$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/323430333a666263303a613030323a3a2f34382d3438203d3e20323132353132.roa File: 323430333a666263303a613030323a3a2f34382d3438203d3e20323132353132.roa (raw, json) Hash identifier: aFfHNz8vZ8PysUabJdPBqoXohTEKbttrZJTJ/VNXE5I= Subject key identifier: 93:C8:1A:99:CA:C2:55:C7:C6:D9:B1:E1:61:D0:01:81:44:1F:03:D5 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 7EEB3DCB8F80518E3CF09D2D71CD6963854549EE Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a613030323a3a2f34382d3438203d3e20323132353132.roa Signing time: Wed 25 Mar 2026 12:43:57 +0000 ROA not before: Wed 25 Mar 2026 12:38:57 +0000 ROA not after: Wed 24 Mar 2027 12:43:57 +0000 asID: 212512 IP address blocks: 2403:fbc0:a002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 13:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:eb:3d:cb:8f:80:51:8e:3c:f0:9d:2d:71:cd:69:63:85:45:49:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Mar 25 12:38:57 2026 GMT Not After : Mar 24 12:43:57 2027 GMT Subject: CN=93C81A99CAC255C7C6D9B1E161D00181441F03D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:f9:f5:ec:bc:8c:92:db:60:bc:b2:b2:65: 0f:7a:fd:d7:41:9b:65:07:ac:7c:e6:fd:bb:71:78: 4b:45:33:5b:17:30:dd:47:31:6c:97:cd:2f:71:49: b1:30:ce:fa:69:d4:c0:5d:01:58:93:2f:6a:c3:5b: b1:31:7a:ab:77:26:7a:06:a5:4a:38:23:db:6f:eb: 3c:f6:1d:f6:da:00:9a:4c:74:7f:32:d1:58:27:2d: bf:11:3a:10:36:66:b6:8c:01:f1:6b:1b:64:4f:ff: fc:a9:14:8b:b8:7b:20:de:23:23:af:09:1c:3b:18: c2:84:54:80:6a:6a:94:81:1d:be:46:51:63:46:e1: ea:2a:1a:b1:c2:cc:29:d2:8e:c0:84:17:2b:be:ce: 4a:d4:46:c8:e3:bc:37:67:3c:4e:d6:ff:99:4a:f3: 73:f2:fe:96:fb:df:08:f9:d4:66:9c:16:66:7e:ef: 8f:92:ef:24:94:6a:11:6c:cf:5f:a1:ee:92:d0:db: 97:a8:46:a0:a5:1f:a7:34:2b:36:4d:f3:11:25:b5: d3:5a:0f:78:6b:fe:58:4e:cc:c4:53:b7:3a:49:fb: 8f:d4:8e:3e:4f:99:c9:b5:a2:4d:32:31:7f:d7:3a: 05:bc:b0:46:0c:e7:14:83:27:f3:ab:e6:22:42:3d: 48:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:C8:1A:99:CA:C2:55:C7:C6:D9:B1:E1:61:D0:01:81:44:1F:03:D5 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/323430333a666263303a613030323a3a2f34382d3438203d3e20323132353132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fbc0:a002::/48 Signature Algorithm: sha256WithRSAEncryption c0:96:c5:02:ba:86:1b:02:1a:b4:67:b4:b7:38:af:c6:a4:49: 67:1a:d9:36:61:64:d7:74:2a:63:a2:be:41:61:2f:39:ff:23: 50:f7:d7:d1:8e:16:a9:37:d3:75:93:90:9e:5b:6f:83:f9:75: 1b:d8:26:69:b3:b9:37:38:07:38:97:f2:09:d8:7c:0d:83:e2: b3:c4:35:62:ef:d3:c8:5f:ef:5f:e8:3d:f0:c6:2e:0a:1c:5b: 86:e8:9f:16:66:f2:aa:de:e1:5e:86:d7:eb:3f:7d:bb:6a:92: 6b:d1:b4:3e:b7:a5:82:1a:65:b8:49:bf:dc:a0:4f:06:3f:20: da:e8:37:e4:76:5d:bc:cf:cf:98:e0:81:51:dc:b1:4f:da:49: 5e:b0:29:60:d3:a7:24:0a:d8:84:b1:b0:e9:1f:71:29:d5:c7: d6:a0:05:d7:cb:74:f4:89:be:a7:5f:42:da:2a:aa:d9:7f:0c: 8a:33:1e:e6:4a:58:f9:78:1f:8b:e0:8a:3f:bd:fc:94:87:a9: 69:aa:83:4a:e2:29:84:c3:69:38:12:97:5e:0c:f2:bb:30:e3: 1b:74:8c:8b:ec:14:21:5c:3c:41:0a:02:12:a5:8f:93:d2:02: 04:24:0a:5a:92:3a:d4:e7:74:15:0f:35:22:b8:2b:d6:2c:b2: 3a:aa:a5:8f -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUfus9y4+AUY488J0tcc1pY4VFSe4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI2MDMyNTEyMzg1N1oX DTI3MDMyNDEyNDM1N1owMzExMC8GA1UEAxMoOTNDODFBOTlDQUMyNTVDN0M2RDlC MUUxNjFEMDAxODE0NDFGMDNENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhK+fXsvIyS22C8srJlD3r910GbZQesfOb9u3F4S0UzWxcw3UcxbJfNL3FJ sTDO+mnUwF0BWJMvasNbsTF6q3cmegalSjgj22/rPPYd9toAmkx0fzLRWCctvxE6 EDZmtowB8WsbZE///KkUi7h7IN4jI68JHDsYwoRUgGpqlIEdvkZRY0bh6ioascLM KdKOwIQXK77OStRGyOO8N2c8Ttb/mUrzc/L+lvvfCPnUZpwWZn7vj5LvJJRqEWzP X6HuktDbl6hGoKUfpzQrNk3zESW101oPeGv+WE7MxFO3Okn7j9SOPk+ZybWiTTIx f9c6BbywRgznFIMn86vmIkI9SPsCAwEAAaOCAfQwggHwMB0GA1UdDgQWBBSTyBqZ ysJVx8bZseFh0AGBRB8D1TAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5jOi8vcnBraS5vd2wu bmV0L3JyZHAvb3dsLzAvMzIzNDMwMzMzYTY2NjI2MzMwM2E2MTMwMzAzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjM1MzEzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQD+8Cg AjANBgkqhkiG9w0BAQsFAAOCAQEAwJbFArqGGwIatGe0tzivxqRJZxrZNmFk13Qq Y6K+QWEvOf8jUPfX0Y4WqTfTdZOQnltvg/l1G9gmabO5NzgHOJfyCdh8DYPis8Q1 Yu/TyF/vX+g98MYuChxbhuifFmbyqt7hXobX6z99u2qSa9G0PrelghpluEm/3KBP Bj8g2ug35HZdvM/PmOCBUdyxT9pJXrApYNOnJArYhLGw6R9xKdXH1qAF18t09Im+ p19C2iqq2X8MijMe5kpY+Xgfi+CKP738lIepaaqDSuIphMNpOBKXXgzyuzDjG3SM i+wUIVw8QQoCEqWPk9ICBCQKWpI61Od0FQ81Irgr1iyyOqqljw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:40:35 2026 by rpki-client