$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/323030313a6466323a633163303a3a2f34382d3438203d3e20313531363432.roa File: 323030313a6466323a633163303a3a2f34382d3438203d3e20313531363432.roa (raw, json) Hash identifier: wMO/4SbCUV9+CN9d29h6S2e0f2Ndm8lCpoppiuA80iY= Subject key identifier: 08:B4:8F:FA:C0:6D:91:45:8F:9D:04:5B:A3:3C:18:78:05:A4:21:66 Certificate issuer: /CN=A91A9C1E0000/serialNumber=9E978E0F77E61BAECD0391B0734D62C72A8139FB Certificate serial: 6A31B27D609AB4777E1352BEC7D405BCCCABF37F Authority key identifier: 9E:97:8E:0F:77:E6:1B:AE:CD:03:91:B0:73:4D:62:C7:2A:81:39:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npeOD3fmG67NA5Gwc01ixyqBOfs.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/323030313a6466323a633163303a3a2f34382d3438203d3e20313531363432.roa Signing time: Mon 02 Jun 2025 13:33:14 +0000 ROA not before: Mon 02 Jun 2025 13:28:14 +0000 ROA not after: Mon 01 Jun 2026 13:33:14 +0000 asID: 151642 IP address blocks: 2001:df2:c1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/9E978E0F77E61BAECD0391B0734D62C72A8139FB.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/9E978E0F77E61BAECD0391B0734D62C72A8139FB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npeOD3fmG67NA5Gwc01ixyqBOfs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 21:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:31:b2:7d:60:9a:b4:77:7e:13:52:be:c7:d4:05:bc:cc:ab:f3:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9C1E0000, serialNumber=9E978E0F77E61BAECD0391B0734D62C72A8139FB Validity Not Before: Jun 2 13:28:14 2025 GMT Not After : Jun 1 13:33:14 2026 GMT Subject: CN=08B48FFAC06D91458F9D045BA33C187805A42166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:33:a7:43:81:1a:f9:d2:07:92:0b:b5:6b:ff: b1:6a:39:65:3c:1a:66:fe:1d:5b:5c:55:3b:9c:41: fb:d2:37:88:a3:33:71:39:57:eb:c0:1b:59:42:05: f0:98:94:62:51:db:cf:36:f7:cf:08:e7:f6:4f:0d: 89:58:da:88:8f:79:6a:60:31:52:a1:60:83:c4:dc: 95:71:24:8e:f4:a2:26:03:85:5a:f5:5a:05:b2:bd: 7c:0f:96:96:20:f8:e5:cb:ff:be:a8:98:c6:55:b4: 8b:ce:a9:9d:fc:2a:ae:d7:1a:85:36:25:f2:69:74: 17:6c:c5:a1:09:78:03:d6:12:99:59:de:32:84:f3: 55:fd:90:09:f4:02:fe:f0:c3:90:4e:d9:74:da:50: ea:fc:ee:04:ae:84:90:44:e4:01:80:1b:5d:48:89: cd:92:87:06:92:0b:7f:34:f6:80:12:0c:6b:a2:0a: f3:79:27:6d:d0:63:a8:c7:66:5d:f9:11:2b:5a:d7: 36:7a:20:90:e4:30:c5:5c:c0:16:81:67:de:c7:8a: 37:04:ac:bf:ea:92:f6:5c:46:40:a1:68:42:a7:16: 54:d6:44:ef:42:b7:09:6a:3c:4f:b2:26:58:b3:74: 1d:dd:0a:d0:50:19:f2:28:65:ef:6c:c4:b5:4d:c2: c0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B4:8F:FA:C0:6D:91:45:8F:9D:04:5B:A3:3C:18:78:05:A4:21:66 X509v3 Authority Key Identifier: keyid:9E:97:8E:0F:77:E6:1B:AE:CD:03:91:B0:73:4D:62:C7:2A:81:39:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/9E978E0F77E61BAECD0391B0734D62C72A8139FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npeOD3fmG67NA5Gwc01ixyqBOfs.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/323030313a6466323a633163303a3a2f34382d3438203d3e20313531363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c1c0::/48 Signature Algorithm: sha256WithRSAEncryption b0:00:75:0d:d6:e4:f5:d9:2f:98:d1:eb:29:f0:74:6c:07:4d: d0:ed:aa:77:ed:85:b8:41:07:38:0f:32:83:d7:90:32:e4:6c: 83:ea:8e:5d:51:73:c6:ec:d6:88:05:a4:2f:ac:93:84:a2:83: 70:03:48:e7:ad:9e:9f:3b:73:a6:44:cc:cb:d7:30:61:d6:50: a3:7f:10:98:95:db:53:11:e2:cf:69:8c:95:18:d0:0d:f4:bf: 3a:d7:6b:01:8b:7f:a8:5f:12:4c:01:dd:5c:1c:fc:f9:c9:c3: 89:ca:bb:ba:70:f3:c7:0c:a6:75:ab:a2:40:95:db:e1:2c:10: 11:ff:b1:59:8f:90:6a:6b:6f:dd:3a:c9:c2:92:da:48:0e:65: 28:e9:d4:2f:34:4d:8c:d3:b6:77:44:4d:71:35:7f:92:6c:ad: 19:07:60:b8:ca:8d:91:71:a2:c6:de:b4:29:fb:6d:3f:4a:bd: c4:9d:55:02:f2:89:3a:e1:9f:a8:49:4b:4d:36:96:bb:37:35: 1d:b5:7b:bc:f1:64:56:f3:e4:cc:c2:4e:80:b4:d0:d0:d7:76: 03:62:5d:26:76:dc:a8:be:ff:38:16:2b:46:c7:10:7f:80:59: 28:05:cc:0a:be:37:1a:e5:77:0b:a2:27:03:bf:11:16:9d:7b: 91:9b:7d:a8 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUajGyfWCatHd+E1K+x9QFvMyr838wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTlDMUUwMDAwMTEwLwYDVQQFEyg5RTk3OEUwRjc3 RTYxQkFFQ0QwMzkxQjA3MzRENjJDNzJBODEzOUZCMB4XDTI1MDYwMjEzMjgxNFoX DTI2MDYwMTEzMzMxNFowMzExMC8GA1UEAxMoMDhCNDhGRkFDMDZEOTE0NThGOUQw NDVCQTMzQzE4NzgwNUE0MjE2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANkzp0OBGvnSB5ILtWv/sWo5ZTwaZv4dW1xVO5xB+9I3iKMzcTlX68AbWUIF 8JiUYlHbzzb3zwjn9k8NiVjaiI95amAxUqFgg8TclXEkjvSiJgOFWvVaBbK9fA+W liD45cv/vqiYxlW0i86pnfwqrtcahTYl8ml0F2zFoQl4A9YSmVneMoTzVf2QCfQC /vDDkE7ZdNpQ6vzuBK6EkETkAYAbXUiJzZKHBpILfzT2gBIMa6IK83knbdBjqMdm XfkRK1rXNnogkOQwxVzAFoFn3seKNwSsv+qS9lxGQKFoQqcWVNZE70K3CWo8T7Im WLN0Hd0K0FAZ8ihl72zEtU3CwEUCAwEAAaOCAkcwggJDMB0GA1UdDgQWBBQItI/6 wG2RRY+dBFujPBh4BaQhZjAfBgNVHSMEGDAWgBSel44Pd+Ybrs0DkbBzTWLHKoE5 +zAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1 NWM5MWJlM2Y5ZC80LzlFOTc4RTBGNzdFNjFCQUVDRDAzOTFCMDczNEQ2MkM3MkE4 MTM5RkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL25wZU9EM2ZtRzY3TkE1R3djMDFpeHlxQk9mcy5jZXIwgaoGCCsG AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5 ZC80LzMyMzAzMDMxM2E2NDY2MzIzYTYzMzE2MzMwM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzEzNTMxMzYzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8sHAMA0GCSqGSIb3DQEB CwUAA4IBAQCwAHUN1uT12S+Y0esp8HRsB03Q7ap37YW4QQc4DzKD15Ay5GyD6o5d UXPG7NaIBaQvrJOEooNwA0jnrZ6fO3OmRMzL1zBh1lCjfxCYldtTEeLPaYyVGNAN 9L8612sBi3+oXxJMAd1cHPz5ycOJyru6cPPHDKZ1q6JAldvhLBAR/7FZj5Bqa2/d OsnCktpIDmUo6dQvNE2M07Z3RE1xNX+SbK0ZB2C4yo2RcaLG3rQp+20/Sr3EnVUC 8ok64Z+oSUtNNpa7NzUdtXu88WRW8+TMwk6AtNDQ13YDYl0mdtyovv84FitGxxB/ gFkoBcwKvjca5XcLoicDvxEWnXuRm32o -----END CERTIFICATE-----Generated at Sun Jun 15 07:49:01 2025 by rpki-client