$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa File: 3130332e38382e34342e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: +eDM5ZsnYy/K8Vcs+UsJ0vBbFc9QK/+4cHvdTH8CcFY= Subject key identifier: 4A:DC:12:3F:39:87:3D:3F:49:57:CA:79:D9:CB:29:23:BA:93:B1:EF Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 3EBFA6DB691B4861EEAF8DDB6F7AAD6825D904DB Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa Signing time: Sat 14 Sep 2024 01:22:31 +0000 ROA not before: Sat 14 Sep 2024 01:17:31 +0000 ROA not after: Sat 13 Sep 2025 01:22:31 +0000 asID: 4785 IP address blocks: 103.88.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:bf:a6:db:69:1b:48:61:ee:af:8d:db:6f:7a:ad:68:25:d9:04:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Sep 14 01:17:31 2024 GMT Not After : Sep 13 01:22:31 2025 GMT Subject: CN=4ADC123F39873D3F4957CA79D9CB2923BA93B1EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:f5:c4:3e:2c:47:3c:9e:c9:05:82:10:f8: 02:f9:7b:2a:cb:7c:c1:a9:f6:fc:33:b2:4e:14:d6: d7:fd:bf:0b:fb:17:dd:01:84:ab:aa:8e:75:0b:d4: d6:e0:c8:a2:d4:4f:14:be:c5:71:fb:e9:f6:2a:80: 70:cf:26:9a:ca:4a:5a:0e:2a:5e:a9:e1:b7:af:e4: 15:ae:5f:55:25:ce:d5:4a:95:59:94:95:28:2e:83: 2e:b1:a8:ce:06:0d:c1:d3:7d:f0:5f:65:b2:33:6c: 35:ba:a4:2e:51:fd:9b:01:cd:61:7a:1d:3c:db:27: 07:62:29:f9:2f:31:20:37:a4:b7:96:63:63:1d:ab: a6:1a:2a:46:ee:a0:fd:f5:be:de:32:95:b5:93:08: 2d:d4:29:37:8d:52:08:2b:0d:0a:7f:df:25:f2:a7: f3:91:7c:b1:e6:27:2f:dd:a9:ed:7a:29:13:45:7b: d5:cb:77:80:3f:ad:27:39:a0:c9:77:54:84:66:ad: eb:64:f9:02:7d:43:17:cb:b9:6b:c9:35:98:60:7a: 67:ac:79:0f:41:ca:ba:44:c0:d6:76:04:d8:76:24: 4c:32:9e:1a:aa:91:6f:2c:8d:7f:67:ba:16:6b:4c: 5f:88:e7:a7:fe:68:de:70:a9:f6:de:93:82:d7:3a: bf:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:DC:12:3F:39:87:3D:3F:49:57:CA:79:D9:CB:29:23:BA:93:B1:EF X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.44.0/22 Signature Algorithm: sha256WithRSAEncryption 75:19:99:17:06:69:45:ef:ec:e8:33:67:0c:cd:88:fb:72:ab: fe:a3:ff:ab:d9:ee:a0:89:16:f7:92:18:fe:1e:d1:10:70:3f: 38:d9:8e:b8:52:d3:23:d5:50:fc:a2:c4:21:9e:78:af:7c:3e: 0e:4a:62:76:b5:ec:ee:f4:69:1e:1f:f2:d9:ca:1c:50:57:e2: 9a:df:ab:13:a9:c8:53:c4:fe:c0:1d:3d:34:93:ac:a7:7f:d8: f5:90:5f:4b:41:a2:e9:a4:3c:30:f4:a8:d9:8f:46:09:49:f9: 51:9a:dd:26:f4:61:4f:60:c3:13:dc:e6:09:89:d5:03:a3:71: 55:77:52:6a:47:29:ef:ca:04:f9:b8:63:ec:67:28:4f:be:25: b6:66:7d:13:b6:11:c4:41:61:f5:30:bc:39:eb:c3:40:16:67: fd:5c:05:a0:54:41:1b:ac:70:ca:ce:37:98:97:96:8c:b6:10: 23:3d:b6:d1:9d:a2:47:bb:08:4d:7f:d5:0e:92:77:71:96:5c: 37:6f:49:43:08:91:80:52:38:a9:8f:1b:fa:76:f3:42:15:cd: 64:a2:61:f9:3e:16:18:43:c5:83:a5:00:89:28:5d:e2:b7:12: 88:9b:3b:aa:af:38:bb:40:2a:41:4a:34:80:0f:24:74:55:d6: ae:52:c3:29 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUPr+m22kbSGHur43bb3qtaCXZBNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MDkxNDAxMTczMVoX DTI1MDkxMzAxMjIzMVowMzExMC8GA1UEAxMoNEFEQzEyM0YzOTg3M0QzRjQ5NTdD QTc5RDlDQjI5MjNCQTkzQjFFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0N9cQ+LEc8nskFghD4Avl7Kst8wan2/DOyThTW1/2/C/sX3QGEq6qOdQvU 1uDIotRPFL7Fcfvp9iqAcM8mmspKWg4qXqnht6/kFa5fVSXO1UqVWZSVKC6DLrGo zgYNwdN98F9lsjNsNbqkLlH9mwHNYXodPNsnB2Ip+S8xIDekt5ZjYx2rphoqRu6g /fW+3jKVtZMILdQpN41SCCsNCn/fJfKn85F8seYnL92p7XopE0V71ct3gD+tJzmg yXdUhGat62T5An1DF8u5a8k1mGB6Z6x5D0HKukTA1nYE2HYkTDKeGqqRbyyNf2e6 FmtMX4jnp/5o3nCp9t6Tgtc6v8cCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBRK3BI/ OYc9P0lXynnZyykjupOx7zAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzODM4MmUzNDM0MmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnWCwwDQYJKoZIhvcNAQEL BQADggEBAHUZmRcGaUXv7OgzZwzNiPtyq/6j/6vZ7qCJFveSGP4e0RBwPzjZjrhS 0yPVUPyixCGeeK98Pg5KYna17O70aR4f8tnKHFBX4prfqxOpyFPE/sAdPTSTrKd/ 2PWQX0tBoumkPDD0qNmPRglJ+VGa3Sb0YU9gwxPc5gmJ1QOjcVV3UmpHKe/KBPm4 Y+xnKE++JbZmfRO2EcRBYfUwvDnrw0AWZ/1cBaBUQRuscMrON5iXloy2ECM9ttGd oke7CE1/1Q6Sd3GWXDdvSUMIkYBSOKmPG/p280IVzWSiYfk+FhhDxYOlAIkoXeK3 EoibO6qvOLtAKkFKNIAPJHRV1q5Swyk= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:48 2024 by rpki-client on console-fra.rpki-client.org