$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2038383838.roa File: 3130332e31392e302e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: OdkPxJ/egLNYvt3ZKZFs00x32CRh57zZD7kdTb64n48= Subject key identifier: CA:14:4C:6F:63:1D:96:DA:50:B9:7D:35:5A:90:82:CB:83:5E:AA:6A Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 734E791953823D6E0DA11D3AEF0BBA7DBD077280 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2038383838.roa Signing time: Thu 30 Apr 2026 09:12:31 +0000 ROA not before: Thu 30 Apr 2026 09:07:31 +0000 ROA not after: Thu 29 Apr 2027 09:12:31 +0000 asID: 8888 IP address blocks: 103.19.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:4e:79:19:53:82:3d:6e:0d:a1:1d:3a:ef:0b:ba:7d:bd:07:72:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Apr 30 09:07:31 2026 GMT Not After : Apr 29 09:12:31 2027 GMT Subject: CN=CA144C6F631D96DA50B97D355A9082CB835EAA6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:19:11:12:91:09:c7:03:57:a2:0e:49:3e: 38:7a:3d:42:1e:54:7e:69:fc:8a:48:27:d2:37:41: 45:cb:69:46:a8:99:a7:89:f2:3f:e0:46:7c:01:b8: a3:df:40:0a:ad:a4:40:cf:dd:7b:76:3c:7c:c0:19: e4:4b:b2:a1:0e:18:37:61:12:9d:ed:a5:5d:1e:d3: ac:8d:48:14:df:3b:2d:a5:73:a2:50:85:87:eb:69: 2b:74:94:01:5c:51:cb:3d:e1:e8:0b:df:21:8e:bc: 40:55:0e:4e:a0:8b:9c:95:6a:7a:78:c8:97:37:e6: 2e:11:63:fd:a6:b9:a6:ac:f7:c4:66:85:42:bf:50: 35:ce:be:14:c1:e0:23:47:11:f5:08:26:b2:3a:da: e0:77:47:16:af:bc:d6:fe:09:34:85:6a:46:ef:26: 6e:1f:bc:e6:2d:5b:99:76:d9:fa:cf:61:ff:50:85: a7:41:32:cc:07:5c:cc:5a:51:25:5f:03:d7:97:1e: 25:64:9e:ac:28:c1:62:30:de:76:22:7e:62:2a:2d: 13:2e:41:96:e4:2a:54:98:03:de:fa:4f:6c:5d:e3: 4e:aa:58:8a:3a:4a:28:3d:38:5a:b5:1c:47:a4:26: 5a:72:da:ed:f2:4f:57:c5:f4:00:45:a2:b8:45:5f: 4d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:14:4C:6F:63:1D:96:DA:50:B9:7D:35:5A:90:82:CB:83:5E:AA:6A X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e302e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.0.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:7a:bb:59:e0:4a:26:e9:3c:77:6b:cb:f0:e2:38:16:f5:04: 67:e0:f7:ef:bb:2c:67:31:01:c9:29:3b:42:b9:19:ff:8b:d3: c6:0c:78:06:75:db:62:37:b6:67:34:e7:7d:0f:69:d2:9a:87: 5c:c1:0b:2a:bb:5b:d6:9f:72:9a:eb:d4:fc:10:e3:c9:47:5d: 88:fe:25:d9:d6:7e:d4:30:cd:da:70:ae:06:b4:07:17:e8:94: 7b:17:aa:e3:11:2f:63:a7:5c:9e:bd:cc:37:09:5b:15:13:b9: 0e:d4:b2:52:0a:ef:1f:7e:a8:fc:e7:c4:4d:25:d3:1e:99:ab: cf:f3:db:03:9d:ea:b8:4b:de:88:7b:fd:97:8f:8b:86:22:a6: 56:85:cd:9c:55:e6:1b:5d:f7:9a:02:33:97:5e:08:a0:5d:75: 3b:eb:9e:dc:46:4c:c2:ce:7d:60:56:a7:c1:bd:f7:d8:b2:22: 7c:33:f7:c0:a2:29:41:f9:45:ee:05:fd:98:32:61:b9:96:dd: 3f:8b:3a:a9:9c:ff:69:35:60:29:dc:21:d5:41:68:08:4c:c9: 71:2e:9a:77:a7:0e:1f:1a:d2:40:93:72:6d:fa:7f:27:8b:c4: 94:ea:6a:95:7d:53:44:49:2d:4b:67:96:84:24:09:18:e3:20: 4b:95:52:18 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUc055GVOCPW4NoR067wu6fb0HcoAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI2MDQzMDA5MDczMVoX DTI3MDQyOTA5MTIzMVowMzExMC8GA1UEAxMoQ0ExNDRDNkY2MzFEOTZEQTUwQjk3 RDM1NUE5MDgyQ0I4MzVFQUE2QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3xGRESkQnHA1eiDkk+OHo9Qh5Ufmn8ikgn0jdBRctpRqiZp4nyP+BGfAG4 o99ACq2kQM/de3Y8fMAZ5EuyoQ4YN2ESne2lXR7TrI1IFN87LaVzolCFh+tpK3SU AVxRyz3h6AvfIY68QFUOTqCLnJVqenjIlzfmLhFj/aa5pqz3xGaFQr9QNc6+FMHg I0cR9Qgmsjra4HdHFq+81v4JNIVqRu8mbh+85i1bmXbZ+s9h/1CFp0EyzAdczFpR JV8D15ceJWSerCjBYjDediJ+YiotEy5BluQqVJgD3vpPbF3jTqpYijpKKD04WrUc R6QmWnLa7fJPV8X0AEWiuEVfTVMCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBTKFExv Yx2W2lC5fTVakILLg16qajAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM4MzgzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxMAMA0GCSqGSIb3DQEBCwUA A4IBAQBcertZ4Eom6Tx3a8vw4jgW9QRn4PfvuyxnMQHJKTtCuRn/i9PGDHgGddti N7ZnNOd9D2nSmodcwQsqu1vWn3Ka69T8EOPJR12I/iXZ1n7UMM3acK4GtAcX6JR7 F6rjES9jp1yevcw3CVsVE7kO1LJSCu8ffqj858RNJdMemavP89sDneq4S96Ie/2X j4uGIqZWhc2cVeYbXfeaAjOXXgigXXU7657cRkzCzn1gVqfBvffYsiJ8M/fAoilB +UXuBf2YMmG5lt0/izqpnP9pNWAp3CHVQWgITMlxLpp3pw4fGtJAk3Jt+n8ni8SU 6mqVfVNESS1LZ5aEJAkY4yBLlVIY -----END CERTIFICATE-----Generated at Tue May 12 23:24:07 2026 by rpki-client