$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa File: 3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa (raw, json) Hash identifier: nwykWUABK3aPl9d3nXR0L6hMd8ud//blJr+m2LhbNhc= Subject key identifier: 35:03:B6:ED:08:82:C6:37:43:30:FC:D2:1E:E2:2D:7D:F9:F3:87:1B Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 6BFF0890EDDE41FA1CB4D13FB90F87A661C47523 Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa Signing time: Fri 10 May 2024 08:31:04 +0000 ROA not before: Fri 10 May 2024 08:26:04 +0000 ROA not after: Fri 09 May 2025 08:31:04 +0000 asID: 3258 IP address blocks: 103.155.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 May 2024 17:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ff:08:90:ed:de:41:fa:1c:b4:d1:3f:b9:0f:87:a6:61:c4:75:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: May 10 08:26:04 2024 GMT Not After : May 9 08:31:04 2025 GMT Subject: CN=3503B6ED0882C6374330FCD21EE22D7DF9F3871B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:04:16:b6:81:99:5e:65:c2:c1:1b:92:e9:5e: 1d:7a:3e:24:97:8b:7f:05:f8:b1:72:59:52:97:e0: 23:ca:d2:f1:b1:96:16:4e:f5:76:53:b8:11:56:cd: 3a:e0:2f:c7:24:c7:76:0f:c4:c6:4e:bd:b3:2a:28: 1e:00:eb:43:ee:73:06:56:87:18:91:cc:22:09:95: 6f:8b:f8:14:e8:97:30:58:5e:69:1c:27:de:8f:39: eb:83:b5:f1:a4:04:25:dc:b1:bb:8d:50:b1:07:ed: 0f:4e:e9:a4:a0:03:7b:bc:b4:09:5c:1a:7d:8c:a4: f8:f0:d7:2b:67:f2:e3:ed:0a:f0:27:88:c4:71:5e: da:a9:c0:5f:85:7b:29:c6:cb:6b:6a:e1:4e:60:b5: e7:85:dd:c1:51:79:a0:da:ff:72:ee:fe:7b:3e:d4: 7b:ec:fe:31:14:5c:b7:75:5d:dc:1b:7c:e2:90:6f: 7b:b2:d8:b5:79:b9:1d:58:30:8c:02:2a:59:2e:cc: 9c:c1:6a:40:89:98:15:d4:e0:0b:8f:b3:c6:f2:cb: 63:ab:f4:42:e6:0f:e0:ad:0b:ca:0e:1b:f6:a2:32: 6d:79:53:eb:e0:41:26:dd:95:b4:6a:c1:34:87:33: ba:51:24:6d:42:b8:07:7f:3d:94:49:bc:f5:5a:ce: 4f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:03:B6:ED:08:82:C6:37:43:30:FC:D2:1E:E2:2D:7D:F9:F3:87:1B X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.232.0/23 Signature Algorithm: sha256WithRSAEncryption 30:a4:f4:ca:a9:01:dd:f0:60:e7:dd:d0:12:19:ac:af:ae:3f: d5:6e:18:dd:05:ac:52:8e:41:cc:6b:11:5f:37:b9:19:d2:3d: a4:9d:d9:48:70:ee:17:42:f8:fa:7d:df:28:bb:eb:df:6c:b8: f2:2b:19:f2:ac:45:a6:2d:d8:65:07:9d:73:92:e2:c1:c5:bd: 97:d3:82:d3:67:9c:e5:eb:80:09:5e:14:e6:3c:4b:12:28:ce: 64:ec:4c:35:33:06:f8:d3:c7:0e:c3:8b:2b:4a:0e:4f:90:be: 6e:b8:cf:f4:1d:c9:bb:d9:57:8d:6d:2f:de:2d:a2:03:b6:3b: cd:54:89:cd:42:2a:09:74:48:3b:8a:e6:9d:82:a6:87:e9:6e: ab:7e:3e:25:ec:8a:95:63:9a:1a:e6:dc:a1:13:f2:90:58:ab: ce:32:f6:4b:d0:c1:b1:29:d2:41:c4:5d:81:c4:db:0d:ab:3f: ad:e1:eb:b7:60:28:2f:7b:f7:a3:ca:66:f2:dc:b9:12:8b:36: 84:63:79:61:32:0a:61:a5:d3:ef:91:da:b7:c7:c3:a3:aa:5b: a2:67:53:d1:8a:11:67:74:23:54:d5:7f:64:49:0b:a6:01:1a: 8d:56:66:de:b2:90:9c:22:1c:ae:4a:30:b3:67:53:9e:50:40: b5:aa:10:0d -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUa/8IkO3eQfoctNE/uQ+HpmHEdSMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTI0MDUxMDA4MjYwNFoX DTI1MDUwOTA4MzEwNFowMzExMC8GA1UEAxMoMzUwM0I2RUQwODgyQzYzNzQzMzBG Q0QyMUVFMjJEN0RGOUYzODcxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoEFraBmV5lwsEbkuleHXo+JJeLfwX4sXJZUpfgI8rS8bGWFk71dlO4EVbN OuAvxyTHdg/Exk69syooHgDrQ+5zBlaHGJHMIgmVb4v4FOiXMFheaRwn3o8564O1 8aQEJdyxu41QsQftD07ppKADe7y0CVwafYyk+PDXK2fy4+0K8CeIxHFe2qnAX4V7 KcbLa2rhTmC154XdwVF5oNr/cu7+ez7Ue+z+MRRct3Vd3Bt84pBve7LYtXm5HVgw jAIqWS7MnMFqQImYFdTgC4+zxvLLY6v0QuYP4K0Lyg4b9qIybXlT6+BBJt2VtGrB NIczulEkbUK4B389lEm89VrOT6MCAwEAAaOCAeowggHmMB0GA1UdDgQWBBQ1A7bt CILGN0Mw/NIe4i19+fOHGzAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzEzMDMzMmUzMTM1MzUyZTMyMzMzMjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDMzMzIzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5voMA0GCSqGSIb3 DQEBCwUAA4IBAQAwpPTKqQHd8GDn3dASGayvrj/VbhjdBaxSjkHMaxFfN7kZ0j2k ndlIcO4XQvj6fd8ou+vfbLjyKxnyrEWmLdhlB51zkuLBxb2X04LTZ5zl64AJXhTm PEsSKM5k7Ew1Mwb408cOw4srSg5PkL5uuM/0Hcm72VeNbS/eLaIDtjvNVInNQioJ dEg7iuadgqaH6W6rfj4l7IqVY5oa5tyhE/KQWKvOMvZL0MGxKdJBxF2BxNsNqz+t 4eu3YCgve/ejymby3LkSizaEY3lhMgphpdPvkdq3x8OjqluiZ1PRihFndCNU1X9k SQumARqNVmbespCcIhyuSjCzZ1OeUEC1qhAN -----END CERTIFICATE-----Generated at Wed May 15 17:28:34 2024 by rpki-client on console-ams.rpki-client.org