$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/323430333a666263303a363030303a3a2f34382d3438203d3e20323132353132.roa File: 323430333a666263303a363030303a3a2f34382d3438203d3e20323132353132.roa (raw, json) Hash identifier: mOEZZXlbvr0r+t4Err2xpXQIv0HG+ZQx0ZqgTehzL54= Subject key identifier: 0A:10:23:2E:40:5A:32:BD:32:40:77:49:B8:AC:25:97:B9:D0:FD:09 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 68B627F67B72BD0241EF40F4EC05CEF934F9DF84 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a363030303a3a2f34382d3438203d3e20323132353132.roa Signing time: Wed 25 Mar 2026 12:43:57 +0000 ROA not before: Wed 25 Mar 2026 12:38:57 +0000 ROA not after: Wed 24 Mar 2027 12:43:57 +0000 asID: 212512 IP address blocks: 2403:fbc0:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 13:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:b6:27:f6:7b:72:bd:02:41:ef:40:f4:ec:05:ce:f9:34:f9:df:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Mar 25 12:38:57 2026 GMT Not After : Mar 24 12:43:57 2027 GMT Subject: CN=0A10232E405A32BD32407749B8AC2597B9D0FD09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f6:69:18:75:d6:e8:8d:0d:dd:1a:05:eb:51: 44:b5:92:2b:6e:74:5d:dd:fa:31:2f:0c:df:0b:55: 95:70:2d:b4:1e:46:c3:41:17:6b:e7:82:71:a5:4d: fa:d6:42:b4:1a:b9:f3:83:58:78:a8:99:47:e7:19: 35:e4:6a:f9:4a:83:1b:af:4e:7a:32:06:74:c8:18: 0c:b7:9d:2b:61:ab:13:61:16:97:be:94:ca:bf:c3: f0:f3:0d:be:53:44:0c:a8:d5:66:26:27:28:51:b0: 2c:2a:5f:30:2f:e4:e1:11:a6:91:b4:8f:c1:a4:5f: ec:dc:ab:be:d6:d7:73:25:e7:ac:a4:1e:1b:90:a5: 5e:37:75:f8:88:c8:ba:db:78:88:c4:9a:e9:6f:51: 3c:b8:08:95:3f:0f:4b:96:77:de:4e:2d:53:ba:ff: 45:7f:36:11:a1:91:96:bd:13:99:6c:1a:aa:62:37: 64:7c:a3:78:0b:93:b9:04:cf:48:ba:08:c5:24:53: f8:d9:e3:c8:a3:52:af:a7:61:48:e1:b0:f5:62:66: 75:47:71:28:1b:20:5f:63:de:3d:a7:b4:a7:d9:8e: 4e:f5:77:ff:6f:c7:77:65:e6:45:f1:70:5f:bb:65: cd:80:bc:ab:bb:7e:81:58:27:c7:ec:fc:cf:ba:15: 45:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:10:23:2E:40:5A:32:BD:32:40:77:49:B8:AC:25:97:B9:D0:FD:09 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a363030303a3a2f34382d3438203d3e20323132353132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fbc0:6000::/48 Signature Algorithm: sha256WithRSAEncryption c1:02:5f:79:6c:33:78:88:dd:c3:a3:6d:44:1d:f2:5d:72:73: 26:91:b9:d9:09:15:e9:01:4b:49:f8:59:27:4c:a1:50:58:ba: 62:78:38:df:2b:15:f0:59:63:e2:0d:7c:37:65:d1:49:97:50: 1b:46:bd:88:ed:99:bc:9e:d9:ed:3b:2f:66:92:ce:bc:08:63: 07:11:e4:38:69:2d:db:97:d1:57:eb:27:7c:df:b1:57:02:24: 60:8a:7e:38:2b:52:50:12:7a:1f:b3:0b:ee:56:df:77:80:e3: 3d:99:15:94:fe:7b:db:12:67:e5:fc:e2:2f:8c:b1:4c:b9:17: f1:0d:c0:3f:99:46:53:fd:43:4d:b3:cf:02:24:ca:56:46:70: 57:04:04:28:c6:e7:e0:2a:1a:65:65:94:2f:63:ca:ae:bd:7f: db:8c:61:76:d8:d6:e4:b1:e4:1b:f2:94:7a:da:c8:7f:8a:b8: e3:f4:c1:5b:14:e4:86:56:93:12:9c:5c:a6:a0:c5:a3:d4:4a: 11:7c:2b:24:0c:57:d1:36:d7:01:b2:be:d0:75:ae:90:36:ce: 46:49:01:3d:e3:f4:82:d6:4e:82:97:2d:6c:e7:99:ce:48:7f: 0d:9f:47:90:8d:88:d2:b5:67:13:a4:d8:a8:b4:5b:74:a1:e8: a6:3f:4b:a8 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUaLYn9ntyvQJB70D07AXO+TT534QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI2MDMyNTEyMzg1N1oX DTI3MDMyNDEyNDM1N1owMzExMC8GA1UEAxMoMEExMDIzMkU0MDVBMzJCRDMyNDA3 NzQ5QjhBQzI1OTdCOUQwRkQwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO/2aRh11uiNDd0aBetRRLWSK250Xd36MS8M3wtVlXAttB5Gw0EXa+eCcaVN +tZCtBq584NYeKiZR+cZNeRq+UqDG69OejIGdMgYDLedK2GrE2EWl76Uyr/D8PMN vlNEDKjVZiYnKFGwLCpfMC/k4RGmkbSPwaRf7NyrvtbXcyXnrKQeG5ClXjd1+IjI utt4iMSa6W9RPLgIlT8PS5Z33k4tU7r/RX82EaGRlr0TmWwaqmI3ZHyjeAuTuQTP SLoIxSRT+NnjyKNSr6dhSOGw9WJmdUdxKBsgX2PePae0p9mOTvV3/2/Hd2XmRfFw X7tlzYC8q7t+gVgnx+z8z7oVRVcCAwEAAaOCAfQwggHwMB0GA1UdDgQWBBQKECMu QFoyvTJAd0m4rCWXudD9CTAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5jOi8vcnBraS5vd2wu bmV0L3JyZHAvb3dsLzAvMzIzNDMwMzMzYTY2NjI2MzMwM2EzNjMwMzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjM1MzEzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQD+8Bg ADANBgkqhkiG9w0BAQsFAAOCAQEAwQJfeWwzeIjdw6NtRB3yXXJzJpG52QkV6QFL SfhZJ0yhUFi6Yng43ysV8Flj4g18N2XRSZdQG0a9iO2ZvJ7Z7TsvZpLOvAhjBxHk OGkt25fRV+snfN+xVwIkYIp+OCtSUBJ6H7ML7lbfd4DjPZkVlP572xJn5fziL4yx TLkX8Q3AP5lGU/1DTbPPAiTKVkZwVwQEKMbn4CoaZWWUL2PKrr1/24xhdtjW5LHk G/KUetrIf4q44/TBWxTkhlaTEpxcpqDFo9RKEXwrJAxX0TbXAbK+0HWukDbORkkB PeP0gtZOgpctbOeZzkh/DZ9HkI2I0rVnE6TYqLRbdKHopj9LqA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:38:35 2026 by rpki-client