$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133312e302f32342d3234203d3e2039333132.roa File: 3130332e3139332e3133312e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: tWRnU+tdEJIxCaDFfPwNfAoTd6uvr3uzZ5QAJ9M+Zng= Subject key identifier: E7:DE:7D:20:87:3D:70:56:83:2C:4C:8E:16:40:CD:34:01:12:B5:F1 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 5918C8F27A9815E9758CEE43E47FCE156C47E388 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133312e302f32342d3234203d3e2039333132.roa Signing time: Sat 14 Sep 2024 01:22:31 +0000 ROA not before: Sat 14 Sep 2024 01:17:31 +0000 ROA not after: Sat 13 Sep 2025 01:22:31 +0000 asID: 9312 IP address blocks: 103.193.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:18:c8:f2:7a:98:15:e9:75:8c:ee:43:e4:7f:ce:15:6c:47:e3:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Sep 14 01:17:31 2024 GMT Not After : Sep 13 01:22:31 2025 GMT Subject: CN=E7DE7D20873D7056832C4C8E1640CD340112B5F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f5:b4:ef:1b:7b:e5:80:5a:24:d1:6f:43:e5: 90:ff:9f:15:4e:d7:cd:45:f7:4f:60:67:67:58:b8: 3a:9b:89:1f:63:07:2c:55:6b:0a:78:e3:ff:df:fd: f2:a9:c0:ae:2d:cb:8e:cc:c3:0c:30:c6:83:35:d1: 16:ac:7f:91:72:f3:2a:18:87:41:00:13:de:dd:a8: 2c:da:a3:fc:1f:85:33:18:70:8a:ce:cb:ba:c1:cb: 5b:10:7a:8a:69:71:ca:da:03:2d:ab:af:4b:95:89: 5a:55:c1:5c:25:4d:ab:30:3b:b9:aa:f9:3c:1f:2a: 73:6d:c0:d5:61:3a:e1:ce:7f:4d:5c:d0:4a:20:88: 98:ce:ef:78:fd:32:4b:ca:75:f5:95:ef:19:1e:b8: 49:3c:60:4d:b6:79:e6:9e:79:ba:57:c6:1d:1c:1a: b5:2f:b0:da:a9:03:fc:7d:5b:80:d8:5f:f8:93:cb: 9d:ac:58:0b:12:09:ac:96:a7:98:cf:c7:7e:7f:a9: a3:8e:76:0e:38:30:82:af:06:40:10:38:d6:56:94: e9:51:0e:75:0e:06:ae:17:54:43:0b:23:1a:02:18: 28:c2:c2:b9:4d:96:97:d4:6c:84:49:be:a5:d7:48: 66:16:46:5f:5c:9d:80:a3:dc:2a:71:6b:7b:31:59: 92:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DE:7D:20:87:3D:70:56:83:2C:4C:8E:16:40:CD:34:01:12:B5:F1 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133312e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.131.0/24 Signature Algorithm: sha256WithRSAEncryption 26:7d:b5:ae:4b:58:e4:83:99:08:15:c0:46:be:fd:e8:e8:f1: 75:75:44:7e:be:79:23:8d:28:50:d1:52:fa:f5:c1:ac:27:40: e5:af:bf:ba:dc:7a:dc:68:a6:ba:1f:e2:9d:c5:01:40:ff:36: 7c:87:12:33:0c:69:b5:69:5b:96:e2:ce:a1:da:07:55:e7:f9: 8f:9e:3b:cd:0e:68:89:c4:6e:62:96:39:83:dc:44:59:c6:57: d3:94:cb:87:6d:f0:aa:fc:f4:8c:75:5a:26:18:ae:1f:dd:88: 7d:a4:f5:24:b8:6b:4f:8c:4b:7d:e1:4f:68:5b:79:00:2a:0c: 5a:d6:d2:ef:64:55:7d:d4:d1:10:41:48:59:4c:cf:cd:fe:e4: ab:5a:4d:dd:fc:10:df:4e:86:bc:16:16:0c:9c:9d:1f:7d:5c: e8:ae:ee:4f:bb:d1:af:9b:0b:06:3c:01:f8:62:ba:79:51:c7: 51:22:17:c0:11:7e:14:9b:c0:87:0c:43:47:50:b0:ee:42:91: 5c:ee:bb:f1:58:c3:c4:7d:d0:55:ea:c7:40:4b:aa:31:25:80: 10:69:b9:5d:43:6f:8c:41:c9:0c:4d:62:b1:25:be:c9:0c:5e: a6:69:f9:fb:04:8e:8a:ac:0f:c8:2a:ec:17:d9:6e:2e:37:e3: 45:f4:a2:d3 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUWRjI8nqYFel1jO5D5H/OFWxH44gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MDkxNDAxMTczMVoX DTI1MDkxMzAxMjIzMVowMzExMC8GA1UEAxMoRTdERTdEMjA4NzNENzA1NjgzMkM0 QzhFMTY0MENEMzQwMTEyQjVGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK31tO8be+WAWiTRb0PlkP+fFU7XzUX3T2BnZ1i4OpuJH2MHLFVrCnjj/9/9 8qnAri3LjszDDDDGgzXRFqx/kXLzKhiHQQAT3t2oLNqj/B+FMxhwis7LusHLWxB6 imlxytoDLauvS5WJWlXBXCVNqzA7uar5PB8qc23A1WE64c5/TVzQSiCImM7veP0y S8p19ZXvGR64STxgTbZ55p55ulfGHRwatS+w2qkD/H1bgNhf+JPLnaxYCxIJrJan mM/Hfn+po452Djgwgq8GQBA41laU6VEOdQ4GrhdUQwsjGgIYKMLCuU2Wl9RshEm+ pddIZhZGX1ydgKPcKnFrezFZkrsCAwEAAaOCAeowggHmMB0GA1UdDgQWBBTn3n0g hz1wVoMsTI4WQM00ARK18TAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzMzMTJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8GDMA0GCSqGSIb3 DQEBCwUAA4IBAQAmfbWuS1jkg5kIFcBGvv3o6PF1dUR+vnkjjShQ0VL69cGsJ0Dl r7+63HrcaKa6H+KdxQFA/zZ8hxIzDGm1aVuW4s6h2gdV5/mPnjvNDmiJxG5iljmD 3ERZxlfTlMuHbfCq/PSMdVomGK4f3Yh9pPUkuGtPjEt94U9oW3kAKgxa1tLvZFV9 1NEQQUhZTM/N/uSrWk3d/BDfToa8FhYMnJ0ffVzoru5Pu9GvmwsGPAH4Yrp5UcdR IhfAEX4Um8CHDENHULDuQpFc7rvxWMPEfdBV6sdAS6oxJYAQabldQ2+MQckMTWKx Jb7JDF6mafn7BI6KrA/IKuwX2W4uN+NF9KLT -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org