$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e35362e35332e302f32342d3234203d3e2038383838.roa File: 3130332e35362e35332e302f32342d3234203d3e2038383838.roa (raw, json) Hash identifier: hJFUedJxlwrGsuBiVRcEB429TcpnC3Bw2MEl2q91qrM= Subject key identifier: 9B:13:54:D9:46:E0:87:45:C8:A5:66:33:9C:36:88:39:F1:32:C1:65 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 4018D3CEE66EB3B7AD31B9966223930F6571C27E Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35332e302f32342d3234203d3e2038383838.roa Signing time: Thu 22 Aug 2024 09:47:21 +0000 ROA not before: Thu 22 Aug 2024 09:42:21 +0000 ROA not after: Thu 21 Aug 2025 09:47:21 +0000 asID: 8888 IP address blocks: 103.56.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 11:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:18:d3:ce:e6:6e:b3:b7:ad:31:b9:96:62:23:93:0f:65:71:c2:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Aug 22 09:42:21 2024 GMT Not After : Aug 21 09:47:21 2025 GMT Subject: CN=9B1354D946E08745C8A566339C368839F132C165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9d:66:f2:7a:47:b9:46:a8:d7:20:e5:ee:21: d2:96:30:02:9a:a3:dd:53:9d:3b:61:d7:2f:36:15: 84:bf:46:f1:57:64:d9:b2:07:0e:63:9f:4e:e2:3e: 20:60:79:1e:a0:fa:fb:23:ad:2e:c0:2b:16:7e:22: 8d:5f:79:e5:7e:71:3d:b6:36:b1:48:6e:40:af:ac: a8:ca:c4:e3:f7:69:fc:b2:70:17:db:fb:e3:3b:b8: b6:df:b6:76:9a:75:99:ae:a5:54:5b:3d:67:58:4c: ea:a4:39:f2:2d:a9:e6:b4:5f:9a:6a:56:00:c0:e0: 26:ca:c5:77:bb:e3:5a:3e:50:94:06:21:ae:99:a9: ae:28:83:07:10:65:00:fb:c6:9b:36:08:82:b5:04: ed:0c:1b:a9:02:c4:68:5e:b4:b5:8d:48:a2:3b:e8: 60:d4:f1:2a:a9:8f:23:db:a7:e2:94:e5:35:a6:96: 13:b1:b1:b1:a9:ed:85:10:83:c7:b9:ab:1f:97:36: 8a:14:1a:13:b3:c8:da:48:1c:78:3c:ee:24:4f:88: 22:92:81:cc:d1:6e:e1:e5:53:40:73:c5:92:d0:36: 0d:31:11:2d:c6:49:d6:c2:d3:d1:ab:1d:ce:ea:32: f2:78:6b:0b:b4:d7:dc:1a:cb:72:70:54:8f:89:e0: 92:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:13:54:D9:46:E0:87:45:C8:A5:66:33:9C:36:88:39:F1:32:C1:65 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35332e302f32342d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.53.0/24 Signature Algorithm: sha256WithRSAEncryption 50:a6:9b:b2:27:85:c4:e2:70:f0:95:2b:26:76:bc:58:e2:da: e2:16:24:d0:96:05:92:3e:c7:d3:73:c7:2e:3b:54:bf:7d:be: 73:eb:78:11:43:8a:0c:40:8a:3b:6e:f3:89:77:30:55:68:61: af:70:09:a7:4c:ec:db:d0:fb:d3:fe:e4:40:c3:95:bf:16:e2: 04:0f:03:98:0a:b8:9c:b7:5e:23:ff:1d:b4:65:90:7a:4d:59: 60:62:20:ab:1c:1a:d5:db:31:92:94:5e:a0:9e:76:75:88:5d: e5:fa:df:5a:b8:19:29:97:c6:1a:5a:1e:aa:6c:24:89:a4:9e: 5c:00:b9:e5:54:44:2d:4d:d6:00:d7:bd:cc:df:7b:59:8a:b4: 71:14:51:69:84:61:6d:b0:3c:bd:20:d2:e5:f6:79:74:15:d0: 4d:5d:d8:06:1c:96:4f:f4:76:74:bf:71:43:14:fe:24:da:8e: e1:ce:56:b0:29:bf:f7:43:c1:02:55:40:a8:40:5f:37:cb:08: de:d2:2b:cd:87:62:dc:fc:50:0b:23:67:bf:36:35:f0:81:79: 27:af:f2:68:9a:3d:c7:3b:20:ed:a8:76:a3:fa:06:14:04:d7: 85:c9:fb:e0:69:bb:6a:71:e2:98:9a:8f:ef:bc:08:ef:74:1e: 71:e6:e5:bc -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUQBjTzuZus7etMbmWYiOTD2Vxwn4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDgyMjA5NDIyMVoX DTI1MDgyMTA5NDcyMVowMzExMC8GA1UEAxMoOUIxMzU0RDk0NkUwODc0NUM4QTU2 NjMzOUMzNjg4MzlGMTMyQzE2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALydZvJ6R7lGqNcg5e4h0pYwApqj3VOdO2HXLzYVhL9G8Vdk2bIHDmOfTuI+ IGB5HqD6+yOtLsArFn4ijV955X5xPbY2sUhuQK+sqMrE4/dp/LJwF9v74zu4tt+2 dpp1ma6lVFs9Z1hM6qQ58i2p5rRfmmpWAMDgJsrFd7vjWj5QlAYhrpmpriiDBxBl APvGmzYIgrUE7QwbqQLEaF60tY1IojvoYNTxKqmPI9un4pTlNaaWE7GxsanthRCD x7mrH5c2ihQaE7PI2kgceDzuJE+IIpKBzNFu4eVTQHPFktA2DTERLcZJ1sLT0asd zuoy8nhrC7TX3BrLcnBUj4ngkhECAwEAAaOCAeYwggHiMB0GA1UdDgQWBBSbE1TZ RuCHRcilZjOcNog58TLBZTAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzNTM2MmUzNTMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnODUwDQYJKoZIhvcNAQEL BQADggEBAFCmm7InhcTicPCVKyZ2vFji2uIWJNCWBZI+x9Nzxy47VL99vnPreBFD igxAijtu84l3MFVoYa9wCadM7NvQ+9P+5EDDlb8W4gQPA5gKuJy3XiP/HbRlkHpN WWBiIKscGtXbMZKUXqCednWIXeX631q4GSmXxhpaHqpsJImknlwAueVURC1N1gDX vczfe1mKtHEUUWmEYW2wPL0g0uX2eXQV0E1d2AYclk/0dnS/cUMU/iTajuHOVrAp v/dDwQJVQKhAXzfLCN7SK82HYtz8UAsjZ782NfCBeSev8miaPcc7IO2odqP6BhQE 14XJ++Bpu2px4piaj++8CO90HnHm5bw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:48 2024 by rpki-client on console-fra.rpki-client.org