$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e203233383538.roa File: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (raw, json) Hash identifier: 6iTwh29asALa186GLrdEOEQQQ3xtqz0IpxBTyYIZUyo= Subject key identifier: D6:93:6A:7F:F0:07:19:6F:26:46:E7:7E:8D:80:5E:7A:7C:07:BD:E3 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 1A1F0776597BEA4A0C4FFDB6BF6085BD31334A27 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e203233383538.roa Signing time: Thu 12 Oct 2023 16:10:39 +0000 ROA not before: Thu 12 Oct 2023 16:05:39 +0000 ROA not after: Thu 10 Oct 2024 16:10:39 +0000 asID: 23858 IP address blocks: 103.57.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:1f:07:76:59:7b:ea:4a:0c:4f:fd:b6:bf:60:85:bd:31:33:4a:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Oct 12 16:05:39 2023 GMT Not After : Oct 10 16:10:39 2024 GMT Subject: CN=D6936A7FF007196F2646E77E8D805E7A7C07BDE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6c:1f:33:c7:e3:d2:2a:b0:30:31:d5:76:7e: 5a:83:c8:08:14:53:c2:79:85:96:45:1b:44:65:a9: a8:b0:39:4f:fd:28:b6:65:fb:2b:af:46:6e:a6:42: d3:cc:9b:72:98:6c:58:43:a6:e0:8c:19:50:1a:12: f3:34:45:64:f6:9c:ae:a7:28:18:c4:65:12:b2:5e: f4:29:af:e4:01:08:41:b3:e4:2a:46:db:c7:9d:94: 52:2b:5b:4d:07:e6:13:ea:cd:3d:7f:53:32:d2:c5: ea:e3:2d:17:cc:44:a3:2f:ae:27:0e:e6:87:90:41: f1:15:5a:60:7d:e5:56:39:ac:fb:71:ec:87:a9:85: fe:c1:3a:8e:8a:bd:f3:c3:bd:be:c0:1c:57:66:7a: bd:a5:4f:d3:7b:c3:16:fe:ab:b2:72:43:6a:ac:33: b4:aa:15:0f:30:d9:d9:e1:e0:e3:aa:2b:2d:a7:5f: 4f:16:a5:0e:cd:ae:2e:36:a6:42:75:88:e8:f5:ea: 87:e1:6c:ba:45:59:c6:7a:11:b8:a4:e4:5e:31:1f: 61:9d:2e:2e:bc:3b:9a:73:c7:06:1d:d6:c8:de:8d: bf:bb:84:67:65:c5:96:ec:f2:44:5f:92:02:04:4b: fd:31:d2:4d:69:ce:cf:79:db:3f:ae:d0:69:a3:3a: 9f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:93:6A:7F:F0:07:19:6F:26:46:E7:7E:8D:80:5E:7A:7C:07:BD:E3 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e203233383538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.164.0/22 Signature Algorithm: sha256WithRSAEncryption 35:c2:24:75:eb:9c:be:aa:8f:97:62:12:59:50:51:4a:5d:7b: 11:05:b6:0a:d1:85:a5:4f:13:26:94:9b:9d:70:18:42:16:2c: 8e:ca:6d:5c:a3:eb:ce:c9:14:d5:98:da:69:a2:b2:b3:83:11: cb:76:39:ab:7c:8a:93:cf:8d:d5:b9:77:25:3c:fb:0a:51:8a: 8d:80:a2:df:96:6b:cf:ef:14:6f:45:fc:d9:b5:0d:61:fe:0a: 39:ff:ea:83:14:03:00:1a:d6:3b:16:01:c9:d6:88:a0:51:fc: 36:03:96:43:7d:11:c0:66:3f:6a:3e:3d:36:51:84:c0:5d:d2: 96:d8:d9:b5:cb:8e:d0:d6:87:d5:95:32:53:19:1d:24:f5:b1: 29:9b:bd:e0:3e:09:65:7c:3f:6e:02:e9:2b:d6:48:7a:5a:29: 32:bd:6b:51:a2:89:4a:0b:2e:9a:74:3b:7a:98:31:80:d8:5e: a5:1d:14:20:8c:fc:2b:f6:57:4f:ce:c4:b3:eb:8a:be:09:5b: 2e:56:3e:c0:20:bb:5c:53:88:a2:ce:df:36:fc:da:15:c4:be: 06:38:05:9f:ce:32:fc:66:08:b1:02:dd:09:4e:ab:e0:15:d5: 3c:fa:be:69:c1:15:43:4c:a1:6d:31:d0:2b:31:ee:ec:39:fb: 2e:3f:0a:7e -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUGh8Hdll76koMT/22v2CFvTEzSicwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTIzMTAxMjE2MDUzOVoX DTI0MTAxMDE2MTAzOVowMzExMC8GA1UEAxMoRDY5MzZBN0ZGMDA3MTk2RjI2NDZF NzdFOEQ4MDVFN0E3QzA3QkRFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOpsHzPH49IqsDAx1XZ+WoPICBRTwnmFlkUbRGWpqLA5T/0otmX7K69GbqZC 08ybcphsWEOm4IwZUBoS8zRFZPacrqcoGMRlErJe9Cmv5AEIQbPkKkbbx52UUitb TQfmE+rNPX9TMtLF6uMtF8xEoy+uJw7mh5BB8RVaYH3lVjms+3Hsh6mF/sE6joq9 88O9vsAcV2Z6vaVP03vDFv6rsnJDaqwztKoVDzDZ2eHg46orLadfTxalDs2uLjam QnWI6PXqh+FsukVZxnoRuKTkXjEfYZ0uLrw7mnPHBh3WyN6Nv7uEZ2XFluzyRF+S AgRL/THSTWnOz3nbP67QaaM6n6cCAwEAAaOCAeowggHmMB0GA1UdDgQWBBTWk2p/ 8AcZbyZG536NgF56fAe94zAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzEzMDMzMmUzNTM3MmUzMTM2MzQyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzMjMzMzgzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZzmkMA0GCSqGSIb3 DQEBCwUAA4IBAQA1wiR165y+qo+XYhJZUFFKXXsRBbYK0YWlTxMmlJudcBhCFiyO ym1co+vOyRTVmNpporKzgxHLdjmrfIqTz43VuXclPPsKUYqNgKLflmvP7xRvRfzZ tQ1h/go5/+qDFAMAGtY7FgHJ1oigUfw2A5ZDfRHAZj9qPj02UYTAXdKW2Nm1y47Q 1ofVlTJTGR0k9bEpm73gPgllfD9uAukr1kh6WikyvWtRoolKCy6adDt6mDGA2F6l HRQgjPwr9ldPzsSz64q+CVsuVj7AILtcU4iizt82/NoVxL4GOAWfzjL8ZgixAt0J TqvgFdU8+r5pwRVDTKFtMdArMe7sOfsuPwp+ -----END CERTIFICATE-----Generated at Thu May 23 03:15:02 2024 by rpki-client on console-fra.rpki-client.org