$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2034373835.roa File: 3230332e39362e3233362e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: BvohWATxMUq15cQWXI9T1mfM7DXZtT2rAfhq+oRSCqQ= Subject key identifier: 2A:3A:4C:35:0A:D4:78:F1:11:F7:39:F2:8F:21:EC:05:5A:E4:73:69 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 7D6074EDF080F51CB1F53E58C9932BDD455F3503 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2034373835.roa Signing time: Thu 12 Oct 2023 16:10:37 +0000 ROA not before: Thu 12 Oct 2023 16:05:37 +0000 ROA not after: Thu 10 Oct 2024 16:10:37 +0000 asID: 4785 IP address blocks: 203.96.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 05:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:60:74:ed:f0:80:f5:1c:b1:f5:3e:58:c9:93:2b:dd:45:5f:35:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Oct 12 16:05:37 2023 GMT Not After : Oct 10 16:10:37 2024 GMT Subject: CN=2A3A4C350AD478F111F739F28F21EC055AE47369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:56:49:a9:f9:66:01:b3:17:45:3d:2d:3c:f3: 87:7e:8d:c1:c3:0e:f3:34:7c:14:49:f7:88:97:61: 55:4d:55:ea:99:32:16:e7:12:60:50:ee:5d:00:96: af:44:a1:0a:2d:f6:ad:5e:f3:88:f8:82:a4:49:95: 89:c3:fb:07:38:50:ae:1e:33:31:23:35:d7:24:06: e3:e7:00:8f:6e:1b:67:52:7b:48:89:bb:de:fd:c1: ec:7f:c5:a2:a1:f8:8b:cf:9e:16:cd:8e:b2:d4:5d: 79:58:9f:66:b4:95:a5:d1:3a:85:db:38:18:43:3b: c1:3d:0c:60:c1:17:2e:58:11:f6:1b:8a:e8:72:0d: e9:a5:07:03:35:3f:97:56:e4:08:6f:85:df:d4:0b: c5:0c:2e:4b:dc:0b:b6:0c:cc:72:e0:92:fc:70:b2: 55:62:b3:d5:4c:8d:cb:4d:af:a8:fc:59:a4:98:58: a6:e1:1a:a6:bb:62:db:ec:e2:92:26:cc:20:cd:4b: 4c:bc:23:b5:a9:8e:06:fd:34:db:c8:37:c9:cf:f8: 91:71:fc:4c:c2:33:b3:53:d4:57:e0:7b:8d:f3:46: 2e:ba:76:5a:f9:5a:b4:26:7a:d5:31:aa:5b:eb:55: 02:5b:ba:09:9d:78:fd:6d:3d:d9:a8:f4:42:10:41: e6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:3A:4C:35:0A:D4:78:F1:11:F7:39:F2:8F:21:EC:05:5A:E4:73:69 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.96.236.0/22 Signature Algorithm: sha256WithRSAEncryption 68:35:89:bb:14:0c:95:99:aa:a2:1b:2a:dd:af:48:f0:30:12: 63:89:57:d7:dc:59:50:02:38:e6:45:9f:c0:a0:23:ed:e7:95: 2a:af:b6:88:81:38:ef:21:7d:eb:a9:31:e4:34:64:28:9a:25: 14:0c:ed:97:a6:eb:a5:4f:32:4e:43:4a:13:b4:83:b3:00:9b: 38:b2:ac:69:28:a5:9e:e9:17:a4:fd:5a:4e:b0:10:16:ca:83: f8:10:24:fb:27:9c:ec:59:53:c5:c2:b0:dc:6d:f3:7a:3b:10: 93:1b:c6:4c:95:b7:5f:c7:ef:38:94:7c:65:b3:9d:5d:0b:d3: 11:fc:9a:e7:57:61:46:17:b0:c8:34:cf:fe:89:b9:58:ad:ea: a7:ed:7f:c9:69:51:3e:9d:99:da:16:c9:af:8e:39:29:00:2e: f0:6c:ca:8f:0a:45:16:c4:2e:0b:ee:f2:58:3a:3a:ac:19:74: 67:16:7b:b4:18:0e:fb:cd:c7:f6:41:7f:02:30:21:bc:a4:ac: de:75:7c:1e:f2:6e:95:cd:ea:67:0f:7a:01:d6:af:df:ac:df: fb:79:db:9a:bc:15:1d:92:3e:52:7a:da:86:cb:f4:27:23:48: 6d:25:a8:1c:46:ee:4f:62:43:26:b6:e8:83:50:73:85:2d:a9: ab:fe:8d:59 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUfWB07fCA9Ryx9T5YyZMr3UVfNQMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTIzMTAxMjE2MDUzN1oX DTI0MTAxMDE2MTAzN1owMzExMC8GA1UEAxMoMkEzQTRDMzUwQUQ0NzhGMTExRjcz OUYyOEYyMUVDMDU1QUU0NzM2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJWSan5ZgGzF0U9LTzzh36NwcMO8zR8FEn3iJdhVU1V6pkyFucSYFDuXQCW r0ShCi32rV7ziPiCpEmVicP7BzhQrh4zMSM11yQG4+cAj24bZ1J7SIm73v3B7H/F oqH4i8+eFs2OstRdeVifZrSVpdE6hds4GEM7wT0MYMEXLlgR9huK6HIN6aUHAzU/ l1bkCG+F39QLxQwuS9wLtgzMcuCS/HCyVWKz1UyNy02vqPxZpJhYpuEaprti2+zi kibMIM1LTLwjtamOBv0028g3yc/4kXH8TMIzs1PUV+B7jfNGLrp2WvlatCZ61TGq W+tVAlu6CZ14/W092aj0QhBB5k0CAwEAAaOCAegwggHkMB0GA1UdDgQWBBQqOkw1 CtR48RH3OfKPIewFWuRzaTAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzIzMDMzMmUzOTM2MmUzMjMzMzYyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzNDM3MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAstg7DANBgkqhkiG9w0B AQsFAAOCAQEAaDWJuxQMlZmqohsq3a9I8DASY4lX19xZUAI45kWfwKAj7eeVKq+2 iIE47yF966kx5DRkKJolFAztl6brpU8yTkNKE7SDswCbOLKsaSilnukXpP1aTrAQ FsqD+BAk+yec7FlTxcKw3G3zejsQkxvGTJW3X8fvOJR8ZbOdXQvTEfya51dhRhew yDTP/om5WK3qp+1/yWlRPp2Z2hbJr445KQAu8GzKjwpFFsQuC+7yWDo6rBl0ZxZ7 tBgO+83H9kF/AjAhvKSs3nV8HvJulc3qZw96Adav36zf+3nbmrwVHZI+Unrahsv0 JyNIbSWoHEbuT2JDJrbog1BzhS2pq/6NWQ== -----END CERTIFICATE-----Generated at Mon May 6 08:26:41 2024 by rpki-client on console-fra.rpki-client.org