$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2038383838.roa File: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: /Wmkfbw/QLEaUfwznC2lEulj1F/OKW4GZn9Xm/KPUG0= Subject key identifier: 71:40:6D:47:2D:B7:66:7B:54:8D:7F:3C:04:E2:39:39:4F:14:80:13 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 53FB81A69BF4882DCEA0405B07C9360CA72B88FA Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2038383838.roa Signing time: Sat 14 Sep 2024 01:22:23 +0000 ROA not before: Sat 14 Sep 2024 01:17:23 +0000 ROA not after: Sat 13 Sep 2025 01:22:23 +0000 asID: 8888 IP address blocks: 103.57.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 09:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:fb:81:a6:9b:f4:88:2d:ce:a0:40:5b:07:c9:36:0c:a7:2b:88:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Sep 14 01:17:23 2024 GMT Not After : Sep 13 01:22:23 2025 GMT Subject: CN=71406D472DB7667B548D7F3C04E239394F148013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:21:c1:4f:ad:86:67:32:93:ad:32:7a:9b:b1: 31:73:02:ac:54:ee:2d:b3:14:b4:32:42:37:3a:29: 6c:e0:fe:86:46:fe:ac:59:61:1c:a0:1b:32:2f:bf: 06:a6:2d:78:d3:60:ab:23:3b:97:a5:8f:e0:7a:a9: e9:09:41:d2:91:d3:26:ef:82:c6:7a:4e:fd:63:62: 11:dd:34:9b:bb:6c:6d:79:a5:c1:82:d0:d1:6c:f8: 0a:c4:43:c8:6f:f1:5d:66:8e:f5:ad:08:1a:e8:bf: 03:e6:e6:da:f7:3c:27:46:48:f3:80:4f:ce:84:8c: ec:57:15:2a:40:bf:7f:e2:3e:05:62:b2:07:b4:6b: a2:33:31:87:cc:f4:e6:1c:ea:f7:b7:f4:8e:62:8b: 45:47:20:53:00:60:49:23:fd:8f:6a:3a:b6:bb:73: 4f:84:f4:40:81:eb:df:f8:d8:b0:f9:df:0b:49:38: cd:bb:3c:98:1a:e9:10:b6:4a:c0:86:0e:0a:0b:b1: f9:cd:51:ff:6f:10:f7:8b:03:85:54:80:bb:f9:37: fc:e0:3e:6e:d7:70:c0:ad:66:1a:4f:fe:b1:60:e2: c8:13:b5:dd:6b:db:2b:cb:f5:a6:cb:ff:67:46:a6: 2b:cd:a3:4d:6b:c7:68:f7:78:21:d3:80:0c:75:50: 9e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:40:6D:47:2D:B7:66:7B:54:8D:7F:3C:04:E2:39:39:4F:14:80:13 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.164.0/22 Signature Algorithm: sha256WithRSAEncryption 68:af:17:44:74:e3:82:9d:8b:09:06:2f:ee:1e:aa:d0:c2:06: d3:f2:de:01:07:5c:dc:f9:96:0a:e3:e4:a8:22:f6:f9:b5:80: f2:c1:10:84:5d:09:95:68:1e:06:c0:da:c5:46:05:ee:1b:6f: 14:6b:8c:4f:7d:6f:6e:94:2b:0f:ec:44:58:97:b2:cc:bb:5a: 11:bb:db:c8:d1:5e:34:52:fc:7c:c6:02:4b:7f:b7:3c:bc:12: 4b:8d:2f:ca:b9:9a:fd:43:d0:4b:0b:e7:ff:6a:f9:94:ae:1a: 05:26:df:d4:78:ae:31:96:e6:0c:d7:f2:6b:b9:03:e4:9e:48: a2:2d:89:b0:12:bb:ca:82:d9:d1:cb:e3:c4:69:1e:2b:eb:82: 94:df:8b:37:db:4d:47:49:c9:16:9e:1c:ec:8c:56:c8:5e:3a: 69:32:93:4d:b4:cc:59:19:09:e0:1d:20:a2:25:9e:c3:55:d3: 84:b1:c2:ab:53:50:79:da:8f:ce:be:e5:77:dc:2b:3c:3e:a0: d7:61:2d:27:43:fe:aa:15:6d:5d:87:8a:5b:8a:b7:dd:33:f9: 99:cd:2f:6c:ab:f4:bf:10:fb:d3:64:40:97:32:ec:4c:a8:27: 6a:5a:25:e6:ee:1f:b5:c3:70:7f:95:0b:d6:a5:b4:f6:07:4f: 3a:63:34:6d -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUU/uBppv0iC3OoEBbB8k2DKcriPowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI0MDkxNDAxMTcyM1oX DTI1MDkxMzAxMjIyM1owMzExMC8GA1UEAxMoNzE0MDZENDcyREI3NjY3QjU0OEQ3 RjNDMDRFMjM5Mzk0RjE0ODAxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUhwU+thmcyk60yepuxMXMCrFTuLbMUtDJCNzopbOD+hkb+rFlhHKAbMi+/ BqYteNNgqyM7l6WP4Hqp6QlB0pHTJu+CxnpO/WNiEd00m7tsbXmlwYLQ0Wz4CsRD yG/xXWaO9a0IGui/A+bm2vc8J0ZI84BPzoSM7FcVKkC/f+I+BWKyB7RrojMxh8z0 5hzq97f0jmKLRUcgUwBgSSP9j2o6trtzT4T0QIHr3/jYsPnfC0k4zbs8mBrpELZK wIYOCgux+c1R/28Q94sDhVSAu/k3/OA+btdwwK1mGk/+sWDiyBO13WvbK8v1psv/ Z0amK82jTWvHaPd4IdOADHVQnrUCAwEAAaOCAegwggHkMB0GA1UdDgQWBBRxQG1H Lbdme1SNfzwE4jk5TxSAEzAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzEzMDMzMmUzNTM3MmUzMTM2MzQyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzODM4MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc5pDANBgkqhkiG9w0B AQsFAAOCAQEAaK8XRHTjgp2LCQYv7h6q0MIG0/LeAQdc3PmWCuPkqCL2+bWA8sEQ hF0JlWgeBsDaxUYF7htvFGuMT31vbpQrD+xEWJeyzLtaEbvbyNFeNFL8fMYCS3+3 PLwSS40vyrma/UPQSwvn/2r5lK4aBSbf1HiuMZbmDNfya7kD5J5Ioi2JsBK7yoLZ 0cvjxGkeK+uClN+LN9tNR0nJFp4c7IxWyF46aTKTTbTMWRkJ4B0goiWew1XThLHC q1NQedqPzr7ld9wrPD6g12EtJ0P+qhVtXYeKW4q33TP5mc0vbKv0vxD702RAlzLs TKgnalol5u4ftcNwf5UL1qW09gdPOmM0bQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org