$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34382e302f32342d3234203d3e203336323336.roa File: 34332e3234352e34382e302f32342d3234203d3e203336323336.roa (raw, json) Hash identifier: Sdr8Pph2zw1wq892uAdKKjskTFL5iq/cVgoS+XGliQw= Subject key identifier: E3:B9:88:25:74:E9:14:C2:F9:99:A7:3D:A8:C5:91:42:78:2B:B7:9A Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 3437497B30C1702A404DCF1A96350B78931AC33F Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34382e302f32342d3234203d3e203336323336.roa Signing time: Mon 04 Aug 2025 21:13:55 +0000 ROA not before: Mon 04 Aug 2025 21:08:55 +0000 ROA not after: Mon 03 Aug 2026 21:13:55 +0000 asID: 36236 IP address blocks: 43.245.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 03:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:37:49:7b:30:c1:70:2a:40:4d:cf:1a:96:35:0b:78:93:1a:c3:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 4 21:08:55 2025 GMT Not After : Aug 3 21:13:55 2026 GMT Subject: CN=E3B9882574E914C2F999A73DA8C59142782BB79A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:04:75:a9:57:95:f6:33:50:57:76:77:4e:92: fd:27:0e:ef:1d:f2:7a:f8:14:14:7d:06:cd:0c:6a: 08:53:5c:13:85:29:91:4c:17:3a:09:76:3b:5f:11: 23:21:fc:7c:3c:5d:9c:f3:94:39:5a:36:fc:ac:d7: 1d:f2:52:d4:c8:cd:f8:52:41:87:bb:a9:90:d2:64: 43:7f:6e:3e:1e:fa:59:bc:a0:6e:6d:9b:68:21:22: 55:ab:50:eb:be:f2:c1:b6:e0:eb:4b:29:e6:79:dd: b3:68:a0:c4:c6:35:12:f8:b2:cf:80:42:0b:6c:59: 47:53:02:f6:1c:d4:60:57:f5:5e:e2:a1:f1:2b:ea: 2a:74:66:f2:70:83:9b:81:92:b4:48:1f:af:a6:ce: 59:a9:35:bd:e7:2d:74:2c:5f:55:b0:b8:83:b8:f7: fd:65:51:b9:3f:05:a8:59:b2:d6:69:74:c4:1a:56: f4:12:9b:36:da:fb:4c:06:fd:16:98:1f:6a:c9:1c: 1c:a9:3c:b1:ae:ca:e4:7f:43:03:a5:e0:7a:01:8b: fa:ff:be:cd:0a:75:42:78:cf:0e:e1:14:e9:fa:d3: 3c:40:11:84:d1:b1:62:50:16:b6:c1:dc:c7:3f:03: e2:81:ee:8b:8a:00:95:38:7d:6b:94:fd:26:23:76: 2c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B9:88:25:74:E9:14:C2:F9:99:A7:3D:A8:C5:91:42:78:2B:B7:9A X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/34332e3234352e34382e302f32342d3234203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.48.0/24 Signature Algorithm: sha256WithRSAEncryption b2:98:be:e1:60:db:4f:dd:3b:cd:24:07:ad:51:ab:02:5c:f7: a6:ab:99:87:cd:64:a7:28:a3:38:50:f6:d8:49:69:f4:0b:ff: 2f:3f:84:1e:38:68:ba:d1:4e:bb:56:0b:8d:85:bd:2d:ac:5a: 11:55:2f:dc:3a:19:fb:98:63:56:47:71:fe:dc:a5:1a:09:fe: 72:f6:b7:5e:29:49:6c:3a:82:7e:c5:f8:b5:d1:de:be:fe:4e: 21:25:ee:e7:c3:35:0b:3f:22:c3:98:14:db:eb:52:ab:07:b3: e4:93:4a:ab:b5:28:6c:41:8a:2b:55:71:26:3a:b0:ee:74:29: 8f:4d:3a:03:87:29:60:6f:da:6c:49:f0:89:d1:aa:06:6d:b3: 61:d1:a7:84:8a:d1:87:a5:ca:9f:fe:30:81:f2:80:74:f9:52: 78:8e:af:ac:15:e7:b0:61:06:0f:1b:ad:ff:4f:3c:e8:58:3e: 68:71:3b:a2:9b:43:98:08:74:c2:0f:06:b1:47:5b:1b:77:30: 73:2f:22:e5:b0:82:35:bb:93:dc:b2:aa:7a:83:72:58:77:3d: 9d:10:c8:86:ff:8a:e7:54:6b:6a:33:ed:6a:2a:c5:ab:7e:e0: c3:9d:fa:b1:5c:6c:97:74:be:48:d7:de:c2:70:6a:1e:8b:ec: af:eb:81:a8 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUNDdJezDBcCpATc8aljULeJMawz8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgwNDIxMDg1NVoX DTI2MDgwMzIxMTM1NVowMzExMC8GA1UEAxMoRTNCOTg4MjU3NEU5MTRDMkY5OTlB NzNEQThDNTkxNDI3ODJCQjc5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkEdalXlfYzUFd2d06S/ScO7x3yevgUFH0GzQxqCFNcE4UpkUwXOgl2O18R IyH8fDxdnPOUOVo2/KzXHfJS1MjN+FJBh7upkNJkQ39uPh76Wbygbm2baCEiVatQ 677ywbbg60sp5nnds2igxMY1Eviyz4BCC2xZR1MC9hzUYFf1XuKh8SvqKnRm8nCD m4GStEgfr6bOWak1vectdCxfVbC4g7j3/WVRuT8FqFmy1ml0xBpW9BKbNtr7TAb9 FpgfaskcHKk8sa7K5H9DA6XgegGL+v++zQp1QnjPDuEU6frTPEARhNGxYlAWtsHc xz8D4oHui4oAlTh9a5T9JiN2LEsCAwEAAaOCAjowggI2MB0GA1UdDgQWBBTjuYgl dOkUwvmZpz2oxZFCeCu3mjAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgaAGCCsG AQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzM0MzMyZTMyMzQzNTJlMzQzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMz MzYzMjMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAAr9TAwDQYJKoZIhvcNAQELBQADggEBALKYvuFg 20/dO80kB61RqwJc96armYfNZKcoozhQ9thJafQL/y8/hB44aLrRTrtWC42FvS2s WhFVL9w6GfuYY1ZHcf7cpRoJ/nL2t14pSWw6gn7F+LXR3r7+TiEl7ufDNQs/IsOY FNvrUqsHs+STSqu1KGxBiitVcSY6sO50KY9NOgOHKWBv2mxJ8InRqgZts2HRp4SK 0Yelyp/+MIHygHT5UniOr6wV57BhBg8brf9PPOhYPmhxO6KbQ5gIdMIPBrFHWxt3 MHMvIuWwgjW7k9yyqnqDclh3PZ0QyIb/iudUa2oz7Woqxat+4MOd+rFcbJd0vkjX 3sJwah6L7K/rgag= -----END CERTIFICATE-----Generated at Fri Aug 8 19:27:43 2025 by rpki-client