$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/34352e3131372e3130332e302f32342d3234203d3e2034373835.roa File: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (raw, json) Hash identifier: w0ZW+ur9gCqMNGLzY+RcRrOtIlw2CqouK0RF1NyZ6pM= Subject key identifier: BC:86:CD:53:51:46:D1:0D:79:D8:6B:94:D8:FF:FC:61:D4:64:53:88 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 2E74935E5F896806A3F2D71BE22BDCF927017133 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/34352e3131372e3130332e302f32342d3234203d3e2034373835.roa Signing time: Thu 12 Oct 2023 16:10:40 +0000 ROA not before: Thu 12 Oct 2023 16:05:40 +0000 ROA not after: Thu 10 Oct 2024 16:10:40 +0000 asID: 4785 IP address blocks: 45.117.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 13:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:74:93:5e:5f:89:68:06:a3:f2:d7:1b:e2:2b:dc:f9:27:01:71:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Oct 12 16:05:40 2023 GMT Not After : Oct 10 16:10:40 2024 GMT Subject: CN=BC86CD535146D10D79D86B94D8FFFC61D4645388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:83:6e:92:25:c3:bf:06:d0:de:d7:c2:dc:2d: 52:30:8b:ce:be:96:3e:f3:46:24:97:49:31:de:e9: 94:ef:b4:f2:f6:0f:ac:1f:1d:38:a1:96:57:66:d4: 79:c6:a5:ed:fb:a3:75:0f:b7:f4:37:4f:c4:86:c3: a9:24:47:49:36:ba:3d:f3:9e:b6:a2:90:0f:94:4a: df:d5:7b:d8:29:d2:9f:b0:72:97:a7:02:67:0f:9d: 08:96:d9:d8:a6:ac:9b:5e:2e:a7:56:aa:e3:e2:0b: 21:a1:0a:00:31:12:12:8e:57:48:a8:33:15:87:c6: 62:ed:72:71:56:b0:68:97:00:04:93:24:dd:88:f7: 8c:48:c7:c8:8c:0c:4c:0e:12:17:47:d0:a4:66:d1: 76:03:a2:7a:f2:fc:5d:00:61:e0:7f:88:54:ed:46: 84:38:aa:75:56:bb:34:55:3e:a7:69:8e:dc:60:76: df:cb:40:4b:f8:12:e1:f6:4d:ef:4d:2f:ff:b3:a3: 9b:b9:2d:09:ae:0d:50:95:e0:25:93:a0:c4:64:e9: b2:c0:6e:03:80:55:82:f0:94:5e:77:8d:1a:cc:dd: b1:68:d6:38:0e:f5:ae:7c:99:22:06:ca:df:65:24: 24:75:0b:b4:59:12:b3:4a:50:c5:8a:7e:3b:36:02: b5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:86:CD:53:51:46:D1:0D:79:D8:6B:94:D8:FF:FC:61:D4:64:53:88 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/34352e3131372e3130332e302f32342d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.117.103.0/24 Signature Algorithm: sha256WithRSAEncryption 01:48:38:92:10:1e:18:f2:e6:5f:4b:eb:78:61:14:b7:8d:e7: f0:a4:74:39:09:80:2c:c6:7d:a0:9c:c5:79:12:36:39:3d:12: f8:28:1a:29:d9:43:7c:b6:88:6b:f7:4b:72:df:e1:0d:3d:26: 36:b3:e4:b2:c7:8f:e9:85:c3:03:e9:08:16:ea:68:42:41:52: 8b:f9:0f:e4:3d:34:d0:a7:9b:c7:30:c9:38:30:9a:f2:0f:94: ff:43:fd:e1:13:23:39:5f:bc:9c:52:b8:aa:3c:76:e1:78:5d: bb:f7:30:95:f0:82:aa:25:5d:f0:9c:4b:5d:48:32:f2:49:70: d5:4d:c8:f7:5f:85:16:2e:04:d6:8b:90:d5:82:0d:5a:71:23: ac:1d:38:cf:d4:7c:65:0a:b4:bc:2f:77:eb:e6:ed:c0:7a:98: 9d:a3:05:c3:58:4f:04:96:8f:b3:7f:69:b1:ff:84:34:48:be: 8b:42:94:80:fb:79:95:cd:f3:7e:21:74:78:5b:12:1d:4f:4e: f8:1c:86:12:34:a2:1f:90:41:a9:5c:2e:c1:fc:47:67:ee:cd: 98:08:09:d3:c0:f0:ec:20:68:ee:b0:86:24:7d:b9:45:fa:04: 40:97:dd:a3:e8:87:7a:da:ee:c1:1d:6d:cb:ad:94:6f:92:5c: 35:ec:14:13 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIULnSTXl+JaAaj8tcb4ivc+ScBcTMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTIzMTAxMjE2MDU0MFoX DTI0MTAxMDE2MTA0MFowMzExMC8GA1UEAxMoQkM4NkNENTM1MTQ2RDEwRDc5RDg2 Qjk0RDhGRkZDNjFENDY0NTM4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ2DbpIlw78G0N7XwtwtUjCLzr6WPvNGJJdJMd7plO+08vYPrB8dOKGWV2bU ecal7fujdQ+39DdPxIbDqSRHSTa6PfOetqKQD5RK39V72CnSn7Byl6cCZw+dCJbZ 2Kasm14up1aq4+ILIaEKADESEo5XSKgzFYfGYu1ycVawaJcABJMk3Yj3jEjHyIwM TA4SF0fQpGbRdgOievL8XQBh4H+IVO1GhDiqdVa7NFU+p2mO3GB238tAS/gS4fZN 700v/7Ojm7ktCa4NUJXgJZOgxGTpssBuA4BVgvCUXneNGszdsWjWOA71rnyZIgbK 32UkJHULtFkSs0pQxYp+OzYCtQUCAwEAAaOCAegwggHkMB0GA1UdDgQWBBS8hs1T UUbRDXnYa5TY//xh1GRTiDAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzQzNTJlMzEzMTM3MmUzMTMwMzMyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzNDM3MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC11ZzANBgkqhkiG9w0B AQsFAAOCAQEAAUg4khAeGPLmX0vreGEUt43n8KR0OQmALMZ9oJzFeRI2OT0S+Cga KdlDfLaIa/dLct/hDT0mNrPksseP6YXDA+kIFupoQkFSi/kP5D000KebxzDJODCa 8g+U/0P94RMjOV+8nFK4qjx24Xhdu/cwlfCCqiVd8JxLXUgy8klw1U3I91+FFi4E 1ouQ1YINWnEjrB04z9R8ZQq0vC936+btwHqYnaMFw1hPBJaPs39psf+ENEi+i0KU gPt5lc3zfiF0eFsSHU9O+ByGEjSiH5BBqVwuwfxHZ+7NmAgJ08Dw7CBo7rCGJH25 RfoEQJfdo+iHetruwR1ty62Ub5JcNewUEw== -----END CERTIFICATE-----Generated at Sun May 5 15:51:31 2024 by rpki-client on console-fra.rpki-client.org