$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa File: 3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: ozpow74s9/vkyRYoUy+95bprf8wXf4BD410ve+r0GnE= Subject key identifier: 56:4F:FB:9F:05:BA:5D:E5:0F:F0:79:31:96:70:17:59:7B:8B:28:B3 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 62C2C008F1690578FED4B0A5CE10F9CB29A2E61F Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa Signing time: Thu 12 Oct 2023 16:10:42 +0000 ROA not before: Thu 12 Oct 2023 16:05:42 +0000 ROA not after: Thu 10 Oct 2024 16:10:42 +0000 asID: 9312 IP address blocks: 103.192.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 09:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:c2:c0:08:f1:69:05:78:fe:d4:b0:a5:ce:10:f9:cb:29:a2:e6:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Oct 12 16:05:42 2023 GMT Not After : Oct 10 16:10:42 2024 GMT Subject: CN=564FFB9F05BA5DE50FF07931967017597B8B28B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fc:8e:63:a2:75:e0:e2:90:bb:d4:d5:a9:83: 4d:50:5a:90:0f:90:85:ac:d9:39:8d:ff:0e:cd:4a: 3c:76:7b:35:42:1e:2b:0e:c7:c9:ee:c4:36:25:8a: 82:60:f2:95:96:f6:f8:d4:87:ea:18:f9:20:59:5d: d4:61:87:c3:af:8d:f0:3c:c5:7c:0f:11:ba:8e:ab: 33:be:33:c1:b0:a4:eb:e9:c1:c8:e4:6e:7c:38:69: ae:6c:c6:98:af:72:87:1c:ef:71:9a:c6:c6:7f:6c: 90:9b:69:23:ae:8a:c9:5d:55:d4:21:60:55:af:e6: 00:1b:e0:92:42:fb:05:12:52:d4:0b:ab:08:ac:9d: d6:1e:1a:74:38:7f:ea:aa:d5:ba:af:f8:8b:03:70: 7a:04:74:5d:ae:43:ae:5c:67:86:ed:8b:25:e5:47: 5d:e8:97:73:fb:57:01:ea:9f:f7:ed:b0:81:d2:46: 56:69:cc:f9:eb:d1:69:17:31:3e:44:35:08:2f:fd: ec:bd:cb:a0:39:17:b9:ca:d0:4d:3a:51:cd:f1:0a: e0:19:2e:45:9a:31:e1:bb:e7:3f:88:86:c9:a7:d1: fc:50:c8:62:f8:ef:47:11:2f:b0:62:80:15:a1:f5: df:7d:90:f7:a7:04:20:96:94:c5:23:00:83:bf:50: 46:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:4F:FB:9F:05:BA:5D:E5:0F:F0:79:31:96:70:17:59:7B:8B:28:B3 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.227.0/24 Signature Algorithm: sha256WithRSAEncryption 56:68:a9:29:f4:27:a9:8a:44:a2:14:4e:f9:02:e3:17:f9:27: 26:f4:70:59:b8:0e:ed:dc:9e:49:11:f0:9f:e2:31:48:44:04: 20:26:63:d6:3f:07:35:01:83:24:f9:24:1a:af:f0:3c:db:fe: 52:5f:51:9b:f3:84:c7:3d:59:04:9e:72:b2:e1:e9:b8:8b:04: c7:c0:5d:5b:15:71:f0:2e:97:c8:53:de:00:55:f8:31:aa:43: cf:2e:7c:10:fa:76:e6:69:4c:e7:26:0d:55:81:7a:33:82:33: 7b:14:16:18:13:81:db:8f:76:82:c3:a7:42:c4:d1:14:2c:20: 85:ca:b5:27:96:59:80:bf:23:7c:cf:4f:42:b9:4c:42:53:86: 23:f8:3f:99:e6:04:67:a3:9c:b9:66:31:07:bc:16:dd:6f:24: 58:69:eb:56:7a:33:fc:a4:62:ee:3c:73:33:5c:02:6f:4d:ab: 26:dc:69:9f:38:59:1b:f1:74:77:ff:1d:83:2e:bb:a1:31:49: 08:9c:1c:32:bc:97:33:4e:9b:f2:80:8c:a6:84:1e:ce:2a:c3: 8a:27:75:31:b7:aa:22:45:7f:95:1f:d9:5f:fd:9a:ad:c5:f4: 38:1b:7b:ce:57:80:58:c5:22:78:79:b0:73:15:f3:8c:d3:0d: 5b:08:44:79 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUYsLACPFpBXj+1LClzhD5yymi5h8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTIzMTAxMjE2MDU0MloX DTI0MTAxMDE2MTA0MlowMzExMC8GA1UEAxMoNTY0RkZCOUYwNUJBNURFNTBGRjA3 OTMxOTY3MDE3NTk3QjhCMjhCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN/8jmOideDikLvU1amDTVBakA+QhazZOY3/Ds1KPHZ7NUIeKw7Hye7ENiWK gmDylZb2+NSH6hj5IFld1GGHw6+N8DzFfA8Ruo6rM74zwbCk6+nByORufDhprmzG mK9yhxzvcZrGxn9skJtpI66KyV1V1CFgVa/mABvgkkL7BRJS1AurCKyd1h4adDh/ 6qrVuq/4iwNwegR0Xa5Drlxnhu2LJeVHXeiXc/tXAeqf9+2wgdJGVmnM+evRaRcx PkQ1CC/97L3LoDkXucrQTTpRzfEK4BkuRZox4bvnP4iGyafR/FDIYvjvRxEvsGKA FaH1332Q96cEIJaUxSMAg79QRisCAwEAAaOCAeowggHmMB0GA1UdDgQWBBRWT/uf Bbpd5Q/weTGWcBdZe4soszAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNzJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DjMA0GCSqGSIb3 DQEBCwUAA4IBAQBWaKkp9CepikSiFE75AuMX+Scm9HBZuA7t3J5JEfCf4jFIRAQg JmPWPwc1AYMk+SQar/A82/5SX1Gb84THPVkEnnKy4em4iwTHwF1bFXHwLpfIU94A VfgxqkPPLnwQ+nbmaUznJg1VgXozgjN7FBYYE4Hbj3aCw6dCxNEULCCFyrUnllmA vyN8z09CuUxCU4Yj+D+Z5gRno5y5ZjEHvBbdbyRYaetWejP8pGLuPHMzXAJvTasm 3GmfOFkb8XR3/x2DLruhMUkInBwyvJczTpvygIymhB7OKsOKJ3Uxt6oiRX+VH9lf /ZqtxfQ4G3vOV4BYxSJ4ebBzFfOM0w1bCER5 -----END CERTIFICATE-----Generated at Mon May 20 13:46:56 2024 by rpki-client on console-ams.rpki-client.org