$ rpki-client -vvf rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3136352e39392e3132342e302f32332d3233203d3e20343031363832.roa File: 3136352e39392e3132342e302f32332d3233203d3e20343031363832.roa (raw, json) Hash identifier: 85gBMcl8T92cShSttg2IE1+cL7srToN1WMPpMffNR/c= Subject key identifier: 1A:25:BA:90:64:58:C1:B0:C5:9B:B7:11:31:2B:85:39:FC:1B:D3:C7 Certificate issuer: /CN=A91301EE0000/serialNumber=3F67057F77B86603B6C216FF577CB3146053E4E5 Certificate serial: 527873E034895714360DCFCE3946B70780570AEB Authority key identifier: 3F:67:05:7F:77:B8:66:03:B6:C2:16:FF:57:7C:B3:14:60:53:E4:E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P2cFf3e4ZgO2whb_V3yzFGBT5OU.cer Subject info access: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3136352e39392e3132342e302f32332d3233203d3e20343031363832.roa Signing time: Fri 30 May 2025 20:26:40 +0000 ROA not before: Fri 30 May 2025 20:21:40 +0000 ROA not after: Fri 29 May 2026 20:26:40 +0000 asID: 401682 IP address blocks: 165.99.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3F67057F77B86603B6C216FF577CB3146053E4E5.crl rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3F67057F77B86603B6C216FF577CB3146053E4E5.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P2cFf3e4ZgO2whb_V3yzFGBT5OU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 10:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:78:73:e0:34:89:57:14:36:0d:cf:ce:39:46:b7:07:80:57:0a:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301EE0000, serialNumber=3F67057F77B86603B6C216FF577CB3146053E4E5 Validity Not Before: May 30 20:21:40 2025 GMT Not After : May 29 20:26:40 2026 GMT Subject: CN=1A25BA906458C1B0C59BB711312B8539FC1BD3C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:2e:3b:91:3b:43:19:5c:ff:50:c0:d2:ee:60: 9e:69:0c:77:56:f2:8b:09:1a:f6:15:7d:b6:63:ef: f2:37:18:c9:ff:d8:17:94:2b:4e:0a:f5:38:d3:6a: fb:63:93:82:be:95:c7:34:e8:0f:bc:d6:52:9f:72: 6a:38:75:77:27:4c:c2:e2:48:4e:2c:7d:0c:bb:62: 13:e7:ae:9b:73:ed:d1:aa:ff:cc:ac:70:01:1f:64: 14:98:ab:33:88:af:4f:4c:71:e6:24:cc:56:0f:de: 37:27:b5:dd:88:03:93:93:b4:05:a6:4b:90:1e:91: ba:a2:f0:0f:33:83:78:4d:73:92:10:f6:cf:e3:a6: af:b8:70:b4:02:8d:23:28:06:f3:2b:e0:c2:a4:1d: 4a:04:00:ea:c1:62:1a:82:46:01:74:cd:4f:57:7f: 14:85:c5:9c:e6:6b:19:72:5e:6c:2b:16:7d:ea:ba: 8f:09:43:76:07:58:f6:01:ed:80:39:30:09:eb:64: 7d:e4:df:88:94:11:62:18:7e:32:cf:b1:7c:4f:5b: 76:19:5b:62:4a:9d:4b:02:07:9c:71:9a:4e:6d:0b: e3:d6:8c:80:34:71:95:04:cd:3b:e7:76:0f:bc:36: 05:ca:88:b0:c3:09:bd:60:f9:a8:7b:47:93:48:cb: b8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:25:BA:90:64:58:C1:B0:C5:9B:B7:11:31:2B:85:39:FC:1B:D3:C7 X509v3 Authority Key Identifier: keyid:3F:67:05:7F:77:B8:66:03:B6:C2:16:FF:57:7C:B3:14:60:53:E4:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3F67057F77B86603B6C216FF577CB3146053E4E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P2cFf3e4ZgO2whb_V3yzFGBT5OU.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/c5da413e44384d7b87e0a74b42ca1867/0/3136352e39392e3132342e302f32332d3233203d3e20343031363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.99.124.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:12:a8:e2:ed:38:b5:54:3c:e4:53:28:d1:b3:31:b9:30:fc: 96:5f:a6:db:06:61:a1:91:16:35:fa:92:53:fd:75:6b:04:ab: 8a:01:2b:28:18:b3:07:0d:6d:9e:9e:7b:4f:82:0b:28:27:42: 6c:46:3b:ea:b5:48:0a:a8:f3:9f:89:65:39:79:08:3a:5a:26: 5c:9f:cc:61:4a:2f:3c:ae:ee:82:1f:5f:10:61:d2:b6:35:ba: ee:5e:24:fe:be:11:93:a6:da:dc:7e:4f:b4:a5:b0:b2:00:79: 77:c4:b2:3d:ed:e1:e2:23:96:4a:db:a4:38:ff:15:61:32:e2: 16:f5:e0:37:35:87:8a:da:d8:da:dc:41:4f:26:d4:06:e1:0d: 03:ac:97:e1:47:c5:fd:b0:78:bd:af:81:a4:b2:44:28:42:cd: 9f:5e:35:25:19:19:e0:ad:9c:d8:8e:9f:c2:65:69:98:92:15: 1b:ed:5d:48:19:e9:0a:f5:20:97:ce:92:b0:62:bb:ad:a1:d3: a5:ae:75:11:4a:15:88:33:96:93:a9:3d:38:e6:53:44:cb:c4: 2a:b1:25:4e:ad:1c:a0:45:db:b1:6b:0e:ca:8e:f9:0e:04:1d: 26:3a:38:ec:18:5c:f1:a5:fa:17:76:ea:16:0e:7e:f1:a9:0e: 69:b9:2a:b6 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUUnhz4DSJVxQ2Dc/OOUa3B4BXCuswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzAxRUUwMDAwMTEwLwYDVQQFEygzRjY3MDU3Rjc3 Qjg2NjAzQjZDMjE2RkY1NzdDQjMxNDYwNTNFNEU1MB4XDTI1MDUzMDIwMjE0MFoX DTI2MDUyOTIwMjY0MFowMzExMC8GA1UEAxMoMUEyNUJBOTA2NDU4QzFCMEM1OUJC NzExMzEyQjg1MzlGQzFCRDNDNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPEuO5E7Qxlc/1DA0u5gnmkMd1byiwka9hV9tmPv8jcYyf/YF5QrTgr1ONNq +2OTgr6VxzToD7zWUp9yajh1dydMwuJITix9DLtiE+eum3Pt0ar/zKxwAR9kFJir M4ivT0xx5iTMVg/eNye13YgDk5O0BaZLkB6RuqLwDzODeE1zkhD2z+Omr7hwtAKN IygG8yvgwqQdSgQA6sFiGoJGAXTNT1d/FIXFnOZrGXJebCsWfeq6jwlDdgdY9gHt gDkwCetkfeTfiJQRYhh+Ms+xfE9bdhlbYkqdSwIHnHGaTm0L49aMgDRxlQTNO+d2 D7w2BcqIsMMJvWD5qHtHk0jLuE8CAwEAAaOCAj4wggI6MB0GA1UdDgQWBBQaJbqQ ZFjBsMWbtxExK4U5/BvTxzAfBgNVHSMEGDAWgBQ/ZwV/d7hmA7bCFv9XfLMUYFPk 5TAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS9jNWRhNDEzZTQ0Mzg0ZDdiODdlMGE3 NGI0MmNhMTg2Ny8wLzNGNjcwNTdGNzdCODY2MDNCNkMyMTZGRjU3N0NCMzE0NjA1 M0U0RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3 QzcyRkQxRkYyL1AyY0ZmM2U0WmdPMndoYl9WM3l6RkdCVDVPVS5jZXIwgaQGCCsG AQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS9jNWRhNDEzZTQ0Mzg0ZDdiODdlMGE3NGI0MmNhMTg2 Ny8wLzMxMzYzNTJlMzkzOTJlMzEzMjM0MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIw MzQzMDMxMzYzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBpWN8MA0GCSqGSIb3DQEBCwUAA4IBAQAa Eqji7Ti1VDzkUyjRszG5MPyWX6bbBmGhkRY1+pJT/XVrBKuKASsoGLMHDW2enntP ggsoJ0JsRjvqtUgKqPOfiWU5eQg6WiZcn8xhSi88ru6CH18QYdK2NbruXiT+vhGT ptrcfk+0pbCyAHl3xLI97eHiI5ZK26Q4/xVhMuIW9eA3NYeK2tja3EFPJtQG4Q0D rJfhR8X9sHi9r4GkskQoQs2fXjUlGRngrZzYjp/CZWmYkhUb7V1IGekK9SCXzpKw YrutodOlrnURShWIM5aTqT045lNEy8QqsSVOrRygRduxaw7KjvkOBB0mOjjsGFzx pfoXduoWDn7xqQ5puSq2 -----END CERTIFICATE-----Generated at Sun Jun 8 01:37:57 2025 by rpki-client