$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e203433333537.roa File: 3130332e3132352e3233322e302f32322d3234203d3e203433333537.roa (raw, json) Hash identifier: RYou/+EhCBE95tEi/MsaTQgt0n2IT60HuvzCvZEk+54= Subject key identifier: 24:6F:CF:36:ED:39:A4:87:14:15:CE:F4:A2:36:F7:84:BE:02:B4:03 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 2120723B80CDB20EAC11A61B893FF0FEED3C261F Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e203433333537.roa Signing time: Thu 12 Oct 2023 15:59:56 +0000 ROA not before: Thu 12 Oct 2023 15:54:56 +0000 ROA not after: Thu 10 Oct 2024 15:59:56 +0000 asID: 43357 IP address blocks: 103.125.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 22:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:20:72:3b:80:cd:b2:0e:ac:11:a6:1b:89:3f:f0:fe:ed:3c:26:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Oct 12 15:54:56 2023 GMT Not After : Oct 10 15:59:56 2024 GMT Subject: CN=246FCF36ED39A4871415CEF4A236F784BE02B403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:92:a0:33:62:ab:78:18:ef:34:6d:b4:8d:dc: be:9e:f2:f6:c9:f1:8d:e1:67:57:c6:ee:7b:74:a0: 6a:db:79:46:65:da:68:19:02:20:e9:e9:b6:ab:16: 2a:65:e7:28:74:67:07:e8:a6:7e:9d:3a:78:c3:c9: 92:e7:9d:48:b8:cd:74:7e:19:69:0a:9e:92:35:5c: ff:f8:79:17:26:ce:19:61:a9:d1:06:a0:4f:ff:56: d5:93:f7:2e:e2:a3:84:7a:8a:c5:c6:30:f5:cb:f4: a6:0c:87:13:15:0e:56:8d:1b:6c:b2:64:b2:7f:d8: 2f:46:6b:dc:6f:66:8a:3d:2e:de:d0:24:b7:6b:0c: 90:57:df:0e:0f:93:58:6d:db:4a:71:ce:4e:2e:9e: bf:3a:74:7d:7b:68:62:ff:85:16:88:50:ef:96:6a: ff:b4:9d:32:b1:a9:43:72:fb:b3:fa:5e:cd:4b:bf: ea:ba:0a:61:5e:e5:79:a3:88:29:00:36:b4:34:cb: 29:0b:cd:8c:a5:7b:08:95:96:a0:92:73:1f:e7:c8: 21:5f:32:e5:9d:26:41:23:43:8e:87:ca:23:ec:57: 22:00:1b:c1:39:fb:ca:8d:ad:ad:56:29:3a:4c:7f: 29:bd:6e:05:75:70:09:26:a4:d1:86:aa:4f:4f:b0: 72:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:6F:CF:36:ED:39:A4:87:14:15:CE:F4:A2:36:F7:84:BE:02:B4:03 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32322d3234203d3e203433333537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.232.0/22 Signature Algorithm: sha256WithRSAEncryption 60:79:3a:87:d6:f9:0a:b0:0b:65:9f:12:a4:fd:94:59:59:f3: 43:5b:88:37:40:83:71:35:8b:f2:16:90:b9:0c:7e:22:1a:bf: 69:42:7c:a9:68:97:28:d8:51:c2:d0:b9:d9:71:89:25:09:6a: 1c:8e:21:06:5e:31:bc:1f:6d:d3:e2:80:37:24:39:c0:a3:39: 74:e0:8e:47:9c:08:b2:a4:06:03:39:2f:5d:e2:ab:4d:85:39: 31:81:03:49:22:b5:39:8e:33:e0:94:0e:99:d1:fc:4d:e7:62: f9:d9:b0:b2:2c:0b:45:18:35:14:ce:57:64:1d:5d:fc:03:48: b0:7e:2a:35:b9:08:25:57:ec:6e:de:2b:20:50:a1:bf:41:36: 08:b8:ea:3c:0f:a0:cb:4e:fe:cb:ef:34:24:0a:59:d8:cb:80: c5:d7:f9:78:bc:7c:1a:e2:22:3f:0b:15:e2:cf:65:a3:9a:2d: 42:76:98:eb:e0:8d:b7:73:17:cc:35:79:0b:2e:39:f4:17:b4: 49:68:14:28:c6:f6:58:a3:7d:1a:7b:23:7a:f8:88:f6:de:d4: f4:61:65:36:2a:5c:af:a8:74:81:dc:83:a5:d9:1c:01:2e:14: fa:29:8a:0a:50:e1:9e:07:bc:8d:9c:1d:4e:3a:53:de:32:34: fb:e0:25:3c -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUISByO4DNsg6sEaYbiT/w/u08Jh8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTIzMTAxMjE1NTQ1NloX DTI0MTAxMDE1NTk1NlowMzExMC8GA1UEAxMoMjQ2RkNGMzZFRDM5QTQ4NzE0MTVD RUY0QTIzNkY3ODRCRTAyQjQwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmSoDNiq3gY7zRttI3cvp7y9snxjeFnV8bue3Sgatt5RmXaaBkCIOnptqsW KmXnKHRnB+imfp06eMPJkuedSLjNdH4ZaQqekjVc//h5FybOGWGp0QagT/9W1ZP3 LuKjhHqKxcYw9cv0pgyHExUOVo0bbLJksn/YL0Zr3G9mij0u3tAkt2sMkFffDg+T WG3bSnHOTi6evzp0fXtoYv+FFohQ75Zq/7SdMrGpQ3L7s/pezUu/6roKYV7leaOI KQA2tDTLKQvNjKV7CJWWoJJzH+fIIV8y5Z0mQSNDjofKI+xXIgAbwTn7yo2trVYp Okx/Kb1uBXVwCSak0YaqT0+wcscCAwEAAaOCAegwggHkMB0GA1UdDgQWBBQkb882 7TmkhxQVzvSiNveEvgK0AzAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHgGCCsGAQUFBwELBGwwajBoBggrBgEFBQcwC4ZccnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzQzMzMzMzUzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmd96DANBgkqhkiG9w0B AQsFAAOCAQEAYHk6h9b5CrALZZ8SpP2UWVnzQ1uIN0CDcTWL8haQuQx+Ihq/aUJ8 qWiXKNhRwtC52XGJJQlqHI4hBl4xvB9t0+KANyQ5wKM5dOCOR5wIsqQGAzkvXeKr TYU5MYEDSSK1OY4z4JQOmdH8Tedi+dmwsiwLRRg1FM5XZB1d/ANIsH4qNbkIJVfs bt4rIFChv0E2CLjqPA+gy07+y+80JApZ2MuAxdf5eLx8GuIiPwsV4s9lo5otQnaY 6+CNt3MXzDV5Cy459Be0SWgUKMb2WKN9GnsjeviI9t7U9GFlNipcr6h0gdyDpdkc AS4U+imKClDhnge8jZwdTjpT3jI0++AlPA== -----END CERTIFICATE-----Generated at Fri May 17 20:12:29 2024 by rpki-client on console-fra.rpki-client.org