$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa File: 323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa (raw, json) Hash identifier: RsvFLGtjJi8rbmZk5CM0COXbTDp8lO6KM667cKht3LY= Subject key identifier: 5A:94:AB:40:CD:EE:DC:8E:C1:36:7F:65:85:37:D8:0B:7F:BA:17:8B Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 0AD04A925DDE1C7A014906EE1D31CFA4F98A92A2 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa Signing time: Mon 04 Aug 2025 20:13:54 +0000 ROA not before: Mon 04 Aug 2025 20:08:54 +0000 ROA not after: Mon 03 Aug 2026 20:13:54 +0000 asID: 36236 IP address blocks: 2403:2500:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 14:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:d0:4a:92:5d:de:1c:7a:01:49:06:ee:1d:31:cf:a4:f9:8a:92:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 4 20:08:54 2025 GMT Not After : Aug 3 20:13:54 2026 GMT Subject: CN=5A94AB40CDEEDC8EC1367F658537D80B7FBA178B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:10:4a:a6:13:da:36:66:76:5d:0f:07:e3:18: 7e:cd:5b:2c:5d:d9:fa:ac:04:1d:e7:18:16:39:35: 46:d0:c8:ef:9b:0b:4e:d1:39:ac:28:49:23:9d:7c: 5a:b9:11:fe:35:c2:fa:04:05:86:5e:df:c4:06:ae: 84:f0:5e:6d:f0:c9:90:05:7e:eb:95:d7:12:80:39: 53:4a:01:f5:41:2d:f2:77:7d:f6:07:a3:fd:12:51: 21:3f:02:8f:84:f3:e9:11:fa:2f:42:fd:24:95:2f: da:69:95:99:12:db:92:07:0d:ce:0e:21:46:58:68: 5a:24:af:c4:67:59:09:aa:fc:61:93:c3:8a:cd:12: 75:87:64:4e:31:7c:9b:93:38:cc:c7:84:bd:0b:33: ff:37:b7:f8:3e:b9:18:16:b0:e7:0d:95:1f:ce:44: 6d:62:3c:d8:8a:86:33:b9:9b:e2:ef:b9:5f:8f:8a: 3a:ce:a6:8c:eb:c4:19:59:bf:7d:22:e4:aa:d7:1e: fd:93:49:8d:27:4d:73:ab:92:66:d4:03:7e:3e:c1: 8b:e4:c4:0a:29:95:d9:f3:84:d5:97:94:a6:a2:66: 42:2f:2c:cf:5a:99:bb:f9:0b:66:60:41:cf:92:3f: 9d:4a:00:27:b4:60:f5:9b:a1:03:14:1c:db:22:f8: e2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:94:AB:40:CD:EE:DC:8E:C1:36:7F:65:85:37:D8:0B:7F:BA:17:8B X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a343030303a3a2f34382d3438203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:4000::/48 Signature Algorithm: sha256WithRSAEncryption 04:3b:d5:ba:6b:de:cd:bf:97:b5:92:76:b7:7e:9f:42:b6:5d: ad:a1:13:62:6c:37:aa:0a:45:b1:8d:3b:f3:a7:ff:97:da:04: ed:d2:b7:1f:61:13:2d:2f:3b:f5:d7:a8:f3:24:cf:57:7a:8c: bc:89:a5:30:88:ec:90:54:49:51:3a:c8:6f:9d:f4:3f:cd:c0: e8:f1:a5:d9:58:6a:99:f5:e6:f9:d1:df:16:27:84:99:17:7a: e8:fa:4e:ab:ad:3a:bc:d2:1d:40:8f:a9:20:b6:56:ff:54:76: bf:e6:a8:e7:2a:b6:65:5c:d6:5f:e0:9a:1e:b0:fb:b4:3d:c9: e0:55:ff:28:a9:ef:53:22:28:60:b0:b3:c6:fd:b7:3a:86:3e: ce:da:ae:17:11:79:9d:11:8b:79:16:1f:e2:e6:d9:33:4f:70: b4:d2:04:c9:6b:58:81:00:d0:ed:ea:48:4e:e8:69:1a:f3:f0: 79:3e:09:44:cb:d6:18:6c:a3:01:ca:ec:cb:f6:9e:1d:e3:7c: d6:83:7a:ad:9b:a7:1c:2a:07:f9:2a:c9:ef:b8:a3:76:58:31: 07:b0:9b:46:ba:ae:f4:83:be:0d:66:6d:e2:67:90:e1:f3:93: e3:bb:bf:4c:1e:f7:bb:50:4a:f8:97:e2:ba:e1:62:52:c1:02: 20:e1:c0:6c -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUCtBKkl3eHHoBSQbuHTHPpPmKkqIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgwNDIwMDg1NFoX DTI2MDgwMzIwMTM1NFowMzExMC8GA1UEAxMoNUE5NEFCNDBDREVFREM4RUMxMzY3 RjY1ODUzN0Q4MEI3RkJBMTc4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMEQSqYT2jZmdl0PB+MYfs1bLF3Z+qwEHecYFjk1RtDI75sLTtE5rChJI518 WrkR/jXC+gQFhl7fxAauhPBebfDJkAV+65XXEoA5U0oB9UEt8nd99gej/RJRIT8C j4Tz6RH6L0L9JJUv2mmVmRLbkgcNzg4hRlhoWiSvxGdZCar8YZPDis0SdYdkTjF8 m5M4zMeEvQsz/ze3+D65GBaw5w2VH85EbWI82IqGM7mb4u+5X4+KOs6mjOvEGVm/ fSLkqtce/ZNJjSdNc6uSZtQDfj7Bi+TECimV2fOE1ZeUpqJmQi8sz1qZu/kLZmBB z5I/nUoAJ7Rg9ZuhAxQc2yL44h0CAwEAAaOCAkcwggJDMB0GA1UdDgQWBBRalKtA ze7cjsE2f2WFN9gLf7oXizAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaoGCCsG AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzQzMDMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMlAEAAMA0GCSqGSIb3DQEB CwUAA4IBAQAEO9W6a97Nv5e1kna3fp9Ctl2toRNibDeqCkWxjTvzp/+X2gTt0rcf YRMtLzv116jzJM9Xeoy8iaUwiOyQVElROshvnfQ/zcDo8aXZWGqZ9eb50d8WJ4SZ F3ro+k6rrTq80h1Aj6kgtlb/VHa/5qjnKrZlXNZf4JoesPu0PcngVf8oqe9TIihg sLPG/bc6hj7O2q4XEXmdEYt5Fh/i5tkzT3C00gTJa1iBANDt6khO6Gka8/B5PglE y9YYbKMByuzL9p4d43zWg3qtm6ccKgf5KsnvuKN2WDEHsJtGuq70g74NZm3iZ5Dh 85Pju79MHve7UEr4l+K64WJSwQIg4cBs -----END CERTIFICATE-----Generated at Thu Aug 7 04:39:03 2025 by rpki-client