$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/323430333a326338313a313131303a3a2f34382d3438203d3e20323132353132.roa File: 323430333a326338313a313131303a3a2f34382d3438203d3e20323132353132.roa (raw, json) Hash identifier: RIk7xcVMnbCIgx+Zshg3ApVSzt3mjOjYr0DL9FosY+U= Subject key identifier: 22:96:5D:39:E8:B5:1C:4E:EC:29:1A:8A:C4:CA:40:FA:46:16:CB:3E Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 19A77ADAE2A705353983F609F08F8B303BB257E1 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/323430333a326338313a313131303a3a2f34382d3438203d3e20323132353132.roa Signing time: Wed 23 Apr 2025 12:02:09 +0000 ROA not before: Wed 23 Apr 2025 11:57:09 +0000 ROA not after: Wed 22 Apr 2026 12:02:09 +0000 asID: 212512 IP address blocks: 2403:2c81:1110::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 05:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a7:7a:da:e2:a7:05:35:39:83:f6:09:f0:8f:8b:30:3b:b2:57:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Apr 23 11:57:09 2025 GMT Not After : Apr 22 12:02:09 2026 GMT Subject: CN=22965D39E8B51C4EEC291A8AC4CA40FA4616CB3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c8:57:53:7f:ed:8d:cf:aa:05:a8:c6:15:06: c6:08:89:0a:f8:03:22:c7:fc:4c:31:ec:73:a9:b6: de:58:69:73:a2:bf:1d:03:e0:de:03:70:f8:81:09: 6a:5e:75:c6:53:4c:9b:9a:8c:bb:8c:3f:c0:35:4f: 5d:05:ba:15:3d:f9:0d:bd:17:6b:71:8f:f6:22:2d: 1d:a4:a5:9d:20:cb:9f:35:1f:d7:7d:d2:19:78:13: 50:b6:28:b5:b2:bb:bd:f8:8a:eb:92:3d:bd:ed:23: 97:bf:50:23:9c:35:f9:97:e4:5c:32:58:f2:ef:63: dc:75:a2:a8:2a:89:ac:db:28:40:db:19:13:8b:54: 17:d5:e1:ed:c8:8d:db:ff:87:1f:30:63:50:16:1b: 36:93:06:6b:ce:c2:f7:6a:0b:c9:98:a7:58:78:37: 78:d6:85:0c:ad:4d:be:f8:15:45:44:69:bb:fc:5b: c2:8b:58:50:5e:54:35:b9:f7:0a:77:aa:37:a1:0a: 53:de:b2:87:76:93:15:e7:93:db:fb:77:3e:44:a0: 2c:36:65:f5:f9:a5:6a:cb:c4:d8:3c:69:97:7b:a3: 87:17:ce:d0:22:d6:50:46:e1:99:23:e6:3b:f0:6a: 01:ba:27:c1:8b:e0:48:86:4c:de:0a:39:f7:ef:80: 57:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:96:5D:39:E8:B5:1C:4E:EC:29:1A:8A:C4:CA:40:FA:46:16:CB:3E X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/323430333a326338313a313131303a3a2f34382d3438203d3e20323132353132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2c81:1110::/48 Signature Algorithm: sha256WithRSAEncryption 30:4e:9f:0a:26:82:87:d7:3b:b3:ad:ae:72:c4:22:15:d6:9c: 12:3d:a8:e7:23:7c:f4:d4:a9:14:10:c1:ab:22:bf:4f:17:98: 83:d6:b8:bd:dc:d4:87:80:03:4c:86:3f:3e:9e:11:d4:64:1f: 64:15:41:81:f2:c9:e6:fc:98:13:29:ef:19:2e:be:4e:23:0c: 3d:bb:fe:11:12:e3:f2:7a:ef:c2:e9:4a:fd:28:1a:a8:94:5f: 3b:57:6c:c1:29:13:c0:1d:7e:9b:62:db:3c:29:dc:80:88:e7: 07:ca:d2:c9:95:b3:74:ce:d4:36:15:8d:73:0b:d4:62:02:56: 37:61:85:56:79:56:2a:6d:b9:88:1b:66:fb:b0:e8:0d:26:c0: f0:d1:1c:b5:ae:87:fb:66:1b:70:e1:3f:0e:ae:32:82:6c:55: 19:32:8e:2c:3f:2d:72:1d:5a:25:0b:b5:59:9c:8b:c7:8a:3c: 76:b2:9e:77:00:aa:1c:85:06:b5:e4:24:ca:be:02:1d:20:be: 65:16:44:99:43:f9:1e:1a:c9:1b:3c:fc:f3:6b:0c:94:23:f6: ba:e1:f2:18:af:b4:42:d2:e5:00:ac:68:c9:48:39:0b:30:97: 47:bc:9e:c2:e9:fd:bf:38:05:e6:cd:1c:af:71:d1:22:02:d2: 0a:63:2a:b2 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUGad62uKnBTU5g/YJ8I+LMDuyV+EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MDQyMzExNTcwOVoX DTI2MDQyMjEyMDIwOVowMzExMC8GA1UEAxMoMjI5NjVEMzlFOEI1MUM0RUVDMjkx QThBQzRDQTQwRkE0NjE2Q0IzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANvIV1N/7Y3PqgWoxhUGxgiJCvgDIsf8TDHsc6m23lhpc6K/HQPg3gNw+IEJ al51xlNMm5qMu4w/wDVPXQW6FT35Db0Xa3GP9iItHaSlnSDLnzUf133SGXgTULYo tbK7vfiK65I9ve0jl79QI5w1+ZfkXDJY8u9j3HWiqCqJrNsoQNsZE4tUF9Xh7ciN 2/+HHzBjUBYbNpMGa87C92oLyZinWHg3eNaFDK1NvvgVRURpu/xbwotYUF5UNbn3 CneqN6EKU96yh3aTFeeT2/t3PkSgLDZl9fmlasvE2Dxpl3ujhxfO0CLWUEbhmSPm O/BqAbonwYvgSIZM3go59++AVykCAwEAAaOCAfgwggH0MB0GA1UdDgQWBBQill05 6LUcTuwpGorEykD6RhbLPjAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwgYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLnJv YS5uZXQvcnJkcC94VG9tLzQyLzMyMzQzMDMzM2EzMjYzMzgzMTNhMzEzMTMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzIzNTMxMzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AyyBERAwDQYJKoZIhvcNAQELBQADggEBADBOnwomgofXO7OtrnLEIhXWnBI9qOcj fPTUqRQQwasiv08XmIPWuL3c1IeAA0yGPz6eEdRkH2QVQYHyyeb8mBMp7xkuvk4j DD27/hES4/J678LpSv0oGqiUXztXbMEpE8Adfpti2zwp3ICI5wfK0smVs3TO1DYV jXML1GICVjdhhVZ5ViptuYgbZvuw6A0mwPDRHLWuh/tmG3DhPw6uMoJsVRkyjiw/ LXIdWiULtVmci8eKPHaynncAqhyFBrXkJMq+Ah0gvmUWRJlD+R4ayRs8/PNrDJQj 9rrh8hivtELS5QCsaMlIOQswl0e8nsLp/b84BebNHK9x0SIC0gpjKrI= -----END CERTIFICATE-----Generated at Fri Apr 25 06:08:48 2025 by rpki-client on console.sobornost.net