$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203233393539.roa File: 3130332e31392e312e302f32342d3234203d3e203233393539.roa (raw, json) Hash identifier: G84m2N1G+TVoj6GKSFRUIddzsWwuDvGcho5tXDH5RJo= Subject key identifier: EB:38:73:A9:70:74:AC:E8:64:37:B6:B2:2A:89:B5:62:40:51:82:77 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 1BB3C11AA0238136D93F934AEFEDBF49D3362C26 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203233393539.roa Signing time: Sat 16 Aug 2025 01:48:26 +0000 ROA not before: Sat 16 Aug 2025 01:43:26 +0000 ROA not after: Sat 15 Aug 2026 01:48:26 +0000 asID: 23959 IP address blocks: 103.19.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:b3:c1:1a:a0:23:81:36:d9:3f:93:4a:ef:ed:bf:49:d3:36:2c:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Aug 16 01:43:26 2025 GMT Not After : Aug 15 01:48:26 2026 GMT Subject: CN=EB3873A97074ACE86437B6B22A89B56240518277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:05:f7:77:76:d1:bf:e7:4c:18:d8:c8:84:4a: dc:d6:94:8e:19:8b:74:3a:14:2a:28:91:06:ce:c5: 24:21:b1:e7:b8:75:3e:26:28:db:ca:dd:24:a9:7a: 56:b5:cb:ce:f2:0b:6a:98:31:3e:33:2e:06:2d:43: 11:61:91:c8:f3:53:42:23:39:fe:16:9d:28:7a:43: 08:a1:37:16:df:30:6d:2e:62:70:e1:88:01:bb:04: 4d:ab:93:69:60:f5:5d:1b:b2:86:cc:ad:35:df:a2: 0d:fe:0d:31:fa:e6:13:68:ec:f3:53:c3:31:20:ec: d6:78:50:9e:3f:d3:d7:ff:46:57:54:8b:8d:81:2c: fa:60:53:11:d8:72:1d:91:b5:7a:1c:25:cf:c4:9f: e5:42:d9:e7:53:24:42:0e:e0:7c:74:95:a0:cb:b5: 2f:14:00:67:18:2f:77:3c:21:a7:45:30:5f:a8:d3: d1:82:80:43:18:e0:3c:24:2d:bf:4d:c2:f8:ce:3a: 3e:d2:28:3d:45:6c:4d:da:a7:4a:8e:a8:2a:56:b0: 67:3a:cf:7c:cf:a7:c3:d6:39:3b:e0:47:fe:5d:35: f3:dc:cc:7c:6e:bc:e1:ff:23:bf:fe:ab:5e:2f:23: 8f:7d:e2:df:ce:b1:31:86:29:82:ab:d2:89:8c:eb: 24:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:38:73:A9:70:74:AC:E8:64:37:B6:B2:2A:89:B5:62:40:51:82:77 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.1.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:e1:3c:9b:c2:18:1b:88:10:bc:37:9e:00:a5:12:ee:e1:e1: fd:eb:88:59:54:7d:50:c6:0c:71:19:fe:f4:be:a3:8f:c0:0c: 93:4f:f4:b7:ca:51:3b:07:47:a9:a1:b3:d4:1c:13:63:83:7c: 8f:75:c9:68:dd:c2:3c:73:32:29:d6:0f:b8:3d:32:a7:28:d8: ff:3b:bc:f1:24:73:5c:bd:92:76:69:3a:7b:b6:8a:44:26:38: 14:8e:2f:7e:15:79:ca:01:ce:a4:e7:17:18:6a:47:2f:df:6b: b8:db:a0:05:c2:e7:a9:a0:b7:a3:39:16:97:2a:2f:82:d2:22: 62:06:2d:34:a4:35:64:e3:0f:c9:6e:ef:79:3e:d6:56:71:be: 09:d2:c1:33:9c:a1:bc:b9:34:3f:f9:74:84:18:ff:bf:c1:a8: 44:3b:28:b4:78:65:56:7a:91:3d:38:e9:89:05:55:4b:29:fc: 09:77:c4:6f:a5:96:ad:d6:24:4f:be:4e:4d:e9:27:5e:12:52: e9:de:bb:88:78:dd:38:ee:f3:82:ab:bb:27:00:18:16:37:91: 80:e3:5d:df:87:61:f6:c8:c7:5a:57:82:0a:e4:5d:31:fe:67: 10:42:0d:12:a9:0b:e2:9b:79:db:9b:65:09:cb:d8:0d:31:ab: 3c:a9:96:a2 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUG7PBGqAjgTbZP5NK7+2/SdM2LCYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI1MDgxNjAxNDMyNloX DTI2MDgxNTAxNDgyNlowMzExMC8GA1UEAxMoRUIzODczQTk3MDc0QUNFODY0MzdC NkIyMkE4OUI1NjI0MDUxODI3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcF93d20b/nTBjYyIRK3NaUjhmLdDoUKiiRBs7FJCGx57h1PiYo28rdJKl6 VrXLzvILapgxPjMuBi1DEWGRyPNTQiM5/hadKHpDCKE3Ft8wbS5icOGIAbsETauT aWD1XRuyhsytNd+iDf4NMfrmE2js81PDMSDs1nhQnj/T1/9GV1SLjYEs+mBTEdhy HZG1ehwlz8Sf5ULZ51MkQg7gfHSVoMu1LxQAZxgvdzwhp0UwX6jT0YKAQxjgPCQt v03C+M46PtIoPUVsTdqnSo6oKlawZzrPfM+nw9Y5O+BH/l0189zMfG684f8jv/6r Xi8jj33i386xMYYpgqvSiYzrJBsCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBTrOHOp cHSs6GQ3trIqibViQFGCdzAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MmUzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMyMzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnEwEwDQYJKoZIhvcNAQEL BQADggEBAE/hPJvCGBuIELw3ngClEu7h4f3riFlUfVDGDHEZ/vS+o4/ADJNP9LfK UTsHR6mhs9QcE2ODfI91yWjdwjxzMinWD7g9Mqco2P87vPEkc1y9knZpOnu2ikQm OBSOL34VecoBzqTnFxhqRy/fa7jboAXC56mgt6M5FpcqL4LSImIGLTSkNWTjD8lu 73k+1lZxvgnSwTOcoby5ND/5dIQY/7/BqEQ7KLR4ZVZ6kT046YkFVUsp/Al3xG+l lq3WJE++Tk3pJ14SUuneu4h43Tju84KruycAGBY3kYDjXd+HYfbIx1pXggrkXTH+ ZxBCDRKpC+KbedubZQnL2A0xqzyplqI= -----END CERTIFICATE-----Generated at Sat Aug 23 23:55:06 2025 by rpki-client