$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203433393539.roa File: 3130332e31392e312e302f32342d3234203d3e203433393539.roa (raw, json) Hash identifier: qBNNAhrcYn7+7C6H5Usnl0BSwa+8x/tgu9RF6Ut6QGA= Subject key identifier: 35:AB:19:F4:6B:4A:49:19:29:07:69:C4:D1:57:B9:8D:93:EB:B9:76 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 17BA8B46E608B0AC4AD522246BA05DE9BDA14E64 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203433393539.roa Signing time: Sat 14 Sep 2024 01:22:32 +0000 ROA not before: Sat 14 Sep 2024 01:17:32 +0000 ROA not after: Sat 13 Sep 2025 01:22:32 +0000 asID: 43959 IP address blocks: 103.19.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:ba:8b:46:e6:08:b0:ac:4a:d5:22:24:6b:a0:5d:e9:bd:a1:4e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Sep 14 01:17:32 2024 GMT Not After : Sep 13 01:22:32 2025 GMT Subject: CN=35AB19F46B4A4919290769C4D157B98D93EBB976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:14:97:d1:34:44:92:a6:70:9d:e1:b1:87:f2: 3d:bd:17:47:cd:9c:ef:b7:f9:ee:8f:b4:98:28:76: e8:eb:65:08:d7:9b:e0:55:77:f9:4a:68:f1:ad:50: 90:62:71:10:f5:93:cd:b0:08:07:13:42:bc:d9:aa: 7d:42:9a:cf:06:e8:a8:af:c7:7e:da:92:c8:a3:4f: 91:82:94:c3:00:f6:04:dc:9b:cf:f4:62:d8:93:0f: a0:13:6d:1b:56:17:d5:f3:ff:b0:a3:3a:3c:23:fb: 1c:d0:59:ad:de:ca:bd:e9:11:23:0a:ac:35:11:77: f6:4b:2e:9e:d0:bd:53:f2:85:0f:c1:1c:d5:b4:54: eb:c8:7f:9c:a5:e0:13:0f:5e:23:c6:72:18:0c:f2: 70:cf:1d:32:f1:cf:4c:4f:0d:0f:b4:f8:4c:9d:bc: c0:58:23:dd:61:ac:e3:48:b1:71:42:dd:7e:7c:b4: 39:7e:a8:d5:be:7e:3e:22:6b:16:67:04:ab:29:33: 93:56:3f:ae:97:73:f4:16:30:c4:c9:5f:98:07:e8: bb:f7:8e:26:ea:33:1b:cf:be:8f:ae:e0:7b:f0:4c: 29:6f:f0:69:d7:e1:12:8e:ad:7c:ea:81:dd:bc:5c: 13:fd:4a:8a:f8:24:5a:39:ca:47:29:04:c6:f7:4f: d0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AB:19:F4:6B:4A:49:19:29:07:69:C4:D1:57:B9:8D:93:EB:B9:76 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203433393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.1.0/24 Signature Algorithm: sha256WithRSAEncryption 74:c4:cc:20:72:fd:61:01:93:a0:ce:39:74:ba:65:42:fb:6e: 8a:be:f3:06:ad:ca:0d:1c:79:e8:b2:c6:d5:e4:8d:72:11:a6: eb:f9:5b:ec:84:02:69:fb:c3:40:c4:cf:44:7b:56:55:79:25: cf:0d:5b:4b:71:8d:54:8f:93:cb:98:80:d0:f5:ab:81:b6:14: 74:f6:09:e5:c9:32:58:cf:f6:db:e1:bb:07:07:93:75:f8:51: 0c:f8:db:54:3e:eb:56:b1:0f:08:5b:cb:d9:c8:86:62:53:e9: 0b:2e:bd:79:b4:f7:e6:78:df:06:d5:05:ea:eb:ef:2b:2e:77: d6:03:9f:47:7e:a4:a5:48:84:87:38:85:7b:50:5d:29:16:a9: 94:ba:80:23:3c:a7:df:4c:13:f6:58:e1:79:15:96:f5:50:2d: f0:4b:35:52:cd:41:11:8c:6a:b4:15:11:41:fa:5f:3b:9c:e2: 96:74:b2:78:dd:f7:a9:d4:c5:94:e6:f0:fe:63:11:3e:4e:31: 7d:8e:db:dc:37:41:21:21:fa:fe:01:d8:fe:f4:3c:2c:ee:6b: 69:19:7b:41:3a:97:37:bd:9f:44:3f:3d:bf:62:6c:14:f5:30: 2a:f8:ec:48:2b:e2:c1:6a:b4:5a:7e:5b:a3:26:4a:23:ed:0e: 65:eb:0c:15 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUF7qLRuYIsKxK1SIka6Bd6b2hTmQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MDkxNDAxMTczMloX DTI1MDkxMzAxMjIzMlowMzExMC8GA1UEAxMoMzVBQjE5RjQ2QjRBNDkxOTI5MDc2 OUM0RDE1N0I5OEQ5M0VCQjk3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQUl9E0RJKmcJ3hsYfyPb0XR82c77f57o+0mCh26OtlCNeb4FV3+Upo8a1Q kGJxEPWTzbAIBxNCvNmqfUKazwboqK/HftqSyKNPkYKUwwD2BNybz/Ri2JMPoBNt G1YX1fP/sKM6PCP7HNBZrd7KvekRIwqsNRF39ksuntC9U/KFD8Ec1bRU68h/nKXg Ew9eI8ZyGAzycM8dMvHPTE8ND7T4TJ28wFgj3WGs40ixcULdfny0OX6o1b5+PiJr FmcEqykzk1Y/rpdz9BYwxMlfmAfou/eOJuozG8++j67ge/BMKW/wadfhEo6tfOqB 3bxcE/1KivgkWjnKRykExvdP0F8CAwEAAaOCAeYwggHiMB0GA1UdDgQWBBQ1qxn0 a0pJGSkHacTRV7mNk+u5djAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MmUzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnEwEwDQYJKoZIhvcNAQEL BQADggEBAHTEzCBy/WEBk6DOOXS6ZUL7boq+8watyg0ceeiyxtXkjXIRpuv5W+yE Amn7w0DEz0R7VlV5Jc8NW0txjVSPk8uYgND1q4G2FHT2CeXJMljP9tvhuwcHk3X4 UQz421Q+61axDwhby9nIhmJT6QsuvXm09+Z43wbVBerr7ysud9YDn0d+pKVIhIc4 hXtQXSkWqZS6gCM8p99ME/ZY4XkVlvVQLfBLNVLNQRGMarQVEUH6Xzuc4pZ0snjd 96nUxZTm8P5jET5OMX2O29w3QSEh+v4B2P70PCzua2kZe0E6lze9n0Q/Pb9ibBT1 MCr47Egr4sFqtFp+W6MmSiPtDmXrDBU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org