$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/323430343a336438303a623030623a3a2f34382d3438203d3e20323132313439.roa File: 323430343a336438303a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json) Hash identifier: npHdjTtF56K3mgLf1InuwXhPXZWD+/cOleIZk+cX5wk= Subject key identifier: 03:0B:B0:86:55:42:6D:47:95:29:BC:92:0C:14:64:22:C3:2D:0F:B9 Certificate issuer: /CN=A91115900000/serialNumber=5953AC0A64BF9656B442D3C32313435ECB495F68 Certificate serial: 4D5A5BE71578D059D7277156C7831AB6B5299492 Authority key identifier: 59:53:AC:0A:64:BF:96:56:B4:42:D3:C3:23:13:43:5E:CB:49:5F:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVOsCmS_lla0QtPDIxNDXstJX2g.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/323430343a336438303a623030623a3a2f34382d3438203d3e20323132313439.roa Signing time: Mon 11 Nov 2024 06:40:12 +0000 ROA not before: Mon 11 Nov 2024 06:35:12 +0000 ROA not after: Mon 10 Nov 2025 06:40:12 +0000 asID: 212149 IP address blocks: 2404:3d80:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/5953AC0A64BF9656B442D3C32313435ECB495F68.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/5953AC0A64BF9656B442D3C32313435ECB495F68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVOsCmS_lla0QtPDIxNDXstJX2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 20:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:5a:5b:e7:15:78:d0:59:d7:27:71:56:c7:83:1a:b6:b5:29:94:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91115900000/serialNumber=5953AC0A64BF9656B442D3C32313435ECB495F68 Validity Not Before: Nov 11 06:35:12 2024 GMT Not After : Nov 10 06:40:12 2025 GMT Subject: CN=030BB08655426D479529BC920C146422C32D0FB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0b:89:4b:12:55:43:df:46:47:c8:68:c7:d5: 9f:8f:95:7a:73:bb:0f:99:e9:a1:2c:73:3c:01:ef: 94:60:cc:d5:34:1b:22:c7:6e:9c:a7:1b:b9:d1:15: 74:3c:f9:58:15:b7:52:16:8e:5a:ac:e6:95:a7:25: 9c:fa:21:10:4b:7e:af:82:ec:73:37:a0:89:16:59: 31:96:77:1e:82:bc:5d:bf:43:81:af:a1:4f:95:d4: 06:07:82:cc:8c:f4:37:86:20:a2:4a:17:33:35:e3: 9a:10:32:69:3a:61:d7:f7:b4:51:d1:0d:02:b3:d7: f3:fb:f0:d6:54:74:b9:52:ee:3a:19:4b:46:de:57: 75:8c:74:37:50:f2:25:43:58:d7:72:a8:3e:5c:c9: e9:d6:c0:a8:05:da:1a:9c:c8:0e:38:4a:4e:f7:c8: 3f:99:fc:c3:be:1c:1f:06:f5:b9:05:b7:ff:50:e5: c1:2d:d9:ce:fd:8f:85:29:70:10:af:8d:88:ba:f2: bc:73:26:83:a7:09:6e:e2:80:4b:b8:ae:7b:df:31: 34:48:d6:06:ed:c3:6d:e7:6a:be:6c:c7:4f:95:e2: fe:7d:40:e5:f3:bf:a3:01:db:89:3d:c1:97:97:50: da:24:56:50:67:4d:5f:19:f8:ec:ce:c7:85:88:a9: 81:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:0B:B0:86:55:42:6D:47:95:29:BC:92:0C:14:64:22:C3:2D:0F:B9 X509v3 Authority Key Identifier: keyid:59:53:AC:0A:64:BF:96:56:B4:42:D3:C3:23:13:43:5E:CB:49:5F:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/5953AC0A64BF9656B442D3C32313435ECB495F68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVOsCmS_lla0QtPDIxNDXstJX2g.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/323430343a336438303a623030623a3a2f34382d3438203d3e20323132313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:3d80:b00b::/48 Signature Algorithm: sha256WithRSAEncryption b1:21:47:a7:ab:a4:b5:39:22:92:1f:f8:92:f2:59:8b:6c:1f: bc:81:5c:a0:5d:60:3b:f1:96:29:7d:3a:d7:57:ef:25:4f:5a: 14:22:72:85:fe:39:94:a3:b1:93:bb:d6:bf:77:cb:19:79:33: 51:91:ff:70:4f:57:7d:c4:b6:e1:8b:31:75:fe:07:88:d2:25: c9:6e:7c:24:c4:c1:8c:9f:d1:f6:e6:0c:af:e0:c1:13:0c:12: c0:ef:9b:02:c8:6a:39:47:d6:8f:a9:0e:3a:64:bf:e8:86:54: 80:b3:7e:bc:ac:f5:0f:64:ee:30:d2:35:f3:c3:4c:8c:02:3d: 74:6b:7b:ba:f2:1b:c7:04:06:d8:bd:27:6e:0e:73:09:07:7d: 67:f4:b6:55:af:0e:ef:1f:b4:49:1d:1f:56:ed:0b:1d:e8:04: 7b:70:b0:80:1d:88:6b:a7:17:73:7c:86:a6:00:9a:73:28:a9: 34:3a:4d:c8:7f:f1:7d:db:36:b3:e3:a4:98:00:dc:c7:7b:54: 0a:78:0e:22:64:ba:2e:e8:b6:d4:62:c7:f7:00:f5:f6:34:73: 6f:c0:d3:4b:70:97:e7:c2:bb:a8:05:3d:19:0e:61:37:0c:77: 05:d0:31:cb:dd:a6:da:73:a0:5b:fc:9b:22:f5:9a:0b:62:95: c3:19:08:69 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUTVpb5xV40FnXJ3FWx4MatrUplJIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMTE1OTAwMDAwMTEwLwYDVQQFEyg1OTUzQUMwQTY0 QkY5NjU2QjQ0MkQzQzMyMzEzNDM1RUNCNDk1RjY4MB4XDTI0MTExMTA2MzUxMloX DTI1MTExMDA2NDAxMlowMzExMC8GA1UEAxMoMDMwQkIwODY1NTQyNkQ0Nzk1MjlC QzkyMEMxNDY0MjJDMzJEMEZCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0LiUsSVUPfRkfIaMfVn4+VenO7D5npoSxzPAHvlGDM1TQbIsdunKcbudEV dDz5WBW3UhaOWqzmlaclnPohEEt+r4LsczegiRZZMZZ3HoK8Xb9Dga+hT5XUBgeC zIz0N4YgokoXMzXjmhAyaTph1/e0UdENArPX8/vw1lR0uVLuOhlLRt5XdYx0N1Dy JUNY13KoPlzJ6dbAqAXaGpzIDjhKTvfIP5n8w74cHwb1uQW3/1DlwS3Zzv2PhSlw EK+NiLryvHMmg6cJbuKAS7iue98xNEjWBu3DbedqvmzHT5Xi/n1A5fO/owHbiT3B l5dQ2iRWUGdNXxn47M7HhYipgaUCAwEAAaOCAkkwggJFMB0GA1UdDgQWBBQDC7CG VUJtR5UpvJIMFGQiwy0PuTAfBgNVHSMEGDAWgBRZU6wKZL+WVrRC08MjE0Ney0lf aDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1 NWM5MWJlM2Y5ZC8zLzU5NTNBQzBBNjRCRjk2NTZCNDQyRDNDMzIzMTM0MzVFQ0I0 OTVGNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL1dWT3NDbVNfbGxhMFF0UERJeE5EWHN0SlgyZy5jZXIwgawGCCsG AQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5 ZC8zLzMyMzQzMDM0M2EzMzY0MzgzMDNhNjIzMDMwNjIzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMxMzIzMTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBD2AsAswDQYJKoZIhvcN AQELBQADggEBALEhR6erpLU5IpIf+JLyWYtsH7yBXKBdYDvxlil9OtdX7yVPWhQi coX+OZSjsZO71r93yxl5M1GR/3BPV33EtuGLMXX+B4jSJclufCTEwYyf0fbmDK/g wRMMEsDvmwLIajlH1o+pDjpkv+iGVICzfrys9Q9k7jDSNfPDTIwCPXRre7ryG8cE Bti9J24OcwkHfWf0tlWvDu8ftEkdH1btCx3oBHtwsIAdiGunF3N8hqYAmnMoqTQ6 Tch/8X3bNrPjpJgA3Md7VAp4DiJkui7ottRix/cA9fY0c2/A00twl+fCu6gFPRkO YTcMdwXQMcvdptpzoFv8myL1mgtilcMZCGk= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:22 2024 by rpki-client on console-ams.rpki-client.org