$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa File: 3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa (raw, json) Hash identifier: C3K+WGLs2QlNW8KfADo1lgYtDVhfDY/WxaHP6YqnW70= Subject key identifier: A4:CF:48:4B:26:FC:BC:2B:77:5B:27:6B:4B:26:61:65:2F:1F:5F:E5 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 0668CD08F7A9DE2D9A3CA82497818726F977BCFD Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa Signing time: Wed 06 Nov 2024 18:22:05 +0000 ROA not before: Wed 06 Nov 2024 18:17:05 +0000 ROA not after: Wed 05 Nov 2025 18:22:05 +0000 asID: 137443 IP address blocks: 103.192.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 15:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:68:cd:08:f7:a9:de:2d:9a:3c:a8:24:97:81:87:26:f9:77:bc:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Nov 6 18:17:05 2024 GMT Not After : Nov 5 18:22:05 2025 GMT Subject: CN=A4CF484B26FCBC2B775B276B4B2661652F1F5FE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:39:77:70:83:90:d9:f0:a0:bc:fb:d6:da:db: 3e:dd:f2:f7:97:38:c0:f3:04:5a:91:eb:52:88:eb: fc:92:73:1d:ae:f3:93:16:db:23:23:a5:00:17:9c: 2e:e8:a4:41:35:73:92:4b:02:42:5c:58:84:09:80: 12:7f:73:0f:84:7d:06:ba:bc:05:4a:ea:11:8b:07: 60:9f:68:71:57:98:97:c6:59:a5:bc:39:d4:92:00: 5d:df:60:e1:9e:12:f7:04:a1:e8:8d:03:e5:5b:0b: 57:52:1d:bb:25:66:ca:cd:61:e1:e0:e5:34:f1:11: cd:4d:4d:b2:c9:91:ff:b5:2f:8d:e6:bf:bc:d0:93: 8a:7e:a2:5d:f3:2a:31:97:61:da:76:1c:64:e8:84: 87:79:ef:a2:ae:fd:66:b3:6c:6d:cd:b4:fa:cd:f6: 27:1c:cf:9c:79:3a:eb:fb:79:1b:42:5a:7b:3a:be: 9d:bd:e1:6c:24:a1:9e:bf:91:17:8a:e4:37:b8:06: b0:c0:49:c7:c0:0d:77:75:4f:5a:60:d8:5a:e9:3b: f3:0a:47:43:1e:9b:7b:f3:fa:89:87:fc:b6:72:16: 8a:9f:e1:53:72:61:ee:7e:63:f6:b0:6d:8b:b3:67: 96:3e:68:06:80:36:a0:60:bd:cb:b6:8e:0f:73:28: 41:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CF:48:4B:26:FC:BC:2B:77:5B:27:6B:4B:26:61:65:2F:1F:5F:E5 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.226.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:70:fd:8f:a2:13:0e:07:c2:4b:35:f3:e7:a5:18:11:5c:c0: 99:d6:32:c7:6b:c0:2a:8a:aa:85:c4:aa:d6:74:95:3e:2b:15: 36:8d:f7:d5:e2:d2:60:46:59:81:cd:98:2b:4b:11:84:a4:0a: 52:fd:09:14:b5:5d:c7:fd:e2:61:d0:10:94:bc:c0:a4:d1:77: 62:24:31:c1:4f:58:f8:04:d7:94:87:bd:d3:55:57:15:46:41: c9:97:22:1e:7a:bc:fa:bd:d8:ff:41:81:5d:0e:9a:b5:1d:5f: 5e:e2:7b:af:8a:39:b9:67:aa:80:3a:e5:49:95:4f:d3:5e:f8: 0a:0a:25:f8:70:be:c1:9b:1d:32:a7:d6:9a:ed:f2:fc:c7:25: 71:ad:b3:c9:e8:14:4b:a1:a0:66:8b:e9:73:24:1b:13:5d:4f: a5:54:23:f4:0a:7a:6b:cf:10:46:28:1c:8d:3d:96:44:95:b4: f0:c7:8d:b5:cf:10:cf:d5:81:b9:49:34:bc:0a:ce:d1:c6:c6: 30:63:ef:78:62:bd:d0:1a:a7:23:ad:88:be:c0:74:f8:b7:b0: e1:f0:49:3d:49:31:ac:7a:88:20:e2:28:08:80:00:32:60:19: 10:cd:8e:ba:19:fa:ba:c8:1d:de:30:90:13:03:22:9d:3c:02: 09:59:c0:dd -----BEGIN CERTIFICATE----- MIIE+zCCA+OgAwIBAgIUBmjNCPep3i2aPKgkl4GHJvl3vP0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MTEwNjE4MTcwNVoX DTI1MTEwNTE4MjIwNVowMzExMC8GA1UEAxMoQTRDRjQ4NEIyNkZDQkMyQjc3NUIy NzZCNEIyNjYxNjUyRjFGNUZFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMc5d3CDkNnwoLz71trbPt3y95c4wPMEWpHrUojr/JJzHa7zkxbbIyOlABec LuikQTVzkksCQlxYhAmAEn9zD4R9Brq8BUrqEYsHYJ9ocVeYl8ZZpbw51JIAXd9g 4Z4S9wSh6I0D5VsLV1IduyVmys1h4eDlNPERzU1NssmR/7Uvjea/vNCTin6iXfMq MZdh2nYcZOiEh3nvoq79ZrNsbc20+s32JxzPnHk66/t5G0Jaezq+nb3hbCShnr+R F4rkN7gGsMBJx8ANd3VPWmDYWuk78wpHQx6be/P6iYf8tnIWip/hU3Jh7n5j9rBt i7Nnlj5oBoA2oGC9y7aOD3MoQYUCAwEAAaOCAe4wggHqMB0GA1UdDgQWBBSkz0hL Jvy8K3dbJ2tLJmFlLx9f5TAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNjJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM0MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfA4jANBgkq hkiG9w0BAQsFAAOCAQEAnXD9j6ITDgfCSzXz56UYEVzAmdYyx2vAKoqqhcSq1nSV PisVNo331eLSYEZZgc2YK0sRhKQKUv0JFLVdx/3iYdAQlLzApNF3YiQxwU9Y+ATX lIe901VXFUZByZciHnq8+r3Y/0GBXQ6atR1fXuJ7r4o5uWeqgDrlSZVP0174Cgol +HC+wZsdMqfWmu3y/Mclca2zyegUS6GgZovpcyQbE11PpVQj9Ap6a88QRigcjT2W RJW08MeNtc8Qz9WBuUk0vArO0cbGMGPveGK90BqnI62IvsB0+Lew4fBJPUkxrHqI IOIoCIAAMmAZEM2Ouhn6usgd3jCQEwMinTwCCVnA3Q== -----END CERTIFICATE-----Generated at Thu Nov 21 16:17:29 2024 by rpki-client on console-fra.rpki-client.org