$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203433333537.roa File: 323430333a666263303a3a2f33322d3438203d3e203433333537.roa (raw, json) Hash identifier: f6TUhFqS3isV+/cNk8PgUfCkyR1D652ScYlagjbFUVg= Subject key identifier: BB:CB:89:BF:38:A3:BA:FD:38:A3:75:56:17:87:C2:4F:72:D3:22:98 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 78382ABF9CC2FA097E76B31B86750B2C8314E31C Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203433333537.roa Signing time: Thu 12 Sep 2024 16:46:53 +0000 ROA not before: Thu 12 Sep 2024 16:41:53 +0000 ROA not after: Thu 11 Sep 2025 16:46:53 +0000 asID: 43357 IP address blocks: 2403:fbc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:38:2a:bf:9c:c2:fa:09:7e:76:b3:1b:86:75:0b:2c:83:14:e3:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Sep 12 16:41:53 2024 GMT Not After : Sep 11 16:46:53 2025 GMT Subject: CN=BBCB89BF38A3BAFD38A375561787C24F72D32298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5a:90:08:40:e3:be:fc:d8:89:82:f3:c4:0d: 1e:3f:b1:16:b5:d6:63:a7:99:94:6e:30:24:5d:75: e5:d8:11:d1:a8:ee:1b:b3:e0:20:2f:39:5b:aa:7a: 0c:db:cb:5e:0c:fd:47:df:33:e2:e0:b5:4d:80:10: 56:dd:d2:53:07:fd:37:58:54:89:8f:46:49:0e:bc: a7:d4:54:a6:f4:e2:90:fd:4b:2f:88:bf:7b:cc:3e: 05:c5:1c:18:e8:55:83:29:be:50:9a:33:aa:10:09: 30:54:c2:1e:02:bb:1b:87:a3:4b:26:05:35:14:f1: e1:36:50:1d:31:28:5b:2b:6d:de:3b:c6:44:fe:0f: 0a:15:3a:dc:4f:db:13:c4:c2:6c:ff:40:ff:5c:f8: 6c:ba:4a:5c:a6:d5:b6:e5:a2:08:55:5d:36:de:8d: 47:c9:5d:b9:c6:6b:11:eb:77:21:ac:53:00:a3:3c: 94:8b:0f:db:ff:f6:1a:95:05:86:bf:98:fa:90:ea: 80:29:9e:be:a7:ab:e1:88:69:12:6a:55:85:ad:c2: 6c:1a:bf:92:ad:da:bf:6f:62:58:c5:8c:90:1b:d3: e6:e8:40:19:bb:80:9b:27:0b:52:81:d5:d8:e5:f4: 65:55:03:a9:8c:ef:c9:2c:9b:83:4a:69:63:28:a6: e6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:CB:89:BF:38:A3:BA:FD:38:A3:75:56:17:87:C2:4F:72:D3:22:98 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203433333537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fbc0::/32 Signature Algorithm: sha256WithRSAEncryption ca:28:81:cb:ee:1e:4b:15:11:c4:f8:42:af:6a:2b:01:a7:7f: ad:d6:2d:b2:97:47:37:60:a5:86:90:b2:6b:c2:2a:ff:f6:04: 3d:6a:c7:ac:df:b5:75:b2:00:75:a7:50:a9:3a:43:04:9b:17: 25:24:8d:bd:0f:9c:82:16:6c:bf:dc:99:11:bf:bf:38:1b:80: 50:39:d9:2f:65:3d:10:9d:71:3d:25:4a:47:92:99:b9:3b:4c: 04:1c:94:8b:37:48:23:a9:85:bf:c3:3f:97:bd:71:77:d1:62: f6:e1:da:8c:91:a8:f4:38:ec:3e:6e:21:5f:24:7f:b4:61:f1: 23:c1:c6:49:d4:d5:d3:cb:df:8f:79:e5:ba:4d:86:9d:1e:65: 42:8a:03:36:46:c6:09:36:1d:b5:f5:b8:73:76:44:6f:b7:99: a1:89:7a:01:ba:79:4f:84:39:5c:5c:13:0e:21:57:1d:2e:79: fe:51:33:44:aa:3f:27:6a:d7:54:ac:59:5f:43:e5:4d:42:2c: 21:76:45:3a:43:15:c9:f1:9a:92:e0:7f:58:bf:87:78:ac:b8: 5b:71:ed:ca:a8:75:b2:54:95:1c:50:81:4a:96:5e:e0:68:ad: 2b:c5:56:11:da:2e:cd:9a:34:23:97:36:69:eb:66:37:86:1d: 75:a6:d9:80 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUeDgqv5zC+gl+drMbhnULLIMU4xwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI0MDkxMjE2NDE1M1oX DTI1MDkxMTE2NDY1M1owMzExMC8GA1UEAxMoQkJDQjg5QkYzOEEzQkFGRDM4QTM3 NTU2MTc4N0MyNEY3MkQzMjI5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9akAhA47782ImC88QNHj+xFrXWY6eZlG4wJF115dgR0ajuG7PgIC85W6p6 DNvLXgz9R98z4uC1TYAQVt3SUwf9N1hUiY9GSQ68p9RUpvTikP1LL4i/e8w+BcUc GOhVgym+UJozqhAJMFTCHgK7G4ejSyYFNRTx4TZQHTEoWytt3jvGRP4PChU63E/b E8TCbP9A/1z4bLpKXKbVtuWiCFVdNt6NR8lducZrEet3IaxTAKM8lIsP2//2GpUF hr+Y+pDqgCmevqer4YhpEmpVha3CbBq/kq3av29iWMWMkBvT5uhAGbuAmycLUoHV 2OX0ZVUDqYzvySybg0ppYyim5lsCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBS7y4m/ OKO6/TijdVYXh8JPctMimDAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHQGCCsGAQUFBwELBGgwZjBkBggrBgEFBQcwC4ZYcnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMjM0MzAzMzNhNjY2MjYzMzAzYTNhMmYzMzMyMmQzNDM4 MjAzZDNlMjAzNDMzMzMzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAP7wDANBgkqhkiG9w0BAQsF AAOCAQEAyiiBy+4eSxURxPhCr2orAad/rdYtspdHN2ClhpCya8Iq//YEPWrHrN+1 dbIAdadQqTpDBJsXJSSNvQ+cghZsv9yZEb+/OBuAUDnZL2U9EJ1xPSVKR5KZuTtM BByUizdII6mFv8M/l71xd9Fi9uHajJGo9DjsPm4hXyR/tGHxI8HGSdTV08vfj3nl uk2GnR5lQooDNkbGCTYdtfW4c3ZEb7eZoYl6Abp5T4Q5XFwTDiFXHS55/lEzRKo/ J2rXVKxZX0PlTUIsIXZFOkMVyfGakuB/WL+HeKy4W3Htyqh1slSVHFCBSpZe4Git K8VWEdouzZo0I5c2aetmN4YddabZgA== -----END CERTIFICATE-----Generated at Fri Nov 22 04:32:56 2024 by rpki-client on console-fra.rpki-client.org