$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/8/323430343a336438303a3a2f33322d3332203d3e2030.roa File: 323430343a336438303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: UdiAxCD9dUJt8dJ13fYIsd65THW1RL3+fmPrtepm3VU= Subject key identifier: A7:C1:47:F5:87:C3:7D:A6:90:34:49:FF:02:92:10:B5:93:5F:BD:37 Certificate issuer: /CN=A91115900000/serialNumber=9CDA71116E22812ADF60B7500F92D7E4CBB2B9B4 Certificate serial: 5ABD58D26BB5F210F0E38B4856DF9D040198C8D0 Authority key identifier: 9C:DA:71:11:6E:22:81:2A:DF:60:B7:50:0F:92:D7:E4:CB:B2:B9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nNpxEW4igSrfYLdQD5LX5MuyubQ.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/8/323430343a336438303a3a2f33322d3332203d3e2030.roa Signing time: Fri 04 Jul 2025 23:35:50 +0000 ROA not before: Fri 04 Jul 2025 23:30:50 +0000 ROA not after: Fri 03 Jul 2026 23:35:50 +0000 asID: 0 IP address blocks: 2404:3d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/8/9CDA71116E22812ADF60B7500F92D7E4CBB2B9B4.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/8/9CDA71116E22812ADF60B7500F92D7E4CBB2B9B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nNpxEW4igSrfYLdQD5LX5MuyubQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 10:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:bd:58:d2:6b:b5:f2:10:f0:e3:8b:48:56:df:9d:04:01:98:c8:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91115900000, serialNumber=9CDA71116E22812ADF60B7500F92D7E4CBB2B9B4 Validity Not Before: Jul 4 23:30:50 2025 GMT Not After : Jul 3 23:35:50 2026 GMT Subject: CN=A7C147F587C37DA6903449FF029210B5935FBD37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:1e:9e:e1:80:58:fd:ff:3d:cf:41:c1:35: ac:a1:1e:5d:03:2b:96:f5:b1:91:04:b3:46:38:6d: 70:5f:85:23:f9:0c:55:ef:2b:fd:d5:a2:59:c6:d8: 88:c7:f6:20:35:f6:3e:09:27:9a:48:93:69:9a:ad: 47:1d:89:b6:f7:cd:b1:bd:23:07:7c:cf:e6:64:21: 53:d0:fa:00:8e:dd:52:b9:93:f9:fd:07:23:1e:46: 6e:f9:fa:a6:59:8c:ca:71:ba:bd:aa:5a:88:b7:74: 9e:11:1d:f0:50:5e:f1:d9:dc:d1:e3:52:2d:cc:82: 2a:46:78:00:bc:af:87:09:ac:e7:6a:fe:cc:1b:e3: d7:b2:d0:70:52:6a:3f:bd:29:fa:04:e7:28:60:73: 06:cc:fd:b6:5d:cb:a0:55:87:55:34:67:e6:aa:fb: e2:50:05:5b:58:15:0d:52:c1:d5:53:95:dc:0e:a3: 1e:d8:8f:24:8d:46:67:f2:ef:18:f2:eb:f8:52:76: 8d:5a:ad:a8:29:58:59:10:e6:39:39:50:95:58:61: bf:38:16:5e:21:36:5e:78:3d:c2:2f:9d:84:43:f6: 68:d1:77:d0:73:4a:3c:34:dd:d6:73:ff:01:3c:21: 2b:07:65:01:cf:d2:ea:92:3b:f6:57:09:6e:22:85: 06:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C1:47:F5:87:C3:7D:A6:90:34:49:FF:02:92:10:B5:93:5F:BD:37 X509v3 Authority Key Identifier: keyid:9C:DA:71:11:6E:22:81:2A:DF:60:B7:50:0F:92:D7:E4:CB:B2:B9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/8/9CDA71116E22812ADF60B7500F92D7E4CBB2B9B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nNpxEW4igSrfYLdQD5LX5MuyubQ.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/8/323430343a336438303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:3d80::/32 Signature Algorithm: sha256WithRSAEncryption 57:16:52:e8:a3:21:32:c4:7a:7c:c3:56:dd:aa:48:dc:57:50: e0:d6:df:af:d8:44:19:7d:f1:d7:6d:a0:a2:40:92:3f:47:15: 0d:4f:a7:fa:a3:64:08:dd:5f:89:9f:37:aa:ab:ae:a8:97:a5: 1c:49:a7:e2:46:73:c1:d5:fa:24:0f:f1:68:26:e8:c5:fd:1b: c2:86:12:4b:0d:b5:12:d6:96:3f:7b:98:4a:4b:01:d3:f2:81: 7d:65:4f:b2:25:c4:f0:b9:40:13:60:73:f1:86:c0:81:ae:5b: d0:4b:45:22:c0:b3:38:2c:01:07:15:19:b2:f1:94:9e:1f:1c: 69:1b:46:2b:76:9e:e3:fb:e1:c3:38:e5:7e:ae:b5:8f:4a:2d: 35:82:74:b2:95:4d:05:8a:51:30:5a:1b:a9:6a:a4:c2:31:04: 9a:2d:6f:23:57:99:82:d1:e4:37:15:fc:f2:e3:d5:73:3c:54: 10:a3:1c:81:b9:ee:ef:bd:9f:81:d3:3e:36:40:88:9b:b1:f8: df:3e:c8:a7:b5:ec:7f:77:74:a1:81:c0:62:c2:c3:67:c1:93: 79:c9:da:02:74:b9:d0:e9:3f:a1:de:e8:b2:b1:4c:49:d9:d5: 2a:1b:07:c5:95:34:da:1c:d3:99:cd:71:cd:c1:ba:cc:64:c0: d8:bd:ad:2e -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgIUWr1Y0mu18hDw44tIVt+dBAGYyNAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMTE1OTAwMDAwMTEwLwYDVQQFEyg5Q0RBNzExMTZF MjI4MTJBREY2MEI3NTAwRjkyRDdFNENCQjJCOUI0MB4XDTI1MDcwNDIzMzA1MFoX DTI2MDcwMzIzMzU1MFowMzExMC8GA1UEAxMoQTdDMTQ3RjU4N0MzN0RBNjkwMzQ0 OUZGMDI5MjEwQjU5MzVGQkQzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXnHp7hgFj9/z3PQcE1rKEeXQMrlvWxkQSzRjhtcF+FI/kMVe8r/dWiWcbY iMf2IDX2PgknmkiTaZqtRx2JtvfNsb0jB3zP5mQhU9D6AI7dUrmT+f0HIx5Gbvn6 plmMynG6vapaiLd0nhEd8FBe8dnc0eNSLcyCKkZ4ALyvhwms52r+zBvj17LQcFJq P70p+gTnKGBzBsz9tl3LoFWHVTRn5qr74lAFW1gVDVLB1VOV3A6jHtiPJI1GZ/Lv GPLr+FJ2jVqtqClYWRDmOTlQlVhhvzgWXiE2Xng9wi+dhEP2aNF30HNKPDTd1nP/ ATwhKwdlAc/S6pI79lcJbiKFBukCAwEAAaOCAjIwggIuMB0GA1UdDgQWBBSnwUf1 h8N9ppA0Sf8CkhC1k1+9NzAfBgNVHSMEGDAWgBSc2nERbiKBKt9gt1APktfky7K5 tDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1 NWM5MWJlM2Y5ZC84LzlDREE3MTExNkUyMjgxMkFERjYwQjc1MDBGOTJEN0U0Q0JC MkI5QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL25OcHhFVzRpZ1NyZllMZFFENUxYNU11eXViUS5jZXIwgZcGCCsG AQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJwcy5hcmlu Lm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1YzkxYmUzZjlk LzgvMzIzNDMwMzQzYTMzNjQzODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAkBD2AMA0GCSqGSIb3DQEBCwUAA4IBAQBXFlLooyEyxHp8w1bd qkjcV1Dg1t+v2EQZffHXbaCiQJI/RxUNT6f6o2QI3V+Jnzeqq66ol6UcSafiRnPB 1fokD/FoJujF/RvChhJLDbUS1pY/e5hKSwHT8oF9ZU+yJcTwuUATYHPxhsCBrlvQ S0UiwLM4LAEHFRmy8ZSeHxxpG0Yrdp7j++HDOOV+rrWPSi01gnSylU0FilEwWhup aqTCMQSaLW8jV5mC0eQ3Ffzy49VzPFQQoxyBue7vvZ+B0z42QIibsfjfPsintex/ d3ShgcBiwsNnwZN5ydoCdLnQ6T+h3uiysUxJ2dUqGwfFlTTaHNOZzXHNwbrMZMDY va0u -----END CERTIFICATE-----Generated at Sun Jul 6 22:32:49 2025 by rpki-client