$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e203233383538.roa File: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (raw, json) Hash identifier: KI2kjcb07IKesGZMinnaOEsz6/06bdA9BT5qaeeOZmU= Subject key identifier: 14:F0:16:B4:B3:49:71:12:48:BD:B5:3B:2A:9A:3F:30:4F:09:4E:CD Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 62FA5B44BC07D8FF332571C445FDA874D9A6380E Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e203233383538.roa Signing time: Sat 14 Sep 2024 01:22:23 +0000 ROA not before: Sat 14 Sep 2024 01:17:23 +0000 ROA not after: Sat 13 Sep 2025 01:22:23 +0000 asID: 23858 IP address blocks: 103.57.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:fa:5b:44:bc:07:d8:ff:33:25:71:c4:45:fd:a8:74:d9:a6:38:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Sep 14 01:17:23 2024 GMT Not After : Sep 13 01:22:23 2025 GMT Subject: CN=14F016B4B349711248BDB53B2A9A3F304F094ECD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ec:f8:f8:1a:e9:9d:8f:87:b2:f9:a4:ce:b6: 8e:a6:25:e2:99:29:65:e4:8e:3e:cf:51:87:55:ca: 4c:85:e7:20:f9:27:0b:a0:a6:fc:92:20:75:3e:2b: c5:b5:00:b0:85:82:be:81:b2:3b:c4:7f:2b:06:f0: 29:1e:5a:8f:c4:31:8e:1d:dc:53:9b:94:58:df:0b: 77:ac:ec:45:25:a6:ba:72:9a:ae:69:42:e5:eb:99: 69:63:0d:8b:76:38:fd:c4:ad:ed:64:5e:cc:b3:2a: a5:3f:af:6f:76:f6:c6:5b:b0:c2:f6:43:20:41:20: 0b:7e:d8:4d:ef:e6:ac:9c:ed:ef:7f:1d:f4:77:2e: ad:31:e1:6b:c0:9d:fe:f5:6f:b7:a3:39:04:71:d7: 7c:ee:1a:f6:b2:83:02:1e:4d:24:8f:60:32:c9:6c: e7:8d:66:2a:27:6f:16:7a:75:bd:dc:ca:d0:03:2d: 7a:de:79:3f:a9:28:86:55:c7:25:ba:53:cc:a1:49: b8:b4:0f:be:a5:8b:08:2d:10:dd:a4:5d:8a:94:fb: d3:ed:d1:17:57:26:0a:7d:6f:74:fe:2b:82:4e:1c: 92:77:97:13:45:84:ca:e3:7a:0c:5e:d4:e2:7a:71: 70:c8:28:53:d8:f1:62:48:fd:69:0f:b7:98:c7:0a: 52:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F0:16:B4:B3:49:71:12:48:BD:B5:3B:2A:9A:3F:30:4F:09:4E:CD X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e203233383538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.164.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:7b:31:16:aa:c4:56:15:05:ae:4c:b4:e2:fe:a3:4b:89:ef: 8c:8f:14:5b:28:91:d3:6a:86:93:fb:76:49:3f:b1:e2:00:16: 18:ee:7d:a5:24:bd:73:19:6a:32:b4:85:f1:22:f6:33:0a:d0: 0d:c5:b8:83:cb:ef:4b:99:8b:03:11:a3:67:10:f9:79:e4:c0: f8:e1:38:5b:3e:87:93:22:22:6b:71:51:28:87:6f:e0:d5:6e: 30:20:ef:61:62:58:76:6e:d2:7f:65:4d:46:29:91:42:45:6d: f8:53:2c:d8:ad:97:92:6b:b6:28:c2:ca:fc:27:b7:41:9e:29: 63:42:f0:d5:f4:3f:bc:ae:a0:4b:17:38:d2:57:f5:0f:d4:d5: 39:e4:a7:c3:16:1a:86:f1:63:43:ca:e8:11:e7:3c:6b:ad:3c: cb:5a:29:ef:fc:c7:0f:eb:a6:b7:f7:f8:8a:5a:03:56:cd:16: b8:04:a0:19:1d:e9:24:35:45:75:42:2a:6d:f9:e1:ba:28:17: 2e:a1:4e:e6:0b:81:ec:5c:36:5c:83:af:96:15:84:c7:93:83: 7a:9c:da:7a:a8:27:7b:68:80:f0:43:78:69:e6:38:55:ec:83: 08:a8:50:ff:bf:26:b1:80:32:a4:d0:9e:86:42:c3:3a:53:15: 0c:be:3d:aa -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUYvpbRLwH2P8zJXHERf2odNmmOA4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI0MDkxNDAxMTcyM1oX DTI1MDkxMzAxMjIyM1owMzExMC8GA1UEAxMoMTRGMDE2QjRCMzQ5NzExMjQ4QkRC NTNCMkE5QTNGMzA0RjA5NEVDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjs+Pga6Z2Ph7L5pM62jqYl4pkpZeSOPs9Rh1XKTIXnIPknC6Cm/JIgdT4r xbUAsIWCvoGyO8R/KwbwKR5aj8Qxjh3cU5uUWN8Ld6zsRSWmunKarmlC5euZaWMN i3Y4/cSt7WRezLMqpT+vb3b2xluwwvZDIEEgC37YTe/mrJzt738d9HcurTHha8Cd /vVvt6M5BHHXfO4a9rKDAh5NJI9gMsls541mKidvFnp1vdzK0AMtet55P6kohlXH JbpTzKFJuLQPvqWLCC0Q3aRdipT70+3RF1cmCn1vdP4rgk4ckneXE0WEyuN6DF7U 4npxcMgoU9jxYkj9aQ+3mMcKUikCAwEAAaOCAeowggHmMB0GA1UdDgQWBBQU8Ba0 s0lxEki9tTsqmj8wTwlOzTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzEzMDMzMmUzNTM3MmUzMTM2MzQyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzMjMzMzgzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZzmkMA0GCSqGSIb3 DQEBCwUAA4IBAQA6ezEWqsRWFQWuTLTi/qNLie+MjxRbKJHTaoaT+3ZJP7HiABYY 7n2lJL1zGWoytIXxIvYzCtANxbiDy+9LmYsDEaNnEPl55MD44ThbPoeTIiJrcVEo h2/g1W4wIO9hYlh2btJ/ZU1GKZFCRW34UyzYrZeSa7Yowsr8J7dBniljQvDV9D+8 rqBLFzjSV/UP1NU55KfDFhqG8WNDyugR5zxrrTzLWinv/McP66a39/iKWgNWzRa4 BKAZHekkNUV1Qipt+eG6KBcuoU7mC4HsXDZcg6+WFYTHk4N6nNp6qCd7aIDwQ3hp 5jhV7IMIqFD/vyaxgDKk0J6GQsM6UxUMvj2q -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:48 2024 by rpki-client on console-fra.rpki-client.org