$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34312d3431203d3e203336323336.roa File: 323430333a323530303a343030303a3a2f34312d3431203d3e203336323336.roa (raw, json) Hash identifier: /mn+YJpSFFuaCpqz8m3ryD8jG15HBSHeFkUvJ/vd5Hw= Subject key identifier: 00:CB:23:B4:23:BE:97:93:86:E1:54:81:41:59:E3:CF:5C:B6:48:9C Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 76313A766C9EB4A8CFE510FED551B77C22EE92C9 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34312d3431203d3e203336323336.roa Signing time: Mon 04 Aug 2025 20:13:54 +0000 ROA not before: Mon 04 Aug 2025 20:08:54 +0000 ROA not after: Mon 03 Aug 2026 20:13:54 +0000 asID: 36236 IP address blocks: 2403:2500:4000::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 14:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:31:3a:76:6c:9e:b4:a8:cf:e5:10:fe:d5:51:b7:7c:22:ee:92:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 4 20:08:54 2025 GMT Not After : Aug 3 20:13:54 2026 GMT Subject: CN=00CB23B423BE979386E154814159E3CF5CB6489C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:70:3a:f3:e6:fd:50:10:6a:4f:c8:a7:8a:6f: 0f:15:88:cd:db:48:b3:c5:12:ed:db:98:9e:7a:ff: 58:ab:e8:33:69:6c:df:45:a7:66:74:38:2e:e8:ae: 2c:33:26:f9:73:b8:19:64:08:98:14:01:20:fb:df: 39:8c:74:e8:97:5f:03:7e:16:a3:f5:64:1f:1f:32: 8d:9b:2e:5f:28:d2:78:74:68:5b:6c:e6:8e:69:0c: 4f:a4:57:b3:9c:56:9a:8b:09:e6:c3:82:a7:7a:c0: fe:51:a4:be:17:50:dc:8a:16:ff:24:1a:1e:8c:e2: 48:4a:f8:9f:7a:3b:14:c4:03:c0:5e:ce:37:4a:9d: c9:1e:35:c4:10:97:43:b5:33:28:e3:5b:f9:bc:03: 84:5f:71:dd:72:79:c2:41:2c:a0:47:1f:13:b4:76: 0a:2e:37:7f:78:42:1d:e4:30:b6:e7:c6:c8:fb:72: 81:4c:b4:fc:0e:02:4c:ce:90:b0:12:ee:32:8a:fe: 34:97:5d:a6:a7:ab:d4:a3:90:d2:6a:b2:e9:6e:03: 30:92:8f:b3:ff:47:6e:2e:30:b3:7d:8e:39:e3:1b: f2:32:92:97:20:3a:bf:a8:f8:6a:75:1c:2b:72:d6: c9:ad:2d:a5:02:a4:65:8b:3b:b0:92:75:c1:61:25: 9a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CB:23:B4:23:BE:97:93:86:E1:54:81:41:59:E3:CF:5C:B6:48:9C X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34312d3431203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:4000::/41 Signature Algorithm: sha256WithRSAEncryption 10:26:84:25:9f:ea:81:6d:00:e7:cd:d5:67:dd:84:12:6e:ac: a8:e2:c8:bd:e3:dd:6f:1a:a7:20:ad:84:84:78:5b:bd:17:08: a0:07:d3:aa:16:d8:72:b1:01:d0:63:3c:75:8e:bc:7c:77:43: 88:73:53:a8:80:10:8f:b8:9f:6f:d3:9a:ab:75:a3:ba:3c:43: 34:39:6e:0a:45:71:28:de:3f:a2:67:07:b9:05:81:64:fe:f0: 62:db:dd:e5:13:b9:3a:04:39:d7:27:e4:40:39:d0:58:7c:55: 23:aa:5f:c8:98:ea:ca:c3:f1:82:72:0f:33:15:3f:7f:a7:3d: 4b:32:78:b9:8a:1a:db:af:83:0f:d0:50:dc:2b:15:6c:35:d4: 09:cc:cc:1d:0f:96:b9:31:e9:2a:72:1a:2a:45:69:9d:43:84: 39:d5:22:d1:c1:92:d6:e9:4e:a2:e6:29:60:18:85:2d:65:56: 7c:70:d4:cc:18:50:74:e7:af:f5:65:fb:b2:4d:b8:34:5b:01: 80:c9:10:cb:6c:38:9a:a8:16:6c:3b:87:ea:3c:22:c8:4e:4c: 18:a8:19:14:f7:f8:66:e0:15:ae:7f:59:79:86:07:51:d2:4c: fb:4a:e1:17:9e:be:38:e5:30:27:fb:db:b8:d3:e5:d9:3a:e7: 4d:bc:91:30 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUdjE6dmyetKjP5RD+1VG3fCLukskwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgwNDIwMDg1NFoX DTI2MDgwMzIwMTM1NFowMzExMC8GA1UEAxMoMDBDQjIzQjQyM0JFOTc5Mzg2RTE1 NDgxNDE1OUUzQ0Y1Q0I2NDg5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlwOvPm/VAQak/Ip4pvDxWIzdtIs8US7duYnnr/WKvoM2ls30WnZnQ4Luiu LDMm+XO4GWQImBQBIPvfOYx06JdfA34Wo/VkHx8yjZsuXyjSeHRoW2zmjmkMT6RX s5xWmosJ5sOCp3rA/lGkvhdQ3IoW/yQaHoziSEr4n3o7FMQDwF7ON0qdyR41xBCX Q7UzKONb+bwDhF9x3XJ5wkEsoEcfE7R2Ci43f3hCHeQwtufGyPtygUy0/A4CTM6Q sBLuMor+NJddpqer1KOQ0mqy6W4DMJKPs/9Hbi4ws32OOeMb8jKSlyA6v6j4anUc K3LWya0tpQKkZYs7sJJ1wWElmgkCAwEAAaOCAkcwggJDMB0GA1UdDgQWBBQAyyO0 I76Xk4bhVIFBWePPXLZInDAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaoGCCsG AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzQzMDMwMzAzYTNhMmYzNDMxMmQzNDMx MjAzZDNlMjAzMzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcHJAMlAEAAMA0GCSqGSIb3DQEB CwUAA4IBAQAQJoQln+qBbQDnzdVn3YQSbqyo4si9491vGqcgrYSEeFu9FwigB9Oq FthysQHQYzx1jrx8d0OIc1OogBCPuJ9v05qrdaO6PEM0OW4KRXEo3j+iZwe5BYFk /vBi293lE7k6BDnXJ+RAOdBYfFUjql/ImOrKw/GCcg8zFT9/pz1LMni5ihrbr4MP 0FDcKxVsNdQJzMwdD5a5MekqchoqRWmdQ4Q51SLRwZLW6U6i5ilgGIUtZVZ8cNTM GFB056/1ZfuyTbg0WwGAyRDLbDiaqBZsO4fqPCLITkwYqBkU9/hm4BWuf1l5hgdR 0kz7SuEXnr445TAn+9u40+XZOudNvJEw -----END CERTIFICATE-----Generated at Thu Aug 7 05:08:09 2025 by rpki-client