$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa File: 3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: nZRdseJLG8pcz60dA2dIP+lQPJZ68YEbyLu8K+1sxGI= Subject key identifier: C4:F1:21:9E:64:E9:B8:D4:77:49:2A:00:F1:A5:B7:68:09:9F:BC:47 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 7CFA7DF6B7CFE6F37E235AC0C89D06BC7F728A83 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa Signing time: Sat 14 Sep 2024 01:22:31 +0000 ROA not before: Sat 14 Sep 2024 01:17:31 +0000 ROA not after: Sat 13 Sep 2025 01:22:31 +0000 asID: 9312 IP address blocks: 103.192.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 11:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:fa:7d:f6:b7:cf:e6:f3:7e:23:5a:c0:c8:9d:06:bc:7f:72:8a:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Sep 14 01:17:31 2024 GMT Not After : Sep 13 01:22:31 2025 GMT Subject: CN=C4F1219E64E9B8D477492A00F1A5B768099FBC47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b3:31:39:0e:4e:32:69:99:57:14:ae:0e:61: b3:61:ba:af:c7:56:9b:c4:e1:28:ce:93:8c:d2:7f: bd:91:b0:22:3e:67:f9:ca:8a:e3:82:3e:50:14:78: 2c:24:b7:56:03:0d:16:49:7f:5d:7b:3f:d6:04:0c: 36:60:f6:78:a7:ea:5a:c7:d1:d6:cd:f8:61:5b:ac: 48:30:40:93:ff:1e:6d:67:00:17:90:23:47:fd:d4: d2:0e:9a:6c:b8:92:3d:78:ec:01:28:23:fd:4b:c0: 15:df:e1:de:46:ce:21:76:1f:f6:1c:9e:d5:ff:17: 69:5d:5e:df:c3:a1:dc:76:fb:98:bf:f9:4f:bd:d3: a3:55:74:a2:1d:10:3e:f6:b8:b7:20:1b:a0:6f:84: 32:bc:85:1b:52:82:f8:18:0d:33:5a:35:b8:42:99: b5:6d:37:40:53:6b:bd:39:81:ec:2e:66:bf:a7:3f: e7:3c:ae:df:77:13:5a:84:2a:14:12:54:15:d6:b0: 49:96:98:07:6b:1f:c6:dd:17:69:d0:b0:aa:e4:43: 2d:44:b6:4a:f5:c9:2c:c2:28:1c:c7:96:53:40:a2: d6:2e:3e:70:92:1f:3f:44:d9:45:87:ce:4b:06:75: 41:7d:5e:9f:d1:fb:84:9f:48:49:50:45:4b:d5:35: 48:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F1:21:9E:64:E9:B8:D4:77:49:2A:00:F1:A5:B7:68:09:9F:BC:47 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.224.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:35:3b:43:3b:19:07:50:a3:eb:0e:e3:39:9d:3a:fd:3c:d8: e2:7a:f9:5c:f1:f9:4f:56:6d:86:47:ec:91:21:ea:fa:e7:27: 78:da:7d:e6:61:21:bd:96:fe:48:7b:7b:18:71:ca:85:58:2d: 77:ce:43:3d:2a:5d:96:b8:ee:0b:35:ca:bc:57:c0:78:f7:05: 94:1e:54:89:b2:a6:3e:6e:30:f5:54:fd:0d:c7:52:58:b3:b1: 97:37:b0:27:fe:ee:ce:d5:fd:5e:48:f3:1c:51:97:0f:92:94: 18:02:f1:99:81:e5:6c:6b:4a:3c:43:0f:4c:11:2c:0c:1e:d4: ec:57:52:7b:72:90:ea:af:19:33:ad:68:b9:ba:b2:72:dd:cc: b6:17:09:95:80:3d:dd:35:8d:56:63:f0:72:8e:d6:b6:af:b3: fb:da:2f:b8:74:44:25:81:04:38:50:5d:db:ae:0c:ff:1a:c2: 1f:db:c8:76:3f:f9:9f:fe:3e:1c:9e:2c:fa:67:a6:28:a9:b3: 54:14:74:e6:64:0e:b6:37:f8:50:82:f7:73:a8:65:51:53:6c: b5:7d:a4:51:0b:f3:94:ee:13:2b:79:47:17:f6:3d:cf:17:62: 98:57:c4:86:fe:ce:65:85:d8:d7:ee:da:5f:f2:db:d6:c8:26: f0:79:47:f7 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUfPp99rfP5vN+I1rAyJ0GvH9yioMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDkxNDAxMTczMVoX DTI1MDkxMzAxMjIzMVowMzExMC8GA1UEAxMoQzRGMTIxOUU2NEU5QjhENDc3NDky QTAwRjFBNUI3NjgwOTlGQkM0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOKzMTkOTjJpmVcUrg5hs2G6r8dWm8ThKM6TjNJ/vZGwIj5n+cqK44I+UBR4 LCS3VgMNFkl/XXs/1gQMNmD2eKfqWsfR1s34YVusSDBAk/8ebWcAF5AjR/3U0g6a bLiSPXjsASgj/UvAFd/h3kbOIXYf9hye1f8XaV1e38Oh3Hb7mL/5T73To1V0oh0Q Pva4tyAboG+EMryFG1KC+BgNM1o1uEKZtW03QFNrvTmB7C5mv6c/5zyu33cTWoQq FBJUFdawSZaYB2sfxt0XadCwquRDLUS2SvXJLMIoHMeWU0Ci1i4+cJIfP0TZRYfO SwZ1QX1en9H7hJ9ISVBFS9U1SEMCAwEAAaOCAeowggHmMB0GA1UdDgQWBBTE8SGe ZOm41HdJKgDxpbdoCZ+8RzAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNDJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DgMA0GCSqGSIb3 DQEBCwUAA4IBAQBsNTtDOxkHUKPrDuM5nTr9PNjievlc8flPVm2GR+yRIer65yd4 2n3mYSG9lv5Ie3sYccqFWC13zkM9Kl2WuO4LNcq8V8B49wWUHlSJsqY+bjD1VP0N x1JYs7GXN7An/u7O1f1eSPMcUZcPkpQYAvGZgeVsa0o8Qw9MESwMHtTsV1J7cpDq rxkzrWi5urJy3cy2FwmVgD3dNY1WY/Byjta2r7P72i+4dEQlgQQ4UF3brgz/GsIf 28h2P/mf/j4cniz6Z6YoqbNUFHTmZA62N/hQgvdzqGVRU2y1faRRC/OU7hMreUcX 9j3PF2KYV8SG/s5lhdjX7tpf8tvWyCbweUf3 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org