$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa File: 3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa (raw, json) Hash identifier: zSYMIZktDyLCvLLd01Jm5t54+z5BD4tf3RZzEv5Z+0I= Subject key identifier: 77:B6:95:EC:42:46:F1:7C:BC:B1:DF:58:38:C2:FC:3E:19:A8:1B:3A Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 58A832625C1EAF58F7B6B9817F1DBF39F189BFC0 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa Signing time: Sat 16 Aug 2025 01:48:27 +0000 ROA not before: Sat 16 Aug 2025 01:43:27 +0000 ROA not after: Sat 15 Aug 2026 01:48:27 +0000 asID: 9312 IP address blocks: 103.192.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 05:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a8:32:62:5c:1e:af:58:f7:b6:b9:81:7f:1d:bf:39:f1:89:bf:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Aug 16 01:43:27 2025 GMT Not After : Aug 15 01:48:27 2026 GMT Subject: CN=77B695EC4246F17CBCB1DF5838C2FC3E19A81B3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7c:22:a0:03:2d:42:4d:e5:c4:87:34:c3:25: 9d:42:0c:99:66:79:20:cb:42:fb:e9:37:32:45:08: 5c:1b:16:8c:f9:2a:63:1d:ff:cb:4f:05:0f:dc:3d: 6b:5e:c3:ef:fd:bf:87:7b:48:65:3b:0f:6a:bf:72: d2:08:d4:41:c7:ad:9c:0c:96:bb:20:3d:f7:0b:d0: 3f:75:a3:d8:4d:c0:86:d4:ed:52:1d:aa:19:a2:96: c1:36:76:8e:2b:e3:b3:10:98:23:60:14:89:63:7c: 2a:d6:44:cf:11:b1:31:0a:d5:a0:d3:86:12:92:e4: ea:87:85:cb:a5:b3:32:9b:de:75:ad:66:e0:a0:56: 97:dd:f9:e2:d8:3c:cb:eb:59:fc:af:15:62:ba:0c: d9:e4:d2:57:51:ee:9b:77:fb:b1:27:b5:44:b3:bb: 22:6f:10:ce:16:86:ec:38:69:8b:60:09:0c:85:05: 68:a3:a7:2e:1e:8f:2a:d8:b8:47:ae:96:27:f8:9a: d3:0e:14:47:d7:65:a9:db:f8:3f:80:46:ad:51:c2: 29:9f:3b:69:74:7c:71:b7:4d:95:51:4e:af:64:c3: 99:b9:4b:d1:c4:e8:0f:ea:bf:fa:3c:3e:a8:9d:c7: 5e:08:b5:31:a7:25:d8:d7:3b:ec:e0:5c:60:15:67: 07:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B6:95:EC:42:46:F1:7C:BC:B1:DF:58:38:C2:FC:3E:19:A8:1B:3A X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.227.0/24 Signature Algorithm: sha256WithRSAEncryption 68:75:d2:76:e9:e3:34:23:b5:15:81:ea:d1:16:a6:40:ee:cf: cc:99:11:08:3f:53:8e:81:fd:81:52:de:29:38:8d:28:d3:f8: 65:52:e2:9f:0c:b6:4e:3f:23:01:7a:f6:94:58:79:01:a7:13: 3b:00:23:67:f2:9f:a3:08:4f:af:18:69:ca:ef:92:25:4b:ce: 95:71:90:e0:1a:1f:43:91:98:84:cd:22:4b:dd:1d:cb:49:84: 29:b4:56:08:73:02:1a:97:03:71:d7:e4:4f:95:69:26:39:f5: cf:30:26:1b:f4:60:bf:1a:19:96:33:9c:d9:5b:c9:21:a2:d0: 94:90:c5:14:49:a5:66:f1:af:5e:c6:d8:f3:cf:c1:13:c2:1b: 29:df:d2:45:fe:18:28:9a:07:84:3c:33:9e:07:6c:fc:72:41: da:85:a6:5a:7a:d5:7f:75:4c:72:77:29:2f:92:10:e5:fe:cf: 95:1c:ac:c4:c5:40:a5:38:0e:64:98:2c:57:f4:bd:ea:60:80: a3:0f:90:63:d0:b0:a2:1a:1e:d3:5c:b9:0b:7b:c2:ea:7f:86: 69:92:64:c1:ba:6f:42:45:e6:25:32:2d:97:19:0a:91:ce:ce: 5a:34:b3:6e:7b:5c:0b:74:71:d1:a8:71:b0:13:f8:6a:1e:30: 65:4f:e9:22 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUWKgyYlwer1j3trmBfx2/OfGJv8AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MDgxNjAxNDMyN1oX DTI2MDgxNTAxNDgyN1owMzExMC8GA1UEAxMoNzdCNjk1RUM0MjQ2RjE3Q0JDQjFE RjU4MzhDMkZDM0UxOUE4MUIzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMp8IqADLUJN5cSHNMMlnUIMmWZ5IMtC++k3MkUIXBsWjPkqYx3/y08FD9w9 a17D7/2/h3tIZTsPar9y0gjUQcetnAyWuyA99wvQP3Wj2E3AhtTtUh2qGaKWwTZ2 jivjsxCYI2AUiWN8KtZEzxGxMQrVoNOGEpLk6oeFy6WzMpveda1m4KBWl9354tg8 y+tZ/K8VYroM2eTSV1Hum3f7sSe1RLO7Im8QzhaG7Dhpi2AJDIUFaKOnLh6PKti4 R66WJ/ia0w4UR9dlqdv4P4BGrVHCKZ87aXR8cbdNlVFOr2TDmblL0cToD+q/+jw+ qJ3HXgi1Macl2Nc77OBcYBVnB+sCAwEAAaOCAeowggHmMB0GA1UdDgQWBBR3tpXs QkbxfLyx31g4wvw+GagbOjAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNzJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DjMA0GCSqGSIb3 DQEBCwUAA4IBAQBoddJ26eM0I7UVgerRFqZA7s/MmREIP1OOgf2BUt4pOI0o0/hl UuKfDLZOPyMBevaUWHkBpxM7ACNn8p+jCE+vGGnK75IlS86VcZDgGh9DkZiEzSJL 3R3LSYQptFYIcwIalwNx1+RPlWkmOfXPMCYb9GC/GhmWM5zZW8khotCUkMUUSaVm 8a9extjzz8ETwhsp39JF/hgomgeEPDOeB2z8ckHahaZaetV/dUxydykvkhDl/s+V HKzExUClOA5kmCxX9L3qYICjD5Bj0LCiGh7TXLkLe8Lqf4ZpkmTBum9CReYlMi2X GQqRzs5aNLNue1wLdHHRqHGwE/hqHjBlT+ki -----END CERTIFICATE-----Generated at Sat Aug 23 23:29:29 2025 by rpki-client