$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34392e302f32342d3234203d3e203336323336.roa File: 34332e3234352e34392e302f32342d3234203d3e203336323336.roa (raw, json) Hash identifier: fe00q5V1tbzYiHDKajUbItRWKhAfAFlkzq2PtOgl/3I= Subject key identifier: 88:A1:B4:92:A3:29:AF:29:B2:1A:FF:9E:C8:0E:FD:62:41:F2:97:34 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 0E8AC07F0DC1BF524E84A4F44F092020E2818139 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34392e302f32342d3234203d3e203336323336.roa Signing time: Mon 04 Aug 2025 21:13:56 +0000 ROA not before: Mon 04 Aug 2025 21:08:56 +0000 ROA not after: Mon 03 Aug 2026 21:13:56 +0000 asID: 36236 IP address blocks: 43.245.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 01:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:8a:c0:7f:0d:c1:bf:52:4e:84:a4:f4:4f:09:20:20:e2:81:81:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 4 21:08:56 2025 GMT Not After : Aug 3 21:13:56 2026 GMT Subject: CN=88A1B492A329AF29B21AFF9EC80EFD6241F29734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:98:a0:bc:f2:25:0d:a9:a3:15:a7:4b:6f:27: 75:bd:67:bd:32:89:08:fb:5d:69:e0:01:f0:31:d1: 70:e2:e5:d1:f1:21:db:a0:ad:c6:0a:65:df:0d:92: 41:5a:c1:89:e3:5c:6b:af:b1:3d:e4:ea:42:d7:7e: 3e:9d:7d:c4:77:04:e2:f7:ad:03:56:33:3a:ed:6b: 62:5d:1a:80:1a:07:99:db:4a:3e:7c:06:d5:c6:21: 9d:28:61:d0:d1:66:7c:83:f4:a1:c7:aa:8a:5d:6a: f7:9d:06:2a:8e:48:b1:73:99:47:6f:b0:31:90:4f: 7b:75:60:ca:94:12:6f:48:f9:b5:90:4c:d1:e7:ee: 1f:7b:8f:06:77:02:41:6a:cc:19:2b:e5:fd:98:ac: c2:e4:c9:8c:3c:49:79:b2:c5:00:00:9a:40:01:10: 40:c7:3a:6b:5a:51:f6:f2:14:40:37:87:e2:36:a5: fc:82:7b:45:a2:bd:e3:e1:96:88:be:b0:c1:a8:a4: c8:54:22:65:d0:8f:2d:77:5f:58:d7:90:86:67:22: 06:95:d5:ad:1c:6d:76:e4:28:7c:a5:70:27:6e:7c: 27:51:79:2c:b4:bb:17:0d:43:59:76:c9:eb:c9:56: 0c:93:61:9c:99:fe:41:f9:43:e1:dc:58:0b:bb:20: d3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:A1:B4:92:A3:29:AF:29:B2:1A:FF:9E:C8:0E:FD:62:41:F2:97:34 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34392e302f32342d3234203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.49.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:44:b8:c9:9a:f4:38:fc:84:fd:e0:ba:98:30:22:e0:b5:54: 5f:f3:b9:3c:ac:1a:a2:8e:07:ad:46:66:4d:02:0d:40:93:bc: 0c:e0:d8:df:7d:d0:91:35:e3:67:d6:34:ef:0e:b2:c6:00:29: 9f:bd:dc:3c:c9:8c:02:e0:ea:c6:27:da:6e:76:1c:5a:59:83: e3:06:16:8d:46:bc:00:fc:ba:8b:89:8f:7d:cc:b2:46:3b:33: 3d:d0:14:c6:dd:20:ea:a6:bf:05:e6:f7:4b:80:2c:50:f6:29: 49:0c:2b:23:13:2f:78:33:8e:54:43:04:98:c2:fc:64:f1:04: 1c:35:36:b0:f6:71:e1:cb:72:29:37:27:54:65:f4:4c:f9:08: a1:9f:46:62:3b:2f:39:da:c6:fa:b3:8d:9e:04:83:14:b2:32: a4:8f:1c:af:16:4c:c5:26:98:ac:b1:86:fd:cc:bd:d5:f5:70: e0:e8:72:20:b4:a3:e6:6b:85:f8:01:5f:00:67:33:fc:44:59: 45:da:f4:76:97:10:7c:db:48:11:68:b3:05:ec:97:f8:40:f2: f6:93:ba:4a:1e:18:c5:15:49:f6:19:3f:af:a7:67:4c:6a:f7: ec:d4:67:24:4a:05:ce:56:ce:4a:ab:a7:2c:81:44:1e:92:5c: b6:29:c2:ce -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUDorAfw3Bv1JOhKT0TwkgIOKBgTkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgwNDIxMDg1NloX DTI2MDgwMzIxMTM1NlowMzExMC8GA1UEAxMoODhBMUI0OTJBMzI5QUYyOUIyMUFG RjlFQzgwRUZENjI0MUYyOTczNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWYoLzyJQ2poxWnS28ndb1nvTKJCPtdaeAB8DHRcOLl0fEh26Ctxgpl3w2S QVrBieNca6+xPeTqQtd+Pp19xHcE4vetA1YzOu1rYl0agBoHmdtKPnwG1cYhnShh 0NFmfIP0oceqil1q950GKo5IsXOZR2+wMZBPe3VgypQSb0j5tZBM0efuH3uPBncC QWrMGSvl/ZiswuTJjDxJebLFAACaQAEQQMc6a1pR9vIUQDeH4jal/IJ7RaK94+GW iL6wwaikyFQiZdCPLXdfWNeQhmciBpXVrRxtduQofKVwJ258J1F5LLS7Fw1DWXbJ 68lWDJNhnJn+QflD4dxYC7sg01MCAwEAAaOCAjowggI2MB0GA1UdDgQWBBSIobSS oymvKbIa/57IDv1iQfKXNDAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaAGCCsG AQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzM0MzMyZTMyMzQzNTJlMzQzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMz MzYzMjMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAAr9TEwDQYJKoZIhvcNAQELBQADggEBAA9EuMma 9Dj8hP3gupgwIuC1VF/zuTysGqKOB61GZk0CDUCTvAzg2N990JE142fWNO8OssYA KZ+93DzJjALg6sYn2m52HFpZg+MGFo1GvAD8uouJj33MskY7Mz3QFMbdIOqmvwXm 90uALFD2KUkMKyMTL3gzjlRDBJjC/GTxBBw1NrD2ceHLcik3J1Rl9Ez5CKGfRmI7 LznaxvqzjZ4EgxSyMqSPHK8WTMUmmKyxhv3MvdX1cODociC0o+ZrhfgBXwBnM/xE WUXa9HaXEHzbSBFoswXsl/hA8vaTukoeGMUVSfYZP6+nZ0xq9+zUZyRKBc5Wzkqr pyyBRB6SXLYpws4= -----END CERTIFICATE-----Generated at Mon Oct 27 16:26:40 2025 by rpki-client