92:d5:aa:b9:fa:48:5d:45:d6: bb:0f:b5:c5:a1:4b:a3:ce:58:61:38:65:53:e7:d4: 5b:fe:ac:3f:fe:e5:c8:ad:1f:7b:9b:2c:5f:c1:de: 73:9e:88:a0:e1:ac:f8:26:15:9f:f6:45:81:ea:9e: 57:ba:1d:8d:ce:f7:52:0b:2b:a1:b3:99:23:b8:3b: d7:47:98:6a:df:11:7f:28:bc:32:de:61:18:87:c8: 99:a0:5d:cd:f6:78:33:be:ad:e2:a7:ab:72:d4:79: a8:09:4c:37:7e:83:91:ba:6b:a9:d0:a4:ec:ca:b3: 1a:c9:99:41:d0:f5:bb:3e:08:1b:29:80:97:14:24: 64:29:54:f7:4a:8f:95:29:45:bb:8f:21:1a:db:1d: 7e:29:07:25:de:47:0f:ed:c2:54:02:0d:64:36:95: 1a:38:8f:ba:f8:d8:97:75:b1:86:ed:4f:d8:e0:8f: f5:66:66:14:7d:5a:46:89:5a:ba:d2:bc:81:02:f3: 02:b1:51:68:51:eb:2e:ff:cd:ee:95:6a:9a:74:67: 27:a3:12:03:a1:8a:ae:6b:24:ac:03:43:1f:d2:e1: 97:fa:92:c2:fc:5a:f6:b1:b8:74:36:f4:22:d8:d5: 59:ad:95:3d:52:14:dc:44:db:69:63:23:17:4e:29: b0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:52:65:A0:34:96:A0:74:1C:5A:6A:31:BB:82:4D:A4:B7:C9:73:F4 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a393030303a3132393a3a2f36342d3634203d3e20333939313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:9000:129::/64 Signature Algorithm: sha256WithRSAEncryption c1:29:6a:96:71:53:60:c3:37:89:8f:59:fb:e5:2a:07:f8:d1: 65:8c:19:1b:63:0f:fd:e2:b5:28:70:de:9d:d7:cb:22:bd:f4: c3:50:39:28:f4:6e:89:61:7f:94:71:c8:97:7a:03:cf:ed:23: 85:2e:b5:ec:f1:7c:ab:02:fa:85:08:00:5a:c1:b0:58:88:1f: 17:c4:a8:8a:53:5f:ef:30:e9:df:b9:da:0b:5d:ee:a4:0b:4b: d5:6b:a8:0f:90:a6:a8:21:11:e0:76:bf:dc:4b:f3:a6:62:a0: e0:69:42:b7:d3:83:f1:c7:bc:bc:dd:e4:65:0b:07:a8:ff:49: e5:f0:5b:c8:1d:c3:dc:9d:3f:3e:a5:fd:2d:f5:d3:00:c4:02: 39:d0:5e:ca:07:3a:79:fb:16:14:1a:de:e7:58:04:b9:82:c5: d5:dd:d8:e4:65:86:9e:5c:fa:27:f9:9d:56:1e:c0:6d:9d:35: d5:c0:71:36:fc:c5:96:81:09:9c:34:83:07:64:9f:23:83:bf: e4:ad:60:c7:57:6f:e0:5f:f1:a0:9d:ce:c3:b1:6a:41:c4:15: ad:50:d9:2c:bf:2b:ef:30:bd:cb:d1:4c:d2:a1:d9:ad:a8:60: e6:ee:ec:c3:9c:e7:dd:d1:c7:71:fe:f9:d9:cf:a1:30:d9:ee: cb:5f:e8:25 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUQZbEXKrf7Sj5UvNkYnX+AZXXa24wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDEwNjEyMjkxOVoX DTI1MDEwNDEyMzQxOVowMzExMC8GA1UEAxMoOTc1MjY1QTAzNDk2QTA3NDFDNUE2 QTMxQkI4MjREQTRCN0M5NzNGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUitA5nktWqufpIXUXWuw+1xaFLo85YYThlU+fUW/6sP/7lyK0fe5ssX8He c56IoOGs+CYVn/ZFgeqeV7odjc73UgsrobOZI7g710eYat8Rfyi8Mt5hGIfImaBd zfZ4M76t4qerctR5qAlMN36DkbprqdCk7MqzGsmZQdD1uz4IGymAlxQkZClU90qP lSlFu48hGtsdfikHJd5HD+3CVAINZDaVGjiPuvjYl3Wxhu1P2OCP9WZmFH1aRola utK8gQLzArFRaFHrLv/N7pVqmnRnJ6MSA6GKrmskrANDH9Lhl/qSwvxa9rG4dDb0 ItjVWa2VPVIU3ETbaWMjF04psMECAwEAAaOCAlMwggJPMB0GA1UdDgQWBBSXUmWg NJagdBxaajG7gk2kt8lz9DAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgbQGCCsG AQUFBwELBIGnMIGkMIGhBggrBgEFBQcwC4aBlHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzkzMDMwMzAzYTMxMzIzOTNhM2EyZjM2 MzQyZDM2MzQyMDNkM2UyMDMzMzkzOTMxMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAkBggrBgEFBQcBBwEB/wQVMBMwEQQCAAIwCwMJACQDJQCQAAEp MA0GCSqGSIb3DQEBCwUAA4IBAQDBKWqWcVNgwzeJj1n75SoH+NFljBkbYw/94rUo cN6d18sivfTDUDko9G6JYX+UcciXegPP7SOFLrXs8XyrAvqFCABawbBYiB8XxKiK U1/vMOnfudoLXe6kC0vVa6gPkKaoIRHgdr/cS/OmYqDgaUK304Pxx7y83eRlCweo /0nl8FvIHcPcnT8+pf0t9dMAxAI50F7KBzp5+xYUGt7nWAS5gsXV3djkZYaeXPon +Z1WHsBtnTXVwHE2/MWWgQmcNIMHZJ8jg7/krWDHV2/gX/Ggnc7DsWpBxBWtUNks vyvvML3L0UzSodmtqGDm7uzDnOfd0cdx/vnZz6Ew2e7LX+gl -----END CERTIFICATE-----Generated at Fri May 10 14:18:16 2024 by rpki-client on console-fra.rpki-client.org