$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203433333537.roa File: 323430333a666263303a3a2f33322d3438203d3e203433333537.roa (raw, json) Hash identifier: fqCkQ1X57BQQIQhZvjOGgtLEka7dhGZuUWNiEO6MzSA= Subject key identifier: 95:8E:72:B3:35:5A:7E:A9:B1:90:DA:73:D2:C6:66:58:B4:A2:B5:53 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 4FA249C63EA3A2767BB668029F393BDEF035EB70 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203433333537.roa Signing time: Thu 12 Oct 2023 15:59:56 +0000 ROA not before: Thu 12 Oct 2023 15:54:56 +0000 ROA not after: Thu 10 Oct 2024 15:59:56 +0000 asID: 43357 IP address blocks: 2403:fbc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 22:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a2:49:c6:3e:a3:a2:76:7b:b6:68:02:9f:39:3b:de:f0:35:eb:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Oct 12 15:54:56 2023 GMT Not After : Oct 10 15:59:56 2024 GMT Subject: CN=958E72B3355A7EA9B190DA73D2C66658B4A2B553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:24:d8:74:14:cf:76:7e:54:5c:dc:c4:fe:19: a7:17:95:97:10:89:e9:76:cc:67:36:aa:90:6c:ae: 47:74:2b:73:58:e6:94:93:27:bc:cf:31:3d:33:f4: 09:5b:e5:f8:bd:da:97:69:b7:8e:f5:44:b7:77:1d: ae:b3:4c:0f:52:b5:8c:60:be:6c:26:72:22:0a:2f: cd:ef:5c:77:fb:7d:87:ce:6d:08:17:5e:61:a1:d1: 08:3f:53:c7:06:18:42:5a:90:2d:33:a3:1e:05:0a: 5f:93:a0:02:ac:ff:72:a7:be:8e:aa:7c:7b:dd:cc: 51:29:c8:58:56:26:eb:b3:82:f1:4e:11:a4:c3:11: 48:76:01:ce:be:99:1a:26:45:b5:a1:4d:06:7a:09: 7b:af:e1:78:a2:da:32:c9:67:12:0d:45:c7:5b:c6: a4:65:20:2f:1d:88:f3:54:ae:6c:bc:c0:9b:08:c6: b9:f5:d2:41:0d:17:24:bb:c3:0d:44:3e:44:ca:71: b8:a6:c8:55:07:26:2f:d2:38:16:2f:dc:cb:74:50: dc:68:6a:f6:ff:1f:97:1a:42:e8:78:53:21:e9:10: 71:fb:fb:10:ac:b9:d6:80:54:2e:3b:bc:61:8b:43: 5a:02:7a:4a:99:dc:8d:ac:30:95:7a:43:3e:0e:da: 64:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:8E:72:B3:35:5A:7E:A9:B1:90:DA:73:D2:C6:66:58:B4:A2:B5:53 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203433333537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fbc0::/32 Signature Algorithm: sha256WithRSAEncryption a2:07:9f:23:c6:f4:aa:f8:b8:97:f5:8a:e8:3a:d6:56:05:95: aa:46:08:58:68:4f:81:b9:a7:53:00:2e:36:2e:c0:79:ff:2c: 1a:fa:bc:2d:51:e2:fa:76:9b:8f:52:71:81:2b:bf:e9:89:27: f7:16:a5:a8:59:94:2d:d2:7e:2c:32:cd:ea:51:d2:5f:2b:5c: c6:20:dc:32:16:8a:d8:ae:a9:9b:9a:47:f3:bf:ae:54:3d:2a: c7:f8:fe:02:08:02:1b:b1:b6:01:79:e5:bb:bc:5e:13:18:04: d1:36:52:63:12:9e:3e:50:37:42:54:d2:f5:04:c7:8f:b4:12: 83:76:4b:52:a7:31:7e:e4:34:d5:26:40:13:2e:93:b8:0c:2f: 82:ed:a1:9d:61:6c:84:b0:38:a7:9e:b6:dd:21:dd:90:66:cd: 12:4f:d2:70:5e:fd:56:fc:29:ae:62:b8:46:e1:08:57:74:e5: f2:ba:62:98:31:f6:44:dc:78:29:94:3a:8b:71:40:c1:c2:62: ec:41:7d:d2:c7:9b:01:43:f1:f3:f5:4f:98:c8:d7:68:ac:92: 24:fb:dc:85:ef:c2:81:77:44:27:af:ef:e4:3c:c0:b1:c6:33: 29:8f:75:71:1e:d7:30:97:6f:ea:e1:39:c4:1c:a1:55:b0:2b: cf:11:bf:f9 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUT6JJxj6jonZ7tmgCnzk73vA163AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTIzMTAxMjE1NTQ1NloX DTI0MTAxMDE1NTk1NlowMzExMC8GA1UEAxMoOTU4RTcyQjMzNTVBN0VBOUIxOTBE QTczRDJDNjY2NThCNEEyQjU1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKok2HQUz3Z+VFzcxP4ZpxeVlxCJ6XbMZzaqkGyuR3Qrc1jmlJMnvM8xPTP0 CVvl+L3al2m3jvVEt3cdrrNMD1K1jGC+bCZyIgovze9cd/t9h85tCBdeYaHRCD9T xwYYQlqQLTOjHgUKX5OgAqz/cqe+jqp8e93MUSnIWFYm67OC8U4RpMMRSHYBzr6Z GiZFtaFNBnoJe6/heKLaMslnEg1Fx1vGpGUgLx2I81SubLzAmwjGufXSQQ0XJLvD DUQ+RMpxuKbIVQcmL9I4Fi/cy3RQ3Ghq9v8flxpC6HhTIekQcfv7EKy51oBULju8 YYtDWgJ6SpncjawwlXpDPg7aZNkCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBSVjnKz NVp+qbGQ2nPSxmZYtKK1UzAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHQGCCsGAQUFBwELBGgwZjBkBggrBgEFBQcwC4ZYcnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMjM0MzAzMzNhNjY2MjYzMzAzYTNhMmYzMzMyMmQzNDM4 MjAzZDNlMjAzNDMzMzMzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAP7wDANBgkqhkiG9w0BAQsF AAOCAQEAogefI8b0qvi4l/WK6DrWVgWVqkYIWGhPgbmnUwAuNi7Aef8sGvq8LVHi +nabj1JxgSu/6Ykn9xalqFmULdJ+LDLN6lHSXytcxiDcMhaK2K6pm5pH87+uVD0q x/j+AggCG7G2AXnlu7xeExgE0TZSYxKePlA3QlTS9QTHj7QSg3ZLUqcxfuQ01SZA Ey6TuAwvgu2hnWFshLA4p5623SHdkGbNEk/ScF79VvwprmK4RuEIV3Tl8rpimDH2 RNx4KZQ6i3FAwcJi7EF90sebAUPx8/VPmMjXaKySJPvche/CgXdEJ6/v5DzAscYz KY91cR7XMJdv6uE5xByhVbArzxG/+Q== -----END CERTIFICATE-----Generated at Fri May 17 20:05:50 2024 by rpki-client on console-ams.rpki-client.org