$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa File: 3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa (raw, json) Hash identifier: F2ejdDo7xdI547FXQtI/gGSrs46yU2D/1GG3tj68oHE= Subject key identifier: 7F:15:26:D1:27:55:FE:A6:8B:83:AE:C2:7E:39:8F:EA:39:CD:0A:B8 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 3D2BDC4FCDE52BF9A41D2BD1C78B9C6570CBBEB2 Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa Signing time: Thu 12 Oct 2023 16:10:33 +0000 ROA not before: Thu 12 Oct 2023 16:05:33 +0000 ROA not after: Thu 10 Oct 2024 16:10:33 +0000 asID: 43959 IP address blocks: 103.155.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 May 2024 17:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:2b:dc:4f:cd:e5:2b:f9:a4:1d:2b:d1:c7:8b:9c:65:70:cb:be:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Oct 12 16:05:33 2023 GMT Not After : Oct 10 16:10:33 2024 GMT Subject: CN=7F1526D12755FEA68B83AEC27E398FEA39CD0AB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:15:d7:2f:27:55:0e:f2:77:cf:ab:20:4f:39: 99:54:47:c9:19:6d:01:57:69:73:c6:a5:fe:3f:68: d8:e1:cb:0e:28:d7:cc:84:38:ee:c4:ed:85:da:f6: cc:40:22:2c:0d:fc:25:94:d6:f5:e1:66:00:90:9a: b7:fd:8f:a2:0c:1d:a1:a1:a9:c8:ad:8d:50:9a:8a: 9c:85:f7:bd:18:0f:1a:50:c1:73:d9:1d:93:24:84: 58:ad:ac:0b:5d:ff:62:96:b0:88:72:4c:51:05:00: f6:86:15:26:7f:94:c2:cf:40:33:97:81:b5:46:a8: 81:7c:9c:c9:7b:19:1c:3e:15:5a:84:7f:5b:0b:d5: 03:48:2f:ac:06:77:82:d6:56:34:36:08:a1:12:5e: 11:d9:34:c1:cc:4f:42:7e:40:c4:1c:98:67:ad:52: f3:ce:22:63:10:25:e4:40:ee:78:2d:ac:14:60:1f: 54:6f:41:57:a3:a6:db:ff:b7:e7:fb:38:13:bd:41: aa:8c:90:a6:85:d2:f7:fd:e4:8f:34:42:67:1c:5b: c7:97:46:1b:01:d4:94:77:37:65:da:7b:96:21:7e: a4:29:82:b3:4c:96:44:7a:ac:46:b0:23:a6:5f:1e: 63:9d:2a:1d:3c:12:32:86:7f:6c:c8:50:3a:09:12: d4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:15:26:D1:27:55:FE:A6:8B:83:AE:C2:7E:39:8F:EA:39:CD:0A:B8 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.232.0/23 Signature Algorithm: sha256WithRSAEncryption 05:da:24:9e:22:eb:43:ca:ad:b1:2f:ca:ef:0f:a2:8c:59:10: 6d:e7:7a:0f:96:4e:ef:05:4d:9b:be:76:03:5b:d3:b3:42:e9: 41:1b:64:65:8b:50:ff:3a:5e:ea:0f:6b:a6:01:b6:7f:1a:2a: 09:de:39:46:61:81:e6:23:29:d9:69:a8:f1:1f:83:50:8a:dd: 3f:56:be:b7:cd:09:03:f0:41:d3:c3:a6:54:05:d4:b2:00:37: ab:3b:36:98:6c:97:3a:38:16:ac:8f:33:85:82:c9:d7:da:a6: dc:22:d0:f4:98:2d:85:fa:c6:ae:60:bc:6f:9d:64:30:ed:d4: af:81:34:3f:95:df:cc:82:ae:1d:ce:5a:c0:17:46:4b:a0:ed: 0e:40:51:5b:42:19:cc:a3:86:e2:89:f2:89:ac:71:8d:59:3a: d6:2f:2f:aa:a3:36:d7:95:82:a3:2f:fa:3d:d6:02:a2:8c:29: 41:28:ab:e4:90:ca:57:e5:f5:25:81:ac:12:2e:a9:49:67:7a: 48:93:39:08:b0:bd:2b:09:e0:07:db:37:e0:6e:c2:29:a6:dc: 77:28:21:6d:29:d6:03:3f:7e:da:7b:59:b8:21:a3:57:8c:47: c8:fc:e3:1b:a7:73:85:3c:d8:63:ff:ad:65:dd:2d:4a:91:89: 55:47:9f:8b -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIUPSvcT83lK/mkHSvRx4ucZXDLvrIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTIzMTAxMjE2MDUzM1oX DTI0MTAxMDE2MTAzM1owMzExMC8GA1UEAxMoN0YxNTI2RDEyNzU1RkVBNjhCODNB RUMyN0UzOThGRUEzOUNEMEFCODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPEV1y8nVQ7yd8+rIE85mVRHyRltAVdpc8al/j9o2OHLDijXzIQ47sTthdr2 zEAiLA38JZTW9eFmAJCat/2PogwdoaGpyK2NUJqKnIX3vRgPGlDBc9kdkySEWK2s C13/YpawiHJMUQUA9oYVJn+Uws9AM5eBtUaogXycyXsZHD4VWoR/WwvVA0gvrAZ3 gtZWNDYIoRJeEdk0wcxPQn5AxByYZ61S884iYxAl5EDueC2sFGAfVG9BV6Om2/+3 5/s4E71BqoyQpoXS9/3kjzRCZxxbx5dGGwHUlHc3Zdp7liF+pCmCs0yWRHqsRrAj pl8eY50qHTwSMoZ/bMhQOgkS1LcCAwEAAaOCAewwggHoMB0GA1UdDgQWBBR/FSbR J1X+pouDrsJ+OY/qOc0KuDAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzEzMDMzMmUzMTM1MzUyZTMyMzMzMjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDM0MzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm+gwDQYJKoZI hvcNAQELBQADggEBAAXaJJ4i60PKrbEvyu8PooxZEG3neg+WTu8FTZu+dgNb07NC 6UEbZGWLUP86XuoPa6YBtn8aKgneOUZhgeYjKdlpqPEfg1CK3T9WvrfNCQPwQdPD plQF1LIAN6s7Nphslzo4FqyPM4WCydfaptwi0PSYLYX6xq5gvG+dZDDt1K+BND+V 38yCrh3OWsAXRkug7Q5AUVtCGcyjhuKJ8omscY1ZOtYvL6qjNteVgqMv+j3WAqKM KUEoq+SQylfl9SWBrBIuqUlnekiTOQiwvSsJ4AfbN+Buwimm3HcoIW0p1gM/ftp7 Wbgho1eMR8j84xunc4U82GP/rWXdLUqRiVVHn4s= -----END CERTIFICATE-----Generated at Wed May 15 17:07:40 2024 by rpki-client on console-fra.rpki-client.org