$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2034373835.roa File: 3130332e31392e302e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: Urm4fJQNtDp6SIxaK4P3H3Ws3eyWvAIY2xosgFCtd8I= Subject key identifier: 22:F6:6B:97:EB:94:D5:3C:E7:18:21:52:62:4B:8E:1B:92:5E:D9:1D Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 7FCC338F68213AB9EA8D66713BBEE6422F296855 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2034373835.roa Signing time: Sat 14 Sep 2024 01:22:32 +0000 ROA not before: Sat 14 Sep 2024 01:17:32 +0000 ROA not after: Sat 13 Sep 2025 01:22:32 +0000 asID: 4785 IP address blocks: 103.19.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:cc:33:8f:68:21:3a:b9:ea:8d:66:71:3b:be:e6:42:2f:29:68:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Sep 14 01:17:32 2024 GMT Not After : Sep 13 01:22:32 2025 GMT Subject: CN=22F66B97EB94D53CE7182152624B8E1B925ED91D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:50:eb:13:b7:7c:45:93:d7:2a:57:0d:27:8b: 16:39:d2:35:88:8c:c9:91:27:c1:d4:8f:8d:08:11: 10:05:a8:51:42:cc:8b:f9:52:6f:e6:03:5c:88:24: 6f:8a:dc:c9:59:ee:0a:bc:73:08:88:b4:97:fc:8b: 25:f3:42:07:69:9f:74:69:e9:4f:dd:62:0b:ba:67: cf:6d:e3:e7:b2:f2:9d:19:98:fb:d7:ac:d4:dd:4d: 48:a7:65:94:88:6e:47:7f:9c:77:7f:d7:ac:d9:81: dc:8d:77:8d:93:cf:f5:c6:2f:50:f4:a8:2d:bb:20: 8c:8f:4e:3c:66:8d:b7:46:1a:5f:40:d7:f0:94:fe: 6d:1c:c9:fc:21:dc:99:22:b1:8e:bb:5d:f9:13:e3: 87:ca:95:38:49:99:15:e4:11:e0:83:0c:81:ff:eb: a6:d4:e6:8e:61:c4:41:4b:95:04:8a:38:fe:6b:19: 53:12:37:a1:97:93:ef:86:99:af:bc:68:bd:0a:40: 33:b2:e4:36:73:61:8b:8c:fd:83:de:13:2b:17:9f: 65:d8:38:d4:8e:ff:84:fa:5d:65:0f:15:27:91:60: 08:d3:0a:b2:e2:f7:cc:e4:5d:0e:ea:4e:6e:88:e4: 12:84:d6:7f:8a:ff:03:12:1b:e0:bb:48:ea:15:73: 58:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F6:6B:97:EB:94:D5:3C:E7:18:21:52:62:4B:8E:1B:92:5E:D9:1D X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.0.0/22 Signature Algorithm: sha256WithRSAEncryption 16:1d:a8:50:b5:a1:83:23:fb:1e:84:81:f4:ec:d7:ce:25:e1: 48:17:ea:4c:0d:cb:55:d1:47:27:10:89:d5:3d:49:bc:39:70: 42:6c:6d:08:70:38:57:6e:0d:39:9c:cd:d7:0c:d9:b5:72:f7: 42:59:96:ac:0f:80:00:5d:13:f4:43:e1:d1:cc:da:0f:19:88: de:24:c0:d3:2b:a1:98:8b:6b:02:5a:49:e3:e5:fe:96:17:63: 42:f3:32:3b:5f:5c:6e:43:d8:d1:a7:4c:9f:08:5c:d0:8a:8b: f3:c3:a7:0d:72:4b:eb:69:ef:fe:a4:d7:b8:b8:ac:44:c3:a6: a7:ea:94:dd:e5:bb:04:d4:1a:d1:59:e4:fa:35:7a:49:47:a5: 9a:6d:3a:be:8e:86:5c:79:37:21:c9:73:1f:e3:cb:c9:35:4d: 8c:6e:c9:d9:25:e6:3d:cf:d0:32:4e:6a:b3:d7:11:14:20:53: 8d:fe:3e:ee:b0:84:4a:80:39:1c:04:37:92:ba:6c:23:5f:35: 20:f1:c6:da:3d:9d:ee:23:5a:9f:08:37:81:0c:34:be:ee:bf: df:4b:ad:11:6e:af:ad:9d:e6:df:d2:35:9d:83:91:d0:29:84: 73:13:7d:71:62:b9:8d:69:3c:d9:f0:9d:55:b2:be:b1:2d:ee: cb:77:60:bb -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUf8wzj2ghOrnqjWZxO77mQi8paFUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MDkxNDAxMTczMloX DTI1MDkxMzAxMjIzMlowMzExMC8GA1UEAxMoMjJGNjZCOTdFQjk0RDUzQ0U3MTgy MTUyNjI0QjhFMUI5MjVFRDkxRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5Q6xO3fEWT1ypXDSeLFjnSNYiMyZEnwdSPjQgREAWoUULMi/lSb+YDXIgk b4rcyVnuCrxzCIi0l/yLJfNCB2mfdGnpT91iC7pnz23j57LynRmY+9es1N1NSKdl lIhuR3+cd3/XrNmB3I13jZPP9cYvUPSoLbsgjI9OPGaNt0YaX0DX8JT+bRzJ/CHc mSKxjrtd+RPjh8qVOEmZFeQR4IMMgf/rptTmjmHEQUuVBIo4/msZUxI3oZeT74aZ r7xovQpAM7LkNnNhi4z9g94TKxefZdg41I7/hPpdZQ8VJ5FgCNMKsuL3zORdDupO bojkEoTWf4r/AxIb4LtI6hVzWC8CAwEAAaOCAeQwggHgMB0GA1UdDgQWBBQi9muX 65TVPOcYIVJiS44bkl7ZHTAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM0MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxMAMA0GCSqGSIb3DQEBCwUA A4IBAQAWHahQtaGDI/sehIH07NfOJeFIF+pMDctV0UcnEInVPUm8OXBCbG0IcDhX bg05nM3XDNm1cvdCWZasD4AAXRP0Q+HRzNoPGYjeJMDTK6GYi2sCWknj5f6WF2NC 8zI7X1xuQ9jRp0yfCFzQiovzw6cNckvrae/+pNe4uKxEw6an6pTd5bsE1BrRWeT6 NXpJR6WabTq+joZceTchyXMf48vJNU2MbsnZJeY9z9AyTmqz1xEUIFON/j7usIRK gDkcBDeSumwjXzUg8cbaPZ3uI1qfCDeBDDS+7r/fS60Rbq+tnebf0jWdg5HQKYRz E31xYrmNaTzZ8J1Vsr6xLe7Ld2C7 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org