$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/323430303a646463303a3a2f33322d3438203d3e2034373835.roa File: 323430303a646463303a3a2f33322d3438203d3e2034373835.roa (raw, json) Hash identifier: PZcihi+tKuobULExyy+RldrR5ZxGFpEQTkOgUfpHPaE= Subject key identifier: 96:D6:F5:B2:A1:51:19:F7:9B:EA:EF:62:74:FC:B3:FB:D4:AD:BB:8A Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 719B5D246D2069570780663AF0D30AC1D4304E7E Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/323430303a646463303a3a2f33322d3438203d3e2034373835.roa Signing time: Sat 14 Sep 2024 01:22:32 +0000 ROA not before: Sat 14 Sep 2024 01:17:32 +0000 ROA not after: Sat 13 Sep 2025 01:22:32 +0000 asID: 4785 IP address blocks: 2400:ddc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9b:5d:24:6d:20:69:57:07:80:66:3a:f0:d3:0a:c1:d4:30:4e:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Sep 14 01:17:32 2024 GMT Not After : Sep 13 01:22:32 2025 GMT Subject: CN=96D6F5B2A15119F79BEAEF6274FCB3FBD4ADBB8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:dd:8a:78:96:bc:7f:88:60:42:d8:36:12:27: 5f:ec:97:a7:39:a3:59:6b:26:9d:b0:b0:c4:a5:3b: 91:67:39:44:8a:df:a7:17:5b:0b:b1:aa:64:9f:cd: e4:11:2e:e4:d1:9b:28:85:73:13:13:f0:35:0f:ec: ae:76:c0:e1:0e:4b:9c:52:9b:65:0c:cd:47:ef:fb: 5d:bc:49:28:c8:77:47:24:d9:b0:5c:48:a6:b8:70: d9:37:67:80:91:c2:83:50:f2:54:09:3d:eb:20:39: b4:2d:fe:a3:21:97:95:10:f8:5f:68:56:a5:c2:59: cc:a3:52:c0:12:f8:4b:21:cc:a7:4c:27:1d:fb:b5: 2e:25:bb:73:2a:04:a2:26:e6:c8:04:1c:3d:37:11: f4:06:79:12:36:4b:9d:a9:27:72:34:65:3d:5e:52: 7a:c0:23:b1:48:7a:11:3b:65:39:f4:48:97:0d:d6: 32:ba:88:90:8e:fc:51:61:9f:6d:28:8c:23:f7:3e: a0:7c:8b:6b:30:64:d6:a6:fe:21:dc:f3:4f:38:0a: 55:e9:b1:41:c7:77:f1:4e:d9:41:fc:65:53:41:c8: 73:f3:49:01:1e:fa:88:c4:0f:88:c5:75:7f:1e:6a: b9:bd:1a:53:ff:ad:5d:cb:db:e9:de:57:03:5a:d0: 0d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D6:F5:B2:A1:51:19:F7:9B:EA:EF:62:74:FC:B3:FB:D4:AD:BB:8A X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/323430303a646463303a3a2f33322d3438203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:ddc0::/32 Signature Algorithm: sha256WithRSAEncryption 01:13:c7:60:c1:58:b8:cb:fd:a7:f5:ee:2c:54:79:ca:7b:3b: 31:3a:53:38:40:ef:1d:da:bb:26:5f:79:ff:b4:b9:5d:e8:4b: 27:20:fd:79:f3:6d:cb:23:5f:54:9b:ac:4d:01:e1:94:34:83: 7f:a5:f0:21:b6:71:a2:91:bf:60:bf:02:2c:67:85:4a:d7:3f: 65:4b:cb:62:37:a0:84:6a:32:4e:c8:5a:7b:0b:f8:94:5a:89: a7:c1:fa:2b:e7:fe:4f:cb:a8:93:5b:f5:f4:15:1c:8a:0d:c7: b8:03:c2:b8:14:7e:03:be:7d:e2:95:ad:a4:09:4e:bc:22:2c: 44:14:e3:11:e2:f0:00:6a:44:9a:9f:5d:a2:c8:19:60:52:fd: db:4d:d5:31:df:a0:c7:a3:dc:c2:d5:ff:d6:fe:0b:c8:b6:06: fc:5e:24:d7:f0:20:7f:d7:0b:a3:36:a7:6c:97:fb:ff:04:d0: 9a:df:76:82:c5:02:81:84:7a:19:3e:f1:97:4e:14:6e:09:95: b1:fa:9d:37:e0:18:52:27:64:b8:0e:f0:9f:17:a6:e7:92:4d: 44:e6:03:70:fb:0e:aa:f7:51:98:22:84:0f:a9:f6:86:77:05: 29:37:79:ab:c5:fd:87:15:88:fa:fb:c3:c4:f3:7c:cc:33:01: 65:35:67:0d -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUcZtdJG0gaVcHgGY68NMKwdQwTn4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MDkxNDAxMTczMloX DTI1MDkxMzAxMjIzMlowMzExMC8GA1UEAxMoOTZENkY1QjJBMTUxMTlGNzlCRUFF RjYyNzRGQ0IzRkJENEFEQkI4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOLdiniWvH+IYELYNhInX+yXpzmjWWsmnbCwxKU7kWc5RIrfpxdbC7GqZJ/N 5BEu5NGbKIVzExPwNQ/srnbA4Q5LnFKbZQzNR+/7XbxJKMh3RyTZsFxIprhw2Tdn gJHCg1DyVAk96yA5tC3+oyGXlRD4X2hWpcJZzKNSwBL4SyHMp0wnHfu1LiW7cyoE oibmyAQcPTcR9AZ5EjZLnakncjRlPV5SesAjsUh6ETtlOfRIlw3WMrqIkI78UWGf bSiMI/c+oHyLazBk1qb+IdzzTzgKVemxQcd38U7ZQfxlU0HIc/NJAR76iMQPiMV1 fx5qub0aU/+tXcvb6d5XA1rQDUcCAwEAAaOCAecwggHjMB0GA1UdDgQWBBSW1vWy oVEZ95vq72J0/LP71K27ijAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzIzNDMwMzAzYTY0NjQ2MzMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAN3AMA0GCSqGSIb3DQEB CwUAA4IBAQABE8dgwVi4y/2n9e4sVHnKezsxOlM4QO8d2rsmX3n/tLld6EsnIP15 823LI19Um6xNAeGUNIN/pfAhtnGikb9gvwIsZ4VK1z9lS8tiN6CEajJOyFp7C/iU Womnwfor5/5Py6iTW/X0FRyKDce4A8K4FH4Dvn3ila2kCU68IixEFOMR4vAAakSa n12iyBlgUv3bTdUx36DHo9zC1f/W/gvItgb8XiTX8CB/1wujNqdsl/v/BNCa33aC xQKBhHoZPvGXThRuCZWx+p034BhSJ2S4DvCfF6bnkk1E5gNw+w6q91GYIoQPqfaG dwUpN3mrxf2HFYj6+8PE83zMMwFlNWcN -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:48 2024 by rpki-client on console-fra.rpki-client.org