$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa File: 3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: eglNokA0036JbGNEJ4JBpUI9W7LtrNCo3IjzCiifpEo= Subject key identifier: 48:24:FA:54:2D:7A:CB:84:D5:F1:1B:99:B8:38:33:03:2F:EE:37:E1 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 59007F6D9BFF205E862D16D091E81A266AC47029 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa Signing time: Sat 14 Sep 2024 01:22:30 +0000 ROA not before: Sat 14 Sep 2024 01:17:30 +0000 ROA not after: Sat 13 Sep 2025 01:22:30 +0000 asID: 9312 IP address blocks: 103.192.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 15:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:00:7f:6d:9b:ff:20:5e:86:2d:16:d0:91:e8:1a:26:6a:c4:70:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Sep 14 01:17:30 2024 GMT Not After : Sep 13 01:22:30 2025 GMT Subject: CN=4824FA542D7ACB84D5F11B99B83833032FEE37E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b2:eb:de:99:5f:68:b8:49:99:12:7a:84:a9: 29:46:da:59:c0:7b:31:81:b1:47:a7:3c:53:1b:c0: 54:36:55:79:1f:8b:ba:a6:2d:61:4b:8a:39:d1:f7: a3:ec:2e:c9:08:4c:7c:ef:c1:51:1b:e4:68:02:f9: f5:94:2c:d6:1b:a2:7c:30:67:71:73:3c:2f:0a:55: c9:70:9c:f3:69:85:26:1f:74:ff:dc:8a:0f:ba:30: 69:88:87:cf:6a:59:3d:7e:a7:86:63:df:79:5c:1e: ec:69:18:cb:11:6b:6d:9c:1e:d6:02:70:18:8e:d6: b7:18:8a:6a:51:cf:78:a7:37:6f:75:c1:27:1b:06: 8c:c6:39:ad:f1:6c:2f:ef:77:b3:ba:ea:6e:f0:c8: 47:a0:88:62:80:a6:8d:0e:12:b0:c6:03:7b:93:47: 54:8f:b0:0f:68:6a:17:9d:99:4c:6e:4d:bb:af:ca: 23:c6:48:a3:2c:bd:b6:94:b9:48:fc:4a:ab:76:d4: 03:91:9e:f6:d1:37:45:b5:b8:64:14:dd:12:63:e4: 49:3e:e9:17:2b:e6:85:93:55:45:55:6f:ff:16:19: 5b:36:4e:2a:1a:a0:9b:13:22:be:62:d4:9d:02:29: 13:3c:ec:2e:b7:66:69:f3:4c:d6:d8:ce:47:38:9d: 9e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:24:FA:54:2D:7A:CB:84:D5:F1:1B:99:B8:38:33:03:2F:EE:37:E1 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.225.0/24 Signature Algorithm: sha256WithRSAEncryption 64:9e:85:cc:76:ce:0a:38:02:ec:6e:97:a8:06:6d:4f:cf:ef: af:05:8d:34:b9:0d:54:a9:e5:4b:5a:8d:69:42:37:fe:1a:78: b9:a0:cf:c5:a5:87:3e:92:70:e1:0b:3e:2c:3f:da:6c:af:c6: 89:dc:2e:c9:bb:4d:6d:d9:28:ab:d8:e0:ba:24:32:ff:02:00: 5d:e6:47:93:fd:f5:08:a8:d8:9e:e0:44:6c:5d:36:57:1f:2b: 0b:d6:3d:0c:69:fc:2a:4d:d4:ae:d1:7f:f7:ca:c6:a3:37:1c: 6c:b9:2f:d7:29:a7:2e:3c:5e:9e:1b:2c:8c:1e:eb:d8:31:6e: 75:97:28:31:aa:b3:4d:bf:4b:77:b8:43:a9:a0:5b:b7:51:bf: 84:bd:97:f5:8d:67:39:93:66:6a:8a:c0:7c:81:eb:b7:c9:59: f2:f1:a2:ba:7a:29:c6:40:b6:39:83:b8:6d:75:fc:f4:16:a7: 98:9c:d3:44:34:c5:aa:c1:9e:64:3c:ca:81:bc:c0:f5:d4:fe: 69:05:77:1c:f9:34:52:6e:f1:cc:ef:b4:ab:4a:2a:d9:4c:09: f0:44:46:9e:71:88:a5:e3:a6:cd:ad:37:e7:83:10:ce:4a:58: 16:67:a2:88:e3:ca:82:6f:e1:7c:0a:53:7b:e8:9b:e0:e9:ae: 06:5f:e2:c0 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUWQB/bZv/IF6GLRbQkegaJmrEcCkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDkxNDAxMTczMFoX DTI1MDkxMzAxMjIzMFowMzExMC8GA1UEAxMoNDgyNEZBNTQyRDdBQ0I4NEQ1RjEx Qjk5QjgzODMzMDMyRkVFMzdFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyy696ZX2i4SZkSeoSpKUbaWcB7MYGxR6c8UxvAVDZVeR+LuqYtYUuKOdH3 o+wuyQhMfO/BURvkaAL59ZQs1huifDBncXM8LwpVyXCc82mFJh90/9yKD7owaYiH z2pZPX6nhmPfeVwe7GkYyxFrbZwe1gJwGI7WtxiKalHPeKc3b3XBJxsGjMY5rfFs L+93s7rqbvDIR6CIYoCmjQ4SsMYDe5NHVI+wD2hqF52ZTG5Nu6/KI8ZIoyy9tpS5 SPxKq3bUA5Ge9tE3RbW4ZBTdEmPkST7pFyvmhZNVRVVv/xYZWzZOKhqgmxMivmLU nQIpEzzsLrdmafNM1tjORzidnqECAwEAAaOCAeowggHmMB0GA1UdDgQWBBRIJPpU LXrLhNXxG5m4ODMDL+434TAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNTJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DhMA0GCSqGSIb3 DQEBCwUAA4IBAQBknoXMds4KOALsbpeoBm1Pz++vBY00uQ1UqeVLWo1pQjf+Gni5 oM/FpYc+knDhCz4sP9psr8aJ3C7Ju01t2Sir2OC6JDL/AgBd5keT/fUIqNie4ERs XTZXHysL1j0MafwqTdSu0X/3ysajNxxsuS/XKacuPF6eGyyMHuvYMW51lygxqrNN v0t3uEOpoFu3Ub+EvZf1jWc5k2ZqisB8geu3yVny8aK6einGQLY5g7htdfz0FqeY nNNENMWqwZ5kPMqBvMD11P5pBXcc+TRSbvHM77SrSirZTAnwREaecYil46bNrTfn gxDOSlgWZ6KI48qCb+F8ClN76Jvg6a4GX+LA -----END CERTIFICATE-----Generated at Thu Nov 21 17:13:48 2024 by rpki-client on console-ams.rpki-client.org