$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2034373835.roa File: 3130332e31392e302e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: mzEbhTO98CfVw2AD0sc5QzB9gbdHkvUdClcNYu7+uPY= Subject key identifier: F4:40:BE:50:20:C3:D1:07:D3:A5:DF:D2:10:3A:98:AC:B2:28:4C:67 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 541C2CC38CDCEA689FD3E32957996AA64961D234 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2034373835.roa Signing time: Thu 12 Oct 2023 16:10:37 +0000 ROA not before: Thu 12 Oct 2023 16:05:37 +0000 ROA not after: Thu 10 Oct 2024 16:10:37 +0000 asID: 4785 IP address blocks: 103.19.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 13:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:1c:2c:c3:8c:dc:ea:68:9f:d3:e3:29:57:99:6a:a6:49:61:d2:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Oct 12 16:05:37 2023 GMT Not After : Oct 10 16:10:37 2024 GMT Subject: CN=F440BE5020C3D107D3A5DFD2103A98ACB2284C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:80:75:c5:b1:2d:3a:4e:65:8b:c0:e4:01:9a: 8b:70:e6:62:2c:26:c8:a1:fd:dd:09:7c:40:12:71: b8:66:32:59:be:47:f7:d0:ec:04:62:b9:52:f8:df: f1:b5:1a:65:b5:70:fb:4c:d8:f2:49:f2:69:fe:1b: 0d:cb:e5:17:b9:2c:85:a7:25:5e:be:b8:93:42:c7: ce:39:04:73:99:a5:6a:49:67:66:04:3e:32:35:d1: 87:c7:1c:b9:53:41:93:9b:9a:60:26:58:ec:b3:07: fd:21:6b:b9:04:44:b0:f1:eb:18:94:28:55:8d:a0: f3:21:27:05:6e:c4:87:09:6c:f3:5a:3f:b0:9f:b4: a0:4f:49:45:b6:16:0c:88:ed:9c:72:eb:18:f0:2a: ea:d1:d2:45:44:e5:a4:94:65:a1:75:54:73:99:2b: 7e:d3:2d:f7:85:53:6c:97:2f:80:04:19:23:c5:6f: d2:ee:8d:95:2c:4e:35:eb:a5:8d:55:2d:c7:70:b0: 85:7e:9f:dd:69:8d:1b:87:a7:57:28:cd:01:75:05: 2d:c3:59:c1:30:f9:bd:4a:e7:8f:8c:e4:1a:5a:d3: b1:c3:62:bf:b6:57:f3:79:1e:9c:46:e4:7d:a6:03: b0:11:ba:d5:8f:f4:89:e1:ac:1c:9c:6c:95:e0:be: a5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:40:BE:50:20:C3:D1:07:D3:A5:DF:D2:10:3A:98:AC:B2:28:4C:67 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.0.0/22 Signature Algorithm: sha256WithRSAEncryption 59:a3:e3:8d:42:a9:d5:15:be:26:98:fa:6c:8e:20:27:e6:ff: 9d:16:93:0d:15:e8:a9:f9:58:0e:9f:cb:e4:8e:4f:85:a4:f6: 63:44:4b:0e:50:98:0c:94:dc:4a:15:4f:34:0b:a4:a9:4e:1f: 0d:38:7c:4c:6b:6e:b9:c5:4e:20:49:37:54:dc:d8:2a:a3:bd: 6a:88:59:ce:69:74:b0:92:77:de:39:12:52:40:21:22:01:da: 18:6e:ad:e5:cd:1c:db:88:84:59:a3:0d:d0:06:5b:51:4e:2b: 2e:1a:3b:a7:5c:12:6b:8d:c0:e3:98:6c:03:ca:9d:00:53:04: 2c:1c:f5:17:28:ea:16:3d:70:84:8a:08:f1:a0:4e:8b:e0:7e: 01:09:89:df:ee:de:ee:0b:b5:f6:27:ab:53:36:17:af:ed:37: 45:73:12:08:44:81:cd:f5:74:c5:81:a2:fa:9c:e0:0e:3c:8c: 07:bc:a2:8d:26:7a:a4:f0:60:bd:a8:36:7f:67:40:a8:97:91: ce:a0:e7:07:5a:0f:f8:99:98:6c:79:3e:53:d4:2e:04:c8:81: fe:ae:1e:9e:4d:58:4f:c5:a5:de:fd:db:39:94:79:b6:df:f5: f7:15:ba:4a:26:4a:3e:01:ed:25:c0:98:4c:04:e5:8a:12:68: 2a:79:fe:1a -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUVBwsw4zc6mif0+MpV5lqpklh0jQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTIzMTAxMjE2MDUzN1oX DTI0MTAxMDE2MTAzN1owMzExMC8GA1UEAxMoRjQ0MEJFNTAyMEMzRDEwN0QzQTVE RkQyMTAzQTk4QUNCMjI4NEM2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKAdcWxLTpOZYvA5AGai3DmYiwmyKH93Ql8QBJxuGYyWb5H99DsBGK5Uvjf 8bUaZbVw+0zY8knyaf4bDcvlF7kshaclXr64k0LHzjkEc5mlaklnZgQ+MjXRh8cc uVNBk5uaYCZY7LMH/SFruQREsPHrGJQoVY2g8yEnBW7Ehwls81o/sJ+0oE9JRbYW DIjtnHLrGPAq6tHSRUTlpJRloXVUc5krftMt94VTbJcvgAQZI8Vv0u6NlSxONeul jVUtx3CwhX6f3WmNG4enVyjNAXUFLcNZwTD5vUrnj4zkGlrTscNiv7ZX83kenEbk faYDsBG61Y/0ieGsHJxsleC+peECAwEAAaOCAeQwggHgMB0GA1UdDgQWBBT0QL5Q IMPRB9Ol39IQOpissihMZzAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM0MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxMAMA0GCSqGSIb3DQEBCwUA A4IBAQBZo+ONQqnVFb4mmPpsjiAn5v+dFpMNFeip+VgOn8vkjk+FpPZjREsOUJgM lNxKFU80C6SpTh8NOHxMa265xU4gSTdU3Ngqo71qiFnOaXSwknfeORJSQCEiAdoY bq3lzRzbiIRZow3QBltRTisuGjunXBJrjcDjmGwDyp0AUwQsHPUXKOoWPXCEigjx oE6L4H4BCYnf7t7uC7X2J6tTNhev7TdFcxIIRIHN9XTFgaL6nOAOPIwHvKKNJnqk 8GC9qDZ/Z0Col5HOoOcHWg/4mZhseT5T1C4EyIH+rh6eTVhPxaXe/ds5lHm23/X3 FbpKJko+Ae0lwJhMBOWKEmgqef4a -----END CERTIFICATE-----Generated at Sun May 5 14:36:06 2024 by rpki-client on console-fra.rpki-client.org