$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa File: 3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: Orhkd5BJrOYHH04ItUP52PTFKFnHDMsVnu+OAkIgfd0= Subject key identifier: 20:B8:22:65:B1:DE:9B:42:9A:BD:BC:7D:88:5C:64:89:A7:94:84:5A Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 2011AC699C94E8248E50081D88228ADEAA68B072 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa Signing time: Thu 12 Oct 2023 15:59:56 +0000 ROA not before: Thu 12 Oct 2023 15:54:56 +0000 ROA not after: Thu 10 Oct 2024 15:59:56 +0000 asID: 9312 IP address blocks: 103.125.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 03:33:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:11:ac:69:9c:94:e8:24:8e:50:08:1d:88:22:8a:de:aa:68:b0:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Oct 12 15:54:56 2023 GMT Not After : Oct 10 15:59:56 2024 GMT Subject: CN=20B82265B1DE9B429ABDBC7D885C6489A794845A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:70:7c:a5:85:57:7f:1a:92:34:e0:68:b6:63: d8:b9:83:2d:75:14:e6:75:5b:28:78:05:ac:78:d0: 60:32:09:ea:a1:9a:b8:48:0c:cf:5d:f1:3d:34:90: bc:e7:64:32:6e:80:3e:ad:e8:f9:7e:75:a9:b0:d3: 65:bd:5c:44:ff:17:11:f5:84:13:75:bb:53:13:a7: 35:48:e8:82:6c:f6:2f:09:d1:30:aa:f1:8d:46:c3: e6:9a:e9:6e:b0:7c:a5:64:6f:08:15:40:ce:7d:29: eb:59:0b:81:4f:e7:70:4b:fe:ce:ff:f0:05:88:f0: 28:f9:ab:78:d3:02:8a:e2:93:b0:58:d9:d2:9c:b0: dc:18:65:66:33:b0:0f:b7:d9:c5:45:f4:dc:fd:b6: 14:e1:35:38:df:2c:2d:c3:7a:f3:50:9d:a0:34:a4: 54:11:f6:f6:c3:1a:8b:70:84:7b:3f:87:b6:88:fb: 74:38:0b:9c:6a:97:86:e6:7b:3c:7b:94:94:d8:11: 29:6c:a5:3a:55:02:50:5f:f1:ad:7f:d8:68:19:01: 78:cb:a3:23:14:3d:c6:59:92:9e:05:f5:44:1f:c6: 7f:23:94:51:4e:75:6c:ed:42:7f:5c:50:98:b5:31: 09:e3:ac:66:87:3e:21:5e:2f:e5:a5:8a:58:f9:36: ef:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B8:22:65:B1:DE:9B:42:9A:BD:BC:7D:88:5C:64:89:A7:94:84:5A X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.233.0/24 Signature Algorithm: sha256WithRSAEncryption 62:de:19:bc:20:29:99:4f:43:5d:43:b8:17:27:ff:10:46:52: f9:c2:b5:e3:5e:8a:70:2e:28:21:dc:af:36:3a:84:b5:7a:d5: a8:e8:55:f6:5c:92:96:bc:b9:d0:61:3b:8f:b2:75:67:32:f7: 96:cc:0b:dd:c2:17:30:88:a8:93:fb:fe:21:fe:30:b6:4e:e1: b0:8d:8b:76:e3:46:71:1c:68:63:26:49:47:66:9c:49:a3:90: 5e:ec:1f:cd:1f:ba:d2:4e:f9:02:02:8a:fe:08:83:f5:d8:68: 21:e8:5d:66:43:fb:56:6b:e8:be:a6:1d:90:95:48:9b:2b:60: 32:37:40:58:5d:e5:14:6a:64:c8:c6:17:5c:38:51:2f:f2:0c: 39:95:60:ee:d6:19:29:3a:f4:6c:e6:ef:c8:0a:3c:bb:1b:40: ea:3f:94:ac:4c:16:e0:c1:01:c2:d4:43:dc:fd:9d:cd:86:a3: 4c:e2:53:72:1f:ea:4c:26:5b:c7:06:2f:83:b7:d3:37:e4:32: d4:2c:9c:d2:22:11:27:23:2c:e8:be:9e:ab:82:97:4d:5a:35: 60:3c:22:a4:d1:0b:59:24:e6:05:b9:11:3c:87:18:62:e8:ed: 31:9a:8b:53:3e:2d:68:ad:6b:7c:d6:0f:dc:ce:4c:e3:3c:b0: b4:1c:80:ed -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUIBGsaZyU6CSOUAgdiCKK3qposHIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTIzMTAxMjE1NTQ1NloX DTI0MTAxMDE1NTk1NlowMzExMC8GA1UEAxMoMjBCODIyNjVCMURFOUI0MjlBQkRC QzdEODg1QzY0ODlBNzk0ODQ1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZwfKWFV38akjTgaLZj2LmDLXUU5nVbKHgFrHjQYDIJ6qGauEgMz13xPTSQ vOdkMm6APq3o+X51qbDTZb1cRP8XEfWEE3W7UxOnNUjogmz2LwnRMKrxjUbD5prp brB8pWRvCBVAzn0p61kLgU/ncEv+zv/wBYjwKPmreNMCiuKTsFjZ0pyw3BhlZjOw D7fZxUX03P22FOE1ON8sLcN681CdoDSkVBH29sMai3CEez+Htoj7dDgLnGqXhuZ7 PHuUlNgRKWylOlUCUF/xrX/YaBkBeMujIxQ9xlmSngX1RB/GfyOUUU51bO1Cf1xQ mLUxCeOsZoc+IV4v5aWKWPk27/sCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBQguCJl sd6bQpq9vH2IXGSJp5SEWjAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHYGCCsGAQUFBwELBGowaDBmBggrBgEFBQcwC4ZacnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfekwDQYJKoZIhvcNAQEL BQADggEBAGLeGbwgKZlPQ11DuBcn/xBGUvnCteNeinAuKCHcrzY6hLV61ajoVfZc kpa8udBhO4+ydWcy95bMC93CFzCIqJP7/iH+MLZO4bCNi3bjRnEcaGMmSUdmnEmj kF7sH80futJO+QICiv4Ig/XYaCHoXWZD+1Zr6L6mHZCVSJsrYDI3QFhd5RRqZMjG F1w4US/yDDmVYO7WGSk69Gzm78gKPLsbQOo/lKxMFuDBAcLUQ9z9nc2Go0ziU3If 6kwmW8cGL4O30zfkMtQsnNIiEScjLOi+nquCl01aNWA8IqTRC1kk5gW5ETyHGGLo 7TGai1M+LWita3zWD9zOTOM8sLQcgO0= -----END CERTIFICATE-----Generated at Thu May 23 04:29:45 2024 by rpki-client on console-ams.rpki-client.org