$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e35362e35332e302f32342d3234203d3e2038383838.roa File: 3130332e35362e35332e302f32342d3234203d3e2038383838.roa (raw, json) Hash identifier: Cu6uC4XIQ/nc2t5YSaCpf9dEiwqNHQJJUIl1xAKBDHw= Subject key identifier: 7F:D9:60:D8:49:8B:FA:B0:9D:EF:E7:D1:F5:BD:9E:A7:14:62:90:33 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 77E069089257C718EB9A4A0B8D0A428E8CEA8E88 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35332e302f32342d3234203d3e2038383838.roa Signing time: Thu 21 Sep 2023 08:57:26 +0000 ROA not before: Thu 21 Sep 2023 08:52:26 +0000 ROA not after: Thu 19 Sep 2024 08:57:26 +0000 asID: 8888 IP address blocks: 103.56.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 10:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e0:69:08:92:57:c7:18:eb:9a:4a:0b:8d:0a:42:8e:8c:ea:8e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Sep 21 08:52:26 2023 GMT Not After : Sep 19 08:57:26 2024 GMT Subject: CN=7FD960D8498BFAB09DEFE7D1F5BD9EA714629033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f6:c5:a3:d5:f3:b8:43:80:53:35:f3:2e:c8: d0:16:4e:2b:41:52:33:41:fe:0a:db:7c:19:73:32: 1a:19:ef:18:ae:3e:bc:dc:ea:1b:62:b6:68:b2:1a: b9:42:ef:2e:48:2b:cf:c9:32:a0:3d:72:b5:ac:65: 88:81:a0:ca:72:14:c8:54:4f:92:38:c6:33:fc:9d: 50:7a:c8:ac:e1:b1:c8:25:0e:96:dc:23:91:9a:b1: ad:87:e1:5f:f7:de:d4:26:b5:e6:8c:b7:dc:44:34: e1:98:be:1c:19:57:15:73:80:71:99:ef:81:ea:9b: 97:c5:f2:f5:1d:e6:8a:58:2b:5d:ed:6d:bf:5e:4d: df:aa:98:ee:0c:44:77:9a:85:30:00:bf:6a:60:5a: d5:e0:c8:50:01:de:51:81:fa:25:d6:20:cc:42:86: a1:da:e7:61:e2:01:ec:44:5f:1a:03:fc:fd:3e:63: 6d:60:4e:94:30:af:72:ae:ec:6e:7c:08:3f:9e:f4: 95:6e:84:fe:37:38:51:88:27:ce:60:48:70:9d:0c: 0d:52:39:ec:ce:3c:e5:d6:af:1f:f2:92:87:86:d0: ae:b8:ca:a8:f2:88:87:2d:ad:16:fb:28:45:15:1e: 3b:99:29:f5:1c:ce:75:8e:6f:5d:9a:31:29:e2:c8: 74:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D9:60:D8:49:8B:FA:B0:9D:EF:E7:D1:F5:BD:9E:A7:14:62:90:33 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35332e302f32342d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.53.0/24 Signature Algorithm: sha256WithRSAEncryption 92:0c:f6:ff:66:ac:5c:8f:21:b7:64:63:b3:55:be:39:6d:0d: 2a:df:70:a2:59:91:13:7f:96:4f:14:c8:6b:67:b3:3f:63:58: ff:a4:c2:f4:a4:dc:c6:6b:32:89:3b:12:1d:de:85:cb:11:f7: 23:47:43:cf:50:c6:30:ae:61:d1:c4:20:b0:3b:c7:19:16:87: 8c:37:bc:4f:a8:e8:ee:23:4f:58:a2:b3:cf:0d:b5:44:f9:0a: f7:9b:d0:e5:50:d0:2a:a9:bb:15:2e:7b:e7:de:fc:39:23:30: 36:6a:5b:89:e4:17:c6:fc:79:4f:41:57:71:83:6f:85:bf:91: 1c:b2:2e:c1:bd:c4:a2:27:67:8c:d6:ec:fd:1b:b6:d4:9f:71: a1:0f:af:a5:df:d5:32:e8:20:ff:19:e4:ea:3c:fe:df:e2:6e: 1b:b3:31:63:56:fc:3d:e5:28:5a:48:2b:16:a8:b9:d4:c3:cf: 73:56:4f:fc:21:2d:c2:98:c6:68:dd:af:aa:1b:fc:71:85:c8: dc:8d:f1:81:a7:ca:ef:9d:21:ad:e4:0b:34:0f:25:44:c8:f2: 0e:88:6d:77:4f:89:f4:62:bd:f0:75:b2:ba:b4:7e:af:60:95: 33:1e:29:2e:81:c7:60:13:2b:c3:54:a0:54:8c:f4:0c:c5:d5: 8f:7c:3c:55 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUd+BpCJJXxxjrmkoLjQpCjozqjogwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTIzMDkyMTA4NTIyNloX DTI0MDkxOTA4NTcyNlowMzExMC8GA1UEAxMoN0ZEOTYwRDg0OThCRkFCMDlERUZF N0QxRjVCRDlFQTcxNDYyOTAzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKD2xaPV87hDgFM18y7I0BZOK0FSM0H+Ctt8GXMyGhnvGK4+vNzqG2K2aLIa uULvLkgrz8kyoD1ytaxliIGgynIUyFRPkjjGM/ydUHrIrOGxyCUOltwjkZqxrYfh X/fe1Ca15oy33EQ04Zi+HBlXFXOAcZnvgeqbl8Xy9R3milgrXe1tv15N36qY7gxE d5qFMAC/amBa1eDIUAHeUYH6JdYgzEKGodrnYeIB7ERfGgP8/T5jbWBOlDCvcq7s bnwIP570lW6E/jc4UYgnzmBIcJ0MDVI57M485davH/KSh4bQrrjKqPKIhy2tFvso RRUeO5kp9RzOdY5vXZoxKeLIdKsCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBR/2WDY SYv6sJ3v59H1vZ6nFGKQMzAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzNTM2MmUzNTMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnODUwDQYJKoZIhvcNAQEL BQADggEBAJIM9v9mrFyPIbdkY7NVvjltDSrfcKJZkRN/lk8UyGtnsz9jWP+kwvSk 3MZrMok7Eh3ehcsR9yNHQ89QxjCuYdHEILA7xxkWh4w3vE+o6O4jT1iis88NtUT5 Cveb0OVQ0CqpuxUue+fe/DkjMDZqW4nkF8b8eU9BV3GDb4W/kRyyLsG9xKInZ4zW 7P0bttSfcaEPr6Xf1TLoIP8Z5Oo8/t/ibhuzMWNW/D3lKFpIKxaoudTDz3NWT/wh LcKYxmjdr6ob/HGFyNyN8YGnyu+dIa3kCzQPJUTI8g6IbXdPifRivfB1srq0fq9g lTMeKS6Bx2ATK8NUoFSM9AzF1Y98PFU= -----END CERTIFICATE-----Generated at Tue Jun 25 12:07:49 2024 by rpki-client on console-fra.rpki-client.org