$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa File: 3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: CZnX1QmIvehC0rwPmPmw8X50WQ3tVV/JN3IC4Q32Fuw= Subject key identifier: F0:34:E2:62:CD:A1:15:C4:B1:35:C5:A8:57:80:D3:FA:1F:6C:D7:D7 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 5695EBA3315F797FC1BC674F80C3727AEDE33574 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa Signing time: Thu 12 Oct 2023 16:10:41 +0000 ROA not before: Thu 12 Oct 2023 16:05:41 +0000 ROA not after: Thu 10 Oct 2024 16:10:41 +0000 asID: 9312 IP address blocks: 103.192.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:95:eb:a3:31:5f:79:7f:c1:bc:67:4f:80:c3:72:7a:ed:e3:35:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Oct 12 16:05:41 2023 GMT Not After : Oct 10 16:10:41 2024 GMT Subject: CN=F034E262CDA115C4B135C5A85780D3FA1F6CD7D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:45:a5:76:d7:85:15:2e:c7:61:8d:75:d8:3b: 4e:01:1f:b7:63:48:49:e9:96:01:ac:66:95:9f:3b: 1d:1c:a8:a6:f1:93:d4:2d:6f:fd:99:b7:32:31:f5: 9d:48:4c:3f:3a:6d:4f:f2:9f:4a:6d:63:76:9d:d8: e6:fc:1c:55:49:31:20:d9:d2:74:c0:4a:88:5f:da: 3f:1a:60:40:43:c5:af:6e:60:fa:ad:23:f0:e9:1c: ed:7c:4d:fc:e7:9b:d8:bc:80:e5:65:b8:59:e1:2a: 19:d5:3d:87:61:f4:1e:f3:0a:db:9b:0c:da:bc:92: 7b:28:3c:d2:4a:4c:5e:7e:d5:51:d1:c0:9d:d8:9e: f2:25:0b:a1:fe:65:8b:f0:aa:21:1d:02:6b:99:3b: 6b:08:78:4a:e2:d9:23:1e:a9:9e:f7:07:95:27:6f: 26:a5:31:c9:20:f4:5f:f7:5a:7c:4f:d8:2e:ed:53: 39:be:76:b6:df:df:1c:8e:bf:e2:86:d5:fd:bf:e9: e9:c4:77:e1:d5:de:40:ef:c6:5e:f2:61:06:c1:55: 17:fd:45:21:20:6a:39:b6:fe:8c:8b:2c:ff:0d:a7: f7:58:da:ea:e6:ff:20:26:ff:08:97:d0:38:7f:4f: 73:72:0a:86:23:5b:59:71:51:34:45:18:33:b7:ac: 12:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:34:E2:62:CD:A1:15:C4:B1:35:C5:A8:57:80:D3:FA:1F:6C:D7:D7 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.225.0/24 Signature Algorithm: sha256WithRSAEncryption 25:b8:8a:ed:9a:8a:8c:ad:b8:26:89:93:e9:29:3e:f1:d7:a4: ff:96:00:00:0f:f3:a1:be:55:cf:6a:e8:90:b4:67:f9:4c:6b: d3:96:32:26:eb:83:82:cb:6e:e3:44:ca:f4:bf:10:6d:c1:c9: 93:94:89:01:41:bc:bd:f8:d5:8e:70:a5:18:2b:71:ee:e3:41: c7:db:9c:54:bd:74:4b:42:f3:5c:e3:dc:47:1c:cd:ec:db:cf: 2a:c7:81:c2:67:e2:68:43:28:d1:cb:73:db:72:41:01:fb:dd: 81:a8:6b:c4:06:6c:f7:29:04:f3:23:f1:92:bb:3c:8a:f4:f7: 90:0d:ec:b6:6d:35:a9:a1:73:e0:12:98:d1:b2:cd:c0:c5:77: 82:ff:0d:c4:b6:63:dd:16:13:ba:09:8f:c3:91:f8:7a:ba:aa: 6c:8a:a1:25:4d:b6:b6:da:ce:f2:0a:67:8c:6c:ef:e2:5f:d4: d6:a2:1c:84:cd:2b:b1:c5:88:35:6a:93:47:b7:a2:00:40:74: db:da:d1:7b:02:7b:83:74:66:e3:58:f4:dc:35:f1:f6:af:df: d6:64:f0:65:36:34:dd:c0:e9:72:cd:ea:f6:67:c8:92:d4:29: 2b:fb:a9:68:a7:02:b4:e0:40:99:57:7a:7e:46:79:ad:9c:5c: 2f:5b:4c:38 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUVpXrozFfeX/BvGdPgMNyeu3jNXQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTIzMTAxMjE2MDU0MVoX DTI0MTAxMDE2MTA0MVowMzExMC8GA1UEAxMoRjAzNEUyNjJDREExMTVDNEIxMzVD NUE4NTc4MEQzRkExRjZDRDdENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOVFpXbXhRUux2GNddg7TgEft2NISemWAaxmlZ87HRyopvGT1C1v/Zm3MjH1 nUhMPzptT/KfSm1jdp3Y5vwcVUkxINnSdMBKiF/aPxpgQEPFr25g+q0j8Okc7XxN /Oeb2LyA5WW4WeEqGdU9h2H0HvMK25sM2rySeyg80kpMXn7VUdHAndie8iULof5l i/CqIR0Ca5k7awh4SuLZIx6pnvcHlSdvJqUxySD0X/dafE/YLu1TOb52tt/fHI6/ 4obV/b/p6cR34dXeQO/GXvJhBsFVF/1FISBqObb+jIss/w2n91ja6ub/ICb/CJfQ OH9Pc3IKhiNbWXFRNEUYM7esEmMCAwEAAaOCAeowggHmMB0GA1UdDgQWBBTwNOJi zaEVxLE1xahXgNP6H2zX1zAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNTJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DhMA0GCSqGSIb3 DQEBCwUAA4IBAQAluIrtmoqMrbgmiZPpKT7x16T/lgAAD/OhvlXPauiQtGf5TGvT ljIm64OCy27jRMr0vxBtwcmTlIkBQby9+NWOcKUYK3Hu40HH25xUvXRLQvNc49xH HM3s288qx4HCZ+JoQyjRy3PbckEB+92BqGvEBmz3KQTzI/GSuzyK9PeQDey2bTWp oXPgEpjRss3AxXeC/w3EtmPdFhO6CY/Dkfh6uqpsiqElTba22s7yCmeMbO/iX9TW ohyEzSuxxYg1apNHt6IAQHTb2tF7AnuDdGbjWPTcNfH2r9/WZPBlNjTdwOlyzer2 Z8iS1Ckr+6lopwK04ECZV3p+RnmtnFwvW0w4 -----END CERTIFICATE-----Generated at Sun Jun 2 08:04:17 2024 by rpki-client on console-ams.rpki-client.org