$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa File: 3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: 5rh5xKoFim9+qzXuz9ue2E9gTTOhHmo70qMX7Q8lZTQ= Subject key identifier: B8:75:C5:3C:A0:CF:B7:A3:9A:ED:64:A0:1E:B3:5A:52:CA:A7:B7:CF Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 6AD05255FED3A1356B0633D897B3332D6C1AA72B Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa Signing time: Thu 14 Aug 2025 17:43:56 +0000 ROA not before: Thu 14 Aug 2025 17:38:56 +0000 ROA not after: Thu 13 Aug 2026 17:43:56 +0000 asID: 9312 IP address blocks: 103.125.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 20:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:d0:52:55:fe:d3:a1:35:6b:06:33:d8:97:b3:33:2d:6c:1a:a7:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Aug 14 17:38:56 2025 GMT Not After : Aug 13 17:43:56 2026 GMT Subject: CN=B875C53CA0CFB7A39AED64A01EB35A52CAA7B7CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1f:af:98:7f:fe:ec:95:0f:33:ea:00:a9:6c: c4:40:91:67:2b:59:fa:e3:e9:80:4f:23:85:57:87: b3:d4:52:dd:5f:3c:57:b4:66:22:24:ee:78:3a:40: b5:21:44:ee:9e:46:3f:53:0c:35:53:7d:63:a7:05: 93:7a:55:a8:05:bb:ee:9b:38:f8:f6:35:87:af:70: ce:6d:d3:1d:80:20:69:56:89:ac:5e:ad:32:cf:1d: 5a:b2:43:e5:6d:52:e4:b0:28:c3:0d:55:02:42:84: 20:a3:b8:28:a8:61:78:3c:8a:7f:da:78:7a:83:d5: c8:4c:39:d1:89:e2:43:f6:38:e6:de:ac:5a:4d:65: 95:d5:c6:cc:6e:9a:f3:3a:b4:c7:12:69:e3:cf:aa: 04:40:87:16:73:1a:00:56:44:2c:c8:0f:78:fd:af: c2:38:1d:28:8a:7f:d4:97:55:d7:ae:58:ec:c8:21: 49:b7:ef:8b:00:01:17:95:e8:76:e0:53:21:5f:c7: b5:c8:8e:49:c1:ef:b7:89:ea:a4:53:32:91:a4:b2: 48:12:53:7f:d3:04:33:b0:44:e4:34:83:c0:d8:74: 76:82:b2:8d:54:45:2e:8a:fb:cb:bc:06:4f:b5:64: 98:0d:83:0e:ed:0e:25:2f:aa:83:55:c8:8c:da:d9: f4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:75:C5:3C:A0:CF:B7:A3:9A:ED:64:A0:1E:B3:5A:52:CA:A7:B7:CF X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.232.0/24 Signature Algorithm: sha256WithRSAEncryption 60:9f:22:34:e4:56:1f:c1:9d:ee:6f:d8:ec:1f:96:e5:6f:aa: ee:bf:1d:82:5d:01:47:f7:90:bf:67:06:da:c7:d0:76:af:58: 68:86:50:d4:4b:cb:58:3c:07:92:60:d0:49:33:5a:9e:fd:0a: d1:f8:93:02:c6:23:aa:04:38:ca:09:e8:09:93:22:39:91:44: 97:65:a5:21:ad:9a:67:01:96:e2:37:30:70:1c:4a:93:3b:68: 69:f2:97:61:69:d3:b4:c1:1d:9b:53:ae:02:9c:cc:68:09:aa: 05:a1:e8:9b:20:be:3d:b3:7f:ac:c4:0d:b8:12:87:3b:73:5d: 49:4f:35:e4:80:c6:22:68:1c:3e:55:17:36:20:68:4c:d5:d7: e1:bf:38:50:d9:20:cd:a6:24:26:15:ed:07:13:57:41:40:b7: 8d:c4:13:f4:e6:f0:2c:5d:32:3f:a0:b5:1c:4c:0c:e8:94:cc: 0a:69:59:d1:91:09:40:9b:33:1d:c2:ab:5f:9d:d0:fb:a0:0a: 3f:c3:15:53:3d:fd:d9:e4:28:d7:c0:02:ef:35:a3:7f:5f:a1: 0c:a1:c2:13:f7:5a:f6:40:55:27:8c:b6:f2:7e:71:46:41:d2: b1:b0:79:0d:81:cc:e4:83:28:b6:b2:d4:49:d1:f1:dc:b1:aa: 87:05:4c:44 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUatBSVf7ToTVrBjPYl7MzLWwapyswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI1MDgxNDE3Mzg1NloX DTI2MDgxMzE3NDM1NlowMzExMC8GA1UEAxMoQjg3NUM1M0NBMENGQjdBMzlBRUQ2 NEEwMUVCMzVBNTJDQUE3QjdDRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAfr5h//uyVDzPqAKlsxECRZytZ+uPpgE8jhVeHs9RS3V88V7RmIiTueDpA tSFE7p5GP1MMNVN9Y6cFk3pVqAW77ps4+PY1h69wzm3THYAgaVaJrF6tMs8dWrJD 5W1S5LAoww1VAkKEIKO4KKhheDyKf9p4eoPVyEw50YniQ/Y45t6sWk1lldXGzG6a 8zq0xxJp48+qBECHFnMaAFZELMgPeP2vwjgdKIp/1JdV165Y7MghSbfviwABF5Xo duBTIV/HtciOScHvt4nqpFMykaSySBJTf9MEM7BE5DSDwNh0doKyjVRFLor7y7wG T7VkmA2DDu0OJS+qg1XIjNrZ9IUCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBS4dcU8 oM+3o5rtZKAes1pSyqe3zzAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHYGCCsGAQUFBwELBGowaDBmBggrBgEFBQcwC4ZacnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMyMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfegwDQYJKoZIhvcNAQEL BQADggEBAGCfIjTkVh/Bne5v2OwfluVvqu6/HYJdAUf3kL9nBtrH0HavWGiGUNRL y1g8B5Jg0EkzWp79CtH4kwLGI6oEOMoJ6AmTIjmRRJdlpSGtmmcBluI3MHAcSpM7 aGnyl2Fp07TBHZtTrgKczGgJqgWh6Jsgvj2zf6zEDbgShztzXUlPNeSAxiJoHD5V FzYgaEzV1+G/OFDZIM2mJCYV7QcTV0FAt43EE/Tm8CxdMj+gtRxMDOiUzAppWdGR CUCbMx3Cq1+d0PugCj/DFVM9/dnkKNfAAu81o39foQyhwhP3WvZAVSeMtvJ+cUZB 0rGweQ2BzOSDKLay1EnR8dyxqocFTEQ= -----END CERTIFICATE-----Generated at Sat Aug 23 20:13:09 2025 by rpki-client