$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e2038383838.roa File: 323030313a6466343a646438303a3a2f34382d3438203d3e2038383838.roa (raw, json) Hash identifier: LAAnEwXyDjatEYAomEc0Jb20tMIcHmddd3nuThwfaD8= Subject key identifier: 2E:66:E7:25:A2:56:4B:FF:89:9F:B6:9B:C8:BE:2B:D3:A7:00:55:E0 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 5EAF2331E039B67ACD3530D22C6F841BA9D3BC4F Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e2038383838.roa Signing time: Sat 14 Sep 2024 01:22:33 +0000 ROA not before: Sat 14 Sep 2024 01:17:33 +0000 ROA not after: Sat 13 Sep 2025 01:22:33 +0000 asID: 8888 IP address blocks: 2001:df4:dd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 17:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:af:23:31:e0:39:b6:7a:cd:35:30:d2:2c:6f:84:1b:a9:d3:bc:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Sep 14 01:17:33 2024 GMT Not After : Sep 13 01:22:33 2025 GMT Subject: CN=2E66E725A2564BFF899FB69BC8BE2BD3A70055E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1b:20:de:10:ed:c3:92:c5:3a:28:29:1b:33: f0:61:fb:37:48:d2:e3:58:54:54:c8:7b:ff:11:e3: a5:6d:81:49:81:0f:44:59:59:2d:50:cb:27:35:5d: d5:00:de:1d:9d:c0:60:35:c5:66:78:1a:a3:59:aa: 7e:21:67:f3:86:2f:36:b5:7c:85:8f:af:af:98:dc: 4c:42:24:fd:3e:79:74:d5:63:ed:da:57:7e:1c:b5: 0e:4d:32:38:7f:07:f1:a0:77:b7:39:b7:3a:32:7d: bb:9f:c2:43:ef:21:87:07:0c:9c:62:b3:70:86:c8: 06:4d:ce:6e:34:8b:bb:2a:fb:81:91:92:9d:b0:09: 11:db:c7:35:01:cb:7a:06:21:72:53:79:7c:0d:a0: 5f:e9:ff:20:35:68:d9:32:5f:b4:d2:8d:3d:1e:03: ab:8a:a8:ae:d8:51:d8:22:1c:31:f7:16:13:75:85: 80:e6:05:d9:c9:4e:74:a7:5b:cd:e8:da:44:e4:cb: 18:cf:64:82:f7:e2:10:b6:cb:21:13:4d:5b:6c:32: be:07:31:76:fd:9b:ce:c8:ca:2f:5c:e8:c0:fc:4a: e1:4a:57:28:6d:bc:a9:11:b9:6e:c1:a9:7b:36:e7: 2b:39:f4:9f:e8:fc:ae:d8:45:7b:32:da:26:4b:5e: d5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:66:E7:25:A2:56:4B:FF:89:9F:B6:9B:C8:BE:2B:D3:A7:00:55:E0 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:dd80::/48 Signature Algorithm: sha256WithRSAEncryption 23:96:d7:6e:bd:70:d3:88:e0:a6:18:fc:90:5b:05:0f:50:06: 47:2f:86:6e:00:25:48:f7:83:99:5d:66:b2:5b:79:a2:44:ac: 4a:13:14:a8:64:89:9d:84:fb:9d:2d:73:4d:cb:59:a0:37:3c: 7f:8e:c0:1f:13:ef:fa:ea:72:fb:56:a0:1e:09:a9:74:01:aa: 97:81:e4:a9:52:c1:e1:f9:86:ed:71:d5:63:98:07:b6:c3:23: de:20:ec:15:10:f4:30:3c:07:0f:22:5b:80:cb:6f:58:82:56: fe:19:61:38:4d:0b:a0:4a:53:51:74:e6:2c:2e:b8:dd:b5:35: bf:9a:50:51:ae:52:8e:5e:8a:4b:a9:39:27:97:6c:c2:e9:63: 72:36:83:56:72:55:00:b3:ed:52:8c:5b:f3:73:1f:19:3c:fa: 2b:b4:e5:a0:e9:a6:fd:e9:0a:17:0c:80:3b:7a:aa:6b:d4:6e: ff:ee:df:ea:7b:cb:06:c7:44:fa:83:5f:6f:ee:cf:05:bf:36: 01:7f:75:0a:b4:96:e9:02:a6:b4:e6:3c:74:22:67:91:03:e7: 68:37:04:17:fe:20:82:f9:f7:2f:e2:ed:aa:57:65:08:68:3a: 4d:4e:61:d1:70:4d:3c:4e:a3:3b:b2:98:44:de:63:fa:59:91: 70:0d:ac:ba -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUXq8jMeA5tnrNNTDSLG+EG6nTvE8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTI0MDkxNDAxMTczM1oX DTI1MDkxMzAxMjIzM1owMzExMC8GA1UEAxMoMkU2NkU3MjVBMjU2NEJGRjg5OUZC NjlCQzhCRTJCRDNBNzAwNTVFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwbIN4Q7cOSxTooKRsz8GH7N0jS41hUVMh7/xHjpW2BSYEPRFlZLVDLJzVd 1QDeHZ3AYDXFZngao1mqfiFn84YvNrV8hY+vr5jcTEIk/T55dNVj7dpXfhy1Dk0y OH8H8aB3tzm3OjJ9u5/CQ+8hhwcMnGKzcIbIBk3ObjSLuyr7gZGSnbAJEdvHNQHL egYhclN5fA2gX+n/IDVo2TJftNKNPR4Dq4qorthR2CIcMfcWE3WFgOYF2clOdKdb zejaROTLGM9kgvfiELbLIRNNW2wyvgcxdv2bzsjKL1zowPxK4UpXKG28qRG5bsGp ezbnKzn0n+j8rthFezLaJkte1V0CAwEAAaOCAfEwggHtMB0GA1UdDgQWBBQuZucl olZL/4mftpvIvivTpwBV4DAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzIzMDMwMzEzYTY0NjYzNDNhNjQ2NDM4MzAzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzODM4MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfTdgDAN BgkqhkiG9w0BAQsFAAOCAQEAI5bXbr1w04jgphj8kFsFD1AGRy+GbgAlSPeDmV1m slt5okSsShMUqGSJnYT7nS1zTctZoDc8f47AHxPv+upy+1agHgmpdAGql4HkqVLB 4fmG7XHVY5gHtsMj3iDsFRD0MDwHDyJbgMtvWIJW/hlhOE0LoEpTUXTmLC643bU1 v5pQUa5Sjl6KS6k5J5dswuljcjaDVnJVALPtUoxb83MfGTz6K7TloOmm/ekKFwyA O3qqa9Ru/+7f6nvLBsdE+oNfb+7PBb82AX91CrSW6QKmtOY8dCJnkQPnaDcEF/4g gvn3L+LtqldlCGg6TU5h0XBNPE6jO7KYRN5j+lmRcA2sug== -----END CERTIFICATE-----Generated at Thu Nov 21 17:13:48 2024 by rpki-client on console-ams.rpki-client.org