$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/34352e3131372e3130302e302f32342d3234203d3e203233383538.roa File: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (raw, json) Hash identifier: tZTBEgBUAkeRkAOgam+T7tIP/mnZd+9ceBVwTojVScc= Subject key identifier: 0A:CA:F4:8A:57:C0:CB:2F:26:4A:46:25:8D:2E:67:9A:81:8B:25:C2 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 76CF59A8A6B8B7E291C4B13DF1E526A7EC448646 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/34352e3131372e3130302e302f32342d3234203d3e203233383538.roa Signing time: Thu 12 Oct 2023 16:10:39 +0000 ROA not before: Thu 12 Oct 2023 16:05:39 +0000 ROA not after: Thu 10 Oct 2024 16:10:39 +0000 asID: 23858 IP address blocks: 45.117.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:cf:59:a8:a6:b8:b7:e2:91:c4:b1:3d:f1:e5:26:a7:ec:44:86:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Oct 12 16:05:39 2023 GMT Not After : Oct 10 16:10:39 2024 GMT Subject: CN=0ACAF48A57C0CB2F264A46258D2E679A818B25C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:63:33:a2:bc:3d:97:58:43:1a:cc:fd:17:dd: 29:31:55:8c:68:2f:35:38:61:91:89:5b:73:e9:fd: 6a:8b:e8:74:ee:b4:8a:3c:c8:04:be:51:cf:30:d5: 74:7c:b7:56:66:60:45:aa:db:52:9e:78:67:0e:60: 4d:aa:7f:43:7f:93:b6:49:a5:63:82:9f:b0:83:59: ca:96:d4:d1:00:de:e4:8a:bf:83:25:71:47:bf:0b: 09:c3:a6:08:e3:1e:2c:d0:c5:32:5a:7a:ae:17:46: 85:0c:80:4f:6f:b2:ea:37:08:37:66:1a:c2:e6:69: a6:f0:66:b0:e9:8d:46:54:8a:60:ee:ea:15:86:fb: 5a:ad:1f:4f:22:a6:01:14:21:0f:fb:08:36:e0:f3: 47:57:f2:6a:ab:69:eb:5a:83:77:e9:c0:2a:46:8b: bf:ee:08:05:e0:36:96:82:ec:d3:ea:2f:8e:fc:ed: 90:2c:36:9a:e0:b7:90:1a:6f:8b:69:1d:24:5d:a5: c2:d8:0c:e7:6a:f2:2e:c6:6d:72:b3:a8:92:46:9f: 78:08:c5:91:99:a4:d6:14:e0:52:de:19:fc:83:ad: 2b:ea:3f:cc:38:a7:c4:8d:c1:7e:6a:4d:ec:06:8b: 2f:c3:29:ce:23:3f:09:b5:67:14:b2:4d:c4:74:31: 1b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:CA:F4:8A:57:C0:CB:2F:26:4A:46:25:8D:2E:67:9A:81:8B:25:C2 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/34352e3131372e3130302e302f32342d3234203d3e203233383538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.117.100.0/24 Signature Algorithm: sha256WithRSAEncryption 95:6f:bd:58:84:25:6d:81:a5:05:2d:ec:2c:95:c1:0f:d9:66: 75:ee:1a:7a:c5:d6:3b:2f:58:bd:cc:b2:1a:23:d2:e3:5b:e4: c1:1f:54:93:76:0a:26:c7:67:5e:8e:cf:c7:dd:7a:e9:29:7d: 0c:0e:fb:f7:06:3e:ae:29:10:b5:fc:df:de:be:10:ba:8a:47: bc:05:f4:c3:32:aa:47:fe:b4:c1:bc:d6:ff:c8:38:2f:e1:a4: 95:32:1e:c3:af:e9:e4:dd:9f:a2:16:30:8d:9d:d9:d2:2a:05: f8:80:30:ab:6c:a8:91:7e:2f:99:72:83:b7:0d:62:d4:81:a9: 7c:be:b7:0f:04:f1:f7:c9:1b:27:fa:ef:15:5f:26:a0:97:3e: 6a:b0:51:cd:04:96:8b:a6:82:80:ea:b3:57:0f:b0:4a:a4:9c: 6f:0e:35:88:fa:f0:ce:29:91:66:8c:40:98:19:52:50:2b:26: a5:57:69:7e:b5:07:b1:ba:a1:fd:34:91:6b:e0:0d:08:4a:80: 4c:0d:03:9d:ac:81:aa:77:aa:89:94:90:e7:9e:aa:0c:8c:10: 7c:cb:69:e8:46:12:e7:54:63:4d:13:0a:80:c6:4a:18:1b:d2: 37:4a:78:bd:4e:49:98:d5:aa:b4:21:d9:64:34:ed:37:73:5b: 29:b3:b5:c3 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUds9ZqKa4t+KRxLE98eUmp+xEhkYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTIzMTAxMjE2MDUzOVoX DTI0MTAxMDE2MTAzOVowMzExMC8GA1UEAxMoMEFDQUY0OEE1N0MwQ0IyRjI2NEE0 NjI1OEQyRTY3OUE4MThCMjVDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZjM6K8PZdYQxrM/RfdKTFVjGgvNThhkYlbc+n9aovodO60ijzIBL5RzzDV dHy3VmZgRarbUp54Zw5gTap/Q3+TtkmlY4KfsINZypbU0QDe5Iq/gyVxR78LCcOm COMeLNDFMlp6rhdGhQyAT2+y6jcIN2YawuZppvBmsOmNRlSKYO7qFYb7Wq0fTyKm ARQhD/sINuDzR1fyaqtp61qDd+nAKkaLv+4IBeA2loLs0+ovjvztkCw2muC3kBpv i2kdJF2lwtgM52ryLsZtcrOokkafeAjFkZmk1hTgUt4Z/IOtK+o/zDinxI3BfmpN 7AaLL8MpziM/CbVnFLJNxHQxG3ECAwEAAaOCAeowggHmMB0GA1UdDgQWBBQKyvSK V8DLLyZKRiWNLmeagYslwjAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzQzNTJlMzEzMTM3MmUzMTMwMzAyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzMjMzMzgzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXVkMA0GCSqGSIb3 DQEBCwUAA4IBAQCVb71YhCVtgaUFLewslcEP2WZ17hp6xdY7L1i9zLIaI9LjW+TB H1STdgomx2dejs/H3XrpKX0MDvv3Bj6uKRC1/N/evhC6ike8BfTDMqpH/rTBvNb/ yDgv4aSVMh7Dr+nk3Z+iFjCNndnSKgX4gDCrbKiRfi+ZcoO3DWLUgal8vrcPBPH3 yRsn+u8VXyaglz5qsFHNBJaLpoKA6rNXD7BKpJxvDjWI+vDOKZFmjECYGVJQKyal V2l+tQexuqH9NJFr4A0ISoBMDQOdrIGqd6qJlJDnnqoMjBB8y2noRhLnVGNNEwqA xkoYG9I3Sni9TkmY1aq0IdlkNO03c1sps7XD -----END CERTIFICATE-----Generated at Thu May 23 03:15:02 2024 by rpki-client on console-fra.rpki-client.org