$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa File: 3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa (raw, json) Hash identifier: vcYtX/zhnpbPSWPDFx3/cEWTRhmP12Y2ZAhfMklFx/Q= Subject key identifier: 4F:C6:2A:96:CF:CA:E8:0D:8F:34:00:8F:4D:B6:FB:0F:90:C5:BE:84 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 2D012436855DB4F9E2B1565E9902EC9D7F53ABD1 Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa Signing time: Sat 14 Sep 2024 01:22:33 +0000 ROA not before: Sat 14 Sep 2024 01:17:33 +0000 ROA not after: Sat 13 Sep 2025 01:22:33 +0000 asID: 43959 IP address blocks: 103.155.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:01:24:36:85:5d:b4:f9:e2:b1:56:5e:99:02:ec:9d:7f:53:ab:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Sep 14 01:17:33 2024 GMT Not After : Sep 13 01:22:33 2025 GMT Subject: CN=4FC62A96CFCAE80D8F34008F4DB6FB0F90C5BE84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:99:d2:8c:c5:18:2c:bd:22:b0:96:5f:f0:3e: ce:e4:25:c1:3d:1c:ef:a2:d6:49:13:03:23:42:3b: 34:09:d4:ce:65:4c:b0:65:f6:96:52:64:90:da:0c: 17:f9:92:b7:93:2c:48:bd:27:00:81:b8:54:97:bf: e8:b0:27:fd:31:dc:44:55:84:af:cf:ff:32:c9:69: 70:66:49:7c:bd:8e:00:d8:21:d5:1f:3c:ac:08:7f: e7:67:b1:d6:cb:f5:fa:cb:d3:52:58:88:51:a9:1a: d4:ec:51:17:7e:32:5a:e6:a3:1e:49:f3:93:c2:cc: 67:2a:95:fd:ed:e2:dc:c7:9f:70:1a:e0:b0:3b:00: 02:65:95:26:00:c2:da:ae:fa:e8:fe:83:d5:aa:a8: 58:fa:64:35:c3:9a:a3:1e:03:34:36:ba:ef:b5:01: 44:99:09:c0:b0:74:6e:ea:e4:1f:b0:b7:18:e1:05: b3:42:e9:47:5c:0a:11:51:c1:e7:fc:c2:e7:2c:c9: 9a:5f:ad:52:aa:9e:d0:95:24:1d:18:19:23:85:56: fb:a5:1c:61:4c:fc:e0:9a:26:4d:95:3a:29:83:aa: 0e:6e:de:97:9e:a4:24:88:86:5c:bb:f4:45:74:2b: 4d:ef:0d:8c:2a:98:f2:85:ad:84:48:f4:1e:ec:28: a5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C6:2A:96:CF:CA:E8:0D:8F:34:00:8F:4D:B6:FB:0F:90:C5:BE:84 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.232.0/23 Signature Algorithm: sha256WithRSAEncryption 60:88:53:14:61:0e:72:bc:a8:9c:68:79:02:68:9f:3f:cc:0d: e8:5e:dd:2c:b5:35:79:94:42:22:ce:20:bf:ca:c0:86:b2:35: 95:e5:4d:02:bd:4f:39:03:c4:48:8e:b4:94:33:33:20:9b:1a: 40:51:d7:c5:f4:43:36:65:f4:7e:39:32:91:df:8b:cf:80:be: 4f:8b:ba:89:58:7f:47:a0:c8:57:27:b9:bb:83:ee:0b:9f:5e: 6b:af:6c:83:2f:88:5f:a1:b0:d2:57:6e:0e:ee:93:6c:e8:7e: 7d:cf:c2:9a:53:fc:71:80:4b:be:00:d2:60:96:55:2f:0b:11: c2:e1:89:44:a7:04:e7:c1:7c:f0:8c:1b:84:72:64:17:51:eb: 62:d4:89:9f:44:ca:9e:d9:b4:a8:41:39:82:81:dd:c0:4c:54: 20:d7:61:10:d6:96:a4:ee:b3:0a:99:da:8a:c1:eb:d6:30:e9: dd:36:62:27:b3:01:a2:f5:87:c2:27:ab:ff:00:a3:fe:37:ba: d7:95:e8:6f:2d:57:33:3b:78:58:d7:32:b3:8b:6c:b8:c4:9b: fd:7c:cd:44:88:82:21:77:c9:8c:91:e5:1e:8b:bf:9d:e4:d6: 6b:36:95:ec:a2:55:fa:39:51:d1:a7:93:40:4b:05:4c:f8:ee: b7:9b:a0:e7 -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIULQEkNoVdtPnisVZemQLsnX9Tq9EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTI0MDkxNDAxMTczM1oX DTI1MDkxMzAxMjIzM1owMzExMC8GA1UEAxMoNEZDNjJBOTZDRkNBRTgwRDhGMzQw MDhGNERCNkZCMEY5MEM1QkU4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKeZ0ozFGCy9IrCWX/A+zuQlwT0c76LWSRMDI0I7NAnUzmVMsGX2llJkkNoM F/mSt5MsSL0nAIG4VJe/6LAn/THcRFWEr8//MslpcGZJfL2OANgh1R88rAh/52ex 1sv1+svTUliIUaka1OxRF34yWuajHknzk8LMZyqV/e3i3MefcBrgsDsAAmWVJgDC 2q766P6D1aqoWPpkNcOaox4DNDa677UBRJkJwLB0burkH7C3GOEFs0LpR1wKEVHB 5/zC5yzJml+tUqqe0JUkHRgZI4VW+6UcYUz84JomTZU6KYOqDm7el56kJIiGXLv0 RXQrTe8NjCqY8oWthEj0HuwopTkCAwEAAaOCAewwggHoMB0GA1UdDgQWBBRPxiqW z8roDY80AI9NtvsPkMW+hDAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzEzMDMzMmUzMTM1MzUyZTMyMzMzMjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDM0MzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm+gwDQYJKoZI hvcNAQELBQADggEBAGCIUxRhDnK8qJxoeQJonz/MDehe3Sy1NXmUQiLOIL/KwIay NZXlTQK9TzkDxEiOtJQzMyCbGkBR18X0QzZl9H45MpHfi8+Avk+LuolYf0egyFcn ubuD7gufXmuvbIMviF+hsNJXbg7uk2zofn3PwppT/HGAS74A0mCWVS8LEcLhiUSn BOfBfPCMG4RyZBdR62LUiZ9Eyp7ZtKhBOYKB3cBMVCDXYRDWlqTuswqZ2orB69Yw 6d02YiezAaL1h8Inq/8Ao/43uteV6G8tVzM7eFjXMrOLbLjEm/18zUSIgiF3yYyR 5R6Lv53k1ms2leyiVfo5UdGnk0BLBUz47reboOc= -----END CERTIFICATE-----Generated at Fri Nov 22 12:52:25 2024 by rpki-client on console-ams.rpki-client.org