$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/34352e3131362e31342e302f32342d3234203d3e2034373835.roa File: 34352e3131362e31342e302f32342d3234203d3e2034373835.roa (raw, json) Hash identifier: 3DVUN8hsuCa5M/5YawEU5ZNZ6+YF4DINIe7b4/ww5aU= Subject key identifier: 51:A7:48:F8:A3:11:40:71:7F:C4:DA:6C:0B:10:2C:01:3C:E9:8A:05 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 2E5ECCEB6E1C57DFABE135B42FC1D27CD7297CE9 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/34352e3131362e31342e302f32342d3234203d3e2034373835.roa Signing time: Thu 12 Oct 2023 16:10:42 +0000 ROA not before: Thu 12 Oct 2023 16:05:42 +0000 ROA not after: Thu 10 Oct 2024 16:10:42 +0000 asID: 4785 IP address blocks: 45.116.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 22:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:5e:cc:eb:6e:1c:57:df:ab:e1:35:b4:2f:c1:d2:7c:d7:29:7c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Oct 12 16:05:42 2023 GMT Not After : Oct 10 16:10:42 2024 GMT Subject: CN=51A748F8A31140717FC4DA6C0B102C013CE98A05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:df:c7:53:be:be:b8:f1:0c:8d:b6:36:1d:ba: 4d:6c:9d:31:4e:bf:de:69:c5:3f:61:6c:51:b2:29: 2a:ce:c4:d1:0d:cf:9f:3e:67:76:45:67:34:a3:dc: ea:bd:50:f0:a4:32:7c:98:89:5d:13:ac:6d:11:71: db:17:d4:b1:cd:2f:c9:38:eb:ee:98:96:33:74:29: de:44:50:d8:f7:fa:13:ff:87:5a:29:7f:da:6d:03: 78:78:0c:77:5a:7e:e1:50:68:d7:a7:78:13:5f:5f: 2e:09:a0:93:f9:29:57:2f:9a:1a:47:5f:31:b8:25: d6:22:16:8f:11:36:d1:a4:7e:c6:5a:b9:0c:51:16: e3:06:35:45:64:45:ce:2e:b7:af:06:ea:06:20:6b: c6:c9:75:6a:20:89:cc:1f:29:bd:8d:6d:fd:95:de: f2:2d:73:00:e7:92:09:7a:fe:0a:5c:12:57:64:39: b8:57:60:e2:2d:d3:4b:37:3c:a3:65:23:3d:c7:9a: c0:a3:0a:58:cb:5a:69:54:d9:fc:ec:f3:fb:00:57: ca:d2:df:0e:5c:4b:d3:78:27:c5:2f:b9:70:4c:24: a1:a6:d4:0e:15:eb:10:f8:29:f5:b3:24:3d:a8:f7: 7f:88:21:a5:dc:a6:16:75:2a:8b:a3:15:1b:7c:0c: 4d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A7:48:F8:A3:11:40:71:7F:C4:DA:6C:0B:10:2C:01:3C:E9:8A:05 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/34352e3131362e31342e302f32342d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.14.0/24 Signature Algorithm: sha256WithRSAEncryption 70:d1:b4:41:60:5e:a2:45:33:1f:84:c8:56:a8:6e:19:5f:d6: 70:9f:43:f2:1d:e6:59:8f:04:29:ce:3c:69:88:fb:41:13:67: 6c:99:43:b4:30:8c:84:ae:2e:83:e0:7f:db:9a:a7:47:5b:93: 17:8e:9b:1e:29:2b:91:85:1b:b8:4d:dc:80:ec:d8:8e:b6:f6: cc:f7:2d:a6:a6:31:27:5a:df:dd:0a:bc:fc:4a:2d:4b:04:8c: 43:20:30:4a:f2:2f:58:16:79:95:38:12:0e:af:95:94:41:05: 9f:40:c4:95:b9:00:6c:91:61:c4:45:7a:45:e9:5d:ec:42:7c: f3:6a:b1:12:d3:fa:83:2f:df:fe:f0:d7:c9:26:65:96:f2:ae: a3:ef:d5:8a:8a:86:49:a7:f1:4d:7d:45:bb:db:49:dd:6b:11: 77:56:d2:f9:e6:65:2a:88:ee:bd:7d:3d:39:fd:31:e0:1d:c5: d3:a2:dc:ea:f2:ef:82:17:28:c3:a4:2f:12:62:83:af:b4:fa: 8f:15:6b:31:ae:41:4a:35:bd:02:79:87:06:29:b5:dd:87:a6: 60:45:1d:fa:f9:41:2f:e9:9b:8b:8f:a5:b3:7f:37:06:15:d2: b7:00:8d:7a:86:14:2e:34:00:ad:92:67:1d:82:f1:7a:dd:d4: 85:9e:fa:7d -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIULl7M624cV9+r4TW0L8HSfNcpfOkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTIzMTAxMjE2MDU0MloX DTI0MTAxMDE2MTA0MlowMzExMC8GA1UEAxMoNTFBNzQ4RjhBMzExNDA3MTdGQzRE QTZDMEIxMDJDMDEzQ0U5OEEwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJjfx1O+vrjxDI22Nh26TWydMU6/3mnFP2FsUbIpKs7E0Q3Pnz5ndkVnNKPc 6r1Q8KQyfJiJXROsbRFx2xfUsc0vyTjr7piWM3Qp3kRQ2Pf6E/+HWil/2m0DeHgM d1p+4VBo16d4E19fLgmgk/kpVy+aGkdfMbgl1iIWjxE20aR+xlq5DFEW4wY1RWRF zi63rwbqBiBrxsl1aiCJzB8pvY1t/ZXe8i1zAOeSCXr+ClwSV2Q5uFdg4i3TSzc8 o2UjPceawKMKWMtaaVTZ/Ozz+wBXytLfDlxL03gnxS+5cEwkoabUDhXrEPgp9bMk Paj3f4ghpdymFnUqi6MVG3wMTcUCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBRRp0j4 oxFAcX/E2mwLECwBPOmKBTAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzQzNTJlMzEzMTM2MmUzMTM0MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtdA4wDQYJKoZIhvcNAQEL BQADggEBAHDRtEFgXqJFMx+EyFaobhlf1nCfQ/Id5lmPBCnOPGmI+0ETZ2yZQ7Qw jISuLoPgf9uap0dbkxeOmx4pK5GFG7hN3IDs2I629sz3LaamMSda390KvPxKLUsE jEMgMEryL1gWeZU4Eg6vlZRBBZ9AxJW5AGyRYcRFekXpXexCfPNqsRLT+oMv3/7w 18kmZZbyrqPv1YqKhkmn8U19RbvbSd1rEXdW0vnmZSqI7r19PTn9MeAdxdOi3Ory 74IXKMOkLxJig6+0+o8VazGuQUo1vQJ5hwYptd2HpmBFHfr5QS/pm4uPpbN/NwYV 0rcAjXqGFC40AK2SZx2C8Xrd1IWe+n0= -----END CERTIFICATE-----Generated at Sun May 5 21:26:29 2024 by rpki-client on console-fra.rpki-client.org