$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa File: 3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: Om6NqlNn2mDqtN/aRlJUGsjJsBk9Lm1O1udLmvpblkw= Subject key identifier: E9:64:56:1F:81:1F:1D:02:24:3E:E3:A3:5E:9F:3B:61:09:F0:F0:DA Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 56DE7B0CCACFF781381147A8A5C1021C166EA676 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa Signing time: Fri 13 Mar 2026 09:43:57 +0000 ROA not before: Fri 13 Mar 2026 09:38:57 +0000 ROA not after: Fri 12 Mar 2027 09:43:57 +0000 asID: 3258 IP address blocks: 103.125.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 06:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:de:7b:0c:ca:cf:f7:81:38:11:47:a8:a5:c1:02:1c:16:6e:a6:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Mar 13 09:38:57 2026 GMT Not After : Mar 12 09:43:57 2027 GMT Subject: CN=E964561F811F1D02243EE3A35E9F3B6109F0F0DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:70:95:87:36:e7:eb:2a:05:52:7b:76:74:02: c3:84:c5:82:83:08:7f:1f:f6:f9:32:04:4e:46:ca: a1:d0:ef:48:81:7a:fb:51:86:f7:d6:a0:6d:0b:5a: 14:f7:b0:6e:fa:4b:eb:65:cb:e7:07:12:b8:8f:57: 95:d4:4f:46:f2:4b:19:5c:fa:a4:25:ff:b3:25:d2: df:ef:e5:34:70:eb:a5:f3:7c:2d:3a:1d:cb:2d:04: 40:49:2f:53:39:ca:83:32:54:9f:0e:fc:48:89:5f: 72:7f:3c:a2:5c:aa:85:36:31:4f:83:f5:9f:20:98: 49:40:a4:09:a0:1d:77:3b:c5:86:0e:d8:c7:43:71: 96:29:63:98:1f:88:dd:22:a6:3e:f1:ac:ea:e0:bd: 84:32:b7:fa:68:ef:99:eb:40:85:e4:90:a0:95:8f: c2:81:15:b2:fa:93:d0:68:71:da:fd:b6:7a:de:cb: d3:ba:86:1c:cb:b0:a0:55:ef:a9:be:2c:13:f6:76: b5:b1:40:38:ac:d5:ff:c3:8e:c8:c4:a6:dc:b2:d2: 07:ae:fd:eb:6f:88:e8:87:e3:76:23:96:7b:d1:0d: 7d:12:94:4e:75:3d:c0:e1:42:08:fc:da:89:a1:1f: a9:d0:8d:18:5b:be:f9:f2:d0:96:e9:57:5c:6d:de: 8b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:64:56:1F:81:1F:1D:02:24:3E:E3:A3:5E:9F:3B:61:09:F0:F0:DA X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.232.0/22 Signature Algorithm: sha256WithRSAEncryption 94:22:cb:0d:12:80:ee:af:67:cd:e4:bb:8d:ec:00:50:0f:b4: 98:f1:55:57:8d:2c:40:74:70:45:cf:1f:b9:2a:4a:76:dc:6e: cd:6c:bb:23:6f:b1:83:ee:69:51:f2:c5:64:3b:72:5a:a8:8a: e2:33:83:00:9e:2e:7d:09:11:6b:9f:87:a5:b3:7b:ed:85:79: ff:4a:9b:eb:5a:6b:3c:43:82:19:88:fa:d9:7d:7f:7b:f9:c2: 8a:b1:87:cd:dd:68:c0:29:e7:3a:bd:ff:e4:74:46:68:03:3f: 21:db:a2:28:dd:44:41:b0:3d:8c:fd:e2:74:8c:18:cc:60:17: 29:6b:76:07:5f:5e:1e:a9:04:75:17:0d:72:f0:62:d3:f6:07: 1b:c1:bb:fd:71:60:4e:c8:4a:d4:fb:18:6e:7b:1f:bb:fc:fc: 52:34:44:9b:64:7c:64:c4:1b:2f:e9:7a:4b:bf:42:b6:a1:00: 49:f8:e0:90:de:0a:73:47:ae:ea:aa:2e:fa:fc:e5:fe:6d:a5: d2:48:29:b7:b7:e8:7e:11:bf:a1:1d:ec:ea:ad:3f:80:ef:69: 6f:86:70:ce:d9:a4:eb:11:d6:47:30:f6:ba:cf:05:06:6a:54: 6d:55:0f:2a:8d:87:0d:c5:43:c6:ab:04:54:0e:c7:c3:cc:45: 2e:ef:19:fb -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUVt57DMrP94E4EUeopcECHBZupnYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI2MDMxMzA5Mzg1N1oX DTI3MDMxMjA5NDM1N1owMzExMC8GA1UEAxMoRTk2NDU2MUY4MTFGMUQwMjI0M0VF M0EzNUU5RjNCNjEwOUYwRjBEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI5wlYc25+sqBVJ7dnQCw4TFgoMIfx/2+TIETkbKodDvSIF6+1GG99agbQta FPewbvpL62XL5wcSuI9XldRPRvJLGVz6pCX/syXS3+/lNHDrpfN8LTodyy0EQEkv UznKgzJUnw78SIlfcn88olyqhTYxT4P1nyCYSUCkCaAddzvFhg7Yx0NxliljmB+I 3SKmPvGs6uC9hDK3+mjvmetAheSQoJWPwoEVsvqT0Ghx2v22et7L07qGHMuwoFXv qb4sE/Z2tbFAOKzV/8OOyMSm3LLSB67962+I6IfjdiOWe9ENfRKUTnU9wOFCCPza iaEfqdCNGFu++fLQlulXXG3ei7ECAwEAAaOCAeYwggHiMB0GA1UdDgQWBBTpZFYf gR8dAiQ+46NenzthCfDw2jAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHYGCCsGAQUFBwELBGowaDBmBggrBgEFBQcwC4ZacnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzMzMjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfegwDQYJKoZIhvcNAQEL BQADggEBAJQiyw0SgO6vZ83ku43sAFAPtJjxVVeNLEB0cEXPH7kqSnbcbs1suyNv sYPuaVHyxWQ7clqoiuIzgwCeLn0JEWufh6Wze+2Fef9Km+taazxDghmI+tl9f3v5 woqxh83daMAp5zq9/+R0RmgDPyHboijdREGwPYz94nSMGMxgFylrdgdfXh6pBHUX DXLwYtP2BxvBu/1xYE7IStT7GG57H7v8/FI0RJtkfGTEGy/peku/QrahAEn44JDe CnNHruqqLvr85f5tpdJIKbe36H4Rv6Ed7OqtP4DvaW+GcM7ZpOsR1kcw9rrPBQZq VG1VDyqNhw3FQ8arBFQOx8PMRS7vGfs= -----END CERTIFICATE-----Generated at Tue Mar 17 18:06:52 2026 by rpki-client