$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa File: 3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: JFgikoosW77rCCGiBkowQ97xtUQuU8MrNrAShHYoknM= Subject key identifier: C5:3A:14:18:F0:36:AE:FA:B0:46:1C:B9:23:17:80:68:55:B8:2E:97 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 2DDA7AF58250EBE1F1AB8DD63A38A1A38453079E Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa Signing time: Thu 12 Sep 2024 16:46:53 +0000 ROA not before: Thu 12 Sep 2024 16:41:53 +0000 ROA not after: Thu 11 Sep 2025 16:46:53 +0000 asID: 9312 IP address blocks: 103.125.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:da:7a:f5:82:50:eb:e1:f1:ab:8d:d6:3a:38:a1:a3:84:53:07:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Sep 12 16:41:53 2024 GMT Not After : Sep 11 16:46:53 2025 GMT Subject: CN=C53A1418F036AEFAB0461CB92317806855B82E97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:3f:6d:e3:1c:e2:e6:bb:9e:56:ce:3a:ba:d9: 7e:ac:ba:60:86:5f:f4:cb:a9:84:95:18:88:9b:00: 66:d8:c5:20:e8:67:61:f3:25:77:d8:9f:45:78:4d: 04:eb:67:a7:9d:30:5d:c9:07:59:2a:c6:f0:65:af: 3c:31:f5:de:d7:58:ec:3b:f3:12:8d:c2:60:1b:11: 11:28:6c:40:29:a1:2c:f2:3d:80:61:eb:cf:c7:97: 65:2d:37:2e:27:6e:3e:61:63:2b:ce:af:df:a3:93: 91:80:0c:6d:62:00:0e:a2:91:83:ac:c1:48:3a:9a: c9:ba:55:c4:3d:9b:d3:79:c5:1f:a7:e1:31:06:ab: 7e:b0:f5:64:77:0f:56:e4:e5:96:7a:c6:4f:73:aa: bf:c9:15:47:04:e7:74:0f:1a:d6:58:3c:83:af:cf: a2:0c:ca:b4:0c:e7:96:0f:1a:eb:8f:46:9c:08:9e: 85:cc:ad:1c:94:69:73:2b:ae:07:6d:32:40:23:b5: 6e:81:b2:47:df:79:d2:43:7d:58:fe:90:c6:ee:0f: 1f:08:21:af:41:bc:d3:88:c3:7c:68:6d:b1:7d:46: e8:cf:e0:9f:be:0a:a6:af:da:65:88:77:6c:cf:d0: 95:fa:fd:f2:b6:e3:27:87:47:34:44:49:3b:05:55: d1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3A:14:18:F0:36:AE:FA:B0:46:1C:B9:23:17:80:68:55:B8:2E:97 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.232.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:d3:f4:8f:87:26:9a:5a:c3:4c:8a:01:2e:8d:c9:8b:90:15: a4:20:94:d0:63:ca:09:0a:af:22:02:b3:57:ef:b8:0d:87:76: 65:59:6a:d5:04:c4:3f:94:34:49:9e:76:fa:e0:73:c8:01:49: 03:bb:ba:65:78:c2:b5:b7:a2:fd:16:e9:d0:9f:f7:9b:14:3a: 3f:6d:00:52:91:ee:6d:28:c3:4d:af:4a:c1:e3:5e:06:91:ab: e6:e2:d8:e6:fb:4d:d5:da:6b:8f:d1:94:5d:86:17:3f:3b:7b: 49:e4:fd:28:cb:0e:b6:4d:7a:33:7b:8b:0a:73:70:45:12:fe: 6d:bd:dd:58:63:78:68:04:e3:eb:e5:e7:de:65:3c:f4:22:6c: bc:c0:eb:1e:a1:bf:74:34:bc:30:f1:09:33:28:db:25:16:13: 5c:1f:18:7d:86:39:62:97:b8:55:08:2b:fe:2b:31:aa:38:e0: 26:8c:d3:e4:eb:93:49:66:5a:da:2a:7d:e7:1c:17:5f:02:43: 4f:8c:3a:84:ac:99:48:a5:5e:07:cd:e2:68:e1:fa:93:74:0c: 6d:a8:40:2b:d8:f3:71:f8:9e:fd:88:95:f6:50:ee:18:66:8b: bf:5b:f6:a9:68:5d:8d:5d:96:83:34:a4:8a:36:86:d5:d5:86: 03:54:e9:a4 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIULdp69YJQ6+Hxq43WOjiho4RTB54wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI0MDkxMjE2NDE1M1oX DTI1MDkxMTE2NDY1M1owMzExMC8GA1UEAxMoQzUzQTE0MThGMDM2QUVGQUIwNDYx Q0I5MjMxNzgwNjg1NUI4MkU5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO8/beMc4ua7nlbOOrrZfqy6YIZf9MuphJUYiJsAZtjFIOhnYfMld9ifRXhN BOtnp50wXckHWSrG8GWvPDH13tdY7DvzEo3CYBsREShsQCmhLPI9gGHrz8eXZS03 LiduPmFjK86v36OTkYAMbWIADqKRg6zBSDqaybpVxD2b03nFH6fhMQarfrD1ZHcP VuTllnrGT3Oqv8kVRwTndA8a1lg8g6/PogzKtAznlg8a649GnAiehcytHJRpcyuu B20yQCO1boGyR9950kN9WP6Qxu4PHwghr0G804jDfGhtsX1G6M/gn74Kpq/aZYh3 bM/Qlfr98rbjJ4dHNERJOwVV0bcCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBTFOhQY 8Dau+rBGHLkjF4BoVbgulzAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHYGCCsGAQUFBwELBGowaDBmBggrBgEFBQcwC4ZacnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMyMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfegwDQYJKoZIhvcNAQEL BQADggEBADzT9I+HJppaw0yKAS6NyYuQFaQglNBjygkKryICs1fvuA2HdmVZatUE xD+UNEmedvrgc8gBSQO7umV4wrW3ov0W6dCf95sUOj9tAFKR7m0ow02vSsHjXgaR q+bi2Ob7TdXaa4/RlF2GFz87e0nk/SjLDrZNejN7iwpzcEUS/m293VhjeGgE4+vl 595lPPQibLzA6x6hv3Q0vDDxCTMo2yUWE1wfGH2GOWKXuFUIK/4rMao44CaM0+Tr k0lmWtoqfeccF18CQ0+MOoSsmUilXgfN4mjh+pN0DG2oQCvY83H4nv2IlfZQ7hhm i79b9qloXY1dloM0pIo2htXVhgNU6aQ= -----END CERTIFICATE-----Generated at Fri Nov 22 04:32:56 2024 by rpki-client on console-fra.rpki-client.org