$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e2036313334.roa File: 3130332e3139332e3132382e302f32342d3234203d3e2036313334.roa (raw, json) Hash identifier: WfSrR5DYs/Gs9Ga24GRRtj2f8TQVcYq+PYVRGksgZTM= Subject key identifier: F1:D7:B0:EE:28:CF:73:22:61:F8:0E:C8:62:96:51:53:69:A3:C3:59 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 11F42EFC28074E76B2E79612410925BDAE716D2B Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e2036313334.roa Signing time: Wed 06 Dec 2023 17:32:50 +0000 ROA not before: Wed 06 Dec 2023 17:27:50 +0000 ROA not after: Wed 04 Dec 2024 17:32:50 +0000 asID: 6134 IP address blocks: 103.193.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 13:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f4:2e:fc:28:07:4e:76:b2:e7:96:12:41:09:25:bd:ae:71:6d:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Dec 6 17:27:50 2023 GMT Not After : Dec 4 17:32:50 2024 GMT Subject: CN=F1D7B0EE28CF732261F80EC86296515369A3C359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8e:f3:50:d2:47:19:5c:93:38:8a:67:aa:59: e2:d3:53:6d:f9:38:9a:dc:16:91:ac:c9:7b:54:1f: 84:ca:e5:4d:a5:aa:51:f5:6e:59:bc:f9:5d:5c:98: 74:a2:f2:64:ca:1d:78:a3:23:eb:15:62:c1:fe:dd: 25:0b:0f:d4:79:55:c8:49:26:61:bf:8c:1d:ef:6a: 31:47:2f:1d:63:4b:af:f9:10:10:35:9c:fb:d7:b2: 40:46:51:57:0e:d3:ed:d5:f7:ab:b1:bc:94:9e:1a: 8d:d4:c5:96:a5:94:38:98:ae:38:dc:33:97:19:a3: 2d:de:fb:56:e2:ca:7a:59:0f:12:ad:19:9d:63:4f: be:bd:03:e8:14:4e:1d:62:ea:d5:4e:4e:66:b9:8b: 0e:2a:21:3c:0a:5b:50:80:28:da:e7:6f:63:9a:d7: 42:c6:31:83:35:39:f2:aa:40:5d:dc:e4:8a:6c:2a: fe:54:42:08:de:e7:f7:1d:63:db:0e:d7:34:06:9a: 26:39:37:e2:65:12:58:9d:a7:13:99:ee:d8:d9:f0: f1:ba:1b:17:aa:e7:ea:89:7e:d6:31:1a:79:26:9f: 0a:b4:09:42:8a:34:e2:70:6d:9e:d1:ce:9a:61:10: 82:52:f7:c6:05:05:ae:56:b6:e1:b5:2f:80:0d:b6: f0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D7:B0:EE:28:CF:73:22:61:F8:0E:C8:62:96:51:53:69:A3:C3:59 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e2036313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.128.0/24 Signature Algorithm: sha256WithRSAEncryption 63:b7:9e:ef:98:b3:ee:91:2a:2b:e6:27:1a:94:1c:72:f2:b3: 7b:dd:a1:73:99:31:ac:ae:25:fe:53:8a:5c:ac:37:47:d8:3c: 14:ef:51:23:01:ab:a0:88:83:51:9a:0b:c5:26:7c:79:3a:bb: 2e:eb:44:0c:c3:20:a9:7a:ac:b3:f3:e7:b5:05:47:1b:90:a3: 15:46:eb:c6:78:da:a5:2d:d9:dd:6f:d7:b2:bc:70:8e:10:57: 3f:fc:75:00:f1:f4:3f:b1:b5:91:d6:44:5a:89:27:8d:67:91: 3a:d0:b4:71:e3:d3:52:d5:4a:21:72:21:d8:15:cb:4e:f0:bb: b8:1b:f5:a6:2a:a8:ce:f7:e5:f4:f8:ee:8f:c4:4b:a1:9b:3b: b0:e7:25:6a:73:f9:ce:7d:c2:db:a2:e1:db:de:59:2e:4d:7a: 93:96:67:c0:79:f1:e1:2f:2b:7c:f6:f0:5a:cb:00:80:9c:c2: af:ea:8b:9f:19:3e:ff:1f:a9:6f:0d:fc:1a:04:a6:78:54:dd: f6:e2:ca:43:6d:87:95:fd:05:fb:f8:da:4b:02:11:c9:7f:26: 6e:06:2d:7c:6e:63:d0:0a:78:e1:ae:04:c9:83:51:0c:7e:bc: c4:31:07:6d:83:e8:71:90:7d:41:0e:24:77:48:e7:5f:78:56: 04:f7:b6:55 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUEfQu/CgHTnay55YSQQklva5xbSswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTIzMTIwNjE3Mjc1MFoX DTI0MTIwNDE3MzI1MFowMzExMC8GA1UEAxMoRjFEN0IwRUUyOENGNzMyMjYxRjgw RUM4NjI5NjUxNTM2OUEzQzM1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOO81DSRxlckziKZ6pZ4tNTbfk4mtwWkazJe1QfhMrlTaWqUfVuWbz5XVyY dKLyZModeKMj6xViwf7dJQsP1HlVyEkmYb+MHe9qMUcvHWNLr/kQEDWc+9eyQEZR Vw7T7dX3q7G8lJ4ajdTFlqWUOJiuONwzlxmjLd77VuLKelkPEq0ZnWNPvr0D6BRO HWLq1U5OZrmLDiohPApbUIAo2udvY5rXQsYxgzU58qpAXdzkimwq/lRCCN7n9x1j 2w7XNAaaJjk34mUSWJ2nE5nu2Nnw8bobF6rn6ol+1jEaeSafCrQJQoo04nBtntHO mmEQglL3xgUFrla24bUvgA228G0CAwEAAaOCAeowggHmMB0GA1UdDgQWBBTx17Du KM9zImH4DshillFTaaPDWTAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzIzODJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM2MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8GAMA0GCSqGSIb3 DQEBCwUAA4IBAQBjt57vmLPukSor5icalBxy8rN73aFzmTGsriX+U4pcrDdH2DwU 71EjAaugiINRmgvFJnx5Orsu60QMwyCpeqyz8+e1BUcbkKMVRuvGeNqlLdndb9ey vHCOEFc//HUA8fQ/sbWR1kRaiSeNZ5E60LRx49NS1UohciHYFctO8Lu4G/WmKqjO 9+X0+O6PxEuhmzuw5yVqc/nOfcLbouHb3lkuTXqTlmfAefHhLyt89vBaywCAnMKv 6oufGT7/H6lvDfwaBKZ4VN324spDbYeV/QX7+NpLAhHJfyZuBi18bmPQCnjhrgTJ g1EMfrzEMQdtg+hxkH1BDiR3SOdfeFYE97ZV -----END CERTIFICATE-----Generated at Sat May 25 11:20:37 2024 by rpki-client on console-fra.rpki-client.org