$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa File: 3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa (raw, json) Hash identifier: 7Wq2I+eG+i0crt18gB8fjrpeNgtc2h87eRDDsvP4ByQ= Subject key identifier: B8:F3:45:00:7C:0C:66:63:D6:1B:0B:5D:AC:14:4B:E1:73:BB:CA:60 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 4F9CA40A7F77AB88B7A39C5F8ED1B927E9AB68C9 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa Signing time: Wed 06 Nov 2024 18:22:05 +0000 ROA not before: Wed 06 Nov 2024 18:17:05 +0000 ROA not after: Wed 05 Nov 2025 18:22:05 +0000 asID: 137443 IP address blocks: 103.193.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 16:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:9c:a4:0a:7f:77:ab:88:b7:a3:9c:5f:8e:d1:b9:27:e9:ab:68:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Nov 6 18:17:05 2024 GMT Not After : Nov 5 18:22:05 2025 GMT Subject: CN=B8F345007C0C6663D61B0B5DAC144BE173BBCA60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ca:0e:64:05:f2:3b:4b:19:d5:d7:e5:e7:f8: bc:f0:9c:dd:54:6b:6b:e0:3c:0c:51:e4:4b:f2:35: 20:88:d6:cd:d2:79:7c:fc:6e:5d:5d:6e:55:0d:7f: b9:24:c2:c9:f6:5b:41:01:80:56:6c:22:1c:eb:e0: b0:15:e4:2e:ce:11:1e:20:fa:7e:bc:d7:03:c0:e6: c4:b1:5e:cc:e8:f3:54:8b:0e:e1:fb:67:bb:15:e8: ad:b7:05:0a:5b:6b:c7:12:62:f8:a2:41:12:2e:9a: 7e:7a:b6:8a:2e:87:ae:99:66:03:06:d0:56:db:4c: 89:44:df:61:7a:5e:94:d4:8c:75:d8:e8:b6:09:63: af:b4:be:65:c7:93:ac:8b:1d:0a:83:5e:59:66:17: 4f:bf:bd:47:7e:ce:ae:88:b6:b7:40:4d:7b:ef:73: 9d:d9:e1:8b:0b:da:9f:d3:c4:8b:ea:e9:46:bb:94: 51:5a:c3:00:26:44:df:4c:26:55:1f:64:5f:68:bb: 66:1f:48:54:dc:7a:38:4f:8e:04:8b:ff:5a:89:5e: 07:5c:d0:d0:ec:43:f7:29:d6:7e:6b:a3:9a:d7:a9: a6:6b:06:86:0a:ce:67:0f:6f:72:3d:7f:b6:04:4c: 4a:ba:07:42:b7:0c:0b:c7:77:1d:c3:6c:2c:87:a3: 43:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F3:45:00:7C:0C:66:63:D6:1B:0B:5D:AC:14:4B:E1:73:BB:CA:60 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.128.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:e9:d0:f0:0c:10:cb:f9:83:ff:51:d6:1c:c0:a1:c0:c9:f0: 00:d3:dc:5a:d8:6d:60:1d:e5:19:ee:0b:c9:35:0f:75:6b:66: d1:ae:b9:72:ab:5c:e6:7b:b4:2c:9a:35:2f:b2:8c:30:27:39: e3:2b:60:b4:0b:4c:4c:e8:d6:5f:76:cb:98:85:6f:75:98:66: 10:1b:0e:f1:55:f7:24:75:0a:81:cd:2e:e5:f5:b2:f1:07:e7: d4:34:49:e0:16:38:80:25:6e:fe:68:1e:98:62:ec:78:ff:2f: 3e:5f:c5:53:18:82:cc:c7:31:a8:0c:94:62:70:cd:0c:f0:2c: 4c:4e:d1:cd:b6:dd:69:ec:61:95:c0:65:86:af:81:94:6a:60: 12:16:f5:d9:8d:d0:b5:e3:eb:7b:2b:e9:a5:17:3a:fd:19:66: d6:17:e8:55:92:89:4a:bd:95:df:88:1a:67:1c:b2:23:70:e5: 64:47:7b:94:27:81:8a:4f:b9:4d:7f:dd:a8:29:e2:98:8f:ba: b5:c9:3f:89:33:dd:0d:02:2b:bd:5e:f9:1e:c1:f0:3f:23:21: ed:b3:bb:9a:4b:c6:d1:f0:79:58:26:18:c7:3f:2d:89:18:a9: 5e:35:96:ea:0d:ea:2c:fc:9c:65:5c:35:34:f7:63:c4:02:83: 93:90:82:f1 -----BEGIN CERTIFICATE----- MIIE+zCCA+OgAwIBAgIUT5ykCn93q4i3o5xfjtG5J+mraMkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MTEwNjE4MTcwNVoX DTI1MTEwNTE4MjIwNVowMzExMC8GA1UEAxMoQjhGMzQ1MDA3QzBDNjY2M0Q2MUIw QjVEQUMxNDRCRTE3M0JCQ0E2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANbKDmQF8jtLGdXX5ef4vPCc3VRra+A8DFHkS/I1IIjWzdJ5fPxuXV1uVQ1/ uSTCyfZbQQGAVmwiHOvgsBXkLs4RHiD6frzXA8DmxLFezOjzVIsO4ftnuxXorbcF CltrxxJi+KJBEi6afnq2ii6HrplmAwbQVttMiUTfYXpelNSMddjotgljr7S+ZceT rIsdCoNeWWYXT7+9R37Oroi2t0BNe+9zndnhiwvan9PEi+rpRruUUVrDACZE30wm VR9kX2i7Zh9IVNx6OE+OBIv/WoleB1zQ0OxD9ynWfmujmteppmsGhgrOZw9vcj1/ tgRMSroHQrcMC8d3HcNsLIejQ7ECAwEAAaOCAe4wggHqMB0GA1UdDgQWBBS480UA fAxmY9YbC12sFEvhc7vKYDAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzIzODJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM0MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfBgDANBgkq hkiG9w0BAQsFAAOCAQEAD+nQ8AwQy/mD/1HWHMChwMnwANPcWthtYB3lGe4LyTUP dWtm0a65cqtc5nu0LJo1L7KMMCc54ytgtAtMTOjWX3bLmIVvdZhmEBsO8VX3JHUK gc0u5fWy8Qfn1DRJ4BY4gCVu/mgemGLseP8vPl/FUxiCzMcxqAyUYnDNDPAsTE7R zbbdaexhlcBlhq+BlGpgEhb12Y3QtePreyvppRc6/Rlm1hfoVZKJSr2V34gaZxyy I3DlZEd7lCeBik+5TX/dqCnimI+6tck/iTPdDQIrvV75HsHwPyMh7bO7mkvG0fB5 WCYYxz8tiRipXjWW6g3qLPycZVw1NPdjxAKDk5CC8Q== -----END CERTIFICATE-----Generated at Thu Nov 21 16:17:29 2024 by rpki-client on console-fra.rpki-client.org