$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa File: 3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa (raw, json) Hash identifier: lqCEmZ9NaCjaWEhq0OXTc04xBaaLhH59AP38axB9xQk= Subject key identifier: 07:C0:5E:5D:6C:D1:C6:11:5B:60:3B:55:F5:A4:DB:7C:2B:47:69:50 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 797434F06E7D9E5BAEB5BA5CA7FEF17366AC927B Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa Signing time: Sat 14 Sep 2024 01:22:31 +0000 ROA not before: Sat 14 Sep 2024 01:17:31 +0000 ROA not after: Sat 13 Sep 2025 01:22:31 +0000 asID: 6233 IP address blocks: 157.119.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 11:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:74:34:f0:6e:7d:9e:5b:ae:b5:ba:5c:a7:fe:f1:73:66:ac:92:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Sep 14 01:17:31 2024 GMT Not After : Sep 13 01:22:31 2025 GMT Subject: CN=07C05E5D6CD1C6115B603B55F5A4DB7C2B476950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c3:c0:d8:9b:90:18:78:67:23:ae:76:06:60: 74:4c:c4:33:48:08:18:60:93:1a:d3:53:2c:c4:19: 90:66:5e:a3:df:fd:52:e7:20:87:fa:ca:34:05:48: af:d6:6e:92:e0:ab:e3:4c:41:56:d3:67:82:1b:de: d7:5d:63:e5:e0:42:6d:b8:47:b9:c7:b8:c0:18:a6: 43:71:24:f6:d0:71:1f:55:3a:a9:64:da:a8:59:42: 3d:da:d8:e5:38:4d:cb:d0:84:c5:1d:ab:2c:40:84: 6c:12:7d:c0:ac:b6:9f:58:8c:9c:06:f0:7f:29:ed: 76:fe:b4:78:aa:91:a2:e6:e3:b2:18:a8:07:b3:43: cf:17:77:7f:86:a3:b7:5d:ed:6b:a9:fe:f4:0c:99: d2:90:c0:89:81:f6:81:f4:7f:cf:db:4d:9a:f0:c7: 92:eb:1c:3f:29:fe:3f:2f:15:db:c9:13:eb:e4:b6: 46:c2:0f:a5:9c:38:52:31:f7:3a:d3:6b:bd:57:69: 94:75:7c:ec:c0:c8:5e:f6:03:f0:fe:cd:cb:5b:12: 2c:fd:4c:59:42:5b:92:4e:a8:bd:b0:a9:26:1c:fe: 30:ca:b7:e8:56:2a:9e:92:70:c3:b2:7b:86:84:ff: 77:e6:aa:73:1f:f3:f9:94:38:05:c5:41:4f:04:41: c6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C0:5E:5D:6C:D1:C6:11:5B:60:3B:55:F5:A4:DB:7C:2B:47:69:50 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.119.100.0/22 Signature Algorithm: sha256WithRSAEncryption 62:53:34:ba:af:c3:6d:a0:ff:39:6e:f5:aa:3b:94:b7:26:9b: e1:25:89:b9:35:a2:dd:29:87:33:29:31:dc:03:18:64:64:9e: 0e:72:e9:ff:7a:56:70:04:fe:6f:41:68:8e:a3:0d:fe:7f:bb: 85:95:59:0f:29:0d:b4:58:02:42:bf:f7:33:99:de:45:9d:a3: f6:f4:af:33:35:0f:fb:03:86:3c:ee:2e:b1:e7:58:12:6b:a0: 0e:76:c9:1e:b2:13:96:59:6f:10:dd:77:e7:15:61:f8:2b:41: 69:28:13:67:71:3a:68:9c:7a:fe:0e:31:25:ab:be:bb:7a:40: 9d:37:76:7d:ec:d2:ab:22:d9:c2:e2:3c:df:87:0c:e7:3a:84: 84:cd:0d:50:52:b0:c3:be:5c:bf:e0:b4:16:23:e2:ec:8c:e5: c1:c3:d1:4b:37:0b:26:80:ec:5b:87:7b:a5:4c:56:ba:92:f0: 41:88:cc:eb:0e:ef:8f:eb:e7:25:df:c5:0e:4e:82:c6:eb:cd: da:fa:6d:d0:04:34:a1:9c:73:cb:04:74:5a:f3:3d:47:21:2e: a9:41:d1:2b:0a:82:05:9c:53:ed:e1:51:51:75:4e:70:a1:bd: c9:f7:8b:51:e1:cc:17:bc:92:89:b7:56:b5:4d:5b:52:9d:8b: f5:ae:70:35 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUeXQ08G59nluutbpcp/7xc2asknswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDkxNDAxMTczMVoX DTI1MDkxMzAxMjIzMVowMzExMC8GA1UEAxMoMDdDMDVFNUQ2Q0QxQzYxMTVCNjAz QjU1RjVBNERCN0MyQjQ3Njk1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANPDwNibkBh4ZyOudgZgdEzEM0gIGGCTGtNTLMQZkGZeo9/9Uucgh/rKNAVI r9ZukuCr40xBVtNnghve111j5eBCbbhHuce4wBimQ3Ek9tBxH1U6qWTaqFlCPdrY 5ThNy9CExR2rLECEbBJ9wKy2n1iMnAbwfyntdv60eKqRoubjshioB7NDzxd3f4aj t13ta6n+9AyZ0pDAiYH2gfR/z9tNmvDHkuscPyn+Py8V28kT6+S2RsIPpZw4UjH3 OtNrvVdplHV87MDIXvYD8P7Ny1sSLP1MWUJbkk6ovbCpJhz+MMq36FYqnpJww7J7 hoT/d+aqcx/z+ZQ4BcVBTwRBxu0CAwEAAaOCAeowggHmMB0GA1UdDgQWBBQHwF5d bNHGEVtgO1X1pNt8K0dpUDAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzNTM3MmUzMTMxMzkyZTMxMzAzMDJlMzAyZjMy MzIyZDMyMzQyMDNkM2UyMDM2MzIzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnXdkMA0GCSqGSIb3 DQEBCwUAA4IBAQBiUzS6r8NtoP85bvWqO5S3JpvhJYm5NaLdKYczKTHcAxhkZJ4O cun/elZwBP5vQWiOow3+f7uFlVkPKQ20WAJCv/czmd5FnaP29K8zNQ/7A4Y87i6x 51gSa6AOdskeshOWWW8Q3XfnFWH4K0FpKBNncTponHr+DjElq767ekCdN3Z97NKr ItnC4jzfhwznOoSEzQ1QUrDDvly/4LQWI+LsjOXBw9FLNwsmgOxbh3ulTFa6kvBB iMzrDu+P6+cl38UOToLG683a+m3QBDShnHPLBHRa8z1HIS6pQdErCoIFnFPt4VFR dU5wob3J94tR4cwXvJKJt1a1TVtSnYv1rnA1 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org