$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/323430333a666263303a613030313a3a2f34382d3438203d3e20323132353132.roa File: 323430333a666263303a613030313a3a2f34382d3438203d3e20323132353132.roa (raw, json) Hash identifier: i8MRPT4JW7IJt18fl2YHY7l2cFI+I1Mld1o5o64OPms= Subject key identifier: 69:A8:2F:63:78:9B:FF:4D:E3:EB:1D:73:E5:7E:B7:DF:BA:19:BD:D4 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 66680E269C768C24F7E4073D79468632DBFCE9EA Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a613030313a3a2f34382d3438203d3e20323132353132.roa Signing time: Wed 25 Mar 2026 12:43:57 +0000 ROA not before: Wed 25 Mar 2026 12:38:57 +0000 ROA not after: Wed 24 Mar 2027 12:43:57 +0000 asID: 212512 IP address blocks: 2403:fbc0:a001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 13:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:68:0e:26:9c:76:8c:24:f7:e4:07:3d:79:46:86:32:db:fc:e9:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Mar 25 12:38:57 2026 GMT Not After : Mar 24 12:43:57 2027 GMT Subject: CN=69A82F63789BFF4DE3EB1D73E57EB7DFBA19BDD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:80:57:29:72:92:76:c4:48:5e:a6:83:e5:f6: 34:19:74:21:cb:7c:1c:f5:da:0d:f3:4f:9d:4f:d2: ad:53:bd:51:42:12:c5:74:0d:f8:bf:bd:e0:35:3f: 01:a3:5c:65:34:ae:23:a7:82:40:d9:9c:cf:c5:32: 21:d5:d1:13:08:f0:4a:2a:dd:0f:7f:45:6d:08:15: 44:65:aa:a4:c5:32:85:a8:92:ab:16:41:98:03:4c: 8e:7c:3d:1e:15:3f:6a:d8:6a:bb:4f:26:73:a3:69: a4:cb:63:42:4b:80:42:f2:a2:8c:8a:8c:9b:fb:de: f8:95:7a:a8:05:1e:e1:57:ed:c1:8e:de:f4:d9:6f: 35:73:0b:d5:ba:08:84:67:0b:5a:b1:48:cf:fa:cf: 81:76:e8:3d:5c:c1:40:f1:69:3a:b4:ae:27:c0:cc: 8d:3f:33:dc:0c:4c:66:d0:f2:71:7f:0b:c2:e4:e7: 52:33:92:a6:19:ce:66:0d:2a:35:0c:c3:f8:0a:a1: f9:0a:ab:13:52:65:47:84:c5:05:6a:39:48:36:36: 60:8b:af:c8:5c:f6:88:2c:d9:a5:b3:89:ae:fa:c5: b4:e0:17:77:4f:95:85:92:7e:c5:64:bc:c1:d5:3d: 36:1f:ad:28:1c:09:e0:71:28:24:95:06:31:06:b0: 90:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A8:2F:63:78:9B:FF:4D:E3:EB:1D:73:E5:7E:B7:DF:BA:19:BD:D4 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a613030313a3a2f34382d3438203d3e20323132353132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fbc0:a001::/48 Signature Algorithm: sha256WithRSAEncryption 2b:39:32:69:99:d1:76:fa:d9:5d:5d:10:cf:18:d7:7e:ad:cd: cf:a7:0d:e9:37:54:33:35:36:a8:71:15:b9:7f:8b:33:31:41: e2:c5:92:71:23:ca:d3:88:71:65:1f:56:cc:44:3b:9b:ba:e8: 6d:4a:39:2f:21:4c:3c:cd:3e:0a:eb:92:4e:4b:35:a7:b4:c8: 51:a8:2f:5a:44:3c:75:5e:69:df:e5:6f:4d:33:ef:1a:81:7a: 93:4a:93:e3:66:61:70:31:5c:a8:40:55:ba:67:eb:4c:d6:49: bb:10:97:9f:cc:c1:02:e5:ec:32:48:19:47:23:04:e8:41:87: dd:ba:fc:61:50:b5:f3:7f:83:8a:4f:21:0d:4e:4e:fd:95:5b: 25:a2:54:e1:0f:ce:f8:fa:98:e3:d6:57:58:a3:5b:dd:3e:43: c1:b8:4d:4b:cc:38:ee:73:a3:0e:06:53:3f:d4:4a:4a:7d:0a: 0f:c5:c0:5c:43:bc:c6:8f:61:0d:af:5c:94:20:c0:d6:be:22: 1d:73:0e:53:31:78:dc:e5:c9:66:05:1c:7c:3b:45:1e:12:02: f0:dd:08:fa:15:f6:93:6d:2a:d7:94:30:f2:bc:0f:3c:ed:d1: 16:fe:94:87:cc:9d:62:3d:a2:72:3f:5b:fd:22:84:cd:7a:bb: 2b:16:33:b4 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUZmgOJpx2jCT35Ac9eUaGMtv86eowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI2MDMyNTEyMzg1N1oX DTI3MDMyNDEyNDM1N1owMzExMC8GA1UEAxMoNjlBODJGNjM3ODlCRkY0REUzRUIx RDczRTU3RUI3REZCQTE5QkRENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOAVylyknbESF6mg+X2NBl0Ict8HPXaDfNPnU/SrVO9UUISxXQN+L+94DU/ AaNcZTSuI6eCQNmcz8UyIdXREwjwSirdD39FbQgVRGWqpMUyhaiSqxZBmANMjnw9 HhU/athqu08mc6NppMtjQkuAQvKijIqMm/ve+JV6qAUe4VftwY7e9NlvNXML1boI hGcLWrFIz/rPgXboPVzBQPFpOrSuJ8DMjT8z3AxMZtDycX8LwuTnUjOSphnOZg0q NQzD+Aqh+QqrE1JlR4TFBWo5SDY2YIuvyFz2iCzZpbOJrvrFtOAXd0+VhZJ+xWS8 wdU9Nh+tKBwJ4HEoJJUGMQawkHkCAwEAAaOCAfQwggHwMB0GA1UdDgQWBBRpqC9j eJv/TePrHXPlfrffuhm91DAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5jOi8vcnBraS5vd2wu bmV0L3JyZHAvb3dsLzAvMzIzNDMwMzMzYTY2NjI2MzMwM2E2MTMwMzAzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjM1MzEzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQD+8Cg ATANBgkqhkiG9w0BAQsFAAOCAQEAKzkyaZnRdvrZXV0QzxjXfq3Nz6cN6TdUMzU2 qHEVuX+LMzFB4sWScSPK04hxZR9WzEQ7m7robUo5LyFMPM0+CuuSTks1p7TIUagv WkQ8dV5p3+VvTTPvGoF6k0qT42ZhcDFcqEBVumfrTNZJuxCXn8zBAuXsMkgZRyME 6EGH3br8YVC183+Dik8hDU5O/ZVbJaJU4Q/O+PqY49ZXWKNb3T5DwbhNS8w47nOj DgZTP9RKSn0KD8XAXEO8xo9hDa9clCDA1r4iHXMOUzF43OXJZgUcfDtFHhIC8N0I +hX2k20q15Qw8rwPPO3RFv6Uh8ydYj2icj9b/SKEzXq7KxYztA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:29 2026 by rpki-client