
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e35312e302f32342d3234203d3e203336323336.roa
File: 34332e3234352e35312e302f32342d3234203d3e203336323336.roa (raw, json)
Hash identifier: os4ofrReZD+wmJwY8V+X+tk1JSaBtEK41W5reeApYnQ=
Subject key identifier: 53:AF:09:29:F3:CF:A5:D8:53:E2:58:20:E7:1A:A9:3B:58:C3:B0:A1
Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Certificate serial: 216A7E68DEABBB865D530A956AC46B191DF69C23
Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e35312e302f32342d3234203d3e203336323336.roa
Signing time: Mon 06 Jul 2026 21:29:08 +0000
ROA not before: Mon 06 Jul 2026 21:24:08 +0000
ROA not after: Mon 05 Jul 2027 21:29:08 +0000
asID: 36236
IP address blocks: 43.245.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 Jul 2026 02:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:6a:7e:68:de:ab:bb:86:5d:53:0a:95:6a:c4:6b:19:1d:f6:9c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186
Validity
Not Before: Jul 6 21:24:08 2026 GMT
Not After : Jul 5 21:29:08 2027 GMT
Subject: CN=53AF0929F3CFA5D853E25820E71AA93B58C3B0A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1c:cc:80:18:ce:5a:66:30:a1:3f:63:3b:11:
0d:af:9b:6d:28:58:38:17:6f:fd:fe:13:16:31:0a:
37:98:d3:ed:a2:30:0b:99:2b:f3:d2:71:73:f1:13:
9e:fc:71:ef:7d:97:cc:34:a2:0b:9d:51:2e:9c:84:
38:bf:7e:17:f4:e9:52:14:a8:7a:ea:b3:50:fd:67:
b4:c2:50:ef:a8:98:9e:74:a5:96:9d:d4:26:47:78:
e1:89:77:96:27:3b:a4:21:1d:b4:75:f3:02:aa:d7:
54:75:9c:3d:0c:d1:a8:71:a8:7a:83:19:3b:a4:23:
f1:43:d0:a6:fa:ea:86:b5:4d:4b:25:9d:fa:7d:93:
96:81:ff:14:7c:4b:3e:96:57:9c:56:76:3f:2b:09:
13:93:6f:34:d3:d5:9e:ad:10:18:28:2e:01:fb:04:
b9:8b:40:30:40:6f:83:6b:a6:3e:73:88:ea:5b:3c:
83:d3:cf:06:2e:a2:31:76:54:16:da:e9:cf:f8:a1:
f5:95:4b:a4:d0:40:22:f9:c3:24:87:97:b2:7b:b2:
51:e7:0e:72:39:24:f6:bf:3c:72:e2:ec:41:0f:55:
21:ad:d1:3e:38:a5:d5:a7:58:c0:5b:3b:89:bc:f2:
0b:f8:47:9b:b7:ca:a6:11:81:c4:5c:3d:76:60:7c:
ed:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AF:09:29:F3:CF:A5:D8:53:E2:58:20:E7:1A:A9:3B:58:C3:B0:A1
X509v3 Authority Key Identifier:
keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e35312e302f32342d3234203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.245.51.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b0:56:18:77:bd:ee:fa:26:23:c4:ef:17:9c:c9:c6:93:8e:
1f:85:d0:29:4d:01:4a:46:41:63:75:44:68:93:d7:77:b6:e6:
0e:3e:a9:27:8c:92:47:93:4f:f3:a4:80:be:dd:1a:39:7c:98:
85:2f:83:51:98:ff:1d:f9:af:ba:b0:51:ae:86:c3:0a:c3:22:
da:18:9c:7b:6b:13:2f:b9:a4:31:6c:a4:b4:86:b5:f7:3c:6b:
5e:ab:08:e2:3e:42:53:d4:9a:75:f3:7b:b8:20:9c:96:8f:8b:
27:91:41:33:c8:d1:f6:06:50:ff:24:9c:ee:3a:66:a5:58:92:
13:5a:50:e3:cd:b6:f4:07:1e:e6:b6:51:8b:48:98:b3:c5:ed:
99:4a:4a:a8:33:0d:77:36:93:98:d0:c9:1e:66:fb:f3:ce:86:
b0:22:6d:1b:cf:8d:ff:06:4a:b3:0c:87:bb:64:d2:11:cc:ec:
d8:cb:ca:16:4f:06:ea:f7:17:cd:e5:13:2f:f5:a2:13:dc:21:
5a:48:72:9a:d3:b6:d4:79:87:1f:59:53:40:2a:02:e5:f1:69:
ef:ad:93:c8:f3:99:7d:83:b5:b7:75:dd:ee:b1:74:58:d3:cf:
9a:fa:10:25:45:aa:40:22:05:42:24:59:50:c4:27:4d:74:ac:
70:0f:6a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 11:49:22 2026 by rpki-client