$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa File: 3130332e35362e35322e302f32322d3234203d3e2039333132.roa (raw, json) Hash identifier: I5d60IB2KEbvET4bHgVAmjL+rNNj+/RMDX5hP7I5oUM= Subject key identifier: 57:6E:1A:49:0A:9A:E7:10:78:D7:FF:14:6B:14:7C:7E:D8:11:D4:36 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 5ABF638E1B97D7CF9D0F84FED9C44B1A5A2C83AA Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa Signing time: Thu 12 Dec 2024 06:22:43 +0000 ROA not before: Thu 12 Dec 2024 06:17:43 +0000 ROA not after: Thu 11 Dec 2025 06:22:43 +0000 asID: 9312 IP address blocks: 103.56.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 00:18:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:bf:63:8e:1b:97:d7:cf:9d:0f:84:fe:d9:c4:4b:1a:5a:2c:83:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Dec 12 06:17:43 2024 GMT Not After : Dec 11 06:22:43 2025 GMT Subject: CN=576E1A490A9AE71078D7FF146B147C7ED811D436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:21:14:64:b6:b9:20:e7:5c:3c:f9:08:14:24: 36:7c:14:e1:f4:b6:a3:c5:e8:29:99:55:35:27:07: f0:dc:05:a9:50:dc:18:65:21:14:4f:37:41:8c:aa: 5c:84:c4:0c:0b:08:7a:42:9a:f1:28:92:ef:b2:2f: 55:60:e2:de:3d:71:18:0d:84:16:da:44:e1:92:83: d9:6b:e8:d0:d3:f0:41:45:b4:08:ef:58:83:12:e1: 71:5e:16:8d:d3:7e:5d:23:c0:38:fb:c4:41:e0:5e: 4c:cc:9c:5f:cf:69:97:b9:fd:86:fb:d3:0d:25:6d: 04:f8:40:f0:6b:60:3c:23:c0:34:c1:8d:84:ab:85: a5:53:71:0e:50:97:ea:7d:c9:5a:5e:f8:20:9c:a9: 7e:2e:fc:a1:8d:b9:c1:95:0a:bf:59:96:8a:b1:d5: 0c:24:50:e8:6b:0a:99:48:12:bc:92:2b:1d:9f:17: 51:53:06:a3:7f:8f:98:d0:b8:5c:69:7d:aa:67:4d: c3:b3:28:b8:24:3f:65:ce:01:ae:69:1b:dc:aa:c1: d1:09:e1:68:cb:9f:f3:71:f2:6c:cc:34:14:76:33: cb:79:81:1d:ba:73:29:96:76:e0:2f:45:c1:a3:f3: 48:2d:9a:8b:2c:32:89:ab:25:c0:08:ed:11:0f:ba: 45:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6E:1A:49:0A:9A:E7:10:78:D7:FF:14:6B:14:7C:7E:D8:11:D4:36 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.52.0/22 Signature Algorithm: sha256WithRSAEncryption 97:2b:69:08:97:01:54:de:5a:90:65:f0:cb:4b:ad:fe:05:31: 62:59:b1:a7:9c:8d:84:07:94:16:3f:ce:b5:0a:86:d7:17:66: 85:0c:3f:52:4e:40:fc:1e:0b:18:43:1a:10:9b:bc:51:02:be: 38:18:bc:b2:72:6a:3b:b5:5c:4d:e2:89:44:80:44:59:d8:da: 3e:4e:c8:41:2f:65:d8:11:81:5b:9b:0c:ff:1c:44:d0:0c:73: ab:6b:59:26:6f:51:58:33:c5:af:26:10:51:1d:4e:aa:b9:33: 51:a5:f0:bc:05:a1:19:b8:75:f5:1d:78:a1:d8:28:09:58:76: f3:24:58:77:30:dc:71:17:da:5b:df:71:da:1b:5b:04:7c:cb: f1:ba:16:f5:c0:76:cd:3c:77:6d:96:93:ee:6b:ab:9f:01:70: 69:bd:a1:8b:5b:88:95:74:a7:84:3e:98:84:7d:4b:23:00:a3: c9:bf:f9:94:24:35:d3:60:24:de:0e:fe:99:3f:9e:e9:05:0f: 14:64:cc:b8:93:4e:55:3f:ee:5b:da:b6:86:65:85:40:d2:15: 6f:70:b9:8d:d9:eb:db:6f:53:68:df:6f:14:b9:31:ca:bf:64: 54:34:21:f6:e4:58:01:8b:82:87:7d:23:0e:94:89:0a:78:3e: 44:74:dd:19 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUWr9jjhuX18+dD4T+2cRLGlosg6owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MTIxMjA2MTc0M1oX DTI1MTIxMTA2MjI0M1owMzExMC8GA1UEAxMoNTc2RTFBNDkwQTlBRTcxMDc4RDdG RjE0NkIxNDdDN0VEODExRDQzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYhFGS2uSDnXDz5CBQkNnwU4fS2o8XoKZlVNScH8NwFqVDcGGUhFE83QYyq XITEDAsIekKa8SiS77IvVWDi3j1xGA2EFtpE4ZKD2Wvo0NPwQUW0CO9YgxLhcV4W jdN+XSPAOPvEQeBeTMycX89pl7n9hvvTDSVtBPhA8GtgPCPANMGNhKuFpVNxDlCX 6n3JWl74IJypfi78oY25wZUKv1mWirHVDCRQ6GsKmUgSvJIrHZ8XUVMGo3+PmNC4 XGl9qmdNw7MouCQ/Zc4Brmkb3KrB0QnhaMuf83HybMw0FHYzy3mBHbpzKZZ24C9F waPzSC2aiywyiaslwAjtEQ+6RZkCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBRXbhpJ CprnEHjX/xRrFHx+2BHUNjAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzNTM2MmUzNTMyMmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzkzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnODQwDQYJKoZIhvcNAQEL BQADggEBAJcraQiXAVTeWpBl8MtLrf4FMWJZsaecjYQHlBY/zrUKhtcXZoUMP1JO QPweCxhDGhCbvFECvjgYvLJyaju1XE3iiUSARFnY2j5OyEEvZdgRgVubDP8cRNAM c6trWSZvUVgzxa8mEFEdTqq5M1Gl8LwFoRm4dfUdeKHYKAlYdvMkWHcw3HEX2lvf cdobWwR8y/G6FvXAds08d22Wk+5rq58BcGm9oYtbiJV0p4Q+mIR9SyMAo8m/+ZQk NdNgJN4O/pk/nukFDxRkzLiTTlU/7lvatoZlhUDSFW9wuY3Z69tvU2jfbxS5Mcq/ ZFQ0IfbkWAGLgod9Iw6UiQp4PkR03Rk= -----END CERTIFICATE-----Generated at Sat Apr 26 18:11:07 2025 by rpki-client