$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/323430303a646463303a613030623a3a2f34382d3438203d3e203233393539.roa File: 323430303a646463303a613030623a3a2f34382d3438203d3e203233393539.roa (raw, json) Hash identifier: 9uecxpl+8zhYNM/VLSzIYQFtoaNZNiKX2oWXwwGgZ5I= Subject key identifier: 78:83:DD:3D:E9:8B:6B:C4:76:76:A0:2F:D1:AC:02:44:A5:89:60:C4 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 3D76B211CD4776AC1D643067C93977A6535D57C8 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/323430303a646463303a613030623a3a2f34382d3438203d3e203233393539.roa Signing time: Thu 24 Oct 2024 06:56:28 +0000 ROA not before: Thu 24 Oct 2024 06:51:28 +0000 ROA not after: Thu 23 Oct 2025 06:56:28 +0000 asID: 23959 IP address blocks: 2400:ddc0:a00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:76:b2:11:cd:47:76:ac:1d:64:30:67:c9:39:77:a6:53:5d:57:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Oct 24 06:51:28 2024 GMT Not After : Oct 23 06:56:28 2025 GMT Subject: CN=7883DD3DE98B6BC47676A02FD1AC0244A58960C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d3:d0:cd:7c:51:1e:51:85:34:df:27:5b:68: 49:65:ff:b5:ab:68:d2:2e:be:44:2e:fd:77:18:2c: 71:ee:07:65:51:b4:ba:a1:16:c8:19:bc:28:42:f7: c1:bd:9b:f9:25:d1:84:09:9f:59:02:1e:7a:da:d6: 0f:38:df:f9:b9:f9:bd:cf:5e:4f:b8:06:3a:3d:76: 16:bf:ba:61:06:4a:54:a5:78:d9:56:60:83:66:d0: 5c:62:7f:db:e0:8e:4e:71:69:4e:4a:ce:09:de:1d: 46:73:39:60:de:fc:3f:13:fc:fa:ef:24:e6:c4:82: 41:cf:73:c0:42:79:d3:50:10:c8:48:b6:eb:32:07: be:72:3c:8a:ea:f9:26:5d:99:1a:e2:4c:03:58:a0: b8:4d:3a:22:bd:40:16:ec:62:74:a5:4b:9f:a3:b9: 45:54:18:ad:73:33:3d:26:80:f5:b3:23:24:0c:6c: c4:54:c0:0c:65:95:93:33:55:12:7b:c3:6c:fc:f3: f1:c9:77:1a:ae:37:c2:39:a7:7c:e0:3c:fe:39:5d: 01:82:4b:6f:5c:59:12:d3:c4:a2:38:f4:8d:30:07: b8:c3:1f:7e:b5:84:20:11:3d:aa:12:e4:6a:7f:9f: 1a:39:10:f9:91:be:db:22:61:e8:88:c9:7e:d5:59: 30:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:83:DD:3D:E9:8B:6B:C4:76:76:A0:2F:D1:AC:02:44:A5:89:60:C4 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/323430303a646463303a613030623a3a2f34382d3438203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:ddc0:a00b::/48 Signature Algorithm: sha256WithRSAEncryption 4f:0e:b4:73:ff:fc:8b:83:ce:ab:88:40:24:b2:05:07:ef:48: de:f4:f6:6e:6f:e1:70:41:39:fd:47:6f:4c:23:8d:35:1e:a0: 3d:d8:b6:57:46:14:0b:75:6d:f0:a6:7a:2d:df:ad:44:19:55: 3d:b6:c5:0a:8b:d8:c7:22:e8:69:64:0c:68:db:2c:d1:2e:32: 0c:ca:8d:6f:c3:47:b7:48:f4:d8:97:cd:05:36:68:e2:e3:a6: 88:45:0d:55:c0:8f:24:9c:57:f5:c2:e7:f1:b3:51:3b:62:bb: 61:5d:a4:aa:f7:33:bf:69:6a:27:6c:7c:1c:21:f4:dd:e0:df: e8:09:96:82:c7:7b:99:3b:66:97:70:79:d6:20:72:d3:e8:1a: cb:71:ac:6d:b0:78:22:91:35:bd:84:87:4b:6e:81:73:d3:f9: fb:3f:8b:12:c7:46:06:19:8d:d1:8f:3f:f1:40:f9:3c:61:c2: fd:0d:70:1b:b6:fc:90:c7:c2:d5:7b:7a:59:5f:63:e5:26:54: 67:c1:45:9e:52:03:da:b3:b2:d0:b1:57:40:f9:a5:fd:b1:16: 1d:56:95:c4:07:f1:6a:8b:dc:df:db:04:53:cb:6c:3c:25:0a: c0:f5:45:fc:00:4f:1d:b5:0a:2f:ac:56:21:24:01:90:c1:72: 3c:96:14:76 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUPXayEc1HdqwdZDBnyTl3plNdV8gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MTAyNDA2NTEyOFoX DTI1MTAyMzA2NTYyOFowMzExMC8GA1UEAxMoNzg4M0REM0RFOThCNkJDNDc2NzZB MDJGRDFBQzAyNDRBNTg5NjBDNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDT0M18UR5RhTTfJ1toSWX/tato0i6+RC79dxgsce4HZVG0uqEWyBm8KEL3 wb2b+SXRhAmfWQIeetrWDzjf+bn5vc9eT7gGOj12Fr+6YQZKVKV42VZgg2bQXGJ/ 2+COTnFpTkrOCd4dRnM5YN78PxP8+u8k5sSCQc9zwEJ501AQyEi26zIHvnI8iur5 Jl2ZGuJMA1iguE06Ir1AFuxidKVLn6O5RVQYrXMzPSaA9bMjJAxsxFTADGWVkzNV EnvDbPzz8cl3Gq43wjmnfOA8/jldAYJLb1xZEtPEojj0jTAHuMMffrWEIBE9qhLk an+fGjkQ+ZG+2yJh6IjJftVZMBUCAwEAAaOCAfYwggHyMB0GA1UdDgQWBBR4g909 6YtrxHZ2oC/RrAJEpYlgxDAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9ycGtpLnJv YS5uZXQvcnJkcC94VG9tLzU2LzMyMzQzMDMwM2E2NDY0NjMzMDNhNjEzMDMwNjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzkzNTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADd wKALMA0GCSqGSIb3DQEBCwUAA4IBAQBPDrRz//yLg86riEAksgUH70je9PZub+Fw QTn9R29MI401HqA92LZXRhQLdW3wpnot361EGVU9tsUKi9jHIuhpZAxo2yzRLjIM yo1vw0e3SPTYl80FNmji46aIRQ1VwI8knFf1wufxs1E7YrthXaSq9zO/aWonbHwc IfTd4N/oCZaCx3uZO2aXcHnWIHLT6BrLcaxtsHgikTW9hIdLboFz0/n7P4sSx0YG GY3Rjz/xQPk8YcL9DXAbtvyQx8LVe3pZX2PlJlRnwUWeUgPas7LQsVdA+aX9sRYd VpXEB/Fqi9zf2wRTy2w8JQrA9UX8AE8dtQovrFYhJAGQwXI8lhR2 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org