$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa File: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (raw, json) Hash identifier: f2FBviAJM9nDrbOq27nSeNTQJT9zRNj0KswKLgIhEgE= Subject key identifier: 37:39:AB:07:80:F3:05:C7:4E:D3:F6:15:FF:00:D8:8E:83:9F:14:41 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 45E96BE3D4A79B7B3F11E1CC40439B342BD90C62 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa Signing time: Sat 14 Sep 2024 01:22:22 +0000 ROA not before: Sat 14 Sep 2024 01:17:22 +0000 ROA not after: Sat 13 Sep 2025 01:22:22 +0000 asID: 36351 IP address blocks: 103.57.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Feb 2025 05:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e9:6b:e3:d4:a7:9b:7b:3f:11:e1:cc:40:43:9b:34:2b:d9:0c:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000 Validity Not Before: Sep 14 01:17:22 2024 GMT Not After : Sep 13 01:22:22 2025 GMT Subject: CN=3739AB0780F305C74ED3F615FF00D88E839F1441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:20:3c:e5:44:72:52:4c:7a:0c:88:65:c3:29: 17:d6:06:4d:d0:24:a5:bd:44:c1:d1:b1:34:24:3c: f8:95:8b:0c:c8:e0:8c:e5:89:68:77:33:00:46:86: 59:05:83:58:2d:bd:a7:d7:d4:88:82:de:1a:a7:2b: fd:7e:0a:a8:16:ba:39:96:b3:ae:54:ec:2e:47:a8: 88:5c:1f:88:d5:a5:5e:73:c9:17:e4:56:e1:11:55: cd:81:41:cb:0b:26:1c:52:50:f4:d4:a5:05:3d:fe: b7:9b:ef:89:bc:19:5e:db:cd:73:9e:83:4e:5c:0d: 36:c3:77:47:d0:80:22:2e:5e:ed:f8:6f:33:16:dd: 3d:3a:e4:2e:7f:d0:a6:4d:20:13:a2:85:81:e3:ec: da:59:0c:bb:7b:46:f9:4e:b4:c3:28:4c:02:0e:a6: b4:71:39:76:0e:61:06:63:59:fd:e9:0d:80:9b:35: 55:f5:81:52:ef:fc:1c:7b:e0:65:b6:34:b6:4c:30: 21:5b:fa:ab:86:96:05:33:a9:7f:b8:03:46:b7:53: 21:fb:fa:c0:91:56:4c:d1:33:77:72:cf:9f:d4:bd: 22:1c:53:8a:86:c5:26:38:cc:f6:5f:a5:09:61:5a: 85:f8:10:30:54:27:93:c9:c0:23:ad:37:66:14:df: 2e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:39:AB:07:80:F3:05:C7:4E:D3:F6:15:FF:00:D8:8E:83:9F:14:41 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.165.0/24 Signature Algorithm: sha256WithRSAEncryption 46:b3:ba:3c:c0:b2:85:be:13:f6:02:38:a7:e6:3a:85:43:53: c9:be:14:63:7b:1a:31:c7:39:b2:b3:01:5d:0d:a2:d3:f0:10: 0d:56:2d:b1:7d:21:31:b7:d8:6a:ab:09:3e:c3:8e:ce:36:43: cb:cd:1b:63:d8:4d:3f:a6:c0:48:09:81:f8:a2:e8:1b:ee:1e: 1e:c1:7e:2e:4f:a4:0f:9b:f0:b9:ca:a2:7e:0b:d0:86:08:06: 77:b7:86:2d:b2:b2:65:50:d8:d8:85:32:b4:00:5e:aa:85:7e: 22:83:06:4b:b0:51:33:97:e9:ee:cf:09:46:c5:b8:ec:3f:89: 72:14:ce:7b:9e:eb:3e:85:42:32:e3:86:f7:c9:f3:57:38:f0: a9:3a:ef:84:23:5f:b1:aa:b1:5a:b2:03:f8:da:2d:6c:0c:81: 76:7b:d9:77:ff:d4:86:07:59:5a:94:f7:13:f1:09:34:0a:5f: bb:06:66:6a:2b:f3:49:5b:85:a2:c4:8e:ac:28:73:1e:a0:1a: 95:6e:f4:34:15:d8:33:5e:78:c4:a1:6f:c8:f3:c2:e1:30:1f: 90:f3:9a:df:32:c5:b8:e5:4b:e1:17:55:ce:a1:36:25:b4:a2: 06:f5:46:a2:46:17:ac:2f:cd:44:39:87:40:66:31:78:39:63: 18:30:54:7b -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIURelr49Snm3s/EeHMQEObNCvZDGIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI0MDkxNDAxMTcyMloX DTI1MDkxMzAxMjIyMlowMzExMC8GA1UEAxMoMzczOUFCMDc4MEYzMDVDNzRFRDNG NjE1RkYwMEQ4OEU4MzlGMTQ0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKggPOVEclJMegyIZcMpF9YGTdAkpb1EwdGxNCQ8+JWLDMjgjOWJaHczAEaG WQWDWC29p9fUiILeGqcr/X4KqBa6OZazrlTsLkeoiFwfiNWlXnPJF+RW4RFVzYFB ywsmHFJQ9NSlBT3+t5vvibwZXtvNc56DTlwNNsN3R9CAIi5e7fhvMxbdPTrkLn/Q pk0gE6KFgePs2lkMu3tG+U60wyhMAg6mtHE5dg5hBmNZ/ekNgJs1VfWBUu/8HHvg ZbY0tkwwIVv6q4aWBTOpf7gDRrdTIfv6wJFWTNEzd3LPn9S9IhxTiobFJjjM9l+l CWFahfgQMFQnk8nAI603ZhTfLucCAwEAAaOCAeowggHmMB0GA1UdDgQWBBQ3OasH gPMFx07T9hX/ANiOg58UQTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzEzMDMzMmUzNTM3MmUzMTM2MzUyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzMzM2MzMzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzmlMA0GCSqGSIb3 DQEBCwUAA4IBAQBGs7o8wLKFvhP2Ajin5jqFQ1PJvhRjexoxxzmyswFdDaLT8BAN Vi2xfSExt9hqqwk+w47ONkPLzRtj2E0/psBICYH4ougb7h4ewX4uT6QPm/C5yqJ+ C9CGCAZ3t4YtsrJlUNjYhTK0AF6qhX4igwZLsFEzl+nuzwlGxbjsP4lyFM57nus+ hUIy44b3yfNXOPCpOu+EI1+xqrFasgP42i1sDIF2e9l3/9SGB1lalPcT8Qk0Cl+7 BmZqK/NJW4WixI6sKHMeoBqVbvQ0FdgzXnjEoW/I88LhMB+Q85rfMsW45UvhF1XO oTYltKIG9UaiRhesL81EOYdAZjF4OWMYMFR7 -----END CERTIFICATE-----Generated at Sun Feb 16 15:44:08 2025 by rpki-client