$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e2038383838.roa File: 323030313a6466343a646438303a3a2f34382d3438203d3e2038383838.roa (raw, json) Hash identifier: B4E63UO53lFGg3uCanMChc7jerLuxlYOqng382b7M3k= Subject key identifier: B0:32:0A:F6:88:EF:A4:31:9E:14:FE:DA:5C:B1:43:3A:22:51:D2:14 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 2C32DCD70089EC236DFBE4CC53620F697865E5CA Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e2038383838.roa Signing time: Thu 12 Oct 2023 16:10:33 +0000 ROA not before: Thu 12 Oct 2023 16:05:33 +0000 ROA not after: Thu 10 Oct 2024 16:10:33 +0000 asID: 8888 IP address blocks: 2001:df4:dd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 May 2024 17:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:32:dc:d7:00:89:ec:23:6d:fb:e4:cc:53:62:0f:69:78:65:e5:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Oct 12 16:05:33 2023 GMT Not After : Oct 10 16:10:33 2024 GMT Subject: CN=B0320AF688EFA4319E14FEDA5CB1433A2251D214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:37:5a:b7:e6:7c:72:ff:1b:27:1a:ab:21:7f: 19:1f:21:36:39:1a:91:d3:7d:95:a2:2d:f6:5c:fa: 1d:41:f1:37:18:2e:02:b4:1d:ec:a8:e7:c6:b6:93: de:d8:49:81:22:20:97:05:9e:ab:b5:6f:67:7c:e3: 7c:e1:e7:6a:1f:db:fe:54:8b:b4:9b:2e:29:86:98: 61:47:50:cc:f3:9d:c9:e4:d6:e8:2c:72:23:75:b1: b1:88:65:1e:7e:2f:76:f4:60:73:4d:a1:08:4c:80: e0:c8:5e:14:80:69:fc:96:30:71:fa:fa:e4:a7:a9: 5a:45:73:23:96:5e:52:b7:de:fa:c4:20:12:cf:ae: 45:93:59:72:98:ef:d8:3f:88:80:7f:a9:c9:ef:9f: 7d:ee:99:e9:8c:0d:51:dd:53:3a:e5:18:ff:5e:d6: 99:40:79:08:fb:d6:2d:f9:e9:7d:87:62:23:c4:23: ab:01:59:79:80:e2:bb:b2:f7:e1:9c:88:f0:4d:c0: 24:cc:f2:3f:47:7c:69:63:15:0a:cb:5e:c1:4a:89: 86:aa:80:3a:2c:7a:f2:38:56:fc:39:7c:09:16:28: ad:29:e9:46:d3:99:b1:8f:bd:5d:f2:10:f3:15:de: 23:95:4c:7b:78:c8:a8:f6:ed:02:35:61:92:ea:b1: b8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:32:0A:F6:88:EF:A4:31:9E:14:FE:DA:5C:B1:43:3A:22:51:D2:14 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:dd80::/48 Signature Algorithm: sha256WithRSAEncryption 95:f8:ad:4c:c2:5c:67:f0:33:53:1e:86:46:93:c5:32:6b:4b: 67:9c:bf:80:f2:39:a0:b9:ea:a8:82:52:b4:8b:83:83:30:98: f0:ef:3c:3a:86:84:be:8d:2a:42:8a:6b:29:67:96:d0:36:c5: d8:36:12:9c:38:89:86:9d:fc:dc:3d:46:39:22:4d:4a:08:59: d8:28:e2:a3:96:c9:54:45:fb:ea:04:17:e4:2e:4f:a4:f3:dd: 55:cc:ec:d1:eb:84:af:0d:7e:ad:55:23:5f:37:c3:37:7a:ac: 80:d4:c5:f9:14:b9:3f:c4:e3:38:4f:5b:85:e9:9a:a7:d2:09: 9f:a1:67:f3:0d:bf:12:56:33:07:f5:13:bb:b8:4b:0a:e9:31: e8:29:4a:94:49:33:95:b0:ce:23:1a:90:76:40:e6:96:a1:4d: 18:b4:2a:47:83:94:9f:65:21:2f:c6:e5:8c:bb:55:9f:57:91: 90:13:9a:3f:55:b3:c7:df:b9:fd:85:32:7d:cb:97:03:83:5d: b0:9a:b5:1b:94:b0:94:a2:ca:4f:e9:ce:08:6b:06:d3:ca:e2: c9:c9:3e:f4:0d:96:25:e7:fe:e4:29:ed:54:3c:be:af:0f:51: 78:66:88:dd:7f:61:2b:d8:2b:d4:1d:da:68:4a:80:0a:47:6c: 7f:0a:9c:d6 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIULDLc1wCJ7CNt++TMU2IPaXhl5cowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTIzMTAxMjE2MDUzM1oX DTI0MTAxMDE2MTAzM1owMzExMC8GA1UEAxMoQjAzMjBBRjY4OEVGQTQzMTlFMTRG RURBNUNCMTQzM0EyMjUxRDIxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANg3WrfmfHL/GycaqyF/GR8hNjkakdN9laIt9lz6HUHxNxguArQd7KjnxraT 3thJgSIglwWeq7VvZ3zjfOHnah/b/lSLtJsuKYaYYUdQzPOdyeTW6CxyI3WxsYhl Hn4vdvRgc02hCEyA4MheFIBp/JYwcfr65KepWkVzI5ZeUrfe+sQgEs+uRZNZcpjv 2D+IgH+pye+ffe6Z6YwNUd1TOuUY/17WmUB5CPvWLfnpfYdiI8QjqwFZeYDiu7L3 4ZyI8E3AJMzyP0d8aWMVCstewUqJhqqAOix68jhW/Dl8CRYorSnpRtOZsY+9XfIQ 8xXeI5VMe3jIqPbtAjVhkuqxuLMCAwEAAaOCAfEwggHtMB0GA1UdDgQWBBSwMgr2 iO+kMZ4U/tpcsUM6IlHSFDAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzIzMDMwMzEzYTY0NjYzNDNhNjQ2NDM4MzAzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzODM4MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfTdgDAN BgkqhkiG9w0BAQsFAAOCAQEAlfitTMJcZ/AzUx6GRpPFMmtLZ5y/gPI5oLnqqIJS tIuDgzCY8O88OoaEvo0qQoprKWeW0DbF2DYSnDiJhp383D1GOSJNSghZ2Cjio5bJ VEX76gQX5C5PpPPdVczs0euErw1+rVUjXzfDN3qsgNTF+RS5P8TjOE9bhemap9IJ n6Fn8w2/ElYzB/UTu7hLCukx6ClKlEkzlbDOIxqQdkDmlqFNGLQqR4OUn2UhL8bl jLtVn1eRkBOaP1Wzx9+5/YUyfcuXA4NdsJq1G5SwlKLKT+nOCGsG08riyck+9A2W Jef+5CntVDy+rw9ReGaI3X9hK9gr1B3aaEqACkdsfwqc1g== -----END CERTIFICATE-----Generated at Wed May 15 17:07:40 2024 by rpki-client on console-fra.rpki-client.org