$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203233393539.roa File: 3130332e31392e312e302f32342d3234203d3e203233393539.roa (raw, json) Hash identifier: oAvLVEZUCqPZSKjbNm78EONoYmzYyZ6cmVQyo3qOyXU= Subject key identifier: A6:DA:C0:28:79:3A:24:50:84:AE:88:8A:83:F0:4E:8E:D2:23:72:5E Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 7D5A517A506A0388E8B93C1900BA85C6907B331F Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203233393539.roa Signing time: Sat 14 Sep 2024 01:22:32 +0000 ROA not before: Sat 14 Sep 2024 01:17:32 +0000 ROA not after: Sat 13 Sep 2025 01:22:32 +0000 asID: 23959 IP address blocks: 103.19.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:5a:51:7a:50:6a:03:88:e8:b9:3c:19:00:ba:85:c6:90:7b:33:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Sep 14 01:17:32 2024 GMT Not After : Sep 13 01:22:32 2025 GMT Subject: CN=A6DAC028793A245084AE888A83F04E8ED223725E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:70:f7:1e:13:1e:30:d6:22:25:8a:6b:09: 7d:1c:15:94:03:0e:57:ae:74:65:0d:bb:13:c3:23: 9e:2c:a8:1f:ea:53:b5:ba:b6:79:ed:0a:4f:28:97: df:e8:ea:79:bb:34:d5:80:8c:80:ce:53:54:10:db: a1:62:25:15:f7:11:e7:89:00:96:b0:d3:0e:5c:39: b7:41:40:a8:1e:4d:3f:45:83:f4:a8:24:cc:41:0b: 6c:cd:40:73:42:53:da:52:80:20:9e:bf:65:de:f2: 3d:ce:d5:e9:6a:2e:45:20:4b:44:cd:27:5f:86:72: aa:43:28:a7:b1:22:d6:ff:20:a2:a7:38:e1:51:e9: 02:9e:2e:a1:e2:d8:64:32:74:30:5e:d1:63:74:c3: 5c:f5:ba:d9:eb:be:57:7f:0f:83:db:e8:50:99:86: ad:f8:58:cf:c7:b1:81:d3:4d:10:89:cc:26:2e:44: 68:06:6c:42:37:a9:58:bd:e2:64:80:fa:47:cb:ed: c3:12:e6:7e:c8:23:06:32:d5:d0:b3:8b:7b:5e:42: 85:87:d9:34:7f:22:56:75:cc:b5:6a:02:9f:d1:15: c0:26:d0:26:31:83:8d:0f:59:bb:7d:57:e1:23:6e: 1e:e4:63:6e:3f:90:08:d8:55:7e:fe:c7:a1:0d:a3: 2c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:DA:C0:28:79:3A:24:50:84:AE:88:8A:83:F0:4E:8E:D2:23:72:5E X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.1.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:75:ef:eb:72:1a:bd:67:a1:dd:ec:9c:24:93:78:26:c7:8c: 1d:cf:fb:3e:ab:49:a6:16:ae:ca:fd:c2:84:43:5d:ed:39:e1: e9:e2:c8:ae:62:be:95:5e:1b:1a:6b:0c:69:d3:c7:4a:86:e3: c9:89:cb:b7:f0:5a:14:ff:59:0e:06:59:c4:c5:7d:f7:2c:4e: 27:db:90:03:a5:c8:bf:3d:c5:4d:37:af:97:5c:c8:12:3e:1c: ba:a5:13:aa:63:ac:47:c1:6b:bf:2e:d4:54:71:41:7d:a3:1c: 05:30:82:37:ba:14:0f:3a:8e:82:4c:8a:ef:1f:63:62:7f:19: fa:30:7c:2a:3e:82:22:44:2c:16:b1:86:b4:16:60:e9:8a:ae: f7:8d:9c:5a:15:57:30:65:a7:c2:8f:66:92:4d:0d:2d:11:c6: 74:49:4d:c5:36:18:7d:e5:b7:f5:46:65:2b:23:f3:10:17:a1: a5:01:6d:76:ae:d8:1b:17:7e:25:c7:f9:c3:a6:5a:f4:a9:be: 82:33:5e:53:c8:01:cc:91:21:ff:b6:93:90:b5:83:9c:1c:7b: a1:d0:99:de:32:ec:df:78:a9:41:1f:3c:a2:9b:bf:d5:1b:ed: d7:ae:44:2a:af:11:ef:2f:2d:65:af:47:77:6c:55:43:e1:30: 7b:a4:39:7e -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUfVpRelBqA4jouTwZALqFxpB7Mx8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MDkxNDAxMTczMloX DTI1MDkxMzAxMjIzMlowMzExMC8GA1UEAxMoQTZEQUMwMjg3OTNBMjQ1MDg0QUU4 ODhBODNGMDRFOEVEMjIzNzI1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2ZcPceEx4w1iIlimsJfRwVlAMOV650ZQ27E8MjniyoH+pTtbq2ee0KTyiX 3+jqebs01YCMgM5TVBDboWIlFfcR54kAlrDTDlw5t0FAqB5NP0WD9KgkzEELbM1A c0JT2lKAIJ6/Zd7yPc7V6WouRSBLRM0nX4ZyqkMop7Ei1v8goqc44VHpAp4uoeLY ZDJ0MF7RY3TDXPW62eu+V38Pg9voUJmGrfhYz8exgdNNEInMJi5EaAZsQjepWL3i ZID6R8vtwxLmfsgjBjLV0LOLe15ChYfZNH8iVnXMtWoCn9EVwCbQJjGDjQ9Zu31X 4SNuHuRjbj+QCNhVfv7HoQ2jLHUCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBSm2sAo eTokUISuiIqD8E6O0iNyXjAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MmUzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMyMzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnEwEwDQYJKoZIhvcNAQEL BQADggEBAFt17+tyGr1nod3snCSTeCbHjB3P+z6rSaYWrsr9woRDXe054eniyK5i vpVeGxprDGnTx0qG48mJy7fwWhT/WQ4GWcTFffcsTifbkAOlyL89xU03r5dcyBI+ HLqlE6pjrEfBa78u1FRxQX2jHAUwgje6FA86joJMiu8fY2J/GfowfCo+giJELBax hrQWYOmKrveNnFoVVzBlp8KPZpJNDS0RxnRJTcU2GH3lt/VGZSsj8xAXoaUBbXau 2BsXfiXH+cOmWvSpvoIzXlPIAcyRIf+2k5C1g5wce6HQmd4y7N94qUEfPKKbv9Ub 7deuRCqvEe8vLWWvR3dsVUPhMHukOX4= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org