$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132392e302f32342d3234203d3e2034373835.roa File: 3130332e3139332e3132392e302f32342d3234203d3e2034373835.roa (raw, json) Hash identifier: z33pDE1uVCQz/+rMUZxr2CrKllnXqcBIx2p2sSpgt1w= Subject key identifier: 25:BB:D0:8F:8E:8B:2D:CB:59:63:B6:85:51:B4:68:90:9C:92:F2:A0 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 1E8BEC0ECB06CDA7EC232D2E1A66D1919F263032 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132392e302f32342d3234203d3e2034373835.roa Signing time: Sat 14 Sep 2024 01:22:32 +0000 ROA not before: Sat 14 Sep 2024 01:17:32 +0000 ROA not after: Sat 13 Sep 2025 01:22:32 +0000 asID: 4785 IP address blocks: 103.193.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:8b:ec:0e:cb:06:cd:a7:ec:23:2d:2e:1a:66:d1:91:9f:26:30:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Sep 14 01:17:32 2024 GMT Not After : Sep 13 01:22:32 2025 GMT Subject: CN=25BBD08F8E8B2DCB5963B68551B468909C92F2A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:38:8f:a5:bc:3f:11:cd:3d:05:cd:56:b2:23: 4c:54:e9:51:a7:c1:28:eb:3c:ef:65:68:74:91:3a: 3d:8f:86:17:0f:49:66:69:ba:e5:24:91:85:3f:6a: 00:46:b1:32:88:06:0d:b9:d8:b7:48:17:48:02:ec: c5:f5:f9:67:ec:4e:02:ee:56:1a:46:13:79:1e:4f: c0:a1:0b:e9:a6:12:52:71:ed:19:b2:6b:44:2d:70: 72:35:ee:6c:07:f9:e0:60:2f:aa:31:e5:29:4d:12: 6f:2b:9d:a1:07:d1:be:d5:ac:2c:2f:98:ac:cf:9d: 31:17:59:9b:f9:e3:10:0b:bd:c1:f7:58:09:3f:06: 8d:45:ab:ec:26:73:95:a3:b3:2f:21:81:b3:1c:c5: bf:2b:cb:5e:cf:da:4b:db:fc:fc:2d:b5:c3:96:c0: ae:e0:0a:f2:32:82:5d:b4:6e:7a:52:55:a1:44:36: 4d:f8:67:64:02:0c:9a:5b:b0:dd:1b:55:b7:16:b2: 27:c4:59:f8:bf:0a:56:a3:54:a6:02:bc:ff:97:5b: 27:22:0c:8b:f5:5a:c9:53:5a:72:0f:0e:eb:26:1b: 59:5c:b0:26:d9:bb:fd:0d:8b:34:8e:95:37:38:86: 64:66:72:56:87:fe:96:82:f2:16:b5:fa:30:b6:9d: 1b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BB:D0:8F:8E:8B:2D:CB:59:63:B6:85:51:B4:68:90:9C:92:F2:A0 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132392e302f32342d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.129.0/24 Signature Algorithm: sha256WithRSAEncryption 53:f7:f9:d1:31:a9:67:46:5e:7c:74:27:6c:97:b9:85:94:35: 92:dc:9f:a2:f7:02:a1:bf:48:f7:74:8f:2c:ce:00:c5:2c:1d: 2f:32:39:9b:c4:fd:9d:3f:6d:6e:b1:bf:21:85:17:61:9a:48: b0:01:b7:23:d7:75:1e:d8:73:a6:c2:3b:89:a4:6e:6c:99:4b: 82:45:c1:69:b8:e4:fc:2f:d0:93:e0:34:6d:92:31:ea:c7:74: f0:b8:e6:7b:4b:ee:c7:f1:22:da:c9:a0:e2:92:30:95:43:6a: ef:6d:d9:0a:9b:6c:2b:84:14:75:ec:a7:fa:89:eb:e6:84:5c: 3d:01:d3:68:78:43:60:fe:1e:e6:d8:44:2f:cf:fa:5a:1b:23: 97:4a:0f:49:65:05:c5:ea:b9:36:9e:73:56:f5:90:ad:d7:68: 77:f2:ac:83:3d:1b:67:72:7e:bc:f0:36:dc:eb:17:64:96:02: fa:2e:8e:28:a1:1b:52:3b:65:71:94:bb:4b:e9:f6:6c:49:56: 83:74:c0:20:13:b0:f0:31:ae:dc:13:31:2a:4a:7d:fb:e4:c7: 7e:73:09:72:81:b5:df:4a:46:4d:4b:04:e6:35:52:cb:ad:87: 15:fa:14:0e:95:b3:d7:2d:31:48:3e:12:af:f0:8a:42:2c:bb: 2b:b1:1a:11 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUHovsDssGzafsIy0uGmbRkZ8mMDIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MDkxNDAxMTczMloX DTI1MDkxMzAxMjIzMlowMzExMC8GA1UEAxMoMjVCQkQwOEY4RThCMkRDQjU5NjNC Njg1NTFCNDY4OTA5QzkyRjJBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALk4j6W8PxHNPQXNVrIjTFTpUafBKOs872VodJE6PY+GFw9JZmm65SSRhT9q AEaxMogGDbnYt0gXSALsxfX5Z+xOAu5WGkYTeR5PwKEL6aYSUnHtGbJrRC1wcjXu bAf54GAvqjHlKU0SbyudoQfRvtWsLC+YrM+dMRdZm/njEAu9wfdYCT8GjUWr7CZz laOzLyGBsxzFvyvLXs/aS9v8/C21w5bAruAK8jKCXbRuelJVoUQ2TfhnZAIMmluw 3RtVtxayJ8RZ+L8KVqNUpgK8/5dbJyIMi/VayVNacg8O6yYbWVywJtm7/Q2LNI6V NziGZGZyVof+loLyFrX6MLadG2MCAwEAAaOCAeowggHmMB0GA1UdDgQWBBQlu9CP josty1ljtoVRtGiQnJLyoDAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzIzOTJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM0MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8GBMA0GCSqGSIb3 DQEBCwUAA4IBAQBT9/nRMalnRl58dCdsl7mFlDWS3J+i9wKhv0j3dI8szgDFLB0v MjmbxP2dP21usb8hhRdhmkiwAbcj13Ue2HOmwjuJpG5smUuCRcFpuOT8L9CT4DRt kjHqx3TwuOZ7S+7H8SLayaDikjCVQ2rvbdkKm2wrhBR17Kf6ievmhFw9AdNoeENg /h7m2EQvz/paGyOXSg9JZQXF6rk2nnNW9ZCt12h38qyDPRtncn688Dbc6xdklgL6 Lo4ooRtSO2VxlLtL6fZsSVaDdMAgE7DwMa7cEzEqSn375Md+cwlygbXfSkZNSwTm NVLLrYcV+hQOlbPXLTFIPhKv8IpCLLsrsRoR -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org