$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e20393439.roa File: 323030313a6466343a646438303a3a2f34382d3438203d3e20393439.roa (raw, json) Hash identifier: 4pffNTKD+/XZ4RUWd3Pe48BQ5kUaJaP42S87uXf5J0w= Subject key identifier: 94:24:96:66:B6:14:61:28:A0:89:4F:B6:C1:DC:B3:AB:9F:32:BD:80 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 383CC8524D3ED1B29B2458A251290E4A0965C56C Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e20393439.roa Signing time: Thu 12 Oct 2023 16:10:33 +0000 ROA not before: Thu 12 Oct 2023 16:05:33 +0000 ROA not after: Thu 10 Oct 2024 16:10:33 +0000 asID: 949 IP address blocks: 2001:df4:dd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 May 2024 17:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:3c:c8:52:4d:3e:d1:b2:9b:24:58:a2:51:29:0e:4a:09:65:c5:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Oct 12 16:05:33 2023 GMT Not After : Oct 10 16:10:33 2024 GMT Subject: CN=94249666B6146128A0894FB6C1DCB3AB9F32BD80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:60:54:c9:81:51:35:62:63:2c:da:b3:ce:5e: 48:11:1d:86:68:ca:fa:f8:e0:86:f1:42:60:f4:81: b4:8d:ef:15:09:fa:7f:fe:29:3e:54:45:ce:e1:21: ea:e1:48:03:5b:0d:3a:9d:21:12:01:8d:45:1f:08: 63:dd:a9:91:8d:73:d9:9f:54:20:e0:86:8a:cb:13: b1:25:ce:ba:5b:59:d3:bf:f3:4c:3a:f1:23:a5:38: 93:19:0d:97:f8:9d:94:95:56:60:a2:8c:20:e9:fa: f2:89:11:da:3a:82:c7:c7:ad:c9:29:f6:15:03:36: b4:5a:94:cb:b1:10:c2:8f:7f:20:22:19:19:34:a3: e7:35:6f:d5:58:64:12:fd:9d:d3:39:89:57:54:3b: a1:c3:d9:1f:1e:5c:6b:06:5c:b5:4e:4d:d2:71:bd: f6:f4:52:88:9e:10:99:d1:73:45:38:59:32:f0:8f: 74:ca:ea:51:30:ff:c2:e2:57:e1:32:53:b5:5e:6b: 3b:0a:90:35:2c:66:7e:5a:04:06:67:56:e5:54:7e: 35:c9:72:7f:41:a1:aa:09:3b:84:b3:bf:c6:60:86: 10:56:a0:71:68:de:98:4c:cc:6d:30:b8:1e:69:25: fc:37:e8:4b:2e:61:34:b8:1a:54:5b:eb:7a:6c:ce: 20:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:24:96:66:B6:14:61:28:A0:89:4F:B6:C1:DC:B3:AB:9F:32:BD:80 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/323030313a6466343a646438303a3a2f34382d3438203d3e20393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:dd80::/48 Signature Algorithm: sha256WithRSAEncryption 92:70:5e:40:20:2e:9b:e2:39:5b:6e:04:1b:03:ac:9b:95:29: 0f:bd:92:7c:b2:0a:6c:de:45:fa:b8:9b:3c:8b:23:61:75:84: b5:8d:6e:81:cd:f8:bd:8d:fc:57:56:f6:bd:f6:08:57:9d:16: 7a:21:3a:3f:fc:40:1e:84:64:14:ea:e2:70:59:d7:68:76:44: ed:95:47:25:25:57:d0:f7:ea:08:67:e4:dd:b8:34:96:b8:d6: 07:5a:5a:da:3f:6d:36:e5:24:37:22:62:ea:df:8e:91:5b:54: c3:b9:13:1c:18:e0:43:39:73:57:1c:49:47:c9:47:68:0a:ff: 40:f1:64:5c:46:3c:c1:65:79:8e:50:54:34:f2:ff:cc:a0:0b: bd:1f:94:1a:47:30:dd:21:28:4a:18:64:15:08:8a:1e:7b:dd: 26:4c:41:4f:97:36:be:41:66:67:2d:ba:0a:b1:f6:bb:d2:6b: 71:f8:c7:e0:48:00:68:68:16:66:57:ba:7b:b1:8d:00:4d:e9: df:ac:aa:a6:58:a0:e8:24:2f:ea:b3:9b:ed:70:de:79:b0:76: 66:47:96:bc:12:b9:11:47:61:76:77:60:7d:e6:a1:75:3b:d2: 22:05:c1:0a:af:10:20:81:bc:03:95:2a:bf:fe:c1:43:e9:b7: 17:5a:a8:a0 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgIUODzIUk0+0bKbJFiiUSkOSgllxWwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTIzMTAxMjE2MDUzM1oX DTI0MTAxMDE2MTAzM1owMzExMC8GA1UEAxMoOTQyNDk2NjZCNjE0NjEyOEEwODk0 RkI2QzFEQ0IzQUI5RjMyQkQ4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZgVMmBUTViYyzas85eSBEdhmjK+vjghvFCYPSBtI3vFQn6f/4pPlRFzuEh 6uFIA1sNOp0hEgGNRR8IY92pkY1z2Z9UIOCGissTsSXOultZ07/zTDrxI6U4kxkN l/idlJVWYKKMIOn68okR2jqCx8etySn2FQM2tFqUy7EQwo9/ICIZGTSj5zVv1Vhk Ev2d0zmJV1Q7ocPZHx5cawZctU5N0nG99vRSiJ4QmdFzRThZMvCPdMrqUTD/wuJX 4TJTtV5rOwqQNSxmfloEBmdW5VR+Nclyf0Ghqgk7hLO/xmCGEFagcWjemEzMbTC4 Hmkl/DfoSy5hNLgaVFvremzOIHUCAwEAAaOCAe8wggHrMB0GA1UdDgQWBBSUJJZm thRhKKCJT7bB3LOrnzK9gDAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzIzMDMwMzEzYTY0NjYzNDNhNjQ2NDM4MzAzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ303YAwDQYJ KoZIhvcNAQELBQADggEBAJJwXkAgLpviOVtuBBsDrJuVKQ+9knyyCmzeRfq4mzyL I2F1hLWNboHN+L2N/FdW9r32CFedFnohOj/8QB6EZBTq4nBZ12h2RO2VRyUlV9D3 6ghn5N24NJa41gdaWto/bTblJDciYurfjpFbVMO5ExwY4EM5c1ccSUfJR2gK/0Dx ZFxGPMFleY5QVDTy/8ygC70flBpHMN0hKEoYZBUIih573SZMQU+XNr5BZmctugqx 9rvSa3H4x+BIAGhoFmZXunuxjQBN6d+sqqZYoOgkL+qzm+1w3nmwdmZHlrwSuRFH YXZ3YH3moXU70iIFwQqvECCBvAOVKr/+wUPptxdaqKA= -----END CERTIFICATE-----Generated at Wed May 15 17:28:34 2024 by rpki-client on console-ams.rpki-client.org