$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa File: 3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: YBcj0Y7Hb7dgFTi+rZqUgqhjt4rx48fgaI0O88QVy6s= Subject key identifier: A4:68:12:20:C8:46:6E:F4:EB:EF:41:51:64:C1:EC:0C:5B:14:4F:51 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 6353A19A6036BF25BC7954DFFA5CA52CCE5F4918 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa Signing time: Thu 12 Sep 2024 16:46:53 +0000 ROA not before: Thu 12 Sep 2024 16:41:53 +0000 ROA not after: Thu 11 Sep 2025 16:46:53 +0000 asID: 9312 IP address blocks: 103.125.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:53:a1:9a:60:36:bf:25:bc:79:54:df:fa:5c:a5:2c:ce:5f:49:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Sep 12 16:41:53 2024 GMT Not After : Sep 11 16:46:53 2025 GMT Subject: CN=A4681220C8466EF4EBEF415164C1EC0C5B144F51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:22:02:fe:b1:81:64:8a:98:c2:cf:35:58:ec: 8f:d0:77:06:2c:12:92:2f:b5:e2:82:fb:d1:f1:ce: 77:d0:1a:09:eb:f0:44:a0:0f:ac:75:85:ea:ce:86: 52:62:33:ef:b6:01:bf:22:62:43:3a:4b:fb:d2:3a: dd:97:0f:39:45:82:40:0f:c1:bd:33:e5:b7:ae:33: 7b:74:e7:dd:04:9c:50:ab:35:00:17:d3:50:87:6e: af:ef:71:78:57:0e:ce:e0:e4:9f:5e:6a:85:0a:b9: de:b1:ac:41:cd:e7:6a:64:46:8f:68:9c:08:15:f7: f8:7d:da:59:85:12:c2:74:09:82:a7:81:cd:15:5a: c3:49:5b:c4:2a:57:55:ce:f7:6f:a9:1b:38:be:53: 3c:7b:24:54:87:a7:24:00:a8:96:11:7d:90:dd:fc: d8:d1:db:d9:82:4e:34:cf:a7:97:37:27:d3:53:87: b0:16:d4:39:ad:3c:10:e3:d6:43:74:0a:67:cb:19: 94:a4:e6:be:2d:26:6f:11:ec:53:dc:07:ef:31:c4: 6a:59:bd:6f:67:be:92:b9:6b:db:6d:26:b3:c8:8b: 4a:2d:4d:06:11:9a:c0:b1:19:a1:c9:8a:35:87:3d: 6e:71:3f:62:ec:77:f0:f8:26:c0:eb:b9:9c:38:2d: cb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:68:12:20:C8:46:6E:F4:EB:EF:41:51:64:C1:EC:0C:5B:14:4F:51 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.233.0/24 Signature Algorithm: sha256WithRSAEncryption c3:e1:c2:01:41:6f:9b:e4:7f:de:ee:c0:aa:f0:00:2a:17:35: 70:2e:a4:48:df:8e:df:15:10:32:70:9f:5b:8c:a0:0c:32:15: 29:94:4b:5c:f2:2d:14:cc:a4:f0:94:e9:97:82:ac:8b:72:b2: 77:1d:4f:30:02:96:88:08:2a:a3:a1:f1:82:89:6f:aa:2d:10: 32:6c:74:18:0d:45:41:b8:fd:9f:88:86:7f:30:19:67:d1:9a: 03:1b:9f:bf:37:1e:c1:7b:2d:5f:90:cf:21:a9:d2:dd:88:f4: 90:6b:78:c9:a5:de:8a:c6:c0:e1:d7:86:44:d0:75:ea:6e:7c: 51:af:69:83:3b:34:7c:03:09:35:20:7d:54:4e:5c:47:de:91: bc:0a:68:87:fd:a8:ff:04:a4:61:61:09:fd:a4:d5:5e:43:7d: cb:0b:75:a7:f2:80:b5:57:2a:68:2a:9b:39:67:13:ec:c7:45: fe:75:ef:f5:25:a3:84:b9:1c:3b:6f:85:3a:26:3b:9d:30:7b: 23:6f:fb:b9:10:7f:c7:4a:d4:2f:d3:7a:22:d3:5d:16:0c:b2: 84:69:7e:3d:ad:38:2a:c7:fa:1f:72:8a:d2:00:fa:9a:af:d1: 0c:51:e0:c4:78:ea:e9:e4:ec:23:d3:42:9a:20:2e:75:df:fb: 3b:68:8c:4f -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUY1OhmmA2vyW8eVTf+lylLM5fSRgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI0MDkxMjE2NDE1M1oX DTI1MDkxMTE2NDY1M1owMzExMC8GA1UEAxMoQTQ2ODEyMjBDODQ2NkVGNEVCRUY0 MTUxNjRDMUVDMEM1QjE0NEY1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMEiAv6xgWSKmMLPNVjsj9B3BiwSki+14oL70fHOd9AaCevwRKAPrHWF6s6G UmIz77YBvyJiQzpL+9I63ZcPOUWCQA/BvTPlt64ze3Tn3QScUKs1ABfTUIdur+9x eFcOzuDkn15qhQq53rGsQc3namRGj2icCBX3+H3aWYUSwnQJgqeBzRVaw0lbxCpX Vc73b6kbOL5TPHskVIenJAColhF9kN382NHb2YJONM+nlzcn01OHsBbUOa08EOPW Q3QKZ8sZlKTmvi0mbxHsU9wH7zHEalm9b2e+krlr220ms8iLSi1NBhGawLEZocmK NYc9bnE/Yux38PgmwOu5nDgty5sCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBSkaBIg yEZu9OvvQVFkwewMWxRPUTAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHYGCCsGAQUFBwELBGowaDBmBggrBgEFBQcwC4ZacnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfekwDQYJKoZIhvcNAQEL BQADggEBAMPhwgFBb5vkf97uwKrwACoXNXAupEjfjt8VEDJwn1uMoAwyFSmUS1zy LRTMpPCU6ZeCrItysncdTzAClogIKqOh8YKJb6otEDJsdBgNRUG4/Z+Ihn8wGWfR mgMbn783HsF7LV+QzyGp0t2I9JBreMml3orGwOHXhkTQdepufFGvaYM7NHwDCTUg fVROXEfekbwKaIf9qP8EpGFhCf2k1V5DfcsLdafygLVXKmgqmzlnE+zHRf517/Ul o4S5HDtvhTomO50weyNv+7kQf8dK1C/TeiLTXRYMsoRpfj2tOCrH+h9yitIA+pqv 0QxR4MR46unk7CPTQpogLnXf+ztojE8= -----END CERTIFICATE-----Generated at Fri Nov 22 04:51:54 2024 by rpki-client on console-ams.rpki-client.org