$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/323430333a326338303a3a2f33312d3438203d3e2039333132.roa File: 323430333a326338303a3a2f33312d3438203d3e2039333132.roa (raw, json) Hash identifier: YBRtGgVo128HYmmYrlq/rtgksrT7YQggo7xicgUIVnM= Subject key identifier: 41:95:BD:2A:ED:01:DC:1E:48:60:39:A5:E8:3B:23:AF:7F:21:19:8F Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 26538D848138FB2BDE6B245D5BFA858A026643DF Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/323430333a326338303a3a2f33312d3438203d3e2039333132.roa Signing time: Sat 14 Sep 2024 01:22:30 +0000 ROA not before: Sat 14 Sep 2024 01:17:30 +0000 ROA not after: Sat 13 Sep 2025 01:22:30 +0000 asID: 9312 IP address blocks: 2403:2c80::/31 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 15:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:53:8d:84:81:38:fb:2b:de:6b:24:5d:5b:fa:85:8a:02:66:43:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Sep 14 01:17:30 2024 GMT Not After : Sep 13 01:22:30 2025 GMT Subject: CN=4195BD2AED01DC1E486039A5E83B23AF7F21198F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:67:1e:7e:b5:ad:b2:41:8b:f2:99:c8:c2:b6: ed:74:f8:1a:d3:8c:7c:0e:42:67:90:5b:1b:7c:2f: c6:af:ea:55:7a:e4:95:50:8d:66:c3:7d:b4:b2:8b: 0e:66:de:7d:5c:b1:a9:de:d7:3e:82:ad:95:14:bb: 0f:ac:ca:a6:54:49:12:dd:98:49:fd:ea:7f:e5:cf: 9d:cb:28:26:b1:88:41:0d:75:99:cf:29:00:60:ed: 76:6e:54:ea:d1:a4:8c:c3:d0:3a:57:aa:c5:c1:ad: 8b:d9:e3:c2:84:9a:25:5d:1d:1c:59:c5:51:5d:6f: c3:5b:30:05:a7:44:4c:d2:4d:74:90:3f:8f:ff:97: 73:77:2a:13:d9:cf:90:56:cb:b2:b8:e9:33:07:c7: 1f:ed:a4:e7:67:03:27:c3:1f:1b:e6:47:5c:e7:0d: df:9a:dc:b1:3d:bc:38:d1:24:9e:7a:1f:99:f9:11: 24:ba:be:d4:43:f1:db:57:2c:cc:f7:56:f7:4e:0c: d8:c9:35:7b:e0:77:e2:5f:8d:f6:af:be:a8:e4:b3: c7:42:1e:e8:2c:50:00:7e:d7:59:3e:ee:8e:76:f4: 5a:a2:af:74:1e:f3:d7:92:89:8e:8f:80:7f:b3:05: 48:13:25:27:af:7a:0d:57:b7:aa:84:28:fb:76:f0: b7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:95:BD:2A:ED:01:DC:1E:48:60:39:A5:E8:3B:23:AF:7F:21:19:8F X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/323430333a326338303a3a2f33312d3438203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2c80::/31 Signature Algorithm: sha256WithRSAEncryption a6:4b:a4:c5:40:03:96:73:99:c9:bb:39:40:3b:79:5b:2a:dc: 1e:05:83:83:31:9e:31:d8:b0:4d:c6:85:c8:bd:5a:cb:91:44: 76:3e:51:9d:a6:4e:69:fc:46:26:ac:5a:cb:08:9b:ae:1e:29: 31:5c:72:9f:ae:33:c3:d4:e3:d9:9d:4f:8d:c6:11:8d:d2:61: be:8d:19:e8:4b:71:96:88:cc:49:97:d0:89:43:de:06:9f:7a: 6d:92:e0:5a:8b:67:5a:82:f3:9f:2c:c3:8e:3c:d5:bb:88:8b: c0:7f:56:60:d5:3b:46:c1:d3:a7:15:58:3a:0c:3c:37:a9:e5: ca:8a:f8:2c:52:af:fd:9a:92:fb:1d:49:8c:f2:f1:6a:de:da: cb:0a:1c:6e:57:77:41:bc:71:99:9c:e5:53:f0:34:01:97:bb: 5c:d6:07:f1:cb:7a:78:aa:21:83:b1:d3:4e:74:b6:12:b8:a5: 42:d3:1f:81:70:3e:45:52:ac:a5:66:6a:4c:8d:46:8a:b8:78: 03:39:3b:d0:83:f6:7a:44:07:1e:e6:52:63:37:d9:d3:af:35: c5:30:33:79:de:c8:71:9f:1d:c2:17:c5:61:03:02:0c:03:67: 4a:de:22:09:8c:22:b8:c5:5c:5a:27:e5:0f:4d:f4:0f:65:42: e8:d0:f3:f9 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUJlONhIE4+yveayRdW/qFigJmQ98wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDkxNDAxMTczMFoX DTI1MDkxMzAxMjIzMFowMzExMC8GA1UEAxMoNDE5NUJEMkFFRDAxREMxRTQ4NjAz OUE1RTgzQjIzQUY3RjIxMTk4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN5nHn61rbJBi/KZyMK27XT4GtOMfA5CZ5BbG3wvxq/qVXrklVCNZsN9tLKL DmbefVyxqd7XPoKtlRS7D6zKplRJEt2YSf3qf+XPncsoJrGIQQ11mc8pAGDtdm5U 6tGkjMPQOleqxcGti9njwoSaJV0dHFnFUV1vw1swBadETNJNdJA/j/+Xc3cqE9nP kFbLsrjpMwfHH+2k52cDJ8MfG+ZHXOcN35rcsT28ONEknnofmfkRJLq+1EPx21cs zPdW904M2Mk1e+B34l+N9q++qOSzx0Ie6CxQAH7XWT7ujnb0WqKvdB7z15KJjo+A f7MFSBMlJ696DVe3qoQo+3bwt2sCAwEAAaOCAecwggHjMB0GA1UdDgQWBBRBlb0q 7QHcHkhgOaXoOyOvfyEZjzAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzIzNDMwMzMzYTMyNjMzODMwM2EzYTJmMzMzMTJk MzQzODIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQEkAyyAMA0GCSqGSIb3DQEB CwUAA4IBAQCmS6TFQAOWc5nJuzlAO3lbKtweBYODMZ4x2LBNxoXIvVrLkUR2PlGd pk5p/EYmrFrLCJuuHikxXHKfrjPD1OPZnU+NxhGN0mG+jRnoS3GWiMxJl9CJQ94G n3ptkuBai2dagvOfLMOOPNW7iIvAf1Zg1TtGwdOnFVg6DDw3qeXKivgsUq/9mpL7 HUmM8vFq3trLChxuV3dBvHGZnOVT8DQBl7tc1gfxy3p4qiGDsdNOdLYSuKVC0x+B cD5FUqylZmpMjUaKuHgDOTvQg/Z6RAce5lJjN9nTrzXFMDN53shxnx3CF8VhAwIM A2dK3iIJjCK4xVxaJ+UPTfQPZULo0PP5 -----END CERTIFICATE-----Generated at Thu Nov 21 17:13:48 2024 by rpki-client on console-ams.rpki-client.org