$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa File: 3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: ImREtJmI9Py+3tSryDA/tvEACO9jXKusfJ0vZUKw0YU= Subject key identifier: 5F:6B:36:34:A4:79:1C:65:DB:75:DF:F1:A6:C9:D2:3B:18:CC:EC:DB Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 04480A2F0CCA3CE0D99184265C3043A53C49294F Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa Signing time: Thu 12 Oct 2023 16:10:41 +0000 ROA not before: Thu 12 Oct 2023 16:05:41 +0000 ROA not after: Thu 10 Oct 2024 16:10:41 +0000 asID: 9312 IP address blocks: 103.192.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:48:0a:2f:0c:ca:3c:e0:d9:91:84:26:5c:30:43:a5:3c:49:29:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Oct 12 16:05:41 2023 GMT Not After : Oct 10 16:10:41 2024 GMT Subject: CN=5F6B3634A4791C65DB75DFF1A6C9D23B18CCECDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6f:84:58:af:2a:24:da:01:a3:29:5e:67:09: 1d:58:40:00:b4:99:81:47:38:74:4c:50:e2:65:b1: 2c:e9:ff:45:c2:20:ef:03:0c:f3:1d:68:13:eb:88: 88:5f:94:31:f7:c5:c5:2a:6f:f1:db:65:74:df:81: 4a:ab:db:4e:11:ca:3b:51:51:03:34:d7:f6:64:c9: 80:f2:06:90:f5:b6:05:1d:a0:43:1e:1a:b4:76:d5: 87:b2:af:39:67:44:cf:d1:91:9a:22:46:9f:e1:db: ac:ca:90:9f:6a:b4:9e:91:64:ce:6e:13:4c:f3:b6: 74:a4:9e:bd:e7:b3:65:74:d4:e1:85:74:cb:c7:fd: 6e:5a:ae:96:3f:c0:58:24:d7:f6:1b:a1:eb:83:28: 60:aa:a6:15:83:74:60:b7:c6:c5:48:7d:f5:54:b2: 8c:b9:06:bf:23:9c:09:3c:71:80:e6:09:d4:9d:a5: 83:33:4c:07:b6:6a:cb:b8:1b:77:f9:d0:9e:23:50: 70:29:0d:f7:6d:a9:7f:f0:a4:cb:96:09:b9:53:1e: e6:87:60:9d:4b:af:30:63:1e:20:a9:13:1c:7b:a5: f9:6e:33:42:28:da:de:08:2d:4e:34:f9:4a:e9:6e: 74:b9:84:a6:bd:72:4d:95:15:9d:89:56:5e:ca:fd: 3d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:6B:36:34:A4:79:1C:65:DB:75:DF:F1:A6:C9:D2:3B:18:CC:EC:DB X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.224.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:73:72:5b:ac:a9:53:b7:dd:97:0b:5d:5d:20:0b:3d:f9:ef: 6f:b3:f1:dc:62:61:8a:1c:89:62:f5:70:7a:93:18:80:20:0e: 3e:10:5f:ae:9d:d9:e3:b4:8f:d9:e5:f8:a3:b1:d7:a4:bd:93: bd:47:09:f8:e9:7a:c4:07:9b:22:ba:8a:1c:5e:4b:c6:1b:6a: 28:5d:14:af:71:4b:2e:b5:bf:cb:00:90:50:c8:4c:c4:e4:98: 88:ca:8f:f2:24:2e:46:c9:45:45:c8:c7:50:9e:9f:20:67:b1: 67:39:af:c5:14:48:5e:4c:f4:81:bc:05:fd:5d:4f:39:8b:0a: d3:21:aa:be:82:f9:ec:67:45:f6:1b:fc:b3:ee:1e:45:a1:43: 02:99:71:9c:fb:6e:46:33:02:1b:86:4d:45:b3:5e:65:03:a8: 9f:59:ff:d2:b0:7e:cf:11:d4:be:67:8c:e2:0e:a4:40:5f:3d: 01:1a:c2:81:73:8c:71:96:85:ca:b1:b0:e5:4d:03:c2:85:55: de:4d:55:03:fa:9b:4d:f4:e6:42:fc:21:d9:a5:cf:7f:ac:e8: 41:24:52:13:51:64:c0:cd:63:f2:71:41:78:3a:fe:cc:0d:56: 6d:1e:fa:ee:5d:d5:bc:a2:7e:2c:13:07:ca:71:1f:70:7a:38: 2a:e6:11:e7 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUBEgKLwzKPODZkYQmXDBDpTxJKU8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTIzMTAxMjE2MDU0MVoX DTI0MTAxMDE2MTA0MVowMzExMC8GA1UEAxMoNUY2QjM2MzRBNDc5MUM2NURCNzVE RkYxQTZDOUQyM0IxOENDRUNEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANlvhFivKiTaAaMpXmcJHVhAALSZgUc4dExQ4mWxLOn/RcIg7wMM8x1oE+uI iF+UMffFxSpv8dtldN+BSqvbThHKO1FRAzTX9mTJgPIGkPW2BR2gQx4atHbVh7Kv OWdEz9GRmiJGn+HbrMqQn2q0npFkzm4TTPO2dKSeveezZXTU4YV0y8f9blqulj/A WCTX9huh64MoYKqmFYN0YLfGxUh99VSyjLkGvyOcCTxxgOYJ1J2lgzNMB7Zqy7gb d/nQniNQcCkN922pf/Cky5YJuVMe5odgnUuvMGMeIKkTHHul+W4zQija3ggtTjT5 SuludLmEpr1yTZUVnYlWXsr9PW0CAwEAAaOCAeowggHmMB0GA1UdDgQWBBRfazY0 pHkcZdt13/GmydI7GMzs2zAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNDJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DgMA0GCSqGSIb3 DQEBCwUAA4IBAQBfc3JbrKlTt92XC11dIAs9+e9vs/HcYmGKHIli9XB6kxiAIA4+ EF+undnjtI/Z5fijsdekvZO9Rwn46XrEB5siuoocXkvGG2ooXRSvcUsutb/LAJBQ yEzE5JiIyo/yJC5GyUVFyMdQnp8gZ7FnOa/FFEheTPSBvAX9XU85iwrTIaq+gvns Z0X2G/yz7h5FoUMCmXGc+25GMwIbhk1Fs15lA6ifWf/SsH7PEdS+Z4ziDqRAXz0B GsKBc4xxloXKsbDlTQPChVXeTVUD+ptN9OZC/CHZpc9/rOhBJFITUWTAzWPycUF4 Ov7MDVZtHvruXdW8on4sEwfKcR9wejgq5hHn -----END CERTIFICATE-----Generated at Sun Jun 2 06:22:33 2024 by rpki-client on console-fra.rpki-client.org