$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/34352e3131362e31332e302f32342d3234203d3e2034373835.roa File: 34352e3131362e31332e302f32342d3234203d3e2034373835.roa (raw, json) Hash identifier: PISjy53T43OPrPVdVIrSrCKAjIktOP5kaTdGpkev9G0= Subject key identifier: CB:EB:F1:91:6A:D4:1C:19:BB:BE:5B:4B:DE:9E:3A:63:F8:7B:9B:47 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 66941A3243E5B0BDDAF57E981844A15ADE837471 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/34352e3131362e31332e302f32342d3234203d3e2034373835.roa Signing time: Thu 12 Oct 2023 16:10:42 +0000 ROA not before: Thu 12 Oct 2023 16:05:42 +0000 ROA not after: Thu 10 Oct 2024 16:10:42 +0000 asID: 4785 IP address blocks: 45.116.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 22:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:94:1a:32:43:e5:b0:bd:da:f5:7e:98:18:44:a1:5a:de:83:74:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Oct 12 16:05:42 2023 GMT Not After : Oct 10 16:10:42 2024 GMT Subject: CN=CBEBF1916AD41C19BBBE5B4BDE9E3A63F87B9B47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:35:e2:85:40:81:01:cb:c3:ce:82:a4:66:7b: 17:9e:16:61:3e:d8:38:03:f8:49:29:22:0b:2a:fc: 53:b3:92:c5:61:8c:63:ae:d5:6f:2d:b5:56:c7:73: 74:f0:5b:72:86:55:26:91:8c:5a:e1:59:54:eb:44: 2a:09:2d:72:29:d1:3b:a7:33:fe:83:d0:eb:b6:cd: ea:8f:c1:da:27:b4:a2:e2:dc:04:7f:84:9f:5b:8b: fa:f8:d1:e9:89:4c:12:68:d2:65:03:15:c1:73:b7: 8b:4e:d6:e5:f9:8a:7b:e2:c6:dd:15:1b:9b:76:2a: 8c:d6:f2:41:32:03:d0:21:9a:99:22:36:ca:34:3c: fe:e0:f3:ee:1e:83:97:9d:9e:11:7f:d3:2e:a0:d5: 73:07:e1:a4:a0:a1:39:ea:56:77:08:79:e2:db:b2: 45:b2:de:df:70:1e:01:84:71:35:62:9c:1d:fa:c7: 0d:0f:bc:27:5b:ff:92:37:ac:1a:e8:70:4b:33:e0: 56:7f:32:2d:18:97:cb:b1:20:ff:67:a3:09:98:04: ff:70:33:a5:95:39:72:c1:40:28:81:fc:a6:16:a0: 39:06:66:ca:5e:e7:52:7c:ba:be:93:57:04:e2:ce: a3:a9:1e:45:68:6a:4e:e8:56:c2:d1:17:62:bf:ab: 34:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:EB:F1:91:6A:D4:1C:19:BB:BE:5B:4B:DE:9E:3A:63:F8:7B:9B:47 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/34352e3131362e31332e302f32342d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.13.0/24 Signature Algorithm: sha256WithRSAEncryption 48:e1:1b:7b:aa:fd:4c:52:da:e3:34:23:16:2a:5e:d8:8d:ed: 33:46:0f:af:49:22:fc:7c:39:d1:b2:73:56:a7:50:bf:ca:c5: 2f:ff:c5:ac:3d:9f:6e:a7:09:f4:74:49:19:99:96:e1:cc:25: 3f:28:6b:ea:2d:e4:3d:ec:9e:79:31:48:84:c8:d4:32:07:eb: a9:d0:79:80:4f:42:c0:c5:ca:e9:b2:a5:72:e2:98:0d:2f:23: 18:d3:9e:8d:5c:8a:4b:03:ca:eb:38:e0:41:69:5a:08:d6:af: c5:48:51:ba:c8:ab:e3:83:6b:90:87:43:94:cf:8c:8b:90:65: 63:f4:73:de:da:a2:5b:af:e5:76:74:d9:b6:d4:d2:4f:60:a5: dc:0b:26:47:95:64:03:e6:b5:29:9e:02:f5:78:01:be:2d:8e: 3f:97:4f:53:30:5a:db:9f:f3:03:48:0b:05:0b:3a:27:ee:db: 73:05:21:8b:0a:27:9c:a9:f1:0e:b6:63:7f:ef:8b:3f:0f:37: fe:f1:11:7c:02:e4:a3:3a:b5:73:cf:7c:de:6f:99:ec:7d:3d: 29:49:90:e3:2b:83:02:57:17:74:af:8a:63:95:35:82:59:7f: 05:f5:74:e6:82:c7:60:3b:f6:75:4d:1f:cb:a7:45:fd:38:40: 43:04:f9:e4 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUZpQaMkPlsL3a9X6YGEShWt6DdHEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTIzMTAxMjE2MDU0MloX DTI0MTAxMDE2MTA0MlowMzExMC8GA1UEAxMoQ0JFQkYxOTE2QUQ0MUMxOUJCQkU1 QjRCREU5RTNBNjNGODdCOUI0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ414oVAgQHLw86CpGZ7F54WYT7YOAP4SSkiCyr8U7OSxWGMY67Vby21Vsdz dPBbcoZVJpGMWuFZVOtEKgktcinRO6cz/oPQ67bN6o/B2ie0ouLcBH+En1uL+vjR 6YlMEmjSZQMVwXO3i07W5fmKe+LG3RUbm3YqjNbyQTID0CGamSI2yjQ8/uDz7h6D l52eEX/TLqDVcwfhpKChOepWdwh54tuyRbLe33AeAYRxNWKcHfrHDQ+8J1v/kjes GuhwSzPgVn8yLRiXy7Eg/2ejCZgE/3AzpZU5csFAKIH8phagOQZmyl7nUny6vpNX BOLOo6keRWhqTuhWwtEXYr+rNEECAwEAAaOCAeYwggHiMB0GA1UdDgQWBBTL6/GR atQcGbu+W0venjpj+HubRzAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzQzNTJlMzEzMTM2MmUzMTMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtdA0wDQYJKoZIhvcNAQEL BQADggEBAEjhG3uq/UxS2uM0IxYqXtiN7TNGD69JIvx8OdGyc1anUL/KxS//xaw9 n26nCfR0SRmZluHMJT8oa+ot5D3snnkxSITI1DIH66nQeYBPQsDFyumypXLimA0v IxjTno1ciksDyus44EFpWgjWr8VIUbrIq+ODa5CHQ5TPjIuQZWP0c97aoluv5XZ0 2bbU0k9gpdwLJkeVZAPmtSmeAvV4Ab4tjj+XT1MwWtuf8wNICwULOifu23MFIYsK J5yp8Q62Y3/viz8PN/7xEXwC5KM6tXPPfN5vmex9PSlJkOMrgwJXF3SvimOVNYJZ fwX1dOaCx2A79nVNH8unRf04QEME+eQ= -----END CERTIFICATE-----Generated at Sun May 5 21:26:29 2024 by rpki-client on console-fra.rpki-client.org