$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133362e302f32322d3332203d3e2039333132.roa File: 3138302e3233352e3133362e302f32322d3332203d3e2039333132.roa (raw, json) Hash identifier: 40jz3AEKo3c3bJ5OXVkbdCZfLDPOEfoKqABsamzBSKo= Subject key identifier: 1E:39:17:AE:A7:CE:EF:B9:30:95:86:36:E6:C5:95:E3:85:94:FD:13 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 44D8AD342EC47B515F8C0AF8B0696DBFF6E097F3 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133362e302f32322d3332203d3e2039333132.roa Signing time: Thu 04 Apr 2024 05:50:09 +0000 ROA not before: Thu 04 Apr 2024 05:45:09 +0000 ROA not after: Thu 03 Apr 2025 05:50:09 +0000 asID: 9312 IP address blocks: 180.235.136.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 09:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d8:ad:34:2e:c4:7b:51:5f:8c:0a:f8:b0:69:6d:bf:f6:e0:97:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Apr 4 05:45:09 2024 GMT Not After : Apr 3 05:50:09 2025 GMT Subject: CN=1E3917AEA7CEEFB930958636E6C595E38594FD13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8b:0e:b4:41:aa:9c:8f:1c:e1:0a:23:94:83: 3a:e7:c9:dc:e3:b6:80:8b:b9:33:8d:44:4c:5d:1d: 24:46:d9:f9:e2:6f:4d:03:f4:48:2c:e5:13:fc:b6: 7b:0e:0e:d7:fa:45:21:99:60:b6:e5:6d:68:3a:47: ff:07:e4:4c:5f:54:fc:3d:9d:77:ca:d5:9e:d7:1e: 72:5d:de:cd:fa:43:e3:e0:ee:e3:84:49:f3:69:c5: 60:e4:e2:f6:c1:c9:0b:56:dc:f9:18:70:f2:d9:c7: 64:96:ba:b7:a7:b9:9f:3a:0b:78:7b:8f:0b:e8:34: de:ae:30:57:63:59:c5:0f:27:21:38:44:a5:5c:1e: b2:1a:19:73:3c:c7:b4:f1:3a:24:cc:7f:5f:36:7d: 42:d7:bb:ec:9c:e3:08:43:e9:8a:68:9e:7d:25:33: 7e:59:63:9e:1a:77:b4:99:34:25:d1:f4:b6:f4:de: 8f:7b:ab:2b:7c:a1:a6:b2:15:94:f8:78:e8:c4:ec: 8f:90:65:d8:60:34:7f:02:30:05:30:db:48:e9:89: 5e:59:d7:63:2e:3f:21:9e:9e:01:96:49:e7:8b:58: e9:87:a5:8c:79:74:a6:9a:b7:bf:b9:40:66:7b:25: f8:91:0a:fd:85:95:38:68:d0:cc:54:0d:4b:04:d2: 46:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:39:17:AE:A7:CE:EF:B9:30:95:86:36:E6:C5:95:E3:85:94:FD:13 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133362e302f32322d3332203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.235.136.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:8a:4d:70:3e:76:bd:2c:39:38:a8:0d:7e:c8:74:ce:09:27: 7b:ab:9b:4d:f1:44:6d:c5:2a:24:b8:11:29:c6:cf:43:18:51: be:fa:14:ba:c8:cb:56:d7:a2:32:8c:60:6d:e7:7c:5b:b6:0d: 59:b3:be:cc:2e:46:09:61:32:15:94:95:4e:d7:7c:0e:2c:50: cb:39:04:04:d4:b9:cc:c4:8a:74:a1:d2:52:82:67:20:d0:57: 70:0a:01:ec:c6:14:ea:61:c6:38:41:c5:47:e3:c9:59:b3:62: a8:87:ed:9b:92:2b:b4:9d:fa:d6:f5:ee:4f:7d:e3:a3:75:21: 33:fa:71:6c:ea:75:5d:4f:bf:26:19:fa:75:b0:10:8b:64:60: 7a:82:b6:bb:30:6f:fa:39:68:77:4c:0a:83:9e:57:0a:79:7f: 11:55:5f:2c:bd:0d:67:c5:a9:31:9a:82:f0:4f:79:ba:5d:71: ec:a0:d4:dd:e6:e3:b5:b8:3d:33:4b:36:4e:d2:69:70:72:f5: fc:c2:e6:41:3f:1a:c3:0c:a7:7d:19:04:00:db:d6:42:f6:a0: 53:34:cf:a1:d9:c7:7b:4f:db:e0:b6:5d:b6:cd:07:1c:4f:5a: 3b:ed:9b:c8:d4:e4:ca:4d:b2:d8:b4:17:57:5a:26:31:d6:82: 59:96:7a:5c -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIURNitNC7Ee1FfjAr4sGltv/bgl/MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDQwNDA1NDUwOVoX DTI1MDQwMzA1NTAwOVowMzExMC8GA1UEAxMoMUUzOTE3QUVBN0NFRUZCOTMwOTU4 NjM2RTZDNTk1RTM4NTk0RkQxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANeLDrRBqpyPHOEKI5SDOufJ3OO2gIu5M41ETF0dJEbZ+eJvTQP0SCzlE/y2 ew4O1/pFIZlgtuVtaDpH/wfkTF9U/D2dd8rVntcecl3ezfpD4+Du44RJ82nFYOTi 9sHJC1bc+Rhw8tnHZJa6t6e5nzoLeHuPC+g03q4wV2NZxQ8nIThEpVweshoZczzH tPE6JMx/XzZ9Qte77JzjCEPpimiefSUzflljnhp3tJk0JdH0tvTej3urK3yhprIV lPh46MTsj5Bl2GA0fwIwBTDbSOmJXlnXYy4/IZ6eAZZJ54tY6YeljHl0ppq3v7lA Znsl+JEK/YWVOGjQzFQNSwTSRuUCAwEAAaOCAeowggHmMB0GA1UdDgQWBBQeOReu p87vuTCVhjbmxZXjhZT9EzAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzODMwMmUzMjMzMzUyZTMxMzMzNjJlMzAyZjMy MzIyZDMzMzIyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtOuIMA0GCSqGSIb3 DQEBCwUAA4IBAQBMik1wPna9LDk4qA1+yHTOCSd7q5tN8URtxSokuBEpxs9DGFG+ +hS6yMtW16IyjGBt53xbtg1Zs77MLkYJYTIVlJVO13wOLFDLOQQE1LnMxIp0odJS gmcg0FdwCgHsxhTqYcY4QcVH48lZs2Koh+2bkiu0nfrW9e5PfeOjdSEz+nFs6nVd T78mGfp1sBCLZGB6gra7MG/6OWh3TAqDnlcKeX8RVV8svQ1nxakxmoLwT3m6XXHs oNTd5uO1uD0zSzZO0mlwcvX8wuZBPxrDDKd9GQQA29ZC9qBTNM+h2cd7T9vgtl22 zQccT1o77ZvI1OTKTbLYtBdXWiYx1oJZlnpc -----END CERTIFICATE-----Generated at Mon May 20 12:32:56 2024 by rpki-client on console-fra.rpki-client.org