$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203233393539.roa File: 3130332e3135352e3233322e302f32332d3234203d3e203233393539.roa (raw, json) Hash identifier: 7FdETKoxElVjcOsDJIaDUyil4Bs1FCFVotpYBRxrob0= Subject key identifier: D5:C8:30:AF:88:26:81:98:42:C0:1F:B3:62:F7:89:19:98:FE:B5:0E Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 5803C705B3BBBC6A90D8C48A821868E40D578050 Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203233393539.roa Signing time: Sat 14 Sep 2024 01:22:33 +0000 ROA not before: Sat 14 Sep 2024 01:17:33 +0000 ROA not after: Sat 13 Sep 2025 01:22:33 +0000 asID: 23959 IP address blocks: 103.155.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:03:c7:05:b3:bb:bc:6a:90:d8:c4:8a:82:18:68:e4:0d:57:80:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Sep 14 01:17:33 2024 GMT Not After : Sep 13 01:22:33 2025 GMT Subject: CN=D5C830AF8826819842C01FB362F7891998FEB50E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e3:c4:4a:79:12:df:84:00:86:71:65:15:53: e7:f3:55:ac:79:64:71:de:e3:57:26:31:e6:b9:1f: a1:f7:a3:fb:80:b2:be:30:ce:83:79:17:36:e3:8b: bd:3c:42:ee:82:fb:45:fe:ef:97:af:5f:5c:25:b0: 60:d8:47:24:9d:b2:17:7f:4b:3a:53:19:2b:dc:58: 7f:67:34:04:e3:3b:68:d2:41:c1:e5:ec:59:81:11: 8a:53:ab:05:d5:7f:9f:a1:f5:7c:cc:55:be:c7:9a: 54:87:ae:ec:98:71:89:54:e9:8c:25:85:48:b5:85: 5e:57:b0:13:7e:33:df:09:1e:02:c6:42:35:65:64: 5e:7f:e6:24:c0:ea:24:8d:69:7d:2c:41:cf:29:0b: 49:e1:58:1a:c8:97:be:4c:ab:63:10:d3:62:65:10: b3:8d:b1:b2:c7:b5:06:e6:b8:92:65:b5:09:dd:60: 69:ef:5c:33:1f:c5:76:10:32:b5:50:20:d4:6f:51: 6f:da:e9:3e:74:23:22:f7:b4:fe:7d:b2:b7:44:7e: f5:6c:b4:d6:b2:c7:96:78:8e:c1:88:81:31:a1:2e: 38:0d:55:1d:de:f5:fc:6c:bf:72:d8:36:7e:65:ba: 03:40:e8:65:85:57:c1:8a:b6:5c:5b:cf:0a:61:3b: 17:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C8:30:AF:88:26:81:98:42:C0:1F:B3:62:F7:89:19:98:FE:B5:0E X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.232.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:60:f7:d3:be:d1:98:7a:e3:1a:04:b3:d8:3c:a0:ed:81:2a: d2:df:0a:ee:51:b4:ab:5c:62:12:54:e2:35:fb:f0:13:a3:01: 88:36:bc:e0:05:71:6b:27:22:19:b7:7d:80:69:b6:6c:fa:ca: a8:9c:4c:f2:f3:03:32:c6:25:45:ce:a0:d6:6e:54:79:5d:f7: b2:ee:3c:31:0e:54:b7:14:16:65:73:8a:af:df:96:bb:f0:76: d8:b3:84:ca:40:b3:c0:4f:a9:f8:df:e6:eb:47:8f:ae:8e:ee: a0:d0:0a:bf:07:34:36:e7:fd:ec:2a:c0:0d:99:44:55:02:fa: ac:7d:fb:52:3e:e9:1a:8a:0f:41:8a:c1:bf:20:e9:11:13:0f: 86:23:34:e3:92:0c:03:23:02:41:1f:6c:8f:0d:a2:ac:f6:f3: 9f:a9:b6:b9:37:60:4e:ac:67:b8:0b:f1:26:74:29:c4:0d:d4: 19:11:62:4b:58:81:e0:da:4a:24:d7:ee:87:1c:d0:60:6a:44: a6:1a:a3:a1:37:16:d4:18:ea:05:a6:47:37:69:c7:bf:3a:8d: 3c:61:4e:8c:88:38:e2:f8:d9:42:fb:cf:5c:c9:a4:16:9b:9f: a1:8b:6d:eb:a3:f8:cc:15:11:6d:ff:14:71:d4:6f:de:90:fe: 71:2b:31:77 -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIUWAPHBbO7vGqQ2MSKghho5A1XgFAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTI0MDkxNDAxMTczM1oX DTI1MDkxMzAxMjIzM1owMzExMC8GA1UEAxMoRDVDODMwQUY4ODI2ODE5ODQyQzAx RkIzNjJGNzg5MTk5OEZFQjUwRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTjxEp5Et+EAIZxZRVT5/NVrHlkcd7jVyYx5rkfofej+4CyvjDOg3kXNuOL vTxC7oL7Rf7vl69fXCWwYNhHJJ2yF39LOlMZK9xYf2c0BOM7aNJBweXsWYERilOr BdV/n6H1fMxVvseaVIeu7JhxiVTpjCWFSLWFXlewE34z3wkeAsZCNWVkXn/mJMDq JI1pfSxBzykLSeFYGsiXvkyrYxDTYmUQs42xsse1Bua4kmW1Cd1gae9cMx/FdhAy tVAg1G9Rb9rpPnQjIve0/n2yt0R+9Wy01rLHlniOwYiBMaEuOA1VHd71/Gy/ctg2 fmW6A0DoZYVXwYq2XFvPCmE7F80CAwEAAaOCAewwggHoMB0GA1UdDgQWBBTVyDCv iCaBmELAH7Ni94kZmP61DjAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzEzMDMzMmUzMTM1MzUyZTMyMzMzMjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDMyMzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm+gwDQYJKoZI hvcNAQELBQADggEBAD5g99O+0Zh64xoEs9g8oO2BKtLfCu5RtKtcYhJU4jX78BOj AYg2vOAFcWsnIhm3fYBptmz6yqicTPLzAzLGJUXOoNZuVHld97LuPDEOVLcUFmVz iq/flrvwdtizhMpAs8BPqfjf5utHj66O7qDQCr8HNDbn/ewqwA2ZRFUC+qx9+1I+ 6RqKD0GKwb8g6RETD4YjNOOSDAMjAkEfbI8Noqz285+ptrk3YE6sZ7gL8SZ0KcQN 1BkRYktYgeDaSiTX7occ0GBqRKYao6E3FtQY6gWmRzdpx786jTxhToyIOOL42UL7 z1zJpBabn6GLbeuj+MwVEW3/FHHUb96Q/nErMXc= -----END CERTIFICATE-----Generated at Fri Nov 22 12:52:25 2024 by rpki-client on console-ams.rpki-client.org