$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa File: 3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: +KuRbJFQY5aGW3Vwbixsb+VwelcXB/flpjtQo5u2GAE= Subject key identifier: E0:07:08:43:61:83:94:2E:05:35:2A:C2:ED:E2:C5:14:12:CE:90:FF Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 388771AA417CE18467872BCDBFE6B5EC62894F1F Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa Signing time: Sat 16 Aug 2025 01:48:28 +0000 ROA not before: Sat 16 Aug 2025 01:43:28 +0000 ROA not after: Sat 15 Aug 2026 01:48:28 +0000 asID: 9312 IP address blocks: 103.192.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 01:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:87:71:aa:41:7c:e1:84:67:87:2b:cd:bf:e6:b5:ec:62:89:4f:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Aug 16 01:43:28 2025 GMT Not After : Aug 15 01:48:28 2026 GMT Subject: CN=E00708436183942E05352AC2EDE2C51412CE90FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:87:4b:b2:f6:4f:ae:1c:36:8f:ac:08:b1:bd: ae:a6:0c:a2:07:f7:eb:58:a3:fd:92:ce:a6:3e:4a: 04:ab:ac:1b:6b:77:41:5b:9e:fc:fc:dd:2f:7a:a2: 2c:81:90:ad:2e:f9:94:68:41:ca:2d:1c:78:df:04: 03:7a:7a:2a:91:f7:5b:23:f9:aa:d3:08:3c:1f:48: 59:7e:d9:1f:4a:ee:fb:89:a7:7a:7e:7d:7c:46:59: 7c:01:ea:2b:da:9d:85:7b:96:81:35:39:6b:18:2b: fa:2c:25:27:15:ea:5e:5e:be:3d:51:b5:20:90:d3: c5:3a:db:56:0e:58:4f:b3:72:bf:a9:33:25:5e:43: a0:78:86:b2:39:46:7c:90:41:b1:8b:bb:78:6e:1a: 26:80:43:84:63:da:3a:8a:58:f3:2a:08:2d:ad:65: 5b:46:f8:1d:8e:1d:4a:35:df:90:cf:0a:b1:b6:6d: 70:56:d2:b0:ba:b7:82:b0:58:6a:2d:54:0d:2a:4a: ce:d9:41:22:1f:59:10:cb:3f:ca:ec:ed:de:cb:62: fd:8a:9d:e6:25:c3:76:20:66:6b:1f:dc:dc:f2:be: 8b:36:ed:40:0d:4b:3c:5a:d1:9e:62:31:0e:02:38: 65:a8:b5:99:45:b9:18:63:55:d6:c2:50:1e:1a:b0: 9f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:07:08:43:61:83:94:2E:05:35:2A:C2:ED:E2:C5:14:12:CE:90:FF X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.224.0/24 Signature Algorithm: sha256WithRSAEncryption 04:28:28:1f:9f:6f:01:0c:24:96:99:72:c3:f0:92:40:de:65: bb:75:77:ae:31:d6:3f:ca:ff:ec:fa:ad:92:df:3f:18:f3:a6: f1:2d:7e:12:5f:35:e0:8d:cd:0a:15:7e:c8:3d:83:a2:fb:af: 13:f9:4a:c4:ef:9f:fa:e7:ca:38:87:d7:d2:3d:40:c6:5e:69: 58:f1:cd:57:00:43:90:cc:72:fd:31:96:b5:f3:68:f2:96:80: 69:32:76:03:87:a3:ce:d3:49:14:28:b6:90:54:d3:d0:4b:e4: 5d:96:2f:be:37:52:98:2d:ac:a9:db:09:a8:14:ad:5d:27:03: 68:c6:01:32:a9:6c:94:fd:cd:2c:14:a7:66:3b:91:f1:63:94: c2:8b:3d:b9:ab:72:80:22:fa:c3:ae:18:b3:f2:fd:77:d9:c2: f8:2c:fd:de:04:b6:f5:e9:46:89:cf:ad:e7:4d:70:f8:7b:68: b1:bd:3d:51:c6:42:bc:96:06:9e:60:2e:a2:6b:d5:a3:f6:33: 07:22:f9:c5:29:76:c1:c4:0d:65:3e:38:11:4d:03:79:93:11: 58:75:87:b4:78:5c:0f:44:f1:a6:d9:64:91:b2:2c:8a:0c:da: 8c:40:d0:63:a7:a4:37:68:dd:f6:e9:0f:70:13:f7:a3:7a:25: e2:ed:9d:8d -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUOIdxqkF84YRnhyvNv+a17GKJTx8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MDgxNjAxNDMyOFoX DTI2MDgxNTAxNDgyOFowMzExMC8GA1UEAxMoRTAwNzA4NDM2MTgzOTQyRTA1MzUy QUMyRURFMkM1MTQxMkNFOTBGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+HS7L2T64cNo+sCLG9rqYMogf361ij/ZLOpj5KBKusG2t3QVue/PzdL3qi LIGQrS75lGhByi0ceN8EA3p6KpH3WyP5qtMIPB9IWX7ZH0ru+4mnen59fEZZfAHq K9qdhXuWgTU5axgr+iwlJxXqXl6+PVG1IJDTxTrbVg5YT7Nyv6kzJV5DoHiGsjlG fJBBsYu7eG4aJoBDhGPaOopY8yoILa1lW0b4HY4dSjXfkM8KsbZtcFbSsLq3grBY ai1UDSpKztlBIh9ZEMs/yuzt3sti/Yqd5iXDdiBmax/c3PK+izbtQA1LPFrRnmIx DgI4Zai1mUW5GGNV1sJQHhqwn4MCAwEAAaOCAeowggHmMB0GA1UdDgQWBBTgBwhD YYOULgU1KsLt4sUUEs6Q/zAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNDJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DgMA0GCSqGSIb3 DQEBCwUAA4IBAQAEKCgfn28BDCSWmXLD8JJA3mW7dXeuMdY/yv/s+q2S3z8Y86bx LX4SXzXgjc0KFX7IPYOi+68T+UrE75/658o4h9fSPUDGXmlY8c1XAEOQzHL9MZa1 82jyloBpMnYDh6PO00kUKLaQVNPQS+Rdli++N1KYLayp2wmoFK1dJwNoxgEyqWyU /c0sFKdmO5HxY5TCiz25q3KAIvrDrhiz8v132cL4LP3eBLb16UaJz63nTXD4e2ix vT1RxkK8lgaeYC6ia9Wj9jMHIvnFKXbBxA1lPjgRTQN5kxFYdYe0eFwPRPGm2WSR siyKDNqMQNBjp6Q3aN326Q9wE/ejeiXi7Z2N -----END CERTIFICATE-----Generated at Sun Aug 24 06:23:16 2025 by rpki-client