$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3330303a3a2f34382d3438203d3e203336323336.roa File: 323430333a323530303a3330303a3a2f34382d3438203d3e203336323336.roa (raw, json) Hash identifier: 8VHyDfWiJjVR9y1NM/DQauicIEKXkQut86odmuX/H/s= Subject key identifier: C4:2F:9D:51:D6:F7:B6:64:82:BB:64:38:5D:26:CA:C7:E8:9F:14:EB Certificate issuer: /CN=A91D85A20000/serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Certificate serial: 28E43A872E3D3FF0B681F8325DCA5AD54685128B Authority key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3330303a3a2f34382d3438203d3e203336323336.roa Signing time: Mon 04 Aug 2025 20:13:54 +0000 ROA not before: Mon 04 Aug 2025 20:08:54 +0000 ROA not after: Mon 03 Aug 2026 20:13:54 +0000 asID: 36236 IP address blocks: 2403:2500:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 11:39:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:e4:3a:87:2e:3d:3f:f0:b6:81:f8:32:5d:ca:5a:d5:46:85:12:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D85A20000, serialNumber=97E9BDF594AC7687BA4A16CA5C1923135CDF7186 Validity Not Before: Aug 4 20:08:54 2025 GMT Not After : Aug 3 20:13:54 2026 GMT Subject: CN=C42F9D51D6F7B66482BB64385D26CAC7E89F14EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:38:d6:89:85:21:09:75:cc:6d:22:ed:94:1b: 00:1d:b4:b9:d1:fb:33:49:d2:04:c2:36:70:a9:0f: ff:19:09:6a:2d:83:8e:31:60:fe:d0:3c:20:0a:23: 7b:7e:46:3c:ee:33:e4:c7:d6:07:a4:4a:f7:5e:1b: c4:c9:f5:91:30:67:95:1c:f7:e8:3f:26:0e:18:d6: ed:bf:8a:1a:96:a2:21:8f:7f:a1:44:e2:d1:14:20: 20:fb:c6:35:ab:51:6d:31:f1:22:45:8e:8c:22:a0: b8:a1:cc:13:87:c2:14:2a:27:04:94:50:87:43:1c: 28:fb:07:43:a6:21:ea:b3:bc:94:5e:9f:10:fb:36: 6b:fb:69:af:c7:fd:e3:77:4f:e2:c2:34:5a:72:67: d1:3c:95:d4:13:a8:21:2a:ad:70:d5:78:c7:7a:c4: aa:fb:3b:6c:13:a0:e9:79:ad:2c:f5:c9:dd:28:46: 73:e9:63:c0:ff:ae:6e:6f:8d:9d:ca:ac:55:cf:42: f4:1a:4e:93:09:51:22:79:fc:34:e3:c1:8b:8d:a3: 03:3f:aa:39:f8:62:0c:25:18:01:4c:69:df:f1:92: 2e:e7:ba:a4:9d:a0:ba:e1:c7:e5:41:0d:54:19:a3: ed:80:d2:2a:aa:86:b7:7c:6f:29:e2:67:4b:b5:cc: b5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2F:9D:51:D6:F7:B6:64:82:BB:64:38:5D:26:CA:C7:E8:9F:14:EB X509v3 Authority Key Identifier: keyid:97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/323430333a323530303a3330303a3a2f34382d3438203d3e203336323336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2500:300::/48 Signature Algorithm: sha256WithRSAEncryption b9:5f:42:4d:63:01:11:13:66:2f:9a:98:de:50:ad:cc:a0:cc: ea:43:c7:be:5e:b6:93:1a:89:d6:53:b4:ee:03:6b:7a:41:36: b1:a8:b8:66:c4:b4:b7:5f:2d:45:d5:08:7c:99:cf:28:00:17: db:8c:7a:34:ea:46:96:bb:e9:12:5b:4a:fb:29:4c:fc:ee:3e: cb:5e:8c:5f:f2:24:e6:65:56:aa:05:93:40:f4:bf:58:66:65: 9a:3f:f9:89:bc:76:e4:4a:9b:95:af:77:fa:3e:c0:69:67:10: b6:04:e8:71:27:51:3e:05:b2:91:b3:1d:3e:ea:35:ed:d4:f7: 96:49:2a:dd:ed:a1:e8:2e:5e:b8:d3:52:24:aa:be:79:b4:4a: 9f:39:5b:54:98:f2:9c:b6:c5:4a:5e:0a:3d:d5:5e:de:12:f7: 6d:7a:6d:a9:87:2e:29:8d:6c:36:ab:7e:18:ca:eb:85:15:4a: 97:b1:7d:96:c7:7c:05:d8:2d:86:85:a9:90:9c:e4:e0:72:d2: d4:b0:9e:09:77:9c:af:fc:a8:b4:bb:a0:80:8e:47:74:f4:fd: 3e:e1:88:c1:47:5e:e1:8e:02:1f:12:a9:87:b8:a5:ae:7d:41: 97:70:9f:df:c5:07:01:50:6a:c7:fe:ea:5c:c3:45:93:45:dd: bf:b6:ad:96 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgIUKOQ6hy49P/C2gfgyXcpa1UaFEoswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRDg1QTIwMDAwMTEwLwYDVQQFEyg5N0U5QkRGNTk0 QUM3Njg3QkE0QTE2Q0E1QzE5MjMxMzVDREY3MTg2MB4XDTI1MDgwNDIwMDg1NFoX DTI2MDgwMzIwMTM1NFowMzExMC8GA1UEAxMoQzQyRjlENTFENkY3QjY2NDgyQkI2 NDM4NUQyNkNBQzdFODlGMTRFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN841omFIQl1zG0i7ZQbAB20udH7M0nSBMI2cKkP/xkJai2DjjFg/tA8IAoj e35GPO4z5MfWB6RK914bxMn1kTBnlRz36D8mDhjW7b+KGpaiIY9/oUTi0RQgIPvG NatRbTHxIkWOjCKguKHME4fCFConBJRQh0McKPsHQ6Yh6rO8lF6fEPs2a/tpr8f9 43dP4sI0WnJn0TyV1BOoISqtcNV4x3rEqvs7bBOg6XmtLPXJ3ShGc+ljwP+ubm+N ncqsVc9C9BpOkwlRInn8NOPBi42jAz+qOfhiDCUYAUxp3/GSLue6pJ2guuHH5UEN VBmj7YDSKqqGt3xvKeJnS7XMtb8CAwEAAaOCAkUwggJBMB0GA1UdDgQWBBTEL51R 1ve2ZIK7ZDhdJsrH6J8U6zAfBgNVHSMEGDAWgBSX6b31lKx2h7pKFspcGSMTXN9x hjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2 ODY2MTA4NGI4Ni8zLzk3RTlCREY1OTRBQzc2ODdCQTRBMTZDQTVDMTkyMzEzNUNE RjcxODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL2wtbTk5WlNzZG9lNlNoYktYQmtqRTF6ZmNZWS5jZXIwgagGCCsG AQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTgyZDVkZTQxMDE4M2Y2ODY2MTA4NGI4 Ni8zLzMyMzQzMDMzM2EzMjM1MzAzMDNhMzMzMDMwM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzMzNjMyMzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDJQADADANBgkqhkiG9w0BAQsF AAOCAQEAuV9CTWMBERNmL5qY3lCtzKDM6kPHvl62kxqJ1lO07gNrekE2sai4ZsS0 t18tRdUIfJnPKAAX24x6NOpGlrvpEltK+ylM/O4+y16MX/Ik5mVWqgWTQPS/WGZl mj/5ibx25Eqbla93+j7AaWcQtgTocSdRPgWykbMdPuo17dT3lkkq3e2h6C5euNNS JKq+ebRKnzlbVJjynLbFSl4KPdVe3hL3bXptqYcuKY1sNqt+GMrrhRVKl7F9lsd8 BdgthoWpkJzk4HLS1LCeCXecr/yotLuggI5HdPT9PuGIwUde4Y4CHxKph7ilrn1B l3Cf38UHAVBqx/7qXMNFk0Xdv7atlg== -----END CERTIFICATE-----Generated at Sat Aug 23 22:34:55 2025 by rpki-client