
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34382e302f32342d3234203d3e203336323336.roa
File: 34332e3234352e34382e302f32342d3234203d3e203336323336.roa (raw, json)
Hash identifier: 9r939B1VUnlFTNhqrg5vzvRiDqP0Ghw6j1A1wjoCvYg=
Subject key identifier: BB:A8:98:BE:BD:2B:36:10:E5:FA:29:C7:0E:F9:D1:65:F2:26:8C:32
Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Certificate serial: 3FDC18EFA992D909CAA109E6DEED9295444F0CBA
Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34382e302f32342d3234203d3e203336323336.roa
Signing time: Mon 06 Jul 2026 21:29:08 +0000
ROA not before: Mon 06 Jul 2026 21:24:08 +0000
ROA not after: Mon 05 Jul 2027 21:29:08 +0000
asID: 36236
IP address blocks: 43.245.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 Jul 2026 02:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:dc:18:ef:a9:92:d9:09:ca:a1:09:e6:de:ed:92:95:44:4f:0c:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Validity
Not Before: Jul 6 21:24:08 2026 GMT
Not After : Jul 5 21:29:08 2027 GMT
Subject: CN=BBA898BEBD2B3610E5FA29C70EF9D165F2268C32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:27:9b:27:1b:24:10:96:07:12:98:46:bc:3b:
0e:32:05:28:b0:93:b2:93:f9:b6:11:54:13:43:e7:
66:dd:5c:87:24:05:89:14:a6:7b:bf:e3:8c:a4:cc:
87:ec:1d:f7:cf:dd:a6:84:0e:32:0b:15:a3:80:57:
c9:3f:8e:12:c0:fb:46:66:af:86:77:9b:f3:95:fa:
3d:0a:83:63:39:79:d5:b2:e4:32:b0:32:0a:26:0c:
e7:1e:31:4b:a2:af:84:54:79:5f:a0:0c:98:18:9b:
4e:87:f8:29:49:44:24:f9:cc:e3:44:ab:88:70:a7:
aa:33:41:f1:d0:b7:09:65:aa:c5:35:0a:b2:98:40:
0b:07:e1:4f:e4:9b:27:3f:1f:1a:15:e3:44:4a:46:
be:6f:2f:e9:4f:9a:02:9a:01:e2:b4:be:fd:61:01:
b0:df:af:c3:d3:ac:e3:6f:c3:be:04:ba:af:60:b2:
91:22:99:46:b6:49:7f:eb:70:f9:77:44:e0:bd:76:
ee:31:f0:50:fd:85:e2:59:00:4d:cb:bd:d8:02:ec:
fc:3e:37:65:cf:fe:aa:d8:88:7a:59:c0:a5:15:3a:
dd:ed:1d:46:93:1a:45:4c:15:59:ef:d5:ea:97:e0:
1f:20:e0:d6:bb:ff:dc:a9:47:c0:f4:e0:76:2a:2d:
fb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A8:98:BE:BD:2B:36:10:E5:FA:29:C7:0E:F9:D1:65:F2:26:8C:32
X509v3 Authority Key Identifier:
keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34382e302f32342d3234203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.245.48.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:e6:ea:c0:40:91:b2:95:4c:fd:4d:ce:4f:b3:33:41:d7:21:
c8:63:db:c4:3f:4d:c6:cc:54:2e:17:d9:1c:20:c1:0c:44:ef:
87:e6:21:a8:28:14:e5:ba:86:41:aa:94:93:28:f2:70:7b:14:
e7:d2:ba:91:d3:6a:c6:c0:e2:1a:6d:e4:57:26:d0:a3:50:4e:
98:f5:78:b0:c4:b8:43:24:4f:6c:76:f6:3f:3f:1f:cc:82:a9:
f8:5a:b1:3f:ca:56:c4:3a:b2:ad:36:4d:11:e7:3c:1a:2b:14:
69:31:2c:b5:e4:de:a0:33:4c:20:e3:29:27:88:6f:c4:6c:cb:
34:67:88:ca:4c:54:62:51:44:33:5f:6b:21:3d:a4:ea:2f:80:
a6:06:d0:b0:45:b4:27:82:db:c6:51:36:4b:67:b1:72:73:33:
6f:e9:a0:30:2e:47:f9:ae:db:ed:ab:6c:15:fc:92:15:a1:ab:
88:df:4f:20:12:c1:58:12:b9:6f:11:b4:19:86:a7:33:2a:d0:
b7:96:3b:d3:12:e6:e8:3a:ba:5d:25:4f:db:fe:61:85:7d:0f:
7c:e5:d1:8c:ed:67:ea:b5:16:02:7a:f3:7b:3f:c1:0d:2f:11:
ba:53:01:bf:5a:f8:08:e7:67:96:0b:89:e6:d5:ae:16:39:60:
6f:55:58:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 11:49:21 2026 by rpki-client