$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203233393539.roa File: 323430333a666263303a3a2f33322d3438203d3e203233393539.roa (raw, json) Hash identifier: cDTbMfGHTly+QeOfyQG+o4pg0zroCRCYVzgE6JjA/GY= Subject key identifier: 54:73:B6:67:DB:23:77:10:CD:34:A1:E2:CA:78:51:CA:7C:0C:4E:BE Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 7CF153FA753DE2EA50AED092A7D4276441BC99D5 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203233393539.roa Signing time: Thu 14 Aug 2025 17:43:56 +0000 ROA not before: Thu 14 Aug 2025 17:38:56 +0000 ROA not after: Thu 13 Aug 2026 17:43:56 +0000 asID: 23959 IP address blocks: 2403:fbc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 01:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:f1:53:fa:75:3d:e2:ea:50:ae:d0:92:a7:d4:27:64:41:bc:99:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Aug 14 17:38:56 2025 GMT Not After : Aug 13 17:43:56 2026 GMT Subject: CN=5473B667DB237710CD34A1E2CA7851CA7C0C4EBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:65:be:ba:43:6b:e6:6b:4d:d3:93:25:95:f5: b8:04:d7:75:b3:a7:fd:33:09:ff:d8:f7:64:f4:64: 67:db:d6:7d:18:3b:69:f9:35:15:f2:05:5a:0a:dd: 7e:8f:5f:a4:94:be:e2:cf:42:87:23:dc:70:83:3b: fd:62:a8:9d:02:16:ce:4d:4e:63:ba:aa:ea:09:0c: f8:19:73:60:d3:fa:db:98:b8:4f:f2:78:de:f5:f5: 91:c6:7c:94:bb:a9:8a:c6:3a:e8:65:96:fb:05:1c: 2a:d9:13:46:98:56:7f:79:3f:d6:bc:27:c0:1b:e2: a6:78:23:17:ca:70:10:20:ce:26:ef:f9:bd:4b:84: 56:dc:02:9b:31:0f:b5:57:a3:6e:d1:df:66:16:a8: 3b:fd:f1:61:2d:ba:87:2f:20:55:5e:8a:46:f4:a3: d1:81:7e:3e:ea:d5:76:9b:30:f1:ca:50:bf:b5:24: 74:aa:08:5d:8e:28:20:ab:0b:fa:18:5a:58:22:1a: 07:87:c3:18:9a:4a:40:01:84:39:85:b7:49:0d:4b: 0a:00:9a:79:71:74:de:d5:a5:92:36:ee:ac:8b:75: a4:95:82:0b:ac:fa:9c:93:9e:3b:d8:ae:3e:16:be: b0:9e:a4:8f:cf:67:41:b5:b6:83:90:7d:21:51:1b: 7a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:73:B6:67:DB:23:77:10:CD:34:A1:E2:CA:78:51:CA:7C:0C:4E:BE X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a3a2f33322d3438203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fbc0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:0f:e2:00:70:f9:61:33:fb:e1:83:07:16:95:99:f0:34:76: ae:e9:cc:61:43:e7:31:fe:2a:ed:8d:d7:3f:6d:7e:b6:1e:ad: 99:a2:8e:fb:8f:da:db:30:9b:d0:e9:b2:54:06:98:f6:a9:60: 25:87:dd:54:39:73:e8:20:e3:b5:9b:f1:35:cd:be:fb:fa:bf: 17:0d:f2:81:b2:47:91:5f:66:3d:fb:7d:b9:95:75:c9:9e:04: 36:bf:2d:ea:b5:c7:78:1d:2d:49:f1:ef:5b:2b:8c:65:fa:09: ed:5f:44:e4:1a:f4:bd:a0:27:5f:98:0c:59:fb:76:a3:4e:f2: 4e:65:0b:ef:3a:2e:c5:94:cd:44:f7:f0:14:3c:d2:ab:73:c7: 40:04:f2:9c:df:ac:d1:db:e4:f2:68:40:fa:b6:ae:4a:d9:bc: bf:fb:c7:f8:04:e7:3f:c3:8b:94:55:5e:ed:17:5f:2c:48:1d: f9:17:20:e5:22:6f:09:fa:65:74:2a:14:81:07:7c:82:8f:fc: 2e:21:e0:5f:54:80:52:b3:ee:3a:d8:62:9d:b6:12:13:9c:7c: 16:3f:43:98:ff:0d:17:c6:2f:8c:81:ca:14:77:49:a7:f2:42: 4e:33:fc:7d:b2:ba:72:5d:5e:08:80:cb:50:0d:4f:ed:e5:2d: e0:0a:43:7e -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUfPFT+nU94upQrtCSp9QnZEG8mdUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI1MDgxNDE3Mzg1NloX DTI2MDgxMzE3NDM1NlowMzExMC8GA1UEAxMoNTQ3M0I2NjdEQjIzNzcxMENEMzRB MUUyQ0E3ODUxQ0E3QzBDNEVCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANxlvrpDa+ZrTdOTJZX1uATXdbOn/TMJ/9j3ZPRkZ9vWfRg7afk1FfIFWgrd fo9fpJS+4s9ChyPccIM7/WKonQIWzk1OY7qq6gkM+BlzYNP625i4T/J43vX1kcZ8 lLupisY66GWW+wUcKtkTRphWf3k/1rwnwBvipngjF8pwECDOJu/5vUuEVtwCmzEP tVejbtHfZhaoO/3xYS26hy8gVV6KRvSj0YF+PurVdpsw8cpQv7UkdKoIXY4oIKsL +hhaWCIaB4fDGJpKQAGEOYW3SQ1LCgCaeXF03tWlkjburIt1pJWCC6z6nJOeO9iu Pha+sJ6kj89nQbW2g5B9IVEbetMCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBRUc7Zn 2yN3EM00oeLKeFHKfAxOvjAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MHQGCCsGAQUFBwELBGgwZjBkBggrBgEFBQcwC4ZYcnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zMjM0MzAzMzNhNjY2MjYzMzAzYTNhMmYzMzMyMmQzNDM4 MjAzZDNlMjAzMjMzMzkzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAP7wDANBgkqhkiG9w0BAQsF AAOCAQEAPw/iAHD5YTP74YMHFpWZ8DR2runMYUPnMf4q7Y3XP21+th6tmaKO+4/a 2zCb0OmyVAaY9qlgJYfdVDlz6CDjtZvxNc2++/q/Fw3ygbJHkV9mPft9uZV1yZ4E Nr8t6rXHeB0tSfHvWyuMZfoJ7V9E5Br0vaAnX5gMWft2o07yTmUL7zouxZTNRPfw FDzSq3PHQATynN+s0dvk8mhA+rauStm8v/vH+ATnP8OLlFVe7RdfLEgd+Rcg5SJv CfpldCoUgQd8go/8LiHgX1SAUrPuOthinbYSE5x8Fj9DmP8NF8YvjIHKFHdJp/JC TjP8fbK6cl1eCIDLUA1P7eUt4ApDfg== -----END CERTIFICATE-----Generated at Sat Aug 23 18:16:08 2025 by rpki-client