$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e2033323538.roa File: 323430333a666263303a3a2f33322d3438203d3e2033323538.roa (raw, json) Hash identifier: VCiQgGJC0woztKedBbZdy+byeG2dvfPseQNFg+NN9aw= Subject key identifier: 96:48:AE:A8:64:22:78:5A:1A:BE:32:81:F3:8A:D0:E9:F7:4A:41:24 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 5EC04742238C8A4F792DE166D9ABC866AB273192 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e2033323538.roa Signing time: Fri 10 May 2024 09:24:57 +0000 ROA not before: Fri 10 May 2024 09:19:57 +0000 ROA not after: Fri 09 May 2025 09:24:57 +0000 asID: 3258 IP address blocks: 2403:fbc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 22:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:c0:47:42:23:8c:8a:4f:79:2d:e1:66:d9:ab:c8:66:ab:27:31:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: May 10 09:19:57 2024 GMT Not After : May 9 09:24:57 2025 GMT Subject: CN=9648AEA86422785A1ABE3281F38AD0E9F74A4124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:88:b9:e7:ee:55:42:a1:fd:01:d5:1b:97:79: 00:1c:53:3c:18:5f:e2:5c:37:01:9b:1f:83:22:27: e5:1b:8e:da:9b:e7:bf:5c:78:c6:3b:e0:81:bf:f6: e1:71:a6:02:35:65:c3:6e:d4:ac:d0:c3:30:30:cd: 27:b4:00:cb:3f:ab:0f:6e:1d:39:89:88:3c:71:5b: db:2d:67:0f:ad:e1:59:18:38:b1:32:cd:ab:f3:9f: 64:f5:8c:ad:cc:95:f3:12:2a:f3:21:00:77:7b:a5: 53:79:6c:02:cc:e6:31:f8:5f:6e:67:5f:96:81:3e: 9e:54:e5:db:77:1a:6e:12:18:70:74:3e:58:07:6b: 09:eb:a4:96:bf:a8:25:2c:20:e4:88:22:42:49:92: 00:11:7d:52:14:83:ee:c5:59:a5:78:92:ec:8b:59: df:3d:5a:96:97:fa:c9:7f:b3:08:ba:5e:67:a8:70: 0d:f4:11:42:5b:55:c1:22:98:42:f9:59:88:d6:b9: 39:60:89:1a:43:9c:7d:ce:b7:7f:ad:77:20:38:49: 26:00:78:be:a6:7d:6d:ee:3f:fe:9c:0d:26:39:a0: e0:2b:98:7e:af:b4:1d:9a:8f:c0:e8:88:71:5f:a9: 53:2e:e3:08:d7:ef:75:0b:ee:f6:c7:26:43:0c:fa: f6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:48:AE:A8:64:22:78:5A:1A:BE:32:81:F3:8A:D0:E9:F7:4A:41:24 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fbc0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:d1:66:00:71:5d:d7:7a:69:2e:1e:73:44:b4:ef:1a:05:2f: d0:60:f7:0b:4d:da:31:ca:fc:5b:64:fe:ba:0e:5f:55:71:21: e5:a4:c9:aa:75:b6:ef:cb:b0:ad:ce:17:a9:50:55:d0:dc:5d: cf:df:20:37:b8:7b:2b:00:21:94:e6:a0:3b:b0:32:7e:89:d8: d5:bd:e3:da:e4:9e:bf:15:4d:66:d5:a7:b3:8f:4e:7d:e5:c1: 04:97:f9:a0:43:8b:0d:c9:50:98:75:a4:37:07:a6:b6:d1:3c: ca:a2:ac:d2:b6:00:c9:0e:a2:8b:39:ad:dc:f7:3c:a6:09:4a: e3:c7:0d:1c:82:e0:76:00:f1:63:7a:8e:b6:be:76:91:9b:cf: b7:df:47:5a:f6:8f:0b:ed:e9:de:a1:17:84:1d:6d:8e:fe:10: e0:7f:a0:06:59:d0:37:b9:bd:45:b8:78:14:96:d4:72:5e:5c: 4f:8b:ed:aa:ce:4f:fb:e7:81:72:06:9f:f4:9d:63:00:10:64: b3:c8:ff:69:5f:f9:c5:6d:7b:59:fa:d2:72:de:f9:5e:df:96: e9:3d:3d:7c:f7:d3:f6:31:09:6d:55:3e:c7:5e:c9:1a:ab:d8: 6a:c7:1b:c5:73:ce:39:4a:b8:78:cd:c8:10:03:1c:b8:ed:5c: 9b:05:d5:ba -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUXsBHQiOMik95LeFm2avIZqsnMZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI0MDUxMDA5MTk1N1oX DTI1MDUwOTA5MjQ1N1owMzExMC8GA1UEAxMoOTY0OEFFQTg2NDIyNzg1QTFBQkUz MjgxRjM4QUQwRTlGNzRBNDEyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPSIuefuVUKh/QHVG5d5ABxTPBhf4lw3AZsfgyIn5RuO2pvnv1x4xjvggb/2 4XGmAjVlw27UrNDDMDDNJ7QAyz+rD24dOYmIPHFb2y1nD63hWRg4sTLNq/OfZPWM rcyV8xIq8yEAd3ulU3lsAszmMfhfbmdfloE+nlTl23cabhIYcHQ+WAdrCeuklr+o JSwg5IgiQkmSABF9UhSD7sVZpXiS7ItZ3z1alpf6yX+zCLpeZ6hwDfQRQltVwSKY QvlZiNa5OWCJGkOcfc63f613IDhJJgB4vqZ9be4//pwNJjmg4CuYfq+0HZqPwOiI cV+pUy7jCNfvdQvu9scmQwz69mUCAwEAAaOCAeMwggHfMB0GA1UdDgQWBBSWSK6o ZCJ4Whq+MoHzitDp90pBJDAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMjM0MzAzMzNhNjY2MjYzMzAzYTNhMmYzMzMyMmQzNDM4 MjAzZDNlMjAzMzMyMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD+8AwDQYJKoZIhvcNAQELBQAD ggEBACrRZgBxXdd6aS4ec0S07xoFL9Bg9wtN2jHK/Ftk/roOX1VxIeWkyap1tu/L sK3OF6lQVdDcXc/fIDe4eysAIZTmoDuwMn6J2NW949rknr8VTWbVp7OPTn3lwQSX +aBDiw3JUJh1pDcHprbRPMqirNK2AMkOoos5rdz3PKYJSuPHDRyC4HYA8WN6jra+ dpGbz7ffR1r2jwvt6d6hF4QdbY7+EOB/oAZZ0De5vUW4eBSW1HJeXE+L7arOT/vn gXIGn/SdYwAQZLPI/2lf+cVte1n60nLe+V7fluk9PXz30/YxCW1VPsdeyRqr2GrH G8VzzjlKuHjNyBADHLjtXJsF1bo= -----END CERTIFICATE-----Generated at Fri May 17 20:05:50 2024 by rpki-client on console-ams.rpki-client.org