$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e20393439.roa File: 323030313a6466343a646438303a3a2f34382d3438203d3e20393439.roa (raw, json) Hash identifier: nhBNadwaQjT5vGs//PSioBj4Cmmoe+zwvDEtSqAfO20= Subject key identifier: 84:62:87:80:56:E8:B6:C4:CA:DA:54:5F:1A:94:50:41:EF:1F:B6:A5 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 0789CE56DB8285961391ADBDC5E8441E56C716A4 Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e20393439.roa Signing time: Sat 14 Sep 2024 01:22:34 +0000 ROA not before: Sat 14 Sep 2024 01:17:34 +0000 ROA not after: Sat 13 Sep 2025 01:22:34 +0000 asID: 949 IP address blocks: 2001:df4:dd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 17:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:89:ce:56:db:82:85:96:13:91:ad:bd:c5:e8:44:1e:56:c7:16:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Sep 14 01:17:34 2024 GMT Not After : Sep 13 01:22:34 2025 GMT Subject: CN=8462878056E8B6C4CADA545F1A945041EF1FB6A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:a6:64:14:c6:be:95:fc:00:f4:a4:40:83: f8:3b:19:33:65:2e:ed:47:f8:a0:2f:1b:fa:31:11: 59:36:39:a6:87:8d:12:68:8c:74:65:d1:d1:c5:cf: 65:32:02:16:c2:9f:e5:ca:1e:7d:de:74:5d:15:8b: fa:93:6d:4e:d9:21:3b:ef:8e:85:83:53:96:25:00: a6:5b:16:5c:32:4e:c5:63:2f:f7:5a:89:8f:22:2c: 3c:9d:18:b9:bd:8d:ee:d9:08:44:44:d6:e5:81:6d: 5e:ed:ca:bc:f5:45:cc:08:eb:15:c6:68:06:5d:e9: 45:b9:54:dd:4a:8e:d0:b5:94:df:45:7e:50:38:2f: 83:b0:da:73:2a:24:49:1e:1e:c8:4a:c7:5c:b3:d7: b3:e5:f4:05:b9:9c:d2:c1:8b:18:d1:1d:0c:b2:aa: 57:1c:79:64:b0:f1:49:a8:ba:85:75:f9:5b:47:bf: 61:4e:62:ea:e1:cd:d6:b6:34:d9:40:c8:29:0a:42: fc:94:62:4c:fc:0a:c9:31:fa:8d:3e:af:94:79:ed: 25:71:50:74:4f:c2:47:05:45:30:5c:0b:27:27:5e: fa:fc:9d:ff:e9:c5:9a:c6:90:e6:cd:96:cd:73:ac: b1:e8:32:1b:25:18:db:9d:35:92:e4:40:8a:4a:38: 6e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:62:87:80:56:E8:B6:C4:CA:DA:54:5F:1A:94:50:41:EF:1F:B6:A5 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e20393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:dd80::/48 Signature Algorithm: sha256WithRSAEncryption 71:f2:9c:15:e1:9b:35:7a:d3:61:4c:21:08:d9:4c:69:2f:fd: 68:19:e5:83:6e:f2:fd:21:b3:de:35:15:2e:db:37:de:24:1e: 69:ff:23:03:99:77:0d:c9:d2:07:45:09:18:0d:98:af:66:ac: b7:3e:04:fc:85:30:fe:b4:04:55:58:40:db:bd:6b:99:39:68: 0e:40:2c:62:69:9e:73:05:57:7c:4f:1b:13:39:c6:72:da:55: 84:a9:0b:28:eb:75:d2:2e:0a:5a:a3:73:5a:31:dc:c2:f3:53: 5c:b7:f8:29:c0:45:1c:10:b7:3a:aa:93:0e:77:9b:f9:86:e9: 0a:79:ec:aa:49:54:58:a6:54:0d:b8:dd:ce:92:74:04:27:a9: 70:98:4e:d5:4f:f5:91:87:40:a7:9d:6c:87:cb:72:bf:db:bf: a8:a8:54:01:66:d9:8a:ea:ef:3e:5c:78:70:e6:b5:96:eb:84: 40:ff:9b:a5:ab:49:cd:f5:de:f7:f9:b1:b9:09:28:e0:bb:53: 80:79:d4:e0:85:8a:63:17:9c:c4:66:81:5a:75:09:b8:88:5e: 76:90:58:cc:91:26:16:bf:26:9e:d0:69:7d:f8:46:73:74:be: 9f:05:1d:21:f6:1b:4f:e0:36:ce:6e:27:f9:8c:27:8c:39:d4: 97:87:19:64 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgIUB4nOVtuChZYTka29xehEHlbHFqQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTI0MDkxNDAxMTczNFoX DTI1MDkxMzAxMjIzNFowMzExMC8GA1UEAxMoODQ2Mjg3ODA1NkU4QjZDNENBREE1 NDVGMUE5NDUwNDFFRjFGQjZBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrppmQUxr6V/AD0pECD+DsZM2Uu7Uf4oC8b+jERWTY5poeNEmiMdGXR0cXP ZTICFsKf5coefd50XRWL+pNtTtkhO++OhYNTliUAplsWXDJOxWMv91qJjyIsPJ0Y ub2N7tkIRETW5YFtXu3KvPVFzAjrFcZoBl3pRblU3UqO0LWU30V+UDgvg7Dacyok SR4eyErHXLPXs+X0Bbmc0sGLGNEdDLKqVxx5ZLDxSai6hXX5W0e/YU5i6uHN1rY0 2UDIKQpC/JRiTPwKyTH6jT6vlHntJXFQdE/CRwVFMFwLJyde+vyd/+nFmsaQ5s2W zXOssegyGyUY2501kuRAiko4br0CAwEAAaOCAe8wggHrMB0GA1UdDgQWBBSEYoeA Vui2xMraVF8alFBB7x+2pTAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzIzMDMwMzEzYTY0NjYzNDNhNjQ2NDM4MzAzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ303YAwDQYJ KoZIhvcNAQELBQADggEBAHHynBXhmzV602FMIQjZTGkv/WgZ5YNu8v0hs941FS7b N94kHmn/IwOZdw3J0gdFCRgNmK9mrLc+BPyFMP60BFVYQNu9a5k5aA5ALGJpnnMF V3xPGxM5xnLaVYSpCyjrddIuClqjc1ox3MLzU1y3+CnARRwQtzqqkw53m/mG6Qp5 7KpJVFimVA243c6SdAQnqXCYTtVP9ZGHQKedbIfLcr/bv6ioVAFm2Yrq7z5ceHDm tZbrhED/m6WrSc313vf5sbkJKOC7U4B51OCFimMXnMRmgVp1CbiIXnaQWMyRJha/ Jp7QaX34RnN0vp8FHSH2G0/gNs5uJ/mMJ4w51JeHGWQ= -----END CERTIFICATE-----Generated at Thu Nov 21 16:17:29 2024 by rpki-client on console-fra.rpki-client.org