$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa File: 323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa (raw, json) Hash identifier: OS8Y6SI4fQuMYyqduk5Dxd6WBLjqJR+pc697uNpdxgk= Subject key identifier: 25:A7:DE:8A:02:B4:EE:27:99:8E:93:6D:5B:4F:6F:B9:7B:68:0F:13 Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 2A07169F805850DE3767B07B1A6492A2C014D7A1 Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa Signing time: Mon 04 Aug 2025 20:13:54 +0000 ROA not before: Mon 04 Aug 2025 20:08:54 +0000 ROA not after: Mon 03 Aug 2026 20:13:54 +0000 asID: 36236 IP address blocks: 2403:2500:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 03:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:07:16:9f:80:58:50:de:37:67:b0:7b:1a:64:92:a2:c0:14:d7:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 4 20:08:54 2025 GMT Not After : Aug 3 20:13:54 2026 GMT Subject: CN=25A7DE8A02B4EE27998E936D5B4F6FB97B680F13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0f:b3:12:99:48:dc:91:62:2a:06:d4:31:7c: a1:27:2d:df:b8:fd:fc:4a:07:d8:bd:de:ae:20:b1: 85:82:f9:8c:79:f4:fc:6e:9c:ba:e6:f7:77:dd:66: 73:fe:13:8c:5f:7d:68:d8:ee:02:d1:46:5c:21:ea: 9e:97:e6:ca:24:22:c0:ba:45:68:c9:c4:11:46:44: 31:09:f6:11:df:ac:38:81:16:0a:c5:2b:88:76:25: 8a:ba:5e:1e:18:bb:2b:20:5a:f4:2d:0f:a1:37:a8: 57:62:e5:06:c4:0e:12:df:ce:7a:5c:27:8a:76:cd: a6:1a:f1:2c:65:99:71:65:3a:89:78:e3:f3:b7:f1: 75:b3:da:3a:05:7d:be:55:0b:3c:b8:08:b1:59:f8: 1e:b1:0c:25:46:06:05:31:21:e1:56:47:cb:f9:21: 00:f7:4a:a0:c6:29:1c:7e:6b:f0:42:26:fb:b5:5f: ed:f0:5f:16:db:f0:d2:42:77:f3:bb:6a:95:92:22: d7:92:9c:c0:4a:59:68:7a:3c:95:76:40:bc:4a:6e: 08:b0:3a:0e:10:bf:d5:a3:d1:89:45:d9:6c:e6:03: 58:ce:ac:b5:c4:a5:2f:d0:74:19:a4:84:61:9b:04: 71:32:00:fc:47:93:19:e8:dc:70:8c:11:e4:8c:ae: 76:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A7:DE:8A:02:B4:EE:27:99:8E:93:6D:5B:4F:6F:B9:7B:68:0F:13 X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a383030303a3a2f34382d3438203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:8000::/48 Signature Algorithm: sha256WithRSAEncryption 66:fc:ff:6a:e3:63:40:84:aa:3b:65:5e:e2:22:9d:78:76:bc: e3:cc:c5:57:32:56:1a:4f:bf:41:9d:ee:74:53:14:89:b1:8f: 86:09:c4:16:f5:4e:d7:ee:33:2e:8c:c4:d7:3f:01:7c:16:9f: 37:41:ae:f5:04:e1:a8:52:d0:c0:2b:c9:b4:a7:4f:f7:27:39: 38:69:52:cb:d9:91:92:fa:7c:3e:45:1a:7c:d0:21:4b:8e:23: 1c:05:2e:48:ff:50:c9:0f:fc:fb:72:05:35:d7:cf:ff:07:26: 50:dd:bb:bd:68:76:23:78:e0:cc:58:dc:b2:d0:d0:a8:eb:a0: 65:38:c5:db:9a:ed:62:22:be:a0:df:09:3c:f3:45:0b:cf:2f: d8:f8:c6:88:e1:da:3c:80:c0:69:b0:e6:fb:6f:fd:d7:3b:00: 4c:c5:41:da:2b:89:43:58:04:e3:93:a3:0c:c5:ef:61:a8:6c: fd:5c:e3:8d:84:c4:9a:31:df:2a:cd:04:88:b2:85:0a:cf:25: 2a:1b:7b:67:13:0a:bb:44:02:1a:fc:0e:69:a7:9d:fe:3e:55: de:5c:87:27:1e:fc:59:16:8e:eb:7e:02:c4:b5:bf:2f:db:25: c5:80:f3:81:86:88:eb:45:e9:02:a8:95:94:41:1c:bb:57:44: 11:f7:86:b4 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUKgcWn4BYUN43Z7B7GmSSosAU16EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgwNDIwMDg1NFoX DTI2MDgwMzIwMTM1NFowMzExMC8GA1UEAxMoMjVBN0RFOEEwMkI0RUUyNzk5OEU5 MzZENUI0RjZGQjk3QjY4MEYxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUPsxKZSNyRYioG1DF8oSct37j9/EoH2L3eriCxhYL5jHn0/G6cuub3d91m c/4TjF99aNjuAtFGXCHqnpfmyiQiwLpFaMnEEUZEMQn2Ed+sOIEWCsUriHYlirpe Hhi7KyBa9C0PoTeoV2LlBsQOEt/OelwninbNphrxLGWZcWU6iXjj87fxdbPaOgV9 vlULPLgIsVn4HrEMJUYGBTEh4VZHy/khAPdKoMYpHH5r8EIm+7Vf7fBfFtvw0kJ3 87tqlZIi15KcwEpZaHo8lXZAvEpuCLA6DhC/1aPRiUXZbOYDWM6stcSlL9B0GaSE YZsEcTIA/EeTGejccIwR5IyudqMCAwEAAaOCAkcwggJDMB0GA1UdDgQWBBQlp96K ArTuJ5mOk21bT2+5e2gPEzAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaoGCCsG AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzgzMDMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMlAIAAMA0GCSqGSIb3DQEB CwUAA4IBAQBm/P9q42NAhKo7ZV7iIp14drzjzMVXMlYaT79Bne50UxSJsY+GCcQW 9U7X7jMujMTXPwF8Fp83Qa71BOGoUtDAK8m0p0/3Jzk4aVLL2ZGS+nw+RRp80CFL jiMcBS5I/1DJD/z7cgU118//ByZQ3bu9aHYjeODMWNyy0NCo66BlOMXbmu1iIr6g 3wk880ULzy/Y+MaI4do8gMBpsOb7b/3XOwBMxUHaK4lDWATjk6MMxe9hqGz9XOON hMSaMd8qzQSIsoUKzyUqG3tnEwq7RAIa/A5pp53+PlXeXIcnHvxZFo7rfgLEtb8v 2yXFgPOBhojrRekCqJWUQRy7V0QR94a0 -----END CERTIFICATE-----Generated at Fri Aug 8 20:54:49 2025 by rpki-client