$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa File: 3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa (raw, json) Hash identifier: Llj+03VjLfYvyo3/mZMS4VkVIFeTIVltGLuL2EJ+lgY= Subject key identifier: DB:56:BD:FA:FA:A1:A2:E1:80:E4:5A:B9:96:F3:CF:6F:D4:40:20:91 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 1E901533D1FC6B614B22ABE92D48617242989DDC Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa Signing time: Wed 08 Oct 2025 18:50:56 +0000 ROA not before: Wed 08 Oct 2025 18:45:56 +0000 ROA not after: Wed 07 Oct 2026 18:50:56 +0000 asID: 137443 IP address blocks: 103.192.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 04:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:90:15:33:d1:fc:6b:61:4b:22:ab:e9:2d:48:61:72:42:98:9d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Oct 8 18:45:56 2025 GMT Not After : Oct 7 18:50:56 2026 GMT Subject: CN=DB56BDFAFAA1A2E180E45AB996F3CF6FD4402091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:5c:38:f1:bd:20:5b:77:9b:06:4e:ba:95: 47:a2:9f:21:4f:80:fd:9c:1e:c7:e8:1d:05:62:e6: 4a:65:a5:aa:eb:b2:bd:43:ec:43:c7:15:4e:07:6c: 18:44:5f:17:1e:61:4f:4a:01:79:f3:c5:de:37:89: bd:ce:ea:f1:5f:21:dc:8d:9a:e7:3f:30:09:33:e4: d4:1d:ae:45:1d:11:9a:0e:8d:50:19:58:85:a8:52: a3:bc:66:2a:bc:50:a4:1e:53:8e:21:12:5c:65:27: 3a:9a:0d:e3:ca:eb:bf:25:1b:38:fd:d9:e3:54:df: 11:ff:b9:e3:53:6f:9d:46:e0:dc:5d:49:7d:eb:5d: fa:80:d0:8c:2e:e5:5e:fd:2c:23:ea:ad:e7:2e:c1: e5:34:16:3b:aa:88:b9:6a:eb:ff:a6:d6:09:9c:48: 5b:91:06:51:d0:e7:dc:98:bd:40:f3:4e:9e:08:b3: 39:60:25:01:68:a5:7c:5c:26:1e:05:b1:4b:91:e0: a4:44:50:1d:16:59:6f:02:9b:f8:94:a5:b6:bb:d9: a2:bf:5a:83:12:07:da:98:cb:6d:14:ca:b9:1c:e4: ff:62:e5:15:df:7f:77:61:d5:2e:bb:cb:9d:3f:7b: 09:c9:fa:a9:ec:da:60:35:e4:a8:5a:8d:ad:e6:0e: 0b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:56:BD:FA:FA:A1:A2:E1:80:E4:5A:B9:96:F3:CF:6F:D4:40:20:91 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.226.0/24 Signature Algorithm: sha256WithRSAEncryption 78:27:0d:8b:c9:37:5e:57:ec:4e:46:3f:4e:a8:ba:24:7c:4c: c6:67:e5:d8:d3:69:5a:f5:be:22:3f:be:21:fb:28:49:10:a7: 7c:68:37:b5:d9:4f:4f:d9:82:f2:45:51:3a:8c:29:1b:9b:3a: d5:83:0f:2c:db:d1:40:68:d0:22:b5:3b:a9:da:ad:34:97:f1: cc:41:33:2e:30:bf:96:3f:4f:9c:b5:84:e7:ad:78:00:8b:66: 25:79:40:7b:4b:bf:77:ee:dc:ff:6d:1d:e7:27:12:13:23:72: 87:4c:44:ff:25:78:d4:4d:a3:5e:61:82:15:ac:2f:37:1f:37: 99:12:72:41:a0:b1:41:6b:52:fc:e1:d3:e5:f3:e2:54:ea:47: 65:e2:be:c9:38:d6:4f:f3:df:63:1c:f2:1c:10:49:53:1e:17: d9:1c:b2:48:77:18:9e:d6:9e:90:b2:78:61:9c:3e:19:5f:7c: db:e5:e0:d9:d3:9c:74:5d:ca:9a:5a:ca:89:32:0a:fc:3c:eb: 79:b6:ac:8a:47:ce:20:06:1a:3e:01:9d:ed:04:1e:b4:15:4b: a4:ab:4b:e1:af:d6:d6:a7:82:2f:ef:9f:09:3d:76:6a:92:42: ab:9c:94:d1:a3:6f:52:90:fc:6c:15:b5:21:41:89:0a:47:18: 56:b7:be:0c -----BEGIN CERTIFICATE----- MIIE+zCCA+OgAwIBAgIUHpAVM9H8a2FLIqvpLUhhckKYndwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MTAwODE4NDU1NloX DTI2MTAwNzE4NTA1NlowMzExMC8GA1UEAxMoREI1NkJERkFGQUExQTJFMTgwRTQ1 QUI5OTZGM0NGNkZENDQwMjA5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALowXDjxvSBbd5sGTrqVR6KfIU+A/Zwex+gdBWLmSmWlquuyvUPsQ8cVTgds GERfFx5hT0oBefPF3jeJvc7q8V8h3I2a5z8wCTPk1B2uRR0Rmg6NUBlYhahSo7xm KrxQpB5TjiESXGUnOpoN48rrvyUbOP3Z41TfEf+541NvnUbg3F1Jfetd+oDQjC7l Xv0sI+qt5y7B5TQWO6qIuWrr/6bWCZxIW5EGUdDn3Ji9QPNOngizOWAlAWilfFwm HgWxS5HgpERQHRZZbwKb+JSltrvZor9agxIH2pjLbRTKuRzk/2LlFd9/d2HVLrvL nT97Ccn6qezaYDXkqFqNreYOC4MCAwEAAaOCAe4wggHqMB0GA1UdDgQWBBTbVr36 +qGi4YDkWrmW889v1EAgkTAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNjJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM0MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfA4jANBgkq hkiG9w0BAQsFAAOCAQEAeCcNi8k3XlfsTkY/Tqi6JHxMxmfl2NNpWvW+Ij++Ifso SRCnfGg3tdlPT9mC8kVROowpG5s61YMPLNvRQGjQIrU7qdqtNJfxzEEzLjC/lj9P nLWE5614AItmJXlAe0u/d+7c/20d5ycSEyNyh0xE/yV41E2jXmGCFawvNx83mRJy QaCxQWtS/OHT5fPiVOpHZeK+yTjWT/PfYxzyHBBJUx4X2RyySHcYntaekLJ4YZw+ GV982+Xg2dOcdF3KmlrKiTIK/DzrebasikfOIAYaPgGd7QQetBVLpKtL4a/W1qeC L++fCT12apJCq5yU0aNvUpD8bBW1IUGJCkcYVre+DA== -----END CERTIFICATE-----Generated at Mon Oct 20 04:19:18 2025 by rpki-client