$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133312e302f32342d3234203d3e2039333132.roa File: 3130332e3139332e3133312e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: hcTTvlwOQ8mEYs87ZpBD+VvsUWR3jQz1lVEDv0L/QyU= Subject key identifier: CE:6A:AD:E1:CE:ED:3B:89:4C:3A:CD:00:1B:AA:E9:2A:3A:92:1C:67 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 23698ECA9F1A411B65BAC725C00FB2BE3C84B430 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133312e302f32342d3234203d3e2039333132.roa Signing time: Thu 12 Oct 2023 16:10:36 +0000 ROA not before: Thu 12 Oct 2023 16:05:36 +0000 ROA not after: Thu 10 Oct 2024 16:10:36 +0000 asID: 9312 IP address blocks: 103.193.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 13:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:69:8e:ca:9f:1a:41:1b:65:ba:c7:25:c0:0f:b2:be:3c:84:b4:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Oct 12 16:05:36 2023 GMT Not After : Oct 10 16:10:36 2024 GMT Subject: CN=CE6AADE1CEED3B894C3ACD001BAAE92A3A921C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fb:cf:b5:cc:67:62:37:6c:52:4e:56:13:fb: 2a:0c:0f:f1:3a:78:17:13:57:e3:8c:77:4f:01:97: 01:12:46:e8:1d:cd:f8:ed:99:6b:7a:36:dd:cd:57: 8d:cd:5b:00:00:da:c3:7a:cc:70:b5:7f:41:72:81: 49:1b:e1:6b:2b:42:40:bd:b0:47:79:2c:f7:60:db: 74:2c:fb:6a:f7:fc:a5:c9:d8:0e:f3:40:5a:fe:25: 64:67:f9:ca:8b:5a:5f:85:af:1e:ec:02:06:d6:c3: 49:24:a8:9d:59:ad:52:08:88:0c:50:0f:1b:9f:97: 60:43:3b:52:e3:94:dc:a8:06:8a:13:0f:78:cb:22: 7a:e8:1a:f9:7e:2f:3c:a1:41:8a:f8:39:c9:ad:77: be:99:c0:c0:ef:eb:eb:5d:6d:fb:90:86:50:dd:bf: 01:56:8a:6c:84:fc:ef:8d:54:97:1f:67:06:83:e1: 48:66:c8:fe:e2:b6:e6:99:19:ff:e0:d6:7e:6d:b4: e6:48:72:22:f4:d3:d6:31:8e:8f:27:f1:77:e2:a8: 10:a8:c3:a3:01:db:84:dd:22:da:96:db:a3:39:91: 55:58:09:8d:eb:ea:57:9f:b2:cd:79:99:5d:f8:43: 02:9e:fe:2b:a6:5d:f5:95:e2:0a:91:e8:1f:44:09: 80:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6A:AD:E1:CE:ED:3B:89:4C:3A:CD:00:1B:AA:E9:2A:3A:92:1C:67 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133312e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.131.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:37:0a:97:eb:aa:5e:41:69:d2:1c:38:68:73:bb:d4:42:cb: 2f:96:d5:b3:96:15:50:73:a5:c2:4a:df:5c:d9:ea:26:d3:3f: 16:7a:12:4e:b5:8a:44:0a:b9:f0:22:d9:45:74:3d:c4:fd:48: 12:64:d4:29:bd:d7:5a:ee:fe:25:55:5a:45:a5:9b:95:fa:d9: 32:39:33:eb:9e:8f:d3:f0:6f:fa:48:b9:6e:57:0b:48:f5:2d: c8:28:4b:3e:44:9f:42:ae:07:51:0c:c2:85:42:1d:33:fd:94: bf:1c:70:27:93:59:1e:c7:a5:1b:ad:6f:3b:6f:56:26:dd:2e: c0:a3:75:c4:a8:0a:b7:48:b9:0c:a0:9b:1e:e4:d1:70:4c:95: ff:79:76:80:67:90:96:51:3f:42:28:41:53:f1:46:0b:8c:bd: a9:c8:73:e1:c2:a9:b2:75:ff:65:31:16:f5:27:17:d2:b7:c5: cc:29:a8:0d:26:13:ae:c2:65:bd:8d:7a:91:d9:4e:98:68:b0: 51:c2:43:0d:15:3a:2a:be:7c:e8:47:e6:0d:02:ef:65:9f:3e: d3:c6:14:d2:08:5a:c8:66:14:9d:9c:34:10:ed:1e:1c:a8:ee: a0:4f:a0:2e:3f:63:3a:fd:ea:94:c3:71:01:13:ce:48:23:2b: 8c:5d:c9:01 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUI2mOyp8aQRtlusclwA+yvjyEtDAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTIzMTAxMjE2MDUzNloX DTI0MTAxMDE2MTAzNlowMzExMC8GA1UEAxMoQ0U2QUFERTFDRUVEM0I4OTRDM0FD RDAwMUJBQUU5MkEzQTkyMUM2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANz7z7XMZ2I3bFJOVhP7KgwP8Tp4FxNX44x3TwGXARJG6B3N+O2Za3o23c1X jc1bAADaw3rMcLV/QXKBSRvhaytCQL2wR3ks92DbdCz7avf8pcnYDvNAWv4lZGf5 yotaX4WvHuwCBtbDSSSonVmtUgiIDFAPG5+XYEM7UuOU3KgGihMPeMsieuga+X4v PKFBivg5ya13vpnAwO/r611t+5CGUN2/AVaKbIT8741Ulx9nBoPhSGbI/uK25pkZ /+DWfm205khyIvTT1jGOjyfxd+KoEKjDowHbhN0i2pbbozmRVVgJjevqV5+yzXmZ XfhDAp7+K6Zd9ZXiCpHoH0QJgMMCAwEAAaOCAeowggHmMB0GA1UdDgQWBBTOaq3h zu07iUw6zQAbqukqOpIcZzAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzMzMTJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8GDMA0GCSqGSIb3 DQEBCwUAA4IBAQCdNwqX66peQWnSHDhoc7vUQssvltWzlhVQc6XCSt9c2eom0z8W ehJOtYpECrnwItlFdD3E/UgSZNQpvdda7v4lVVpFpZuV+tkyOTPrno/T8G/6SLlu VwtI9S3IKEs+RJ9CrgdRDMKFQh0z/ZS/HHAnk1kex6UbrW87b1Ym3S7Ao3XEqAq3 SLkMoJse5NFwTJX/eXaAZ5CWUT9CKEFT8UYLjL2pyHPhwqmydf9lMRb1JxfSt8XM KagNJhOuwmW9jXqR2U6YaLBRwkMNFToqvnzoR+YNAu9lnz7TxhTSCFrIZhSdnDQQ 7R4cqO6gT6AuP2M6/eqUw3EBE85IIyuMXckB -----END CERTIFICATE-----Generated at Sat May 25 12:02:55 2024 by rpki-client on console-ams.rpki-client.org