$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa File: 3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa (raw, json) Hash identifier: nhKW/U2mQE9hiEStWRXIlwCa4HYKtRhd1iwW6bvRww4= Subject key identifier: 3E:CB:5F:46:07:44:5B:7C:E3:74:A6:94:22:E6:F7:D5:58:C2:E0:A1 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 7767A36D0F5EAF146BE02550343CDACB7AE6587F Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa Signing time: Wed 06 Dec 2023 17:32:50 +0000 ROA not before: Wed 06 Dec 2023 17:27:50 +0000 ROA not after: Wed 04 Dec 2024 17:32:50 +0000 asID: 137443 IP address blocks: 103.193.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 12:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:67:a3:6d:0f:5e:af:14:6b:e0:25:50:34:3c:da:cb:7a:e6:58:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Dec 6 17:27:50 2023 GMT Not After : Dec 4 17:32:50 2024 GMT Subject: CN=3ECB5F4607445B7CE374A69422E6F7D558C2E0A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:21:f7:a2:b6:5d:1c:bb:97:8d:fb:4d:f0:ad: 2e:c7:b0:3c:7a:9a:c3:dc:e1:08:85:8e:80:e2:a9: 5f:a0:59:26:45:f8:ad:4c:4d:6b:31:16:66:95:dc: 9b:d0:6b:9a:b4:d5:df:8f:3c:36:c9:6f:2f:7b:f1: 8a:03:6f:5c:4b:df:47:d8:5c:3f:51:5a:91:7d:f4: 21:4d:d1:1a:79:00:25:e3:97:25:73:a1:9b:58:b0: cf:76:13:ff:54:07:85:a5:fc:7d:d1:65:00:c6:06: f4:8c:b5:8c:fc:d8:b9:29:c6:e9:df:97:b8:38:e7: 6a:b2:69:35:2b:85:f7:67:05:d5:87:01:aa:e3:f1: 36:d9:44:24:91:05:c5:2f:be:a9:f7:14:59:6d:ed: 7b:4c:16:03:79:8d:a0:cf:11:bb:57:38:a7:7b:8f: 54:48:67:77:68:1c:12:16:69:3f:03:01:b6:82:60: 38:44:2a:62:5d:95:88:1d:dc:d2:18:30:60:35:6e: 50:82:ac:00:0b:ad:e1:da:b8:14:8f:e2:5b:2c:a0: 54:a0:16:f3:60:92:24:5c:b9:e9:c3:01:c5:47:cf: 95:82:f9:53:3b:f3:ec:c3:29:fe:86:de:6c:75:68: f7:78:1e:9c:b1:08:cc:ec:c2:bd:4a:e5:99:60:77: fd:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:CB:5F:46:07:44:5B:7C:E3:74:A6:94:22:E6:F7:D5:58:C2:E0:A1 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.128.0/24 Signature Algorithm: sha256WithRSAEncryption ae:c6:14:67:b2:f2:b5:cf:1e:20:72:4b:87:65:a4:5d:65:05: 07:58:2f:4d:3d:79:5e:3e:af:22:3c:b0:07:b7:72:17:ec:ac: 43:ba:83:05:88:87:b4:60:0f:de:fe:1c:33:06:87:3f:91:71: e5:80:4f:83:46:23:e1:ed:2c:27:39:60:df:07:43:0c:aa:ef: 7e:58:56:4a:8d:2c:1b:43:27:b9:d8:33:92:19:a4:df:05:44: a1:01:6c:70:75:c3:7d:2f:03:8d:e2:67:5b:d7:b0:0c:8d:e2: 83:83:c1:44:5e:0c:4f:7e:3d:5d:d8:15:c3:5e:8b:b1:3f:94: 36:92:eb:cf:bc:23:9d:2b:b6:8b:cf:92:96:a4:48:b7:32:64: cc:5b:13:ec:c6:69:ff:27:d6:3e:7b:4c:de:cc:40:a9:44:95: 17:11:4e:e6:85:54:e4:08:7c:97:e4:43:57:52:5a:06:d8:21: 3e:48:fb:b5:69:a1:93:2b:42:f8:00:3b:4b:4b:7d:41:3a:19: 14:ee:8f:be:1a:7a:9c:74:b0:62:7c:8a:26:45:a0:a2:87:6a: 3d:b7:64:20:4d:ca:ef:c8:80:bc:ef:3a:2d:ca:68:d7:e9:25: 3d:4c:2c:5e:a7:60:f8:70:58:50:83:63:ec:45:55:cb:d1:40: f0:57:a6:a3 -----BEGIN CERTIFICATE----- MIIE+zCCA+OgAwIBAgIUd2ejbQ9erxRr4CVQNDzay3rmWH8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTIzMTIwNjE3Mjc1MFoX DTI0MTIwNDE3MzI1MFowMzExMC8GA1UEAxMoM0VDQjVGNDYwNzQ0NUI3Q0UzNzRB Njk0MjJFNkY3RDU1OEMyRTBBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOYh96K2XRy7l437TfCtLsewPHqaw9zhCIWOgOKpX6BZJkX4rUxNazEWZpXc m9BrmrTV3488NslvL3vxigNvXEvfR9hcP1FakX30IU3RGnkAJeOXJXOhm1iwz3YT /1QHhaX8fdFlAMYG9Iy1jPzYuSnG6d+XuDjnarJpNSuF92cF1YcBquPxNtlEJJEF xS++qfcUWW3te0wWA3mNoM8Ru1c4p3uPVEhnd2gcEhZpPwMBtoJgOEQqYl2ViB3c 0hgwYDVuUIKsAAut4dq4FI/iWyygVKAW82CSJFy56cMBxUfPlYL5Uzvz7MMp/obe bHVo93genLEIzOzCvUrlmWB3/WMCAwEAAaOCAe4wggHqMB0GA1UdDgQWBBQ+y19G B0RbfON0ppQi5vfVWMLgoTAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzIzODJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM0MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfBgDANBgkq hkiG9w0BAQsFAAOCAQEArsYUZ7Lytc8eIHJLh2WkXWUFB1gvTT15Xj6vIjywB7dy F+ysQ7qDBYiHtGAP3v4cMwaHP5Fx5YBPg0Yj4e0sJzlg3wdDDKrvflhWSo0sG0Mn udgzkhmk3wVEoQFscHXDfS8DjeJnW9ewDI3ig4PBRF4MT349XdgVw16LsT+UNpLr z7wjnSu2i8+SlqRItzJkzFsT7MZp/yfWPntM3sxAqUSVFxFO5oVU5Ah8l+RDV1Ja BtghPkj7tWmhkytC+AA7S0t9QToZFO6Pvhp6nHSwYnyKJkWgoodqPbdkIE3K78iA vO86Lcpo1+klPUwsXqdg+HBYUINj7EVVy9FA8Femow== -----END CERTIFICATE-----Generated at Thu May 2 13:56:24 2024 by rpki-client on console-ams.rpki-client.org