$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/34352e3132352e302e302f32322d3234203d3e2039333132.roa File: 34352e3132352e302e302f32322d3234203d3e2039333132.roa (raw, json) Hash identifier: jLXKsGG8VQZyOSjlauKKXuqYMPMvcJ8wzlt4IsbTgOM= Subject key identifier: 04:9E:0C:CC:BA:C3:07:FF:3F:2B:E1:D1:4D:90:8B:CB:AF:E1:89:53 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 534133242CD8FD67C40225303FF48301F0FFCC99 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/34352e3132352e302e302f32322d3234203d3e2039333132.roa Signing time: Thu 12 Oct 2023 16:10:42 +0000 ROA not before: Thu 12 Oct 2023 16:05:42 +0000 ROA not after: Thu 10 Oct 2024 16:10:42 +0000 asID: 9312 IP address blocks: 45.125.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 00:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:41:33:24:2c:d8:fd:67:c4:02:25:30:3f:f4:83:01:f0:ff:cc:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Oct 12 16:05:42 2023 GMT Not After : Oct 10 16:10:42 2024 GMT Subject: CN=049E0CCCBAC307FF3F2BE1D14D908BCBAFE18953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f1:47:0d:5f:19:9d:05:86:a8:56:cb:93:b2: 0b:82:75:77:2e:4a:77:71:af:14:50:8e:1f:3f:70: 1c:e0:7d:e9:a4:09:aa:e4:84:8c:83:f5:2d:f5:7c: 2d:a6:6b:45:3e:2f:34:49:2d:7b:e8:b3:a2:e3:9f: a6:88:95:bd:48:0a:ee:a5:fa:69:70:f6:c4:a6:eb: 3c:96:2f:7e:9d:01:25:09:e7:28:63:50:4c:c4:d5: 2f:b1:5e:88:3f:6d:30:1e:d9:0a:b0:b5:37:71:54: 1e:4a:0a:5a:57:7c:fc:93:5d:1b:d4:8c:c3:d6:1c: 05:7d:b6:85:31:8c:28:ba:0e:c6:bd:79:57:5e:2d: 6c:b6:6d:1c:16:1b:43:b7:ed:08:fe:cd:4f:36:7d: 30:38:39:14:a3:7e:65:98:5a:bd:0a:98:63:33:08: 57:fd:33:3d:3d:08:b0:9e:0a:0b:36:2e:e3:e6:46: 3e:f1:5a:39:01:e1:8c:c4:77:8e:a6:0a:28:ac:6b: 4f:e4:e9:c7:1b:37:51:e8:3f:1e:7c:d6:11:27:5e: 00:c6:f8:a5:1a:83:20:3a:76:08:5e:3f:73:22:62: 46:92:16:dd:c3:a1:1d:6f:af:7a:33:37:ca:b3:85: 8b:7a:91:b5:c1:89:b1:42:45:dd:f2:a6:4d:49:c3: ba:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9E:0C:CC:BA:C3:07:FF:3F:2B:E1:D1:4D:90:8B:CB:AF:E1:89:53 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/34352e3132352e302e302f32322d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.125.0.0/22 Signature Algorithm: sha256WithRSAEncryption 52:64:e6:02:a4:1a:fa:f4:1e:9b:c4:0b:da:dd:2d:ca:69:8b: dd:dc:5d:2e:40:c3:45:60:b4:b0:ea:b6:5f:9b:de:dc:ba:ee: 4e:08:0e:a4:09:ee:87:33:13:8e:1d:a3:20:05:4e:a3:84:d2: 1c:80:d9:27:a1:a9:f0:90:91:10:e5:bb:3c:60:8e:ba:1f:98: 37:68:69:53:f6:0a:5e:49:0f:f2:f7:e2:74:25:04:f8:b8:5e: 23:07:6f:bb:52:fb:b5:d8:69:d2:1f:68:e5:48:7b:e1:da:10: 63:ea:96:fa:fa:bb:48:1b:bf:2f:ee:89:65:61:49:92:6e:e4: 6a:cf:d2:b0:14:b9:de:51:1f:7d:1c:c4:49:b7:54:7c:d2:3e: ac:81:86:26:17:34:c0:29:43:66:49:a0:62:a4:47:13:5c:1c: f9:b2:9f:54:0f:9f:23:75:d5:c5:07:f8:2c:ef:07:b5:43:f2: 3c:5d:b9:6a:a9:9a:0e:57:de:63:4c:7c:8d:7a:00:2a:e2:81: ea:39:21:0e:0a:b1:c4:0f:53:78:a7:24:b4:75:fe:3d:a5:63: bf:13:75:92:99:82:ef:df:b5:4e:04:64:92:2b:24:e6:97:36: 69:fa:2c:fe:88:9b:52:87:58:be:40:23:62:cd:88:ac:9f:19: 60:3c:59:e8 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUU0EzJCzY/WfEAiUwP/SDAfD/zJkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTIzMTAxMjE2MDU0MloX DTI0MTAxMDE2MTA0MlowMzExMC8GA1UEAxMoMDQ5RTBDQ0NCQUMzMDdGRjNGMkJF MUQxNEQ5MDhCQ0JBRkUxODk1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnxRw1fGZ0FhqhWy5OyC4J1dy5Kd3GvFFCOHz9wHOB96aQJquSEjIP1LfV8 LaZrRT4vNEkte+izouOfpoiVvUgK7qX6aXD2xKbrPJYvfp0BJQnnKGNQTMTVL7Fe iD9tMB7ZCrC1N3FUHkoKWld8/JNdG9SMw9YcBX22hTGMKLoOxr15V14tbLZtHBYb Q7ftCP7NTzZ9MDg5FKN+ZZhavQqYYzMIV/0zPT0IsJ4KCzYu4+ZGPvFaOQHhjMR3 jqYKKKxrT+Tpxxs3Ueg/HnzWESdeAMb4pRqDIDp2CF4/cyJiRpIW3cOhHW+vejM3 yrOFi3qRtcGJsUJF3fKmTUnDuscCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBQEngzM usMH/z8r4dFNkIvLr+GJUzAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzQzNTJlMzEzMjM1MmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLX0AMA0GCSqGSIb3DQEBCwUA A4IBAQBSZOYCpBr69B6bxAva3S3KaYvd3F0uQMNFYLSw6rZfm97cuu5OCA6kCe6H MxOOHaMgBU6jhNIcgNknoanwkJEQ5bs8YI66H5g3aGlT9gpeSQ/y9+J0JQT4uF4j B2+7Uvu12GnSH2jlSHvh2hBj6pb6+rtIG78v7ollYUmSbuRqz9KwFLneUR99HMRJ t1R80j6sgYYmFzTAKUNmSaBipEcTXBz5sp9UD58jddXFB/gs7we1Q/I8XblqqZoO V95jTHyNegAq4oHqOSEOCrHED1N4pyS0df49pWO/E3WSmYLv37VOBGSSKyTmlzZp +iz+iJtSh1i+QCNizYisnxlgPFno -----END CERTIFICATE-----Generated at Mon Jun 3 02:59:10 2024 by rpki-client on console-ams.rpki-client.org