$ rpki-client -vvf rpki.co/repo/Simple/2/323030313a6466323a343563303a3a2f34372d3438203d3e203332353935.roa File: 323030313a6466323a343563303a3a2f34372d3438203d3e203332353935.roa (raw, json) Hash identifier: QU5WvRWUdaLX1V7Nz2kZE7cb2+mCjg3K98yHwPB/BSc= Subject key identifier: F2:CE:F5:E3:22:E4:31:54:69:7C:82:39:9E:57:A1:46:7D:41:3D:1C Certificate issuer: /CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Certificate serial: 5DC3790B63A1FC8D4DF5758667B1B78BD03911A7 Authority key identifier: 70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject info access: rsync://rpki.co/repo/Simple/2/323030313a6466323a343563303a3a2f34372d3438203d3e203332353935.roa Signing time: Fri 22 Mar 2024 15:08:17 +0000 ROA not before: Fri 22 Mar 2024 15:03:17 +0000 ROA not after: Fri 21 Mar 2025 15:08:17 +0000 asID: 32595 IP address blocks: 2001:df2:45c0::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c3:79:0b:63:a1:fc:8d:4d:f5:75:86:67:b1:b7:8b:d0:39:11:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF50000/serialNumber=70610026C7F2A04E163D4FE5531D7BC46E7547C9 Validity Not Before: Mar 22 15:03:17 2024 GMT Not After : Mar 21 15:08:17 2025 GMT Subject: CN=F2CEF5E322E43154697C82399E57A1467D413D1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:51:9e:e6:0f:90:52:4c:23:6c:14:3e:4a:25: 88:a1:05:07:43:35:76:7d:0f:b3:5a:04:cb:b1:dc: 5f:25:79:9c:36:d8:28:6f:1a:95:f6:44:07:54:00: 05:8b:ce:7b:19:d4:9c:25:e3:b2:08:d8:d4:9d:13: ec:a8:51:73:01:f5:0d:03:b3:d6:1e:40:4c:56:75: 18:b6:0d:2f:3f:51:6b:79:23:e7:91:d1:c5:af:eb: e2:bf:b6:a2:2c:4f:62:6a:11:35:61:01:dd:03:52: 95:ce:d7:28:03:1c:fb:9e:98:dd:48:2e:33:54:77: ee:e1:e6:5c:f9:b5:c3:bf:86:85:7f:73:3c:4b:f7: 54:9a:dc:88:c0:95:dc:a0:00:ab:cd:ac:8b:a4:be: 13:16:9c:1b:f9:a1:cb:3c:14:e3:10:53:ef:98:73: 6d:b7:8a:01:41:d7:76:7d:b6:51:1b:eb:9e:bf:74: 8e:84:8c:e7:30:95:6e:41:0f:0f:52:3a:8e:5e:45: 35:ad:3b:d5:3c:af:03:66:87:6e:0f:4b:a3:37:f9: 36:d4:ff:69:9d:af:09:4c:67:26:db:74:df:9b:95: 5f:20:ad:0e:03:6c:82:2c:1c:ee:b5:82:21:ce:f6: d6:a0:f3:b9:a4:61:59:b9:95:51:74:73:c6:c6:47: 41:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CE:F5:E3:22:E4:31:54:69:7C:82:39:9E:57:A1:46:7D:41:3D:1C X509v3 Authority Key Identifier: keyid:70:61:00:26:C7:F2:A0:4E:16:3D:4F:E5:53:1D:7B:C4:6E:75:47:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/Simple/2/70610026C7F2A04E163D4FE5531D7BC46E7547C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGEAJsfyoE4WPU_lUx17xG51R8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/Simple/2/323030313a6466323a343563303a3a2f34372d3438203d3e203332353935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:45c0::/47 Signature Algorithm: sha256WithRSAEncryption 0b:c2:ca:96:32:40:cc:b2:92:77:e7:18:fe:d4:09:74:b0:fa: fc:a5:a1:68:0e:72:a5:77:f4:a1:bd:22:be:5d:f9:b4:19:b3: 26:f1:78:8a:27:c0:12:73:24:db:f5:16:39:0d:46:9a:3d:40: 3b:8d:3a:5a:28:16:b0:bd:03:45:68:41:95:0f:56:a6:d0:7e: 9f:9e:98:91:e4:d3:f0:20:69:14:02:32:cc:1b:b6:cf:d8:ee: 90:a4:79:d3:00:ab:be:c5:cd:21:7c:42:14:a7:62:fc:56:f6: de:0f:d3:36:a7:6d:13:11:eb:08:52:4b:0a:9c:4c:ee:20:4b: 0d:45:bd:64:ab:a2:7f:2c:02:75:2e:59:ce:bd:aa:f9:da:84: 53:69:d3:c3:cf:e9:65:bf:d6:d8:e9:95:e5:96:79:18:f5:af: b1:b9:85:eb:e7:8a:db:90:3a:26:3f:81:ee:c3:0c:96:5f:cc: 92:5f:ed:d0:31:98:18:c4:5a:05:75:eb:d0:59:6e:fd:d8:dd: a6:d2:00:84:a2:3f:81:3a:21:5a:60:a8:38:2a:3d:de:c9:ba: 14:2f:07:ed:7d:f5:dd:f0:1e:69:ef:1d:a0:36:4f:5c:75:20: 97:cc:11:12:18:af:25:49:f2:eb:9f:a0:89:28:2b:b1:8d:32: 5c:38:32:81 -----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgIUXcN5C2Oh/I1N9XWGZ7G3i9A5EacwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRThERjUwMDAwMTEwLwYDVQQFEyg3MDYxMDAyNkM3 RjJBMDRFMTYzRDRGRTU1MzFEN0JDNDZFNzU0N0M5MB4XDTI0MDMyMjE1MDMxN1oX DTI1MDMyMTE1MDgxN1owMzExMC8GA1UEAxMoRjJDRUY1RTMyMkU0MzE1NDY5N0M4 MjM5OUU1N0ExNDY3RDQxM0QxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJxRnuYPkFJMI2wUPkoliKEFB0M1dn0Ps1oEy7HcXyV5nDbYKG8alfZEB1QA BYvOexnUnCXjsgjY1J0T7KhRcwH1DQOz1h5ATFZ1GLYNLz9Ra3kj55HRxa/r4r+2 oixPYmoRNWEB3QNSlc7XKAMc+56Y3UguM1R37uHmXPm1w7+GhX9zPEv3VJrciMCV 3KAAq82si6S+ExacG/mhyzwU4xBT75hzbbeKAUHXdn22URvrnr90joSM5zCVbkEP D1I6jl5FNa071TyvA2aHbg9Lozf5NtT/aZ2vCUxnJtt035uVXyCtDgNsgiwc7rWC Ic721qDzuaRhWbmVUXRzxsZHQRcCAwEAAaOCAeswggHnMB0GA1UdDgQWBBTyzvXj IuQxVGl8gjmeV6FGfUE9HDAfBgNVHSMEGDAWgBRwYQAmx/KgThY9T+VTHXvEbnVH yTAOBgNVHQ8BAf8EBAMCB4AwWwYDVR0fBFQwUjBQoE6gTIZKcnN5bmM6Ly9ycGtp LmNvL3JlcG8vU2ltcGxlLzIvNzA2MTAwMjZDN0YyQTA0RTE2M0Q0RkU1NTMxRDdC QzQ2RTc1NDdDOS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3lu YzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJC NDY4RjdDNzJGRDFGRjIvY0dFQUpzZnlvRTRXUFVfbFV4MTd4RzUxUjhrLmNlcjB6 BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJzeW5jOi8vcnBraS5jby9yZXBv L1NpbXBsZS8yLzMyMzAzMDMxM2E2NDY2MzIzYTM0MzU2MzMwM2EzYTJmMzQzNzJk MzQzODIwM2QzZTIwMzMzMjM1MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASABDfJFwDANBgkqhkiG 9w0BAQsFAAOCAQEAC8LKljJAzLKSd+cY/tQJdLD6/KWhaA5ypXf0ob0ivl35tBmz JvF4iifAEnMk2/UWOQ1Gmj1AO406WigWsL0DRWhBlQ9WptB+n56YkeTT8CBpFAIy zBu2z9jukKR50wCrvsXNIXxCFKdi/Fb23g/TNqdtExHrCFJLCpxM7iBLDUW9ZKui fywCdS5Zzr2q+dqEU2nTw8/pZb/W2OmV5ZZ5GPWvsbmF6+eK25A6Jj+B7sMMll/M kl/t0DGYGMRaBXXr0Flu/djdptIAhKI/gTohWmCoOCo93sm6FC8H7X313fAeae8d oDZPXHUgl8wREhivJUny65+giSgrsY0yXDgygQ== -----END CERTIFICATE-----Generated at Sat Jun 1 15:46:03 2024 by rpki-client on console-fra.rpki-client.org