$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa File: 3130332e38382e34342e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: +yToZ7BGOFFxXGul3fg25yXDCi3mC/z+ay0bwq/Pphs= Subject key identifier: 1E:71:19:B6:FA:8C:ED:27:29:99:EC:F2:6E:FF:30:E3:19:2D:3A:26 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 619C10AAD5671245E85873C6BBB896A6AC77588D Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa Signing time: Thu 12 Oct 2023 16:10:36 +0000 ROA not before: Thu 12 Oct 2023 16:05:36 +0000 ROA not after: Thu 10 Oct 2024 16:10:36 +0000 asID: 4785 IP address blocks: 103.88.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 13:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:9c:10:aa:d5:67:12:45:e8:58:73:c6:bb:b8:96:a6:ac:77:58:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Oct 12 16:05:36 2023 GMT Not After : Oct 10 16:10:36 2024 GMT Subject: CN=1E7119B6FA8CED272999ECF26EFF30E3192D3A26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:06:dc:ba:3a:a4:0b:07:98:5c:81:8d:07:7e: 4e:fb:59:93:a5:a7:1c:d4:83:95:9e:80:f9:a7:48: 80:eb:8f:d5:60:7d:fe:e8:06:dd:f4:8c:34:e8:55: 0a:63:0e:60:7e:b7:09:5f:c7:15:7a:b8:34:68:3e: 9d:e2:72:b2:27:58:9e:9a:f7:d5:72:96:ad:1e:47: 9a:8f:60:d6:75:f3:fe:58:7c:26:b8:61:ef:76:f7: 6b:5b:b2:02:26:f1:9a:52:ee:50:c0:e9:0d:19:b4: f7:35:68:bf:34:9b:e4:a0:35:3b:d5:e8:a2:9c:a7: ff:3a:70:81:16:aa:23:14:c4:2f:b9:d9:dc:a0:4a: c3:6c:4a:cf:e0:82:69:df:e2:25:0a:81:31:e1:85: d5:fc:97:a0:ab:7f:1c:9a:ad:8d:70:21:9e:bb:67: 6b:0b:64:29:17:cf:f3:24:28:dc:d0:5d:45:84:54: 19:36:c1:81:9b:9f:d2:3f:f2:3e:5f:b4:e1:49:74: 76:f0:7e:9b:48:3f:b0:de:ff:11:e3:28:a3:3f:97: 85:f6:fc:73:55:ce:df:e7:47:a4:20:17:03:fc:82: 83:fa:10:fd:a0:24:32:09:66:1c:b1:48:8b:86:d2: 3f:47:25:4d:1a:df:6b:91:e1:b2:84:f9:94:97:c2: ee:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:71:19:B6:FA:8C:ED:27:29:99:EC:F2:6E:FF:30:E3:19:2D:3A:26 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.44.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:9f:a3:75:96:0d:4b:aa:98:71:95:c0:14:ce:ba:99:b2:c8: 0c:03:3e:96:18:11:82:60:04:71:af:fc:7b:25:f5:62:2d:c5: 5a:12:f3:6c:f9:c8:0e:ea:60:03:7b:df:35:25:35:37:c5:c9: dc:2f:bb:26:ed:89:51:98:6a:62:10:fb:6e:f6:39:20:53:a8: 9e:d0:77:c9:7c:af:93:67:bd:81:b2:fb:ef:4e:b6:3f:9b:6c: c4:34:a6:26:11:f6:8e:31:e8:e4:d8:48:5b:50:5d:29:0d:3a: 1c:10:8c:73:48:ad:6f:e3:c5:53:81:d8:0b:7e:dc:38:f9:7d: 88:3b:93:23:99:1b:98:09:f2:27:73:bc:a1:80:96:ea:59:5a: 86:95:71:9d:1b:0a:5c:43:6b:6f:11:4f:b4:fc:9c:e7:90:bd: e5:d3:5f:35:65:c9:1f:d0:9c:58:1f:fd:9e:dd:51:c9:1c:c5: 1d:60:7b:30:d4:29:60:14:fe:23:79:87:f6:12:09:f8:53:54: 26:62:43:1d:cb:6a:6f:93:cb:2d:11:99:84:9c:dc:8c:e6:c3: b5:ae:2c:11:7b:c6:cb:ef:83:6a:4e:2d:22:f3:85:3f:49:cf: 98:3e:ac:88:81:4a:6e:10:40:ee:d7:12:56:26:b1:9b:75:c3: 20:71:64:53 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUYZwQqtVnEkXoWHPGu7iWpqx3WI0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTIzMTAxMjE2MDUzNloX DTI0MTAxMDE2MTAzNlowMzExMC8GA1UEAxMoMUU3MTE5QjZGQThDRUQyNzI5OTlF Q0YyNkVGRjMwRTMxOTJEM0EyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgG3Lo6pAsHmFyBjQd+TvtZk6WnHNSDlZ6A+adIgOuP1WB9/ugG3fSMNOhV CmMOYH63CV/HFXq4NGg+neJysidYnpr31XKWrR5Hmo9g1nXz/lh8Jrhh73b3a1uy AibxmlLuUMDpDRm09zVovzSb5KA1O9Xoopyn/zpwgRaqIxTEL7nZ3KBKw2xKz+CC ad/iJQqBMeGF1fyXoKt/HJqtjXAhnrtnawtkKRfP8yQo3NBdRYRUGTbBgZuf0j/y Pl+04Ul0dvB+m0g/sN7/EeMooz+Xhfb8c1XO3+dHpCAXA/yCg/oQ/aAkMglmHLFI i4bSP0clTRrfa5HhsoT5lJfC7iUCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBQecRm2 +oztJymZ7PJu/zDjGS06JjAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzODM4MmUzNDM0MmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnWCwwDQYJKoZIhvcNAQEL BQADggEBACqfo3WWDUuqmHGVwBTOupmyyAwDPpYYEYJgBHGv/Hsl9WItxVoS82z5 yA7qYAN73zUlNTfFydwvuybtiVGYamIQ+272OSBTqJ7Qd8l8r5NnvYGy++9Otj+b bMQ0piYR9o4x6OTYSFtQXSkNOhwQjHNIrW/jxVOB2At+3Dj5fYg7kyOZG5gJ8idz vKGAlupZWoaVcZ0bClxDa28RT7T8nOeQveXTXzVlyR/QnFgf/Z7dUckcxR1gezDU KWAU/iN5h/YSCfhTVCZiQx3Lam+Tyy0RmYSc3Izmw7WuLBF7xsvvg2pOLSLzhT9J z5g+rIiBSm4QQO7XElYmsZt1wyBxZFM= -----END CERTIFICATE-----Generated at Sun May 5 14:36:06 2024 by rpki-client on console-fra.rpki-client.org