$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e2033323538.roa File: 323430333a666263303a3a2f33322d3438203d3e2033323538.roa (raw, json) Hash identifier: qT0lMgRpwLFso5naa/mhacL7Cn9IbDh6RYMw8Ne5qR4= Subject key identifier: 30:EF:19:60:E6:3B:66:25:08:AE:9A:0B:5D:1C:F6:7A:5B:BE:3E:B5 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 6B5BB5F0A7E59859804CD010E821F96510DB9EAC Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e2033323538.roa Signing time: Fri 13 Mar 2026 09:43:57 +0000 ROA not before: Fri 13 Mar 2026 09:38:57 +0000 ROA not after: Fri 12 Mar 2027 09:43:57 +0000 asID: 3258 IP address blocks: 2403:fbc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 06:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:5b:b5:f0:a7:e5:98:59:80:4c:d0:10:e8:21:f9:65:10:db:9e:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Mar 13 09:38:57 2026 GMT Not After : Mar 12 09:43:57 2027 GMT Subject: CN=30EF1960E63B662508AE9A0B5D1CF67A5BBE3EB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6f:85:f2:9e:2b:1f:39:f0:d9:63:e6:75:9f: 9e:24:35:af:82:c6:39:d6:72:58:d8:15:3c:14:1d: 66:8d:e6:ec:12:e9:d4:9b:45:70:e0:9e:8e:b1:22: f4:a0:5d:39:a1:bf:c1:df:c6:4c:9c:62:7a:cb:7e: 63:47:d0:fe:fe:3c:a5:40:e8:03:b0:38:ec:92:5b: 50:f9:db:5c:55:21:28:b3:76:29:1b:3b:03:69:48: a3:b7:7c:32:ee:0c:42:d6:61:6e:0c:7f:c4:6f:58: 6a:71:df:e3:e3:d3:f9:67:f8:60:3c:5d:06:cd:d7: 52:b6:d7:be:cd:7f:e4:3c:c4:c4:0e:49:3b:f5:78: 5f:84:5d:c8:2a:ba:f8:cd:c8:7f:13:66:a2:c9:91: e1:9d:5f:b8:8b:d6:8a:5c:43:24:46:ce:fe:83:c7: 8d:95:80:7d:98:cb:ec:1e:d8:30:6e:0f:0b:fa:8d: e7:25:f1:08:ba:5e:c2:51:d5:b4:a5:10:c1:e3:28: 7a:2b:96:97:94:45:41:e0:ef:74:a6:29:b7:37:73: 32:99:3c:b2:dd:56:ba:e3:0b:b7:e6:42:a2:39:f2: b1:2d:65:30:41:53:20:3b:43:19:90:d1:64:da:80: de:5c:24:e7:5d:af:be:79:84:92:b5:8f:0e:a5:65: 6d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:EF:19:60:E6:3B:66:25:08:AE:9A:0B:5D:1C:F6:7A:5B:BE:3E:B5 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fbc0::/32 Signature Algorithm: sha256WithRSAEncryption 8b:e6:e5:4d:9c:40:22:ee:cb:26:99:df:b3:45:3b:4f:10:49: 25:7e:eb:57:83:ad:38:b0:4d:67:90:1b:48:92:92:ab:75:4e: 7c:b1:b6:b3:69:a0:3d:a8:2f:dd:72:62:52:75:a3:7e:ff:6e: ac:38:f1:58:1f:ec:21:17:a1:c3:a3:09:a1:cd:4b:5b:1b:d8: 7e:c8:8f:f9:76:1f:a1:a0:89:68:4d:5b:df:40:31:86:c5:1c: 73:9c:21:e1:b4:20:a7:1f:9c:10:68:b6:6c:f1:8d:e5:e4:ac: a9:37:5c:45:38:85:b6:34:96:f9:d2:9e:38:ad:7e:c8:7b:4a: 29:9a:cf:4b:05:73:53:2b:84:c4:df:2d:a8:01:93:3a:6c:34: 51:7e:d8:a9:07:33:69:d3:01:1b:93:2c:d1:40:03:3a:8a:43: 6d:eb:b0:3b:5f:62:86:c3:7d:c4:79:6b:15:b9:45:1c:20:cc: 17:a9:52:b9:75:25:d0:d8:0b:a4:d7:20:bd:fe:dc:f3:ce:94: b6:39:e5:21:05:40:60:ba:0a:04:41:0e:61:0a:dd:e8:0c:65: 20:67:72:b9:fc:ae:fe:76:b6:66:f2:97:db:1f:6d:97:17:31: 3b:08:d2:44:17:23:52:20:22:37:d3:be:41:86:27:a1:d1:c0: b6:f5:f5:a8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUa1u18KflmFmATNAQ6CH5ZRDbnqwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI2MDMxMzA5Mzg1N1oX DTI3MDMxMjA5NDM1N1owMzExMC8GA1UEAxMoMzBFRjE5NjBFNjNCNjYyNTA4QUU5 QTBCNUQxQ0Y2N0E1QkJFM0VCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdvhfKeKx858Nlj5nWfniQ1r4LGOdZyWNgVPBQdZo3m7BLp1JtFcOCejrEi 9KBdOaG/wd/GTJxiest+Y0fQ/v48pUDoA7A47JJbUPnbXFUhKLN2KRs7A2lIo7d8 Mu4MQtZhbgx/xG9YanHf4+PT+Wf4YDxdBs3XUrbXvs1/5DzExA5JO/V4X4RdyCq6 +M3IfxNmosmR4Z1fuIvWilxDJEbO/oPHjZWAfZjL7B7YMG4PC/qN5yXxCLpewlHV tKUQweMoeiuWl5RFQeDvdKYptzdzMpk8st1WuuMLt+ZCojnysS1lMEFTIDtDGZDR ZNqA3lwk512vvnmEkrWPDqVlbasCAwEAAaOCAeMwggHfMB0GA1UdDgQWBBQw7xlg 5jtmJQiumgtdHPZ6W74+tTAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMjM0MzAzMzNhNjY2MjYzMzAzYTNhMmYzMzMyMmQzNDM4 MjAzZDNlMjAzMzMyMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD+8AwDQYJKoZIhvcNAQELBQAD ggEBAIvm5U2cQCLuyyaZ37NFO08QSSV+61eDrTiwTWeQG0iSkqt1TnyxtrNpoD2o L91yYlJ1o37/bqw48Vgf7CEXocOjCaHNS1sb2H7Ij/l2H6GgiWhNW99AMYbFHHOc IeG0IKcfnBBotmzxjeXkrKk3XEU4hbY0lvnSnjitfsh7Simaz0sFc1MrhMTfLagB kzpsNFF+2KkHM2nTARuTLNFAAzqKQ23rsDtfYobDfcR5axW5RRwgzBepUrl1JdDY C6TXIL3+3PPOlLY55SEFQGC6CgRBDmEK3egMZSBncrn8rv52tmbyl9sfbZcXMTsI 0kQXI1IgIjfTvkGGJ6HRwLb19ag= -----END CERTIFICATE-----Generated at Tue Mar 17 18:05:13 2026 by rpki-client