$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa File: 3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: hZi6xVGFuBm2cE8kEk7yPC6zUVltxG7VPQHnO46XkB8= Subject key identifier: 82:7D:39:A7:EC:96:09:66:E1:25:61:81:DA:8B:B8:1A:74:C4:57:B1 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 1A4782D1D6DBB3B16BB294931B9336915F43FAA5 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa Signing time: Fri 10 May 2024 09:24:57 +0000 ROA not before: Fri 10 May 2024 09:19:57 +0000 ROA not after: Fri 09 May 2025 09:24:57 +0000 asID: 3258 IP address blocks: 103.125.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 22:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:47:82:d1:d6:db:b3:b1:6b:b2:94:93:1b:93:36:91:5f:43:fa:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: May 10 09:19:57 2024 GMT Not After : May 9 09:24:57 2025 GMT Subject: CN=827D39A7EC960966E1256181DA8BB81A74C457B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:27:4e:3e:b3:da:91:cc:c0:2a:1e:8e:f1:7f: 77:fb:54:77:a3:c1:08:5e:dd:03:b0:f9:78:c2:38: bd:2f:e0:b5:ce:52:0d:25:ba:70:f8:8c:17:4c:bd: 91:80:0c:a3:fe:f2:41:27:b5:33:88:86:c8:25:5d: 45:8e:7c:51:c1:85:0e:8f:65:15:fe:6b:7e:90:f6: df:c7:68:0e:3b:76:02:2f:ab:36:6b:2e:e0:69:81: 5e:ce:92:f5:af:f8:ef:81:5e:c6:c1:14:4b:31:11: fd:c5:fd:b1:4f:31:bb:c7:f3:a9:a0:0d:0d:0e:1b: 08:5d:b2:61:df:ee:44:ea:bb:e9:13:0b:f8:c0:87: 54:b6:97:32:f2:0d:bd:88:7d:56:7c:8a:79:09:6c: 00:4f:91:f4:6d:c6:19:02:28:60:50:67:ff:5b:de: 9a:78:35:a5:3f:e2:d9:a1:ea:20:90:a7:21:74:80: d1:96:92:ca:85:98:90:99:f5:b7:fb:71:ba:0a:84: 9a:54:fe:7f:19:e2:53:cf:f6:20:70:46:e8:3b:a5: 8b:6e:a0:e8:b4:a6:a8:75:c0:54:72:69:a6:5d:df: 2e:67:48:e2:5b:64:1d:e6:96:26:61:42:08:8f:e0: 71:6a:d2:66:fa:40:99:81:44:4a:de:e4:2d:99:e3: cc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7D:39:A7:EC:96:09:66:E1:25:61:81:DA:8B:B8:1A:74:C4:57:B1 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.232.0/22 Signature Algorithm: sha256WithRSAEncryption 21:57:c2:c1:69:77:67:28:28:df:00:a4:18:3a:89:26:cd:b2: 53:06:a2:8f:15:e0:d2:77:eb:a9:07:ec:b8:9c:93:ff:b8:f7: b1:79:00:30:a1:12:64:b5:b8:f0:b8:e3:99:a1:fe:b7:5d:52: 2a:ab:9b:80:34:8d:98:ae:e1:3c:2c:60:54:16:4d:0c:4e:bc: b7:c3:33:5e:42:3a:f0:7d:1d:96:ab:df:cc:db:d2:6e:fd:3a: e1:27:a7:34:3d:ae:8c:b5:58:c6:67:af:0e:96:e1:2d:42:f5: 05:b8:a4:ef:16:1b:e3:fe:fa:46:55:7e:2a:61:e2:cf:0f:1f: 52:07:c8:49:5a:87:3b:44:25:2b:85:6d:5e:4a:a1:b5:e4:a5: 94:bd:59:b3:74:9f:4f:c5:76:9b:19:d1:76:18:29:f7:76:73: 8c:f0:00:90:3c:61:7c:82:1b:61:d5:b4:e2:92:96:cd:e2:28: 7e:cd:7c:62:c7:d5:c3:75:3e:06:c3:e7:d8:9d:b1:86:84:d4: e3:0e:97:fc:71:97:43:28:46:44:27:18:0f:69:ea:7f:f0:65: 02:bd:d0:34:02:d2:42:69:27:b9:99:19:16:f9:2e:36:d1:92: 81:58:55:b6:42:8b:da:79:b9:5a:d7:45:45:56:e0:25:1f:0c: 14:d6:6b:d4 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUGkeC0dbbs7FrspSTG5M2kV9D+qUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI0MDUxMDA5MTk1N1oX DTI1MDUwOTA5MjQ1N1owMzExMC8GA1UEAxMoODI3RDM5QTdFQzk2MDk2NkUxMjU2 MTgxREE4QkI4MUE3NEM0NTdCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMgnTj6z2pHMwCoejvF/d/tUd6PBCF7dA7D5eMI4vS/gtc5SDSW6cPiMF0y9 kYAMo/7yQSe1M4iGyCVdRY58UcGFDo9lFf5rfpD238doDjt2Ai+rNmsu4GmBXs6S 9a/474FexsEUSzER/cX9sU8xu8fzqaANDQ4bCF2yYd/uROq76RML+MCHVLaXMvIN vYh9VnyKeQlsAE+R9G3GGQIoYFBn/1vemng1pT/i2aHqIJCnIXSA0ZaSyoWYkJn1 t/txugqEmlT+fxniU8/2IHBG6Duli26g6LSmqHXAVHJppl3fLmdI4ltkHeaWJmFC CI/gcWrSZvpAmYFESt7kLZnjzDkCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBSCfTmn 7JYJZuElYYHai7gadMRXsTAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHYGCCsGAQUFBwELBGowaDBmBggrBgEFBQcwC4ZacnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzMzMjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfegwDQYJKoZIhvcNAQEL BQADggEBACFXwsFpd2coKN8ApBg6iSbNslMGoo8V4NJ366kH7Lick/+497F5ADCh EmS1uPC445mh/rddUiqrm4A0jZiu4TwsYFQWTQxOvLfDM15COvB9HZar38zb0m79 OuEnpzQ9roy1WMZnrw6W4S1C9QW4pO8WG+P++kZVfiph4s8PH1IHyElahztEJSuF bV5KobXkpZS9WbN0n0/FdpsZ0XYYKfd2c4zwAJA8YXyCG2HVtOKSls3iKH7NfGLH 1cN1PgbD59idsYaE1OMOl/xxl0MoRkQnGA9p6n/wZQK90DQC0kJpJ7mZGRb5LjbR koFYVbZCi9p5uVrXRUVW4CUfDBTWa9Q= -----END CERTIFICATE-----Generated at Fri May 17 20:12:29 2024 by rpki-client on console-fra.rpki-client.org