$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32322d3232203d3e2030.roa File: 35392e3135332e31322e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: U21+dTyEfQWDFglUceZ9zNI34hV3PZP24GlR83hEv2I= Subject key identifier: A5:12:0F:A1:B9:C2:3B:38:5E:A4:02:7B:CD:A7:BA:70:24:BE:4F:12 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 72F2A90958964BF1D7BC73A5FB1EB13B79B7DB6B Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32322d3232203d3e2030.roa Signing time: Mon 23 Sep 2024 23:13:19 +0000 ROA not before: Mon 23 Sep 2024 23:08:19 +0000 ROA not after: Mon 22 Sep 2025 23:13:19 +0000 asID: 0 IP address blocks: 59.153.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 22:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f2:a9:09:58:96:4b:f1:d7:bc:73:a5:fb:1e:b1:3b:79:b7:db:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Sep 23 23:08:19 2024 GMT Not After : Sep 22 23:13:19 2025 GMT Subject: CN=A5120FA1B9C23B385EA4027BCDA7BA7024BE4F12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c4:6e:78:3c:c9:f9:08:40:c6:0a:ff:52:d7: bf:58:22:7d:70:24:2e:81:70:ab:c6:40:ea:65:59: 74:05:0e:6f:d1:cf:5c:f3:c3:b3:da:f9:f2:d0:74: 51:3c:12:fe:55:f2:e5:f7:a4:0e:2f:8a:23:74:e4: 82:24:c4:dd:6e:c8:a0:83:91:24:23:e2:5f:8b:f8: 6b:f0:48:c2:c0:36:60:22:36:6c:bb:45:9d:58:c4: d8:0c:06:dc:3a:dc:e7:61:c0:5a:8e:fe:b1:d7:c1: 52:c2:3c:1c:6e:19:64:54:a0:4f:b2:15:65:16:f9: 91:e5:8e:34:0c:52:00:1c:c3:3a:b9:bf:8e:f0:ac: c2:79:f4:a6:e7:09:d0:26:64:21:43:89:2c:cd:fa: cc:97:cb:97:5b:5e:5e:ec:8c:ab:8e:b7:ad:8f:65: e6:64:b2:98:cf:f0:81:7d:5a:8c:35:b7:1a:11:17: a4:fc:06:eb:f8:8a:38:1b:ab:db:41:b7:5d:28:ae: 95:23:dd:bd:bd:af:40:ec:37:fe:77:71:b8:a4:2b: a2:ec:d9:cc:e1:83:b2:15:7b:2a:69:1b:34:98:bc: 9b:df:3f:e4:86:b4:aa:c3:e3:5e:7e:bc:ed:de:3e: 34:3f:4a:aa:9b:c6:be:5a:84:9c:fd:8e:53:6d:5e: fe:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:12:0F:A1:B9:C2:3B:38:5E:A4:02:7B:CD:A7:BA:70:24:BE:4F:12 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.153.12.0/22 Signature Algorithm: sha256WithRSAEncryption b3:f0:71:98:35:c2:53:8f:20:be:6d:22:f0:d2:a7:91:13:be: fc:de:49:43:c8:8d:3b:5d:f0:ea:0d:c2:94:4d:61:7e:78:dc: ab:99:b7:8d:8f:c4:67:54:e3:fc:a6:9a:f0:13:da:bf:07:34: 2c:13:b1:7c:f8:72:7b:dc:59:16:7a:7a:0d:6f:35:18:3a:d5: b8:11:7c:36:82:90:ba:be:84:51:e4:29:77:11:93:59:3c:21: 23:31:65:d7:8f:9f:7b:5d:99:5f:62:ca:18:12:f9:4c:2e:67: 83:92:3a:bc:74:7c:76:22:bd:03:45:e9:50:59:6b:70:94:6e: 5f:f9:18:26:ef:61:55:0a:3b:8c:8f:86:44:de:4b:9d:7d:b1: cd:b4:2c:7f:1b:4b:81:44:aa:ea:4a:45:69:0b:71:2b:ba:b9: b5:e6:c4:48:18:12:5c:37:aa:14:d7:ef:d5:57:25:20:f9:44: 20:66:a0:e7:16:fa:23:d3:30:82:2c:40:04:98:72:b9:50:bc: ee:7b:6c:07:f5:d7:40:3e:99:88:03:61:69:e6:a9:c3:80:90: 93:15:60:76:20:fe:da:4c:57:1f:46:fe:35:04:43:8c:dd:5b: ee:8c:45:5a:9b:62:d8:6b:3b:85:99:d8:00:6e:bb:58:92:25: f4:5c:09:74 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIUcvKpCViWS/HXvHOl+x6xO3m322swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI0MDkyMzIzMDgxOVoX DTI1MDkyMjIzMTMxOVowMzExMC8GA1UEAxMoQTUxMjBGQTFCOUMyM0IzODVFQTQw MjdCQ0RBN0JBNzAyNEJFNEYxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbEbng8yfkIQMYK/1LXv1gifXAkLoFwq8ZA6mVZdAUOb9HPXPPDs9r58tB0 UTwS/lXy5fekDi+KI3TkgiTE3W7IoIORJCPiX4v4a/BIwsA2YCI2bLtFnVjE2AwG 3Drc52HAWo7+sdfBUsI8HG4ZZFSgT7IVZRb5keWONAxSABzDOrm/jvCswnn0pucJ 0CZkIUOJLM36zJfLl1teXuyMq463rY9l5mSymM/wgX1ajDW3GhEXpPwG6/iKOBur 20G3XSiulSPdvb2vQOw3/ndxuKQrouzZzOGDshV7KmkbNJi8m98/5Ia0qsPjXn68 7d4+ND9KqpvGvlqEnP2OU21e/hkCAwEAAaOCAjEwggItMB0GA1UdDgQWBBSlEg+h ucI7OF6kAnvNp7pwJL5PEjAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgZcGCCsG AQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJwcy5hcmlu Lm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTgzZjY4NjYxMDg0Yjg2 LzMvMzUzOTJlMzEzNTMzMmUzMTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAI7mQwwDQYJKoZIhvcNAQELBQADggEBALPwcZg1wlOPIL5tIvDS p5ETvvzeSUPIjTtd8OoNwpRNYX543KuZt42PxGdU4/ymmvAT2r8HNCwTsXz4cnvc WRZ6eg1vNRg61bgRfDaCkLq+hFHkKXcRk1k8ISMxZdePn3tdmV9iyhgS+UwuZ4OS Orx0fHYivQNF6VBZa3CUbl/5GCbvYVUKO4yPhkTeS519sc20LH8bS4FEqupKRWkL cSu6ubXmxEgYElw3qhTX79VXJSD5RCBmoOcW+iPTMIIsQASYcrlQvO57bAf110A+ mYgDYWnmqcOAkJMVYHYg/tpMVx9G/jUEQ4zdW+6MRVqbYthrO4WZ2ABuu1iSJfRc CXQ= -----END CERTIFICATE-----Generated at Thu Nov 21 23:34:58 2024 by rpki-client on console-ams.rpki-client.org