$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133382e302f32342d3234203d3e2034373835.roa File: 3138302e3233352e3133382e302f32342d3234203d3e2034373835.roa (raw, json) Hash identifier: 6oVWbbqVFk6Pwgux9V8jfDQRsMYOVT5jirPBSL3Wig4= Subject key identifier: A0:EB:FC:2B:47:3F:95:00:DD:3E:54:70:DB:91:49:3A:78:A3:C7:C5 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 64556FEE85ED203809DD36BA875835F52A5C1195 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133382e302f32342d3234203d3e2034373835.roa Signing time: Sat 14 Sep 2024 01:22:31 +0000 ROA not before: Sat 14 Sep 2024 01:17:31 +0000 ROA not after: Sat 13 Sep 2025 01:22:31 +0000 asID: 4785 IP address blocks: 180.235.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 11:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:55:6f:ee:85:ed:20:38:09:dd:36:ba:87:58:35:f5:2a:5c:11:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Sep 14 01:17:31 2024 GMT Not After : Sep 13 01:22:31 2025 GMT Subject: CN=A0EBFC2B473F9500DD3E5470DB91493A78A3C7C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:72:62:b2:c4:67:62:4c:14:19:46:3f:42:37: 3e:24:61:9d:1f:33:7f:4e:ee:10:79:1e:35:ac:86: 3c:a7:25:98:7b:66:19:a7:45:4a:e2:b0:58:75:94: 4a:f9:e1:6c:50:9f:5c:c9:88:f2:19:87:92:dd:6a: 04:70:e9:fd:b2:c6:54:94:f8:3a:00:0c:4d:bd:63: b6:13:df:6c:fc:77:bf:75:ee:e6:23:45:7a:50:ac: 98:d7:89:50:76:f6:56:cf:83:a9:bd:d4:22:08:88: 3d:b4:88:93:de:b4:ff:19:7f:02:2f:a7:e8:3a:8f: 1e:b5:21:ab:ac:33:c9:03:13:d5:80:99:55:3b:04: 1d:2c:d2:c9:b3:fc:cf:99:a4:09:8b:e2:81:cd:0c: 38:c1:11:92:03:60:67:d9:6e:dc:97:85:bb:76:59: bf:fb:be:37:99:55:2c:db:69:51:ea:c0:9f:09:21: 52:ba:90:23:95:a3:4c:7f:ab:36:33:5b:8a:21:48: b5:35:d6:41:79:7c:a1:6c:aa:23:5b:4f:50:47:84: 77:d3:1d:cf:98:21:c7:ff:30:3f:61:50:0a:eb:e3: dc:a3:64:f8:81:72:d3:98:f2:1b:f5:ff:7a:04:bb: 09:44:d2:06:9f:88:f1:ca:c3:34:95:39:ea:c7:8d: d9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:EB:FC:2B:47:3F:95:00:DD:3E:54:70:DB:91:49:3A:78:A3:C7:C5 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133382e302f32342d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.235.138.0/24 Signature Algorithm: sha256WithRSAEncryption b5:59:4a:12:7c:f0:f5:a0:00:cd:c9:76:9d:e4:6b:87:f2:9f: 8a:f4:c3:67:af:67:45:2d:25:45:3a:d5:e3:9f:b7:e3:e8:80: b1:95:f6:e3:3d:bb:99:45:3c:97:7b:be:98:3a:83:07:cc:6a: 33:fd:17:dd:d8:3c:ec:19:60:ff:0d:fa:08:70:a6:3d:84:65: ef:4b:d7:65:5e:90:e4:53:56:7e:1c:29:30:a7:92:62:2f:cb: 7f:cb:f6:fc:4f:32:e5:44:d4:55:6d:f9:e8:fd:e2:34:03:c9: 63:cd:44:01:50:f7:d7:91:64:7e:e5:c7:bf:63:7b:58:c7:ef: aa:96:7a:34:11:f5:e3:9c:2e:0d:4e:a2:e3:c1:df:b1:d9:87: 0d:8c:dd:4f:66:27:6a:ed:2b:43:28:f8:21:c2:02:a5:24:01: 9f:2b:fc:6d:0f:31:52:c3:55:69:67:d2:48:03:04:52:a8:2b: de:5f:70:5c:bf:e7:b3:28:10:79:2d:ff:f4:79:b7:59:82:18: 15:a3:ca:c8:63:13:c2:7c:4a:f5:58:fa:51:ba:12:df:14:87: f0:ba:08:a0:69:10:2e:97:94:74:af:1f:ae:83:d9:fd:a3:b4: 2e:46:93:5c:99:bd:80:aa:b7:a9:b7:6b:b4:52:f2:84:1c:54: 86:ab:24:77 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUZFVv7oXtIDgJ3Ta6h1g19SpcEZUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDkxNDAxMTczMVoX DTI1MDkxMzAxMjIzMVowMzExMC8GA1UEAxMoQTBFQkZDMkI0NzNGOTUwMEREM0U1 NDcwREI5MTQ5M0E3OEEzQzdDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKNyYrLEZ2JMFBlGP0I3PiRhnR8zf07uEHkeNayGPKclmHtmGadFSuKwWHWU SvnhbFCfXMmI8hmHkt1qBHDp/bLGVJT4OgAMTb1jthPfbPx3v3Xu5iNFelCsmNeJ UHb2Vs+Dqb3UIgiIPbSIk960/xl/Ai+n6DqPHrUhq6wzyQMT1YCZVTsEHSzSybP8 z5mkCYvigc0MOMERkgNgZ9lu3JeFu3ZZv/u+N5lVLNtpUerAnwkhUrqQI5WjTH+r NjNbiiFItTXWQXl8oWyqI1tPUEeEd9Mdz5ghx/8wP2FQCuvj3KNk+IFy05jyG/X/ egS7CUTSBp+I8crDNJU56seN2fMCAwEAAaOCAeowggHmMB0GA1UdDgQWBBSg6/wr Rz+VAN0+VHDbkUk6eKPHxTAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzODMwMmUzMjMzMzUyZTMxMzMzODJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM0MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtOuKMA0GCSqGSIb3 DQEBCwUAA4IBAQC1WUoSfPD1oADNyXad5GuH8p+K9MNnr2dFLSVFOtXjn7fj6ICx lfbjPbuZRTyXe76YOoMHzGoz/Rfd2DzsGWD/DfoIcKY9hGXvS9dlXpDkU1Z+HCkw p5JiL8t/y/b8TzLlRNRVbfno/eI0A8ljzUQBUPfXkWR+5ce/Y3tYx++qlno0EfXj nC4NTqLjwd+x2YcNjN1PZidq7StDKPghwgKlJAGfK/xtDzFSw1VpZ9JIAwRSqCve X3Bcv+ezKBB5Lf/0ebdZghgVo8rIYxPCfEr1WPpRuhLfFIfwugigaRAul5R0rx+u g9n9o7QuRpNcmb2Aqrept2u0UvKEHFSGqyR3 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:48 2024 by rpki-client on console-fra.rpki-client.org