$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa File: 3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: pZv8WRdNlBV4IKDx6bNv7oBg2N/5UFROImiToIit/aA= Subject key identifier: BD:EE:0E:FF:84:30:4D:1D:50:24:EE:F0:86:98:38:A2:A6:38:66:62 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 2C89BC5B003AFBF141F09BB079B66F32BDE17EED Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa Signing time: Thu 14 Aug 2025 17:43:56 +0000 ROA not before: Thu 14 Aug 2025 17:38:56 +0000 ROA not after: Thu 13 Aug 2026 17:43:56 +0000 asID: 9312 IP address blocks: 103.125.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 01:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:89:bc:5b:00:3a:fb:f1:41:f0:9b:b0:79:b6:6f:32:bd:e1:7e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Aug 14 17:38:56 2025 GMT Not After : Aug 13 17:43:56 2026 GMT Subject: CN=BDEE0EFF84304D1D5024EEF0869838A2A6386662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:23:5a:9f:6e:15:32:c7:76:26:e0:9a:72:68: 91:42:ec:f5:a4:0c:f8:b0:ec:4d:25:1b:1e:dc:c9: 2f:88:d3:17:1b:b5:b2:a0:48:2a:1f:48:13:30:52: d1:16:fc:ca:b7:44:6c:42:51:96:20:95:3b:2a:09: 44:a0:ee:be:e7:c0:55:91:96:88:b2:1b:6c:d6:dc: 61:e2:18:b3:73:b5:91:2c:66:a3:d9:e9:87:a9:65: be:6a:30:06:f0:f0:34:73:10:3c:3d:83:ed:06:7f: 5f:80:cb:1b:08:88:ae:cc:57:3f:45:48:66:e3:6a: c9:6c:5c:be:33:7f:ef:ef:6f:a7:14:e1:77:c9:57: 71:73:87:d4:ba:67:82:98:40:e3:26:f5:97:54:f9: 04:6a:ac:c0:27:31:c0:c1:c8:9e:4a:a2:0b:c9:1d: ac:0d:43:2b:d1:54:81:54:5d:cc:48:c8:2a:b8:a6: c5:b1:ac:c6:3f:fe:7b:13:5d:6b:4d:06:68:02:0c: ac:71:e2:46:35:7a:0d:f2:cb:57:f0:ed:18:3b:30: 7d:d0:36:c5:24:d7:3f:4e:0e:fe:7c:b3:8f:02:de: 71:92:5e:ec:aa:0f:f4:22:a9:b5:48:5e:74:c4:a3: c5:4c:dc:52:30:8e:0d:06:1c:70:b5:4d:9f:e2:8a: 55:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:EE:0E:FF:84:30:4D:1D:50:24:EE:F0:86:98:38:A2:A6:38:66:62 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.233.0/24 Signature Algorithm: sha256WithRSAEncryption c4:6a:90:2a:71:7c:16:29:19:eb:93:8e:db:b2:36:c0:eb:c7: e1:02:1d:06:fe:9b:6a:2c:4c:b3:52:ff:9f:81:fd:88:c4:0f: 1f:bc:b2:a2:99:fe:fc:ab:92:f1:fb:56:b8:8b:a7:0e:b1:ad: 2a:77:df:e1:1e:ee:49:ca:ca:29:eb:dd:c4:4b:95:d5:f3:c2: 57:d4:00:7c:c0:a4:c5:b3:2f:fa:68:be:f0:d9:46:1d:e1:49: 72:b5:61:6d:92:a0:bd:89:80:aa:68:d1:82:d6:82:85:fc:1f: 61:27:76:76:7d:1a:e2:2f:aa:ce:1b:88:e3:08:9d:5b:b5:97: 6a:cf:a4:82:4d:db:0f:85:8a:ff:30:8f:3e:93:82:c0:21:f1: 3d:69:73:05:cc:9a:2c:58:42:b9:61:2e:1f:d3:a3:a2:02:72: 45:29:c4:7b:5e:7f:e1:a5:13:14:31:c9:3c:1f:13:8b:97:ce: 29:28:75:d5:bc:e7:dc:b6:fa:68:8c:b9:70:3d:87:c0:ad:3f: a6:0f:a3:8c:9d:77:92:85:aa:11:85:7e:65:15:0e:ad:be:84: 44:a8:ba:b2:37:f6:1d:a1:86:8f:58:ca:50:37:4b:28:89:53: 80:d1:16:fb:68:f4:0b:5b:07:8b:91:d6:61:cd:02:3a:fd:17: 40:f1:29:10 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIULIm8WwA6+/FB8JuwebZvMr3hfu0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI1MDgxNDE3Mzg1NloX DTI2MDgxMzE3NDM1NlowMzExMC8GA1UEAxMoQkRFRTBFRkY4NDMwNEQxRDUwMjRF RUYwODY5ODM4QTJBNjM4NjY2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkjWp9uFTLHdibgmnJokULs9aQM+LDsTSUbHtzJL4jTFxu1sqBIKh9IEzBS 0Rb8yrdEbEJRliCVOyoJRKDuvufAVZGWiLIbbNbcYeIYs3O1kSxmo9nph6llvmow BvDwNHMQPD2D7QZ/X4DLGwiIrsxXP0VIZuNqyWxcvjN/7+9vpxThd8lXcXOH1Lpn gphA4yb1l1T5BGqswCcxwMHInkqiC8kdrA1DK9FUgVRdzEjIKrimxbGsxj/+exNd a00GaAIMrHHiRjV6DfLLV/DtGDswfdA2xSTXP04O/nyzjwLecZJe7KoP9CKptUhe dMSjxUzcUjCODQYccLVNn+KKVYECAwEAAaOCAeYwggHiMB0GA1UdDgQWBBS97g7/ hDBNHVAk7vCGmDiipjhmYjAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHYGCCsGAQUFBwELBGowaDBmBggrBgEFBQcwC4ZacnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMTMwMzMyZTMxMzIzNTJlMzIzMzMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfekwDQYJKoZIhvcNAQEL BQADggEBAMRqkCpxfBYpGeuTjtuyNsDrx+ECHQb+m2osTLNS/5+B/YjEDx+8sqKZ /vyrkvH7VriLpw6xrSp33+Ee7knKyinr3cRLldXzwlfUAHzApMWzL/povvDZRh3h SXK1YW2SoL2JgKpo0YLWgoX8H2EndnZ9GuIvqs4biOMInVu1l2rPpIJN2w+Fiv8w jz6TgsAh8T1pcwXMmixYQrlhLh/To6ICckUpxHtef+GlExQxyTwfE4uXzikoddW8 59y2+miMuXA9h8CtP6YPo4ydd5KFqhGFfmUVDq2+hESourI39h2hho9YylA3SyiJ U4DRFvto9AtbB4uR1mHNAjr9F0DxKRA= -----END CERTIFICATE-----Generated at Sat Aug 23 18:17:26 2025 by rpki-client