$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e203233393539.roa File: 3130332e3132352e3233322e302f32322d3234203d3e203233393539.roa (raw, json) Hash identifier: VZm+1A419bpjhNHk7oa8SlaXnBnjm4UoiyMj6yzbhMQ= Subject key identifier: 70:C7:AB:A7:EA:3A:AF:94:84:FF:D9:6F:A2:A1:41:10:4D:DF:84:73 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 12BE1635EC9779D6093A2494598914648E9B0230 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e203233393539.roa Signing time: Thu 14 Aug 2025 17:43:56 +0000 ROA not before: Thu 14 Aug 2025 17:38:56 +0000 ROA not after: Thu 13 Aug 2026 17:43:56 +0000 asID: 23959 IP address blocks: 103.125.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:be:16:35:ec:97:79:d6:09:3a:24:94:59:89:14:64:8e:9b:02:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Aug 14 17:38:56 2025 GMT Not After : Aug 13 17:43:56 2026 GMT Subject: CN=70C7ABA7EA3AAF9484FFD96FA2A141104DDF8473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d0:fb:11:d9:d4:b9:3c:25:57:02:53:a0:8b: 91:8c:30:7c:59:7f:f8:24:79:bd:c6:6d:c6:ee:14: 18:4f:f6:de:cd:53:0e:86:81:db:56:b5:fb:aa:ca: 54:0b:cb:c6:1f:ac:0b:b7:e0:a4:b2:e0:68:0d:bb: 62:73:91:7d:05:db:38:1c:75:e2:bd:2d:c9:9b:fe: 11:99:90:59:58:c7:ba:d2:6b:9d:63:c3:ca:ff:0d: ea:61:96:50:5e:0e:5d:db:69:77:05:ab:e9:85:26: 7c:52:cb:62:2d:40:8d:07:37:7c:59:c4:11:ed:2b: 3a:59:70:34:88:56:de:c9:84:8c:e8:a7:77:f0:51: 0a:83:f0:b8:44:61:9e:ac:18:fc:92:33:34:96:53: f0:36:86:ab:70:74:59:29:a6:5e:5d:9d:62:fa:90: 69:5d:e5:9c:36:1d:00:f4:5d:18:37:7d:86:20:46: 36:d2:a9:e6:bf:5a:c5:92:8a:72:d0:2a:8c:5f:36: 54:a4:05:9c:3b:1e:f3:fd:96:9a:55:3c:d0:00:06: 51:4e:03:ef:82:0e:97:d1:da:d5:58:61:9d:51:d5: 8e:5f:17:20:a0:d3:a5:47:2d:01:ed:ff:66:eb:42: 36:49:02:8c:41:72:f6:33:fe:d6:39:e2:86:1d:c6: 53:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C7:AB:A7:EA:3A:AF:94:84:FF:D9:6F:A2:A1:41:10:4D:DF:84:73 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.232.0/22 Signature Algorithm: sha256WithRSAEncryption a4:9a:28:66:ab:e2:a2:dd:c0:f8:ba:11:dc:b9:4d:b4:f8:70: 3c:09:61:e2:be:b4:6a:50:68:2d:f0:7f:7e:c3:02:30:2c:73: e0:99:4a:06:f4:8e:c8:73:e6:74:69:46:12:a1:4c:aa:9a:11: a9:20:9b:5c:a6:34:c9:9c:80:52:ce:30:81:18:e9:9f:13:1c: f0:c4:ef:44:67:5e:97:a3:2b:cc:fa:bd:57:88:e9:58:a2:f5: 2d:8c:a7:e5:c3:e3:2c:3d:71:3d:e6:d9:5e:e2:65:ba:82:ef: e5:0a:b1:fd:72:0b:6e:a3:e2:f5:c0:a7:62:ad:2d:a5:4c:ba: 29:00:46:24:62:bf:70:04:3c:56:16:29:12:5a:68:6b:7b:2c: b7:94:64:0a:e8:d8:22:b8:3a:7b:30:eb:fe:e1:d7:46:c1:bd: 28:71:e3:28:9f:66:d3:c7:bd:30:20:5c:da:cd:2c:ac:b1:b7: b7:05:c1:8f:b5:8d:d2:ec:34:02:5b:3d:1b:66:a6:6e:bd:30: 62:0b:62:e3:6b:f5:3b:83:b3:71:1d:c6:7a:b1:97:b3:e9:93: e3:a7:c3:73:40:ed:64:52:cc:db:d8:7a:18:bb:bb:ad:9f:fb: fd:ab:38:4e:ae:f5:49:15:89:4b:d3:db:12:83:42:7f:28:c4: 5b:02:ec:b7 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUEr4WNeyXedYJOiSUWYkUZI6bAjAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI1MDgxNDE3Mzg1NloX DTI2MDgxMzE3NDM1NlowMzExMC8GA1UEAxMoNzBDN0FCQTdFQTNBQUY5NDg0RkZE OTZGQTJBMTQxMTA0RERGODQ3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANHQ+xHZ1Lk8JVcCU6CLkYwwfFl/+CR5vcZtxu4UGE/23s1TDoaB21a1+6rK VAvLxh+sC7fgpLLgaA27YnORfQXbOBx14r0tyZv+EZmQWVjHutJrnWPDyv8N6mGW UF4OXdtpdwWr6YUmfFLLYi1AjQc3fFnEEe0rOllwNIhW3smEjOind/BRCoPwuERh nqwY/JIzNJZT8DaGq3B0WSmmXl2dYvqQaV3lnDYdAPRdGDd9hiBGNtKp5r9axZKK ctAqjF82VKQFnDse8/2WmlU80AAGUU4D74IOl9Ha1VhhnVHVjl8XIKDTpUctAe3/ ZutCNkkCjEFy9jP+1jnihh3GU6kCAwEAAaOCAegwggHkMB0GA1UdDgQWBBRwx6un 6jqvlIT/2W+ioUEQTd+EczAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHgGCCsGAQUFBwELBGwwajBoBggrBgEFBQcwC4ZccnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzIzMzM5MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmd96DANBgkqhkiG9w0B AQsFAAOCAQEApJooZqviot3A+LoR3LlNtPhwPAlh4r60alBoLfB/fsMCMCxz4JlK BvSOyHPmdGlGEqFMqpoRqSCbXKY0yZyAUs4wgRjpnxMc8MTvRGdel6MrzPq9V4jp WKL1LYyn5cPjLD1xPebZXuJluoLv5Qqx/XILbqPi9cCnYq0tpUy6KQBGJGK/cAQ8 VhYpElpoa3sst5RkCujYIrg6ezDr/uHXRsG9KHHjKJ9m08e9MCBc2s0srLG3twXB j7WN0uw0Als9G2ambr0wYgti42v1O4OzcR3GerGXs+mT46fDc0DtZFLM29h6GLu7 rZ/7/as4Tq71SRWJS9PbEoNCfyjEWwLstw== -----END CERTIFICATE-----Generated at Sat Oct 25 09:20:39 2025 by rpki-client