$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32332d3233203d3e203336323336.roa File: 35392e3135332e31322e302f32332d3233203d3e203336323336.roa (raw, json) Hash identifier: TEgXucBsXl/mkBI6e47/FTFEDJjdeut6lnuDe2Sqbzo= Subject key identifier: F7:DA:35:39:E4:18:18:14:02:FB:57:63:BC:E2:F8:02:64:C8:D1:59 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 2810A90C9B1C224E820E27E255490CA7AACFE76F Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32332d3233203d3e203336323336.roa Signing time: Tue 26 Aug 2025 19:14:15 +0000 ROA not before: Tue 26 Aug 2025 19:09:15 +0000 ROA not after: Tue 25 Aug 2026 19:14:15 +0000 asID: 36236 IP address blocks: 59.153.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 16:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:10:a9:0c:9b:1c:22:4e:82:0e:27:e2:55:49:0c:a7:aa:cf:e7:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 26 19:09:15 2025 GMT Not After : Aug 25 19:14:15 2026 GMT Subject: CN=F7DA3539E418181402FB5763BCE2F80264C8D159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:cc:6a:62:c2:2d:b5:8e:19:eb:e5:32:9b: 94:54:9c:97:5a:37:56:2b:2a:45:4f:b7:80:b9:4e: 50:39:b1:e7:aa:b4:13:d2:85:18:a9:43:80:54:3d: e9:90:6c:bd:e3:d9:dc:9e:c0:34:dd:be:5f:14:a2: c1:65:fc:af:c9:65:37:22:27:9c:53:d4:5d:1e:3b: ea:c7:f5:10:3c:d0:f9:e0:0e:b6:9f:76:c9:cc:3d: 55:fe:66:4b:fc:e7:47:28:77:ea:4c:9d:b8:4d:ca: 83:68:b3:3d:6e:84:3d:66:b3:af:23:bf:89:93:d7: 42:54:62:d0:fb:ba:a1:40:22:ba:90:75:1b:fe:2d: ee:ea:05:57:60:e0:b1:d4:ec:ba:6a:f6:41:ea:7f: 6d:0a:7c:45:e9:a5:c8:28:d8:60:3d:f2:2d:f7:48: 9c:67:94:b4:17:38:14:8f:65:b0:b1:de:bc:23:66: d5:02:24:da:e7:e5:cc:c7:d6:4d:87:78:c8:da:cc: 4c:b1:f7:4a:0e:ae:f3:34:40:92:7d:c7:62:2d:0c: 2b:05:96:40:0b:75:d3:da:ba:8f:32:a6:a8:0b:98: 5e:b3:c1:c9:33:9e:7b:04:96:f5:75:a9:7a:d0:62: a5:ef:14:af:ab:02:32:72:e0:39:1f:0a:8e:41:90: e0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DA:35:39:E4:18:18:14:02:FB:57:63:BC:E2:F8:02:64:C8:D1:59 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/35392e3135332e31322e302f32332d3233203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.153.12.0/23 Signature Algorithm: sha256WithRSAEncryption 98:08:b3:d2:4a:dd:f1:e4:cf:15:65:17:93:45:9d:d6:77:e5: b8:4c:63:ee:0e:dd:3c:de:61:0c:b6:19:c0:5d:9b:c6:1c:10: 1f:22:d3:04:3f:cc:a4:8e:19:0a:93:74:3b:1b:7f:a2:57:6d: a4:ff:cb:ee:5a:b2:80:fc:86:d4:0c:bb:68:a1:c7:d9:5e:fe: ff:39:f3:08:41:82:1b:b7:0d:80:7d:9b:17:70:fa:72:8c:f0: 62:1e:65:71:5e:9c:23:4a:11:03:69:98:16:7c:71:0b:12:cc: 51:8d:38:f7:ce:5f:c9:1d:55:59:93:dc:04:83:18:3f:b6:24: 60:34:74:86:d0:e1:0c:19:39:e3:96:8a:28:0f:c4:3a:80:02: 77:8b:0b:c7:ea:ea:ad:69:90:3e:d7:f5:01:96:c2:ef:9f:e1: 53:b6:fe:57:05:d0:7a:7c:fd:46:65:25:ea:6e:0c:4e:8a:dd: 2b:fb:42:80:d0:61:58:28:96:17:31:d0:70:e9:90:b5:05:c0: 5f:48:e0:29:77:04:7b:7b:a9:a7:07:89:8f:a4:4a:68:ce:7e: 30:89:01:6d:d3:f9:5c:1c:d6:1c:3a:7c:6b:ce:5f:db:f1:75: 83:66:83:bd:d7:9c:0f:4d:25:c9:17:28:ba:fd:01:74:8b:e5: fe:09:d4:4a -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUKBCpDJscIk6CDifiVUkMp6rP528wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgyNjE5MDkxNVoX DTI2MDgyNTE5MTQxNVowMzExMC8GA1UEAxMoRjdEQTM1MzlFNDE4MTgxNDAyRkI1 NzYzQkNFMkY4MDI2NEM4RDE1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANBQzGpiwi21jhnr5TKblFScl1o3VisqRU+3gLlOUDmx56q0E9KFGKlDgFQ9 6ZBsvePZ3J7ANN2+XxSiwWX8r8llNyInnFPUXR476sf1EDzQ+eAOtp92ycw9Vf5m S/znRyh36kyduE3Kg2izPW6EPWazryO/iZPXQlRi0Pu6oUAiupB1G/4t7uoFV2Dg sdTsumr2Qep/bQp8RemlyCjYYD3yLfdInGeUtBc4FI9lsLHevCNm1QIk2uflzMfW TYd4yNrMTLH3Sg6u8zRAkn3HYi0MKwWWQAt109q6jzKmqAuYXrPByTOeewSW9XWp etBipe8Ur6sCMnLgOR8KjkGQ4OECAwEAAaOCAjowggI2MB0GA1UdDgQWBBT32jU5 5BgYFAL7V2O84vgCZMjRWTAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaAGCCsG AQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzM1MzkyZTMxMzUzMzJlMzEzMjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMz MzYzMjMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAE7mQwwDQYJKoZIhvcNAQELBQADggEBAJgIs9JK 3fHkzxVlF5NFndZ35bhMY+4O3TzeYQy2GcBdm8YcEB8i0wQ/zKSOGQqTdDsbf6JX baT/y+5asoD8htQMu2ihx9le/v858whBghu3DYB9mxdw+nKM8GIeZXFenCNKEQNp mBZ8cQsSzFGNOPfOX8kdVVmT3ASDGD+2JGA0dIbQ4QwZOeOWiigPxDqAAneLC8fq 6q1pkD7X9QGWwu+f4VO2/lcF0Hp8/UZlJepuDE6K3Sv7QoDQYVgolhcx0HDpkLUF wF9I4Cl3BHt7qacHiY+kSmjOfjCJAW3T+Vwc1hw6fGvOX9vxdYNmg73XnA9NJckX KLr9AXSL5f4J1Eo= -----END CERTIFICATE-----Generated at Sun Sep 7 09:16:13 2025 by rpki-client