$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa File: 3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: t/IvExZPisuCT40I66rzBh3x410A0T8+JyYBhEtPSmQ= Subject key identifier: 18:28:5F:3D:D8:64:7C:93:BB:80:44:07:9F:6E:E4:2F:81:5D:40:80 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 63B564C88127446DF13B991C2D14734C4F2FE834 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa Signing time: Thu 12 Oct 2023 15:59:56 +0000 ROA not before: Thu 12 Oct 2023 15:54:56 +0000 ROA not after: Thu 10 Oct 2024 15:59:56 +0000 asID: 9312 IP address blocks: 103.125.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 22:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:b5:64:c8:81:27:44:6d:f1:3b:99:1c:2d:14:73:4c:4f:2f:e8:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Oct 12 15:54:56 2023 GMT Not After : Oct 10 15:59:56 2024 GMT Subject: CN=18285F3DD8647C93BB8044079F6EE42F815D4080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ea:6e:f8:d1:38:db:68:df:32:13:fe:d9:5d: 4d:2b:26:d5:ec:3d:40:14:d1:a0:76:d7:97:0f:f7: c1:b5:39:b6:e3:3d:9b:13:f8:92:da:44:86:7d:cd: 73:14:20:ff:93:1d:4b:61:c6:06:11:cf:a6:d3:f6: bc:84:af:fa:d2:b8:2b:09:70:18:21:02:9f:23:2c: a1:84:44:81:78:27:9f:2a:3f:c4:33:91:db:58:77: 98:91:8e:fd:56:c1:a7:73:5d:24:f0:50:c2:7a:d0: 02:b1:ee:e2:64:a3:d7:14:9b:0a:26:ca:71:07:bf: f1:04:56:42:82:44:37:b2:0d:74:f8:bd:a9:a5:57: 80:4b:25:74:44:24:04:34:59:79:00:e9:26:0b:00: 1f:34:12:9b:45:91:32:d0:d9:11:4c:6e:a8:8e:4c: a5:01:fd:a9:db:d0:1d:f4:18:f7:99:6f:d2:ed:19: 22:d9:ef:74:e2:86:2c:36:5b:24:01:d1:2d:63:2b: 31:75:ef:15:1f:ba:10:b2:fa:dc:27:b4:53:39:21: 35:ca:4a:1d:5e:60:ae:fc:6f:fe:b3:8c:10:4e:30: 89:6f:c1:0f:9b:d4:f2:ec:81:fe:f5:73:80:3a:07: 2f:62:7c:03:98:37:81:3f:dd:4c:5e:c1:ce:49:71: 5b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:28:5F:3D:D8:64:7C:93:BB:80:44:07:9F:6E:E4:2F:81:5D:40:80 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.232.0/24 Signature Algorithm: sha256WithRSAEncryption c9:1c:18:3d:e9:6b:63:27:45:ee:d2:c9:da:3b:c8:2b:ba:e5: b0:5b:77:47:47:e0:69:b5:d5:54:68:4e:86:77:90:46:ba:27: 23:f9:e3:37:e0:5f:73:1f:aa:63:9b:d6:e6:81:2c:28:a1:3b: bc:84:c7:6b:58:89:c9:73:5f:48:2f:32:61:70:9b:4e:29:22: f5:17:1d:25:86:23:02:4a:37:f5:32:50:2b:49:c8:3c:19:86: 34:b5:62:a7:98:81:25:84:f2:8a:ef:18:91:5f:dd:32:42:ac: f7:46:d6:3b:c4:4f:2e:cd:3d:80:5e:71:38:51:c2:ff:b3:57: 38:86:f0:d9:76:d4:cb:d4:a9:f8:a3:ce:59:d5:5d:29:fd:49: c7:40:8e:e4:37:b0:f3:85:d5:d4:55:ce:55:da:d6:a9:a0:b0: f2:1c:c7:c9:f2:b9:b9:a9:a3:54:3a:ab:d2:c7:66:b7:a4:4a: 54:39:93:5e:3e:22:e8:6e:a5:db:17:10:9a:35:b6:85:52:b6: 8f:a7:48:3e:68:84:32:63:5d:43:45:a3:c5:95:40:0d:71:cd: 79:97:3d:d4:19:63:7b:02:43:5e:4f:01:bd:a6:17:e5:38:77: 3e:14:93:99:1d:37:a3:f2:4c:30:09:da:90:6b:27:b4:2e:92: c8:b0:0d:00 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUY7VkyIEnRG3xO5kcLRRzTE8v6DQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTIzMTAxMjE1NTQ1NloX DTI0MTAxMDE1NTk1NlowMzExMC8GA1UEAxMoMTgyODVGM0REODY0N0M5M0JCODA0 NDA3OUY2RUU0MkY4MTVENDA4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJjqbvjRONto3zIT/tldTSsm1ew9QBTRoHbXlw/3wbU5tuM9mxP4ktpEhn3N cxQg/5MdS2HGBhHPptP2vISv+tK4KwlwGCECnyMsoYREgXgnnyo/xDOR21h3mJGO /VbBp3NdJPBQwnrQArHu4mSj1xSbCibKcQe/8QRWQoJEN7INdPi9qaVXgEsldEQk BDRZeQDpJgsAHzQSm0WRMtDZEUxuqI5MpQH9qdvQHfQY95lv0u0ZItnvdOKGLDZb JAHRLWMrMXXvFR+6ELL63Ce0UzkhNcpKHV5grvxv/rOMEE4wiW/BD5vU8uyB/vVz gDoHL2J8A5g3gT/dTF7BzklxWz8CAwEAAaOCAeYwggHiMB0GA1UdDgQWBBQYKF89 2GR8k7uARAefbuQvgV1AgDAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHYGCCsGAQUFBwELBGowaDBmBggrBgEFBQcwC4ZacnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMyMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfegwDQYJKoZIhvcNAQEL BQADggEBAMkcGD3pa2MnRe7Sydo7yCu65bBbd0dH4Gm11VRoToZ3kEa6JyP54zfg X3MfqmOb1uaBLCihO7yEx2tYiclzX0gvMmFwm04pIvUXHSWGIwJKN/UyUCtJyDwZ hjS1YqeYgSWE8orvGJFf3TJCrPdG1jvETy7NPYBecThRwv+zVziG8Nl21MvUqfij zlnVXSn9ScdAjuQ3sPOF1dRVzlXa1qmgsPIcx8nyubmpo1Q6q9LHZrekSlQ5k14+ IuhupdsXEJo1toVSto+nSD5ohDJjXUNFo8WVQA1xzXmXPdQZY3sCQ15PAb2mF+U4 dz4Uk5kdN6PyTDAJ2pBrJ7QuksiwDQA= -----END CERTIFICATE-----Generated at Fri May 17 20:12:29 2024 by rpki-client on console-fra.rpki-client.org