$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa File: 3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa (raw, json) Hash identifier: mK1H0q2nScB12+HzJP5Ci9eZPi+rL/uehN1iZQBOZZg= Subject key identifier: BB:45:25:5E:76:C9:1A:73:21:3A:FD:BE:7A:26:9E:FA:16:DB:C1:33 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 16908731C33B8540E387B5E627D82A50D66822C4 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa Signing time: Wed 06 Nov 2024 18:22:05 +0000 ROA not before: Wed 06 Nov 2024 18:17:05 +0000 ROA not after: Wed 05 Nov 2025 18:22:05 +0000 asID: 6134 IP address blocks: 103.192.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 11:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:90:87:31:c3:3b:85:40:e3:87:b5:e6:27:d8:2a:50:d6:68:22:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Nov 6 18:17:05 2024 GMT Not After : Nov 5 18:22:05 2025 GMT Subject: CN=BB45255E76C91A73213AFDBE7A269EFA16DBC133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5f:0d:11:08:84:6d:7a:d6:48:d8:6e:bd:61: c9:a3:3a:a5:24:da:51:54:76:a6:52:7d:09:2b:9d: 54:3a:e1:aa:7a:ff:40:a5:d3:74:62:0a:fc:79:c4: 88:56:ed:df:0a:28:4d:59:bf:3a:15:c2:58:0a:87: 72:f4:6d:01:35:af:99:9a:d2:9c:3d:0c:6b:91:9c: 4b:5e:5e:53:c5:38:df:83:51:79:45:8c:53:4e:08: 34:fe:69:aa:c1:c6:4c:37:81:d4:b7:b4:dd:9c:3a: c4:69:5c:35:34:1b:ca:d1:aa:13:52:0e:aa:c3:55: d6:72:01:27:ac:0d:30:18:2e:fe:2c:8f:1c:08:2e: a8:6e:1e:89:f3:f9:ff:3d:ff:8a:25:90:44:3a:51: 1f:f1:8a:aa:12:fa:54:f1:75:cd:2f:df:fa:7f:b7: 36:76:8e:b9:11:0b:3b:91:08:a1:ed:26:89:fa:4b: 4d:31:1b:4a:49:6d:f6:9a:97:90:9e:3c:92:0f:97: fb:c7:f1:d4:3d:f0:76:6b:b1:32:de:0e:5e:6e:ec: 15:39:15:bf:5c:5b:2c:34:ba:7e:0c:d4:3e:cd:1d: 5f:84:63:73:7a:fc:6c:55:d9:12:ad:4c:28:e9:85: ea:42:9a:c6:bc:3a:3c:16:fd:be:6c:86:d7:0d:b5: 4f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:45:25:5E:76:C9:1A:73:21:3A:FD:BE:7A:26:9E:FA:16:DB:C1:33 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.226.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:89:be:4d:e9:58:b3:c8:c1:8a:a3:d5:20:d4:e0:19:91:f7: 10:fa:cc:6e:3f:10:3e:0b:a6:9b:30:b8:3e:52:15:46:bf:85: 00:e2:2b:15:c8:17:f6:fb:a1:61:db:03:98:f8:9b:49:f0:c9: 02:31:7a:d4:68:a3:0d:f2:31:a6:a9:72:41:90:3c:89:34:d3: 0b:c3:01:1b:59:81:f2:3c:a7:e8:d0:1f:cb:f1:6c:b5:21:21: ea:7c:dd:f0:75:0b:60:13:d1:7f:c1:06:c1:33:50:3f:e4:a7: d5:67:00:28:45:b6:af:25:55:1e:34:f6:e1:b1:f6:3b:94:63: cf:4b:e5:49:b9:9c:e8:22:56:14:da:51:16:23:eb:d0:17:2f: f7:d2:1d:28:d4:ec:d2:f7:f0:01:05:62:eb:27:5e:6d:5c:15: 8b:db:cd:97:dc:1a:9e:09:32:6e:ba:55:d3:f4:c9:69:f5:92: 99:eb:ba:f6:64:cd:26:92:82:4b:35:ec:cc:ab:2c:4f:50:a2: 29:12:2e:43:64:e9:df:7c:b3:cf:fb:13:94:b6:95:af:0c:a7: 0a:f2:d9:51:97:84:94:1d:c8:29:f5:33:54:8e:0e:8b:8c:5c: ea:7c:d5:5f:8b:ae:94:cb:2a:1a:2b:37:ec:e6:f4:a7:68:3e: 67:71:e9:2b -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUFpCHMcM7hUDjh7XmJ9gqUNZoIsQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MTEwNjE4MTcwNVoX DTI1MTEwNTE4MjIwNVowMzExMC8GA1UEAxMoQkI0NTI1NUU3NkM5MUE3MzIxM0FG REJFN0EyNjlFRkExNkRCQzEzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNfDREIhG161kjYbr1hyaM6pSTaUVR2plJ9CSudVDrhqnr/QKXTdGIK/HnE iFbt3wooTVm/OhXCWAqHcvRtATWvmZrSnD0Ma5GcS15eU8U434NReUWMU04INP5p qsHGTDeB1Le03Zw6xGlcNTQbytGqE1IOqsNV1nIBJ6wNMBgu/iyPHAguqG4eifP5 /z3/iiWQRDpRH/GKqhL6VPF1zS/f+n+3NnaOuRELO5EIoe0mifpLTTEbSklt9pqX kJ48kg+X+8fx1D3wdmuxMt4OXm7sFTkVv1xbLDS6fgzUPs0dX4Rjc3r8bFXZEq1M KOmF6kKaxrw6PBb9vmyG1w21T7cCAwEAAaOCAeowggHmMB0GA1UdDgQWBBS7RSVe dskacyE6/b56Jp76FtvBMzAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNjJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM2MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DiMA0GCSqGSIb3 DQEBCwUAA4IBAQA+ib5N6VizyMGKo9Ug1OAZkfcQ+sxuPxA+C6abMLg+UhVGv4UA 4isVyBf2+6Fh2wOY+JtJ8MkCMXrUaKMN8jGmqXJBkDyJNNMLwwEbWYHyPKfo0B/L 8Wy1ISHqfN3wdQtgE9F/wQbBM1A/5KfVZwAoRbavJVUeNPbhsfY7lGPPS+VJuZzo IlYU2lEWI+vQFy/30h0o1OzS9/ABBWLrJ15tXBWL282X3BqeCTJuulXT9Mlp9ZKZ 67r2ZM0mkoJLNezMqyxPUKIpEi5DZOnffLPP+xOUtpWvDKcK8tlRl4SUHcgp9TNU jg6LjFzqfNVfi66UyyoaKzfs5vSnaD5ncekr -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org