$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa File: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (raw, json) Hash identifier: hnUP+LSfwbmaYV0QaPQzfeAsGBB7AaX+gU94pB3RBgU= Subject key identifier: AA:9C:5B:90:D6:2A:5A:1F:B1:28:0C:93:FF:A5:9E:3A:3E:57:25:6E Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 627F98B46DD691D53647341135961DE9E94F6E4C Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa Signing time: Thu 12 Oct 2023 16:10:40 +0000 ROA not before: Thu 12 Oct 2023 16:05:40 +0000 ROA not after: Thu 10 Oct 2024 16:10:40 +0000 asID: 36351 IP address blocks: 103.57.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 11:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:7f:98:b4:6d:d6:91:d5:36:47:34:11:35:96:1d:e9:e9:4f:6e:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Oct 12 16:05:40 2023 GMT Not After : Oct 10 16:10:40 2024 GMT Subject: CN=AA9C5B90D62A5A1FB1280C93FFA59E3A3E57256E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:52:53:d7:45:1d:c1:4a:40:d2:b6:c1:5b: 0e:25:e8:ee:da:e4:c1:84:2e:4c:34:1e:16:ff:23: 2b:1b:87:7c:89:e9:96:66:02:46:ac:77:d7:5c:cb: a3:77:de:24:c4:66:44:8e:32:6a:18:bc:1d:d1:e1: 61:31:15:11:01:94:2a:64:45:77:c6:29:35:0b:cb: 04:d0:73:71:88:5b:75:f3:7b:88:bd:53:a0:d7:18: 81:36:12:84:2b:28:d1:27:15:0b:0c:5e:e2:ae:6d: 10:3f:4b:6f:7b:b3:25:01:d3:3f:02:de:ce:f8:e4: 5f:89:51:54:1c:be:6e:8c:0a:7d:9a:b6:30:7f:f6: 78:fd:6a:ab:18:6f:a4:5c:bd:da:3a:b6:f2:95:6b: 60:0a:cc:12:9a:f1:f1:a2:94:2a:40:8b:5d:29:c0: c8:d0:46:2d:c4:72:e0:f9:30:53:6a:53:64:f8:cd: 01:33:79:9b:64:32:6a:ad:c8:7c:7d:24:d9:4f:da: 83:bb:b8:32:6e:dd:12:b1:f0:a3:f1:ac:d2:13:66: 0e:ad:8f:b5:a0:36:3b:b9:3a:20:28:a1:ef:9e:6b: 51:b4:34:77:da:a8:9d:12:6f:e3:93:12:d2:af:4d: 25:0e:dc:50:6c:1f:66:37:6b:5c:2f:0c:d6:ea:13: 4b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9C:5B:90:D6:2A:5A:1F:B1:28:0C:93:FF:A5:9E:3A:3E:57:25:6E X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.165.0/24 Signature Algorithm: sha256WithRSAEncryption 76:4d:a7:d9:ef:77:b8:ec:94:69:c0:50:ea:3c:6b:61:eb:76: b4:cb:2e:8a:c5:fc:ec:7d:45:9d:d3:c3:c8:11:38:5f:b3:75: cd:ee:34:48:d1:4b:20:3f:23:8c:8f:66:0c:a6:f5:33:08:8f: 47:73:5c:aa:de:5e:4f:e0:12:4a:bb:05:c4:10:f2:89:fb:0c: a9:41:1b:fc:11:dd:6f:93:58:97:ec:4b:60:e9:a3:01:55:1b: 2c:05:ba:48:c0:0b:ba:d7:51:46:88:94:b7:97:e0:49:b2:42: 6d:5e:f7:34:7f:05:cb:04:f0:25:94:49:a8:49:ce:8b:56:f3: 9c:90:cd:f5:4b:71:71:b5:8d:f7:ed:34:3d:1d:49:06:55:a6: 1a:03:4a:61:1e:d6:ba:8e:94:16:de:11:30:54:38:b2:81:f2: 79:fd:a7:17:b1:f1:67:fd:e4:1c:57:be:ad:98:f3:60:b6:a2: 75:4e:55:62:59:d5:a1:06:8e:d9:1b:0f:0b:4f:c3:d8:ef:e7: a0:0f:1d:30:5a:c9:eb:2d:cf:b4:22:b9:df:81:45:1b:7f:9d: e0:3e:25:fc:d8:83:20:56:32:ab:94:f6:f4:4b:b4:b2:16:22: 5a:45:c6:d8:83:94:b3:3f:f8:c3:93:75:3b:c2:7b:17:83:c0: c2:06:8e:7b -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUYn+YtG3WkdU2RzQRNZYd6elPbkwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTIzMTAxMjE2MDU0MFoX DTI0MTAxMDE2MTA0MFowMzExMC8GA1UEAxMoQUE5QzVCOTBENjJBNUExRkIxMjgw QzkzRkZBNTlFM0EzRTU3MjU2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzEUlPXRR3BSkDStsFbDiXo7trkwYQuTDQeFv8jKxuHfInplmYCRqx311zL o3feJMRmRI4yahi8HdHhYTEVEQGUKmRFd8YpNQvLBNBzcYhbdfN7iL1ToNcYgTYS hCso0ScVCwxe4q5tED9Lb3uzJQHTPwLezvjkX4lRVBy+bowKfZq2MH/2eP1qqxhv pFy92jq28pVrYArMEprx8aKUKkCLXSnAyNBGLcRy4PkwU2pTZPjNATN5m2Qyaq3I fH0k2U/ag7u4Mm7dErHwo/Gs0hNmDq2PtaA2O7k6ICih755rUbQ0d9qonRJv45MS 0q9NJQ7cUGwfZjdrXC8M1uoTS2UCAwEAAaOCAeowggHmMB0GA1UdDgQWBBSqnFuQ 1ipaH7EoDJP/pZ46PlclbjAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzEzMDMzMmUzNTM3MmUzMTM2MzUyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzMzM2MzMzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzmlMA0GCSqGSIb3 DQEBCwUAA4IBAQB2TafZ73e47JRpwFDqPGth63a0yy6KxfzsfUWd08PIEThfs3XN 7jRI0UsgPyOMj2YMpvUzCI9Hc1yq3l5P4BJKuwXEEPKJ+wypQRv8Ed1vk1iX7Etg 6aMBVRssBbpIwAu611FGiJS3l+BJskJtXvc0fwXLBPAllEmoSc6LVvOckM31S3Fx tY337TQ9HUkGVaYaA0phHta6jpQW3hEwVDiygfJ5/acXsfFn/eQcV76tmPNgtqJ1 TlViWdWhBo7ZGw8LT8PY7+egDx0wWsnrLc+0IrnfgUUbf53gPiX82IMgVjKrlPb0 S7SyFiJaRcbYg5SzP/jDk3U7wnsXg8DCBo57 -----END CERTIFICATE-----Generated at Sat Apr 27 12:04:50 2024 by rpki-client on console-ams.rpki-client.org