$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/323030313a6466323a633163303a3a2f34382d3438203d3e20313531363432.roa File: 323030313a6466323a633163303a3a2f34382d3438203d3e20313531363432.roa (raw, json) Hash identifier: co/JXev1XeNEns368eJzfGNCuCnraLDGBFatvyKS0MU= Subject key identifier: 67:B7:D8:0A:FC:CA:DA:4C:0C:E1:6D:F0:30:8B:29:5A:C0:6F:AE:0A Certificate issuer: /CN=A91A9C1E0000/serialNumber=9E978E0F77E61BAECD0391B0734D62C72A8139FB Certificate serial: 0D0D96CFB4F03AD9BBB0ABA1BDE97FC5970E34AE Authority key identifier: 9E:97:8E:0F:77:E6:1B:AE:CD:03:91:B0:73:4D:62:C7:2A:81:39:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npeOD3fmG67NA5Gwc01ixyqBOfs.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/323030313a6466323a633163303a3a2f34382d3438203d3e20313531363432.roa Signing time: Mon 01 Jul 2024 12:39:57 +0000 ROA not before: Mon 01 Jul 2024 12:34:57 +0000 ROA not after: Mon 30 Jun 2025 12:39:57 +0000 asID: 151642 IP address blocks: 2001:df2:c1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/9E978E0F77E61BAECD0391B0734D62C72A8139FB.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/9E978E0F77E61BAECD0391B0734D62C72A8139FB.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npeOD3fmG67NA5Gwc01ixyqBOfs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Oct 2024 15:35:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0d:96:cf:b4:f0:3a:d9:bb:b0:ab:a1:bd:e9:7f:c5:97:0e:34:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9C1E0000/serialNumber=9E978E0F77E61BAECD0391B0734D62C72A8139FB Validity Not Before: Jul 1 12:34:57 2024 GMT Not After : Jun 30 12:39:57 2025 GMT Subject: CN=67B7D80AFCCADA4C0CE16DF0308B295AC06FAE0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4c:7d:e3:3d:88:7e:98:ea:50:55:e0:cf:b3: 8f:8f:37:1c:09:25:79:7d:d1:cc:e6:36:1e:43:00: f8:f3:8b:0b:53:8e:b4:3b:67:8b:fd:c3:80:1a:3f: 21:7f:b4:26:e5:ce:42:ef:29:fd:86:c4:80:a2:86: ab:3b:bd:46:98:45:21:ef:2f:18:72:cf:c8:91:48: 3e:b3:17:4c:9a:33:0b:af:08:3f:1b:19:81:1d:b4: 59:69:8c:85:d3:65:a1:34:99:15:03:c0:9e:fb:ca: 96:a5:e2:1e:0c:ea:c1:70:ce:1e:93:a6:6f:16:3f: 14:d1:08:16:55:39:94:bb:eb:00:26:45:49:55:4e: 29:b9:c0:ed:4d:bf:e9:3e:2a:14:9e:0b:69:34:8c: 44:da:1e:92:88:dc:07:b6:39:dd:b8:27:08:12:12: ef:be:bc:8a:fc:40:7f:dd:d1:4e:1a:60:13:ae:ce: 6c:4c:2a:41:8b:6c:1f:78:8d:ad:aa:24:75:8e:23: 40:78:15:b7:43:26:89:67:15:4e:b1:2c:a4:6e:b3: 4f:2e:a4:95:cc:83:e6:1d:8d:90:63:6b:65:9d:54: 05:c9:66:10:19:fd:0c:81:2e:ec:a0:11:56:85:67: 93:ae:ec:77:29:1f:64:17:ed:da:52:2c:c8:a0:4d: ac:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B7:D8:0A:FC:CA:DA:4C:0C:E1:6D:F0:30:8B:29:5A:C0:6F:AE:0A X509v3 Authority Key Identifier: keyid:9E:97:8E:0F:77:E6:1B:AE:CD:03:91:B0:73:4D:62:C7:2A:81:39:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/9E978E0F77E61BAECD0391B0734D62C72A8139FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npeOD3fmG67NA5Gwc01ixyqBOfs.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/4/323030313a6466323a633163303a3a2f34382d3438203d3e20313531363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c1c0::/48 Signature Algorithm: sha256WithRSAEncryption a5:e9:e3:49:98:6a:e1:5b:0f:f0:87:73:ab:49:ad:6a:28:c5: f3:d2:79:a3:26:86:de:f0:7f:d9:1d:bc:cc:bc:6f:c3:43:cf: be:7c:e7:04:b1:f7:2e:9d:52:87:d8:e7:82:3c:e5:a7:15:af: c5:a7:8b:2a:42:17:5c:51:7e:d2:34:a8:7e:31:a7:2f:ea:f4: fb:20:7c:bb:dc:21:53:30:f4:28:32:a9:84:bc:a9:ee:9b:dd: 0f:3a:68:58:0e:0f:34:ee:f9:79:05:be:d8:76:1a:20:7f:2b: 55:ce:fe:68:94:90:6e:59:31:53:4e:49:d3:44:f9:fe:54:ae: 78:c2:a0:50:36:ed:38:83:f3:bb:5f:cb:cb:d2:76:ec:49:a6: 4f:c7:22:6a:61:e3:84:a6:40:ad:8f:28:96:9d:55:ac:80:56: 8e:b1:f7:5f:31:b6:3d:bc:ef:d8:2a:cb:d8:e3:91:18:db:87: d5:ce:45:5b:56:0c:da:a9:d8:95:a4:f7:7a:97:5d:fe:9d:28: 85:3b:9c:87:29:af:c9:26:82:b8:6a:a4:2a:27:20:47:5d:21: 0b:b9:e3:b8:d5:c6:68:5d:35:80:58:06:31:29:54:6d:40:45: dc:35:cc:15:38:d3:aa:2d:b6:ec:8c:2c:c6:fe:d3:19:7d:d6: 48:2a:12:bd -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUDQ2Wz7TwOtm7sKuhvel/xZcONK4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQTlDMUUwMDAwMTEwLwYDVQQFEyg5RTk3OEUwRjc3 RTYxQkFFQ0QwMzkxQjA3MzRENjJDNzJBODEzOUZCMB4XDTI0MDcwMTEyMzQ1N1oX DTI1MDYzMDEyMzk1N1owMzExMC8GA1UEAxMoNjdCN0Q4MEFGQ0NBREE0QzBDRTE2 REYwMzA4QjI5NUFDMDZGQUUwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFMfeM9iH6Y6lBV4M+zj483HAkleX3RzOY2HkMA+POLC1OOtDtni/3DgBo/ IX+0JuXOQu8p/YbEgKKGqzu9RphFIe8vGHLPyJFIPrMXTJozC68IPxsZgR20WWmM hdNloTSZFQPAnvvKlqXiHgzqwXDOHpOmbxY/FNEIFlU5lLvrACZFSVVOKbnA7U2/ 6T4qFJ4LaTSMRNoekojcB7Y53bgnCBIS7768ivxAf93RThpgE67ObEwqQYtsH3iN raokdY4jQHgVt0MmiWcVTrEspG6zTy6klcyD5h2NkGNrZZ1UBclmEBn9DIEu7KAR VoVnk67sdykfZBft2lIsyKBNrNUCAwEAAaOCAkcwggJDMB0GA1UdDgQWBBRnt9gK /MraTAzhbfAwiylawG+uCjAfBgNVHSMEGDAWgBSel44Pd+Ybrs0DkbBzTWLHKoE5 +zAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1 NWM5MWJlM2Y5ZC80LzlFOTc4RTBGNzdFNjFCQUVDRDAzOTFCMDczNEQ2MkM3MkE4 MTM5RkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3 QzcyRkQxRkYyL25wZU9EM2ZtRzY3TkE1R3djMDFpeHlxQk9mcy5jZXIwgaoGCCsG AQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5jOi8vcnBraS1ycHMuYXJp bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5 ZC80LzMyMzAzMDMxM2E2NDY2MzIzYTYzMzE2MzMwM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzEzNTMxMzYzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8sHAMA0GCSqGSIb3DQEB CwUAA4IBAQCl6eNJmGrhWw/wh3OrSa1qKMXz0nmjJobe8H/ZHbzMvG/DQ8++fOcE sfcunVKH2OeCPOWnFa/Fp4sqQhdcUX7SNKh+Macv6vT7IHy73CFTMPQoMqmEvKnu m90POmhYDg807vl5Bb7YdhogfytVzv5olJBuWTFTTknTRPn+VK54wqBQNu04g/O7 X8vL0nbsSaZPxyJqYeOEpkCtjyiWnVWsgFaOsfdfMbY9vO/YKsvY45EY24fVzkVb VgzaqdiVpPd6l13+nSiFO5yHKa/JJoK4aqQqJyBHXSELueO41cZoXTWAWAYxKVRt QEXcNcwVONOqLbbsjCzG/tMZfdZIKhK9 -----END CERTIFICATE-----Generated at Sun Oct 20 17:01:42 2024 by rpki-client on console.sobornost.net