$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa File: 3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: sr7r8uO67cDPo72NjWdP3dlG7qJrC9xZ+w35SmZvRyk= Subject key identifier: 48:8E:9D:56:82:30:7E:99:B2:F8:EF:46:D3:D5:42:26:23:1E:8A:01 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 27592C52303B9672FBADCBB677A819895BDCBBC1 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa Signing time: Sat 14 Sep 2024 01:22:30 +0000 ROA not before: Sat 14 Sep 2024 01:17:30 +0000 ROA not after: Sat 13 Sep 2025 01:22:30 +0000 asID: 9312 IP address blocks: 103.192.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 15:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:59:2c:52:30:3b:96:72:fb:ad:cb:b6:77:a8:19:89:5b:dc:bb:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Sep 14 01:17:30 2024 GMT Not After : Sep 13 01:22:30 2025 GMT Subject: CN=488E9D5682307E99B2F8EF46D3D54226231E8A01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:32:1e:8d:16:03:1d:e9:30:98:86:e6:5f:3f: 17:ea:dc:7f:ad:94:54:be:9c:99:8c:29:17:05:b6: 38:4e:e4:e0:b7:2c:34:52:18:e1:7a:7c:83:51:06: 74:80:bb:a0:6c:e7:05:ef:14:92:5b:da:14:cc:37: 58:7c:b0:86:a7:e3:d2:83:5a:4e:91:3f:58:97:d2: 06:98:4d:c7:0b:25:8f:cd:53:29:2e:07:8d:0d:81: 2a:0f:79:00:4a:a8:05:50:c1:97:cf:3e:71:ce:0e: 88:9c:94:ca:f8:e9:4a:75:b8:4f:4a:67:eb:c0:2e: 3b:a4:80:df:15:ce:2f:e9:34:39:d3:75:66:10:a9: 10:df:5c:d4:23:55:a1:c9:92:10:c9:23:1f:d9:d9: 06:22:14:84:8b:12:aa:f3:e7:8f:25:41:24:95:f6: 05:62:7b:68:e4:15:6a:73:75:ae:ca:4f:62:17:e4: e1:a4:20:11:26:40:81:dc:d9:39:b7:70:96:8a:c2: 40:e5:70:a1:f9:54:01:df:26:a6:41:1d:e3:1e:51: fa:b7:18:ea:8f:60:4a:f0:36:2a:cb:39:74:0c:84: e4:d8:b8:9e:4f:70:d7:1a:f3:8d:26:23:52:05:80: df:53:43:6e:c9:0d:ba:1c:7a:4a:a4:1f:e0:c6:d7: 3d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:8E:9D:56:82:30:7E:99:B2:F8:EF:46:D3:D5:42:26:23:1E:8A:01 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.227.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:38:d9:d8:51:f7:b2:62:0b:5b:c7:0f:e5:fc:a0:b6:70:75: 9b:54:03:60:0c:0d:41:d5:85:80:29:67:0a:65:f6:05:21:42: 77:61:18:f8:92:83:c1:67:6b:12:71:e2:25:4e:85:dc:76:dc: 0b:fa:e0:c4:70:c8:93:60:8c:37:84:eb:cb:d7:b4:65:1c:e6: 87:16:29:cf:ba:89:83:09:66:d1:cf:f8:88:20:d9:8e:57:48: 99:e3:10:67:ed:d4:50:5f:6c:41:b6:57:7e:86:e1:c3:58:31: 6f:7c:59:5e:90:bb:1b:38:13:c3:62:47:3d:7c:73:b3:23:d1: c6:6e:2d:4f:60:4a:dd:11:e3:dc:57:27:9e:32:99:b0:bd:c8: 86:8b:d2:07:73:f3:0d:89:a2:ac:b8:62:b0:bf:98:7a:89:21: a4:ce:54:b8:e0:67:50:f8:81:bd:6e:e9:67:c8:55:9e:fe:03: 82:bb:dd:57:81:ff:44:01:26:65:72:7d:a4:ea:0e:35:02:fb: 77:6b:f3:2c:a8:a7:c3:5a:37:f7:8b:01:a0:9d:ca:fb:04:3b: 5d:8a:3a:06:aa:0f:65:a3:b7:bc:8d:f7:c9:e5:3a:a2:cc:fe: a5:33:68:5d:0a:94:64:14:ae:b9:00:5d:75:76:ba:ea:ff:48: d5:16:4e:9e -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUJ1ksUjA7lnL7rcu2d6gZiVvcu8EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDkxNDAxMTczMFoX DTI1MDkxMzAxMjIzMFowMzExMC8GA1UEAxMoNDg4RTlENTY4MjMwN0U5OUIyRjhF RjQ2RDNENTQyMjYyMzFFOEEwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANIyHo0WAx3pMJiG5l8/F+rcf62UVL6cmYwpFwW2OE7k4LcsNFIY4Xp8g1EG dIC7oGznBe8UklvaFMw3WHywhqfj0oNaTpE/WJfSBphNxwslj81TKS4HjQ2BKg95 AEqoBVDBl88+cc4OiJyUyvjpSnW4T0pn68AuO6SA3xXOL+k0OdN1ZhCpEN9c1CNV ocmSEMkjH9nZBiIUhIsSqvPnjyVBJJX2BWJ7aOQVanN1rspPYhfk4aQgESZAgdzZ ObdwlorCQOVwoflUAd8mpkEd4x5R+rcY6o9gSvA2Kss5dAyE5Ni4nk9w1xrzjSYj UgWA31NDbskNuhx6SqQf4MbXPS0CAwEAAaOCAeowggHmMB0GA1UdDgQWBBRIjp1W gjB+mbL470bT1UImIx6KATAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNzJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DjMA0GCSqGSIb3 DQEBCwUAA4IBAQAsONnYUfeyYgtbxw/l/KC2cHWbVANgDA1B1YWAKWcKZfYFIUJ3 YRj4koPBZ2sSceIlToXcdtwL+uDEcMiTYIw3hOvL17RlHOaHFinPuomDCWbRz/iI INmOV0iZ4xBn7dRQX2xBtld+huHDWDFvfFlekLsbOBPDYkc9fHOzI9HGbi1PYErd EePcVyeeMpmwvciGi9IHc/MNiaKsuGKwv5h6iSGkzlS44GdQ+IG9bulnyFWe/gOC u91Xgf9EASZlcn2k6g41Avt3a/MsqKfDWjf3iwGgncr7BDtdijoGqg9lo7e8jffJ 5TqizP6lM2hdCpRkFK65AF11drrq/0jVFk6e -----END CERTIFICATE-----Generated at Thu Nov 21 16:17:29 2024 by rpki-client on console-fra.rpki-client.org