$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32322d3232203d3e2030.roa File: 35392e3135332e31322e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: EV9jOhEn9sDw/xYnDHxfVPMHH6k7AzsUdBFV0A3AnAw= Subject key identifier: F1:EF:23:22:CA:32:DB:F1:9C:4E:A1:7B:6A:D8:F6:28:10:B2:99:80 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 117B590E8D69AC57AAAAC87FFB4F81064BD3349A Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32322d3232203d3e2030.roa Signing time: Mon 25 Aug 2025 23:14:15 +0000 ROA not before: Mon 25 Aug 2025 23:09:15 +0000 ROA not after: Mon 24 Aug 2026 23:14:15 +0000 asID: 0 IP address blocks: 59.153.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 16:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7b:59:0e:8d:69:ac:57:aa:aa:c8:7f:fb:4f:81:06:4b:d3:34:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 25 23:09:15 2025 GMT Not After : Aug 24 23:14:15 2026 GMT Subject: CN=F1EF2322CA32DBF19C4EA17B6AD8F62810B29980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:06:de:b5:1a:87:92:70:f7:87:12:6d:d2:38: a2:2f:a9:4b:67:59:85:00:1a:6a:b8:0f:1a:25:42: e8:e5:16:e1:cd:bb:74:28:ec:4e:6b:ea:aa:46:e6: 41:65:70:52:c3:d5:c8:ba:cb:47:71:79:17:a5:25: ac:ad:66:80:57:0f:25:a3:3c:73:89:54:e2:48:38: bf:89:8f:ce:bf:24:13:75:10:ab:1b:5e:c5:0d:53: d2:c1:0f:9e:32:dd:77:57:10:ab:46:0a:dc:b2:ec: bb:cf:d4:4d:d6:c1:0c:72:4f:cf:85:8d:c5:f9:24: 30:7b:a3:ec:46:6e:7d:aa:56:c7:a3:3f:0e:60:3f: 6f:62:03:45:0a:00:f2:01:45:13:c1:d1:d1:10:81: 5c:c6:d8:3a:6c:a5:d0:92:8d:d2:cd:06:b5:f4:46: 87:fe:8e:28:9b:3f:d4:bb:64:7a:39:36:22:c9:3b: 0c:b0:61:c7:11:84:3f:19:e7:e0:a3:57:c7:e5:9a: cb:30:bc:5e:0a:a0:f6:74:ce:5e:45:d6:c5:d5:6f: a4:a8:58:cc:71:8d:23:f9:b0:fc:2c:e3:f6:95:61: 4b:a6:22:df:7f:75:f8:ba:31:8c:39:ea:fd:05:48: c5:f8:33:f2:95:a1:1e:96:f5:b9:bd:9e:8f:98:dc: 15:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:EF:23:22:CA:32:DB:F1:9C:4E:A1:7B:6A:D8:F6:28:10:B2:99:80 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.153.12.0/22 Signature Algorithm: sha256WithRSAEncryption 35:fc:3c:18:9a:24:3e:48:86:a3:5c:81:03:be:b3:19:2b:06: 50:b2:34:2e:30:c0:67:60:08:ef:54:12:35:56:7d:8b:de:ad: 4b:e4:1c:de:75:09:70:37:07:92:06:ea:3a:af:bf:74:f2:c7: fb:61:e3:f3:63:ca:f8:ec:1a:1a:08:6e:af:f2:ab:de:ab:6d: 31:f5:7b:41:d6:a7:55:63:97:df:26:3e:62:93:86:f7:97:dc: bc:95:0e:87:88:17:f9:2d:82:05:3c:27:a3:a9:a3:de:2d:dd: c6:46:44:9c:7b:ab:36:9a:76:26:dc:cc:8e:17:c6:82:0b:35: 4b:0e:b9:c4:bd:2d:dd:e6:bf:b1:a3:29:1c:5e:18:86:bf:e8: a1:d1:85:40:75:e4:84:26:64:0c:c1:b2:54:e4:13:fd:a1:bf: b7:d6:5e:8d:69:be:91:f0:86:6d:6e:a5:db:03:f1:e3:ac:9f: 59:dc:ca:70:b5:d3:9f:98:3c:8a:92:fb:2e:9e:73:0b:1d:8b: c2:2f:1d:76:ae:54:d5:ba:45:a4:f4:ef:89:8f:3b:25:62:80: d5:86:53:d4:79:03:51:89:e0:cc:3b:33:ec:09:dd:96:e3:15: ce:d7:01:d6:c2:42:62:ed:2e:d8:cb:cc:6f:ac:66:f1:ad:76: 85:b4:a0:d8 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIUEXtZDo1prFeqqsh/+0+BBkvTNJowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgyNTIzMDkxNVoX DTI2MDgyNDIzMTQxNVowMzExMC8GA1UEAxMoRjFFRjIzMjJDQTMyREJGMTlDNEVB MTdCNkFEOEY2MjgxMEIyOTk4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgG3rUah5Jw94cSbdI4oi+pS2dZhQAaargPGiVC6OUW4c27dCjsTmvqqkbm QWVwUsPVyLrLR3F5F6UlrK1mgFcPJaM8c4lU4kg4v4mPzr8kE3UQqxtexQ1T0sEP njLdd1cQq0YK3LLsu8/UTdbBDHJPz4WNxfkkMHuj7EZufapWx6M/DmA/b2IDRQoA 8gFFE8HR0RCBXMbYOmyl0JKN0s0GtfRGh/6OKJs/1Ltkejk2Isk7DLBhxxGEPxnn 4KNXx+WayzC8Xgqg9nTOXkXWxdVvpKhYzHGNI/mw/Czj9pVhS6Yi3391+LoxjDnq /QVIxfgz8pWhHpb1ub2ej5jcFRECAwEAAaOCAjEwggItMB0GA1UdDgQWBBTx7yMi yjLb8ZxOoXtq2PYoELKZgDAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgZcGCCsG AQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJwcy5hcmlu Lm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTgzZjY4NjYxMDg0Yjg2 LzMvMzUzOTJlMzEzNTMzMmUzMTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAI7mQwwDQYJKoZIhvcNAQELBQADggEBADX8PBiaJD5IhqNcgQO+ sxkrBlCyNC4wwGdgCO9UEjVWfYverUvkHN51CXA3B5IG6jqvv3Tyx/th4/Njyvjs GhoIbq/yq96rbTH1e0HWp1Vjl98mPmKThveX3LyVDoeIF/ktggU8J6Opo94t3cZG RJx7qzaadibczI4XxoILNUsOucS9Ld3mv7GjKRxeGIa/6KHRhUB15IQmZAzBslTk E/2hv7fWXo1pvpHwhm1updsD8eOsn1ncynC105+YPIqS+y6ecwsdi8IvHXauVNW6 RaT074mPOyVigNWGU9R5A1GJ4Mw7M+wJ3ZbjFc7XAdbCQmLtLtjLzG+sZvGtdoW0 oNg= -----END CERTIFICATE-----Generated at Sun Sep 7 09:19:54 2025 by rpki-client