$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203233393539.roa File: 3130332e3135352e3233322e302f32332d3234203d3e203233393539.roa (raw, json) Hash identifier: Anxg4kHfUcWGdVLGck3cNYVeHbelOVEvLk0y7b98uJ4= Subject key identifier: 36:FF:D6:A1:66:F9:19:B2:6F:02:1A:F1:77:A8:0B:58:92:F6:CC:AA Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 02531A8F97AA2FEB55571773D51EE45734B6266D Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203233393539.roa Signing time: Thu 12 Oct 2023 16:10:33 +0000 ROA not before: Thu 12 Oct 2023 16:05:33 +0000 ROA not after: Thu 10 Oct 2024 16:10:33 +0000 asID: 23959 IP address blocks: 103.155.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 May 2024 17:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:53:1a:8f:97:aa:2f:eb:55:57:17:73:d5:1e:e4:57:34:b6:26:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Oct 12 16:05:33 2023 GMT Not After : Oct 10 16:10:33 2024 GMT Subject: CN=36FFD6A166F919B26F021AF177A80B5892F6CCAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:15:ae:8f:56:93:f5:75:8f:38:55:8e:11:22: 7d:85:8c:b5:a4:ed:22:8b:6e:cf:d0:be:c1:ed:a7: 6a:1f:32:47:37:b3:7d:9c:5a:62:ad:d9:19:23:31: 2a:8d:74:35:65:2f:27:d1:75:82:74:84:9f:c9:46: 4e:b4:44:f4:cc:d1:53:8d:3c:77:8c:87:25:a3:92: 2a:c0:c4:0b:d8:f2:9c:02:5e:f4:34:e5:c8:30:40: c1:e5:55:e8:e9:1d:07:f6:5d:93:1d:40:23:bf:11: 87:57:08:c6:f5:76:1d:85:29:c0:0d:0c:36:8c:27: 91:3c:57:78:a9:aa:79:ec:aa:4b:d2:48:8d:62:4b: 18:0a:e9:95:9d:39:60:f8:a7:92:0b:40:5e:49:cc: 52:4d:d1:8d:9f:fa:c6:11:17:1b:dd:50:ef:f6:47: 81:86:68:06:af:a9:31:38:f9:f0:98:49:79:02:b7: de:05:c1:20:54:b3:5f:bb:0c:8a:44:06:c2:17:b5: f8:6a:00:84:39:50:dd:aa:18:09:dd:a7:9a:ff:cb: 84:a2:5d:fd:f8:de:d5:03:8f:12:1e:d3:e0:54:82: a5:8c:58:1b:2d:88:62:94:96:df:0c:51:b6:48:e2: 0a:23:ff:33:7e:9f:7c:7c:16:aa:29:f5:d1:36:a4: 22:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FF:D6:A1:66:F9:19:B2:6F:02:1A:F1:77:A8:0B:58:92:F6:CC:AA X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.232.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:90:ef:a3:2e:4b:da:ed:3e:ab:18:99:09:9c:a4:e1:49:01: 77:f8:01:8b:1d:0b:f6:16:08:40:56:97:5a:0c:13:71:a0:e8: 26:75:11:2c:8c:c5:6d:d1:54:fd:7f:61:eb:41:c5:2e:00:02: 28:52:87:a3:3a:c5:55:1f:6e:b3:dc:7a:6b:98:c6:93:c3:4f: 1d:67:48:be:da:5d:ed:94:7d:10:13:a8:40:34:73:af:75:7e: c8:9b:7f:30:76:54:91:ff:9e:0c:37:46:c6:21:2e:06:e8:68: e3:28:77:9a:c1:03:9f:52:34:88:72:24:7f:7e:41:ce:21:26: 35:25:1a:15:7a:8b:58:64:a2:dd:d1:9b:d0:80:6a:57:f9:71: d9:37:2d:ae:96:4b:30:40:ad:93:9d:3b:be:e1:07:bb:bd:fb: 8c:87:ea:aa:cd:b1:81:96:c5:9f:97:50:76:44:03:0a:d6:04: a7:52:7a:da:18:8a:df:f6:5e:6e:20:d5:19:a1:ef:ec:71:5c: 63:9a:f2:62:99:95:6d:6b:c1:5d:06:60:4a:57:ed:62:07:f2: a3:b1:bd:d0:11:0e:23:bf:a4:66:f5:99:a5:69:f0:cc:1e:49: ea:e7:7a:95:d1:d1:48:5e:ac:40:16:33:3d:2f:1a:ad:94:b5: 63:0c:90:4a -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIUAlMaj5eqL+tVVxdz1R7kVzS2Jm0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTIzMTAxMjE2MDUzM1oX DTI0MTAxMDE2MTAzM1owMzExMC8GA1UEAxMoMzZGRkQ2QTE2NkY5MTlCMjZGMDIx QUYxNzdBODBCNTg5MkY2Q0NBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUVro9Wk/V1jzhVjhEifYWMtaTtIotuz9C+we2nah8yRzezfZxaYq3ZGSMx Ko10NWUvJ9F1gnSEn8lGTrRE9MzRU408d4yHJaOSKsDEC9jynAJe9DTlyDBAweVV 6OkdB/Zdkx1AI78Rh1cIxvV2HYUpwA0MNownkTxXeKmqeeyqS9JIjWJLGArplZ05 YPinkgtAXknMUk3RjZ/6xhEXG91Q7/ZHgYZoBq+pMTj58JhJeQK33gXBIFSzX7sM ikQGwhe1+GoAhDlQ3aoYCd2nmv/LhKJd/fje1QOPEh7T4FSCpYxYGy2IYpSW3wxR tkjiCiP/M36ffHwWqin10TakIicCAwEAAaOCAewwggHoMB0GA1UdDgQWBBQ2/9ah ZvkZsm8CGvF3qAtYkvbMqjAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzEzMDMzMmUzMTM1MzUyZTMyMzMzMjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDMyMzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm+gwDQYJKoZI hvcNAQELBQADggEBAD2Q76MuS9rtPqsYmQmcpOFJAXf4AYsdC/YWCEBWl1oME3Gg 6CZ1ESyMxW3RVP1/YetBxS4AAihSh6M6xVUfbrPcemuYxpPDTx1nSL7aXe2UfRAT qEA0c691fsibfzB2VJH/ngw3RsYhLgboaOMod5rBA59SNIhyJH9+Qc4hJjUlGhV6 i1hkot3Rm9CAalf5cdk3La6WSzBArZOdO77hB7u9+4yH6qrNsYGWxZ+XUHZEAwrW BKdSetoYit/2Xm4g1Rmh7+xxXGOa8mKZlW1rwV0GYEpX7WIH8qOxvdARDiO/pGb1 maVp8MweSernepXR0UherEAWMz0vGq2UtWMMkEo= -----END CERTIFICATE-----Generated at Wed May 15 17:28:34 2024 by rpki-client on console-ams.rpki-client.org