$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/323430333a326538303a3a2f33322d3438203d3e2038383838.roa File: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (raw, json) Hash identifier: hX05wYKbUhf64T+4LRMGom288yjb9hQWUYVLA7svb0k= Subject key identifier: AC:D7:C4:6F:1F:22:E7:04:E2:D9:05:FA:2A:07:48:48:01:65:4F:DE Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 3576DF0A954F8F22E35EAB02C023E504F3D2BE06 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/323430333a326538303a3a2f33322d3438203d3e2038383838.roa Signing time: Thu 12 Oct 2023 16:10:40 +0000 ROA not before: Thu 12 Oct 2023 16:05:40 +0000 ROA not after: Thu 10 Oct 2024 16:10:40 +0000 asID: 8888 IP address blocks: 2403:2e80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 15:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:76:df:0a:95:4f:8f:22:e3:5e:ab:02:c0:23:e5:04:f3:d2:be:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Oct 12 16:05:40 2023 GMT Not After : Oct 10 16:10:40 2024 GMT Subject: CN=ACD7C46F1F22E704E2D905FA2A07484801654FDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b1:ea:31:e6:f4:69:90:3a:d4:a7:dc:f2:92: 54:eb:47:41:6b:97:e5:34:04:c2:42:6a:69:07:f1: f6:e4:c6:8c:ad:b9:ac:78:75:2f:ac:11:1e:9d:27: 00:2a:3c:db:6e:2d:8c:b4:6d:99:c7:34:0b:a8:5e: 94:39:68:d2:f3:36:e1:83:d6:84:dd:9d:f6:e6:fb: 16:ee:fd:6a:b9:07:e6:b6:41:8e:d6:03:46:57:6e: 39:34:96:d2:8f:8b:ba:86:5e:bf:61:1e:b0:ca:66: 57:a2:f3:7c:18:1b:2a:c9:16:a8:c1:f0:57:19:80: 94:dc:5d:a9:9d:46:72:fa:47:70:0c:bf:fd:a7:86: f0:1c:7e:ce:ad:c3:e9:ab:db:2a:a5:24:ac:2b:b9: 6d:3c:85:76:5b:4e:15:69:70:a6:89:fe:b4:2a:b3: 57:4e:48:00:7d:eb:cf:1c:65:ce:14:d4:ff:e6:84: 15:01:ac:5f:46:00:c6:35:f6:5c:17:7a:36:e7:c5: fa:6e:b1:b1:4c:27:de:ec:b2:56:d5:ac:4b:40:71: 9f:87:ed:8c:25:b5:f4:ce:73:73:0e:e2:f6:3f:e6: b9:77:9d:f9:33:8f:bb:09:7f:48:aa:58:eb:70:8c: cb:67:30:93:dd:a0:e3:99:5b:7c:87:af:5a:7b:c3: 0a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D7:C4:6F:1F:22:E7:04:E2:D9:05:FA:2A:07:48:48:01:65:4F:DE X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/323430333a326538303a3a2f33322d3438203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2e80::/32 Signature Algorithm: sha256WithRSAEncryption 05:9f:9b:06:7b:53:34:d2:db:b6:9b:11:41:95:92:08:0a:f3: 9a:7e:7a:d8:6b:b7:70:0d:78:ab:80:af:50:00:37:85:bd:8c: 1e:2a:44:f6:d0:f1:80:8f:8f:d2:fa:55:ec:5c:26:6d:bb:75: 4e:c8:66:a0:d6:c2:7a:24:96:b4:07:d1:18:38:da:d0:27:0f: ca:48:fb:0e:ea:a3:1f:0c:69:03:a7:15:37:d7:e6:e2:c8:33: ed:3f:ae:72:bc:74:fc:b3:47:81:3e:71:df:42:4e:c9:63:18: 9a:e6:0d:ba:b0:d0:3e:9b:12:59:6b:ba:ca:75:d3:e2:e0:10: f4:a5:76:b4:e4:83:e4:4a:f6:65:5a:ed:4d:8b:1d:b5:e8:aa: 36:5e:9b:4e:e1:46:21:fe:cd:a4:e7:c1:a6:9f:72:77:91:04: c6:05:e3:02:57:60:a6:7a:ce:8e:8f:f1:6c:aa:8d:0a:a8:b6: 30:03:35:34:3a:26:8b:5f:a9:65:b1:39:15:ab:11:6a:3e:80: f3:20:25:b6:1f:ce:6c:73:ce:55:8a:f4:c1:e6:69:59:12:c0: 3b:b3:5d:1d:53:3b:e9:d5:07:5e:95:a9:b7:2e:56:d7:d3:cf: 54:51:32:03:0d:ed:f1:e1:c2:cb:e5:70:06:bb:02:0a:2d:1d: b0:72:bc:a4 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUNXbfCpVPjyLjXqsCwCPlBPPSvgYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTIzMTAxMjE2MDU0MFoX DTI0MTAxMDE2MTA0MFowMzExMC8GA1UEAxMoQUNEN0M0NkYxRjIyRTcwNEUyRDkw NUZBMkEwNzQ4NDgwMTY1NEZERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOqx6jHm9GmQOtSn3PKSVOtHQWuX5TQEwkJqaQfx9uTGjK25rHh1L6wRHp0n ACo8224tjLRtmcc0C6helDlo0vM24YPWhN2d9ub7Fu79arkH5rZBjtYDRlduOTSW 0o+LuoZev2EesMpmV6LzfBgbKskWqMHwVxmAlNxdqZ1GcvpHcAy//aeG8Bx+zq3D 6avbKqUkrCu5bTyFdltOFWlwpon+tCqzV05IAH3rzxxlzhTU/+aEFQGsX0YAxjX2 XBd6NufF+m6xsUwn3uyyVtWsS0Bxn4ftjCW19M5zcw7i9j/muXed+TOPuwl/SKpY 63CMy2cwk92g45lbfIevWnvDCucCAwEAAaOCAecwggHjMB0GA1UdDgQWBBSs18Rv HyLnBOLZBfoqB0hIAWVP3jAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzIzNDMwMzMzYTMyNjUzODMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzgzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAy6AMA0GCSqGSIb3DQEB CwUAA4IBAQAFn5sGe1M00tu2mxFBlZIICvOafnrYa7dwDXirgK9QADeFvYweKkT2 0PGAj4/S+lXsXCZtu3VOyGag1sJ6JJa0B9EYONrQJw/KSPsO6qMfDGkDpxU31+bi yDPtP65yvHT8s0eBPnHfQk7JYxia5g26sNA+mxJZa7rKddPi4BD0pXa05IPkSvZl Wu1Nix216Ko2XptO4UYh/s2k58Gmn3J3kQTGBeMCV2Cmes6Oj/Fsqo0KqLYwAzU0 OiaLX6llsTkVqxFqPoDzICW2H85sc85VivTB5mlZEsA7s10dUzvp1Qdelam3LlbX 089UUTIDDe3x4cLL5XAGuwIKLR2wcryk -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:30 2024 by rpki-client on console-ams.rpki-client.org