$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203433393539.roa File: 3130332e31392e312e302f32342d3234203d3e203433393539.roa (raw, json) Hash identifier: 3WgGrlxaBO9Ar4c9GWgQ8/GsIn0hvSdwAUxUpv/ynYU= Subject key identifier: 6E:F9:6F:5A:B8:03:E9:30:63:2E:E8:E8:50:B8:E2:46:FA:DE:ED:A5 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 0F58AD1CCFBC854025428349E5BC86F4966321E6 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203433393539.roa Signing time: Sat 16 Aug 2025 01:48:26 +0000 ROA not before: Sat 16 Aug 2025 01:43:26 +0000 ROA not after: Sat 15 Aug 2026 01:48:26 +0000 asID: 43959 IP address blocks: 103.19.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:58:ad:1c:cf:bc:85:40:25:42:83:49:e5:bc:86:f4:96:63:21:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Aug 16 01:43:26 2025 GMT Not After : Aug 15 01:48:26 2026 GMT Subject: CN=6EF96F5AB803E930632EE8E850B8E246FADEEDA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e3:d6:af:89:03:9c:53:78:d9:3e:46:59:3d: 3e:37:dc:6f:4d:e0:17:f2:3c:25:c8:85:40:73:b4: 36:83:90:46:2b:45:32:59:81:09:66:80:3f:bf:a6: f5:5e:de:b6:b6:e2:a8:db:5b:63:c0:d4:b3:48:0c: fb:9c:38:bf:bf:db:a1:c4:a5:17:60:4e:d4:05:12: 10:68:83:86:44:e2:17:9f:16:e5:9e:12:60:0b:c7: 5a:0f:11:8c:1f:6a:2a:81:48:5e:25:9d:7a:c7:ff: 7e:23:b7:ca:2a:fb:b5:66:58:96:0a:54:83:7f:c8: 55:de:27:e4:de:ba:34:cd:d4:8b:2b:9c:fd:b3:d7: 83:0b:42:0b:6e:6b:62:b2:96:33:ab:1d:49:44:6f: fa:d8:4d:56:50:b0:7a:7e:75:fb:2f:61:46:5b:5a: 69:e3:3c:b2:e9:31:c3:73:18:ff:a4:3f:28:c3:c1: ed:0c:ba:0c:3f:3d:47:52:3a:64:a8:30:8c:01:d8: ef:1c:29:1d:a4:79:4d:77:21:99:fa:48:44:d8:f1: 7b:b2:40:87:42:da:b5:1a:55:dd:b0:19:7e:86:54: fe:ec:24:0e:1e:43:0a:b0:b6:b3:fe:00:53:58:2b: d2:a1:3a:00:22:41:95:a3:0a:61:c5:05:4b:cb:ab: 92:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:F9:6F:5A:B8:03:E9:30:63:2E:E8:E8:50:B8:E2:46:FA:DE:ED:A5 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e203433393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.1.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:dc:3e:72:0f:bd:b4:e0:49:5b:dd:b5:1d:c7:5c:6c:f1:a8: f6:b3:09:c7:fc:52:ca:0d:9c:6b:2d:6d:7e:e5:a0:7f:1d:1a: 29:60:a8:46:bb:c2:26:02:b9:31:3c:ff:e9:93:2c:0b:62:2c: 50:11:9e:14:20:b9:67:8f:4a:37:e3:11:da:2e:a1:db:35:a3: 8a:00:a8:13:7d:20:fe:74:f5:4c:ed:2d:5c:e8:2f:97:b4:44: 64:73:c7:37:91:f7:89:ad:79:72:3c:f5:ac:3e:b7:56:0d:50: 21:2f:91:98:f9:67:c6:c5:53:86:69:cd:01:2e:c9:c0:6d:52: f3:bf:e4:b7:3d:bf:06:44:1b:70:16:fc:d6:a7:e9:f8:3c:70: e3:20:05:b4:a9:1b:1f:73:69:bf:92:f5:b6:f7:b4:64:d8:8a: 4d:42:5b:c3:0c:ce:0a:2d:34:72:40:06:69:3a:6a:f7:d2:50: 16:ac:c8:6f:a3:34:00:f4:51:ce:b7:9d:50:bf:cb:5e:13:f6: a5:92:14:e6:e2:a3:21:df:f3:8e:ab:76:f3:ab:84:46:71:e5: f9:a3:e5:d2:0e:57:0d:82:f0:19:68:d0:4a:94:ee:9a:06:65: 1e:01:51:e6:d6:53:57:77:01:9c:93:bf:00:20:f3:67:16:8d: 20:c7:b4:41 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUD1itHM+8hUAlQoNJ5byG9JZjIeYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI1MDgxNjAxNDMyNloX DTI2MDgxNTAxNDgyNlowMzExMC8GA1UEAxMoNkVGOTZGNUFCODAzRTkzMDYzMkVF OEU4NTBCOEUyNDZGQURFRURBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMTj1q+JA5xTeNk+Rlk9Pjfcb03gF/I8JciFQHO0NoOQRitFMlmBCWaAP7+m 9V7etrbiqNtbY8DUs0gM+5w4v7/bocSlF2BO1AUSEGiDhkTiF58W5Z4SYAvHWg8R jB9qKoFIXiWdesf/fiO3yir7tWZYlgpUg3/IVd4n5N66NM3Uiyuc/bPXgwtCC25r YrKWM6sdSURv+thNVlCwen51+y9hRltaaeM8sukxw3MY/6Q/KMPB7Qy6DD89R1I6 ZKgwjAHY7xwpHaR5TXchmfpIRNjxe7JAh0LatRpV3bAZfoZU/uwkDh5DCrC2s/4A U1gr0qE6ACJBlaMKYcUFS8urkhMCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBRu+W9a uAPpMGMu6OhQuOJG+t7tpTAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MmUzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnEwEwDQYJKoZIhvcNAQEL BQADggEBAFvcPnIPvbTgSVvdtR3HXGzxqPazCcf8UsoNnGstbX7loH8dGilgqEa7 wiYCuTE8/+mTLAtiLFARnhQguWePSjfjEdouods1o4oAqBN9IP509UztLVzoL5e0 RGRzxzeR94mteXI89aw+t1YNUCEvkZj5Z8bFU4ZpzQEuycBtUvO/5Lc9vwZEG3AW /Nan6fg8cOMgBbSpGx9zab+S9bb3tGTYik1CW8MMzgotNHJABmk6avfSUBasyG+j NAD0Uc63nVC/y14T9qWSFObioyHf846rdvOrhEZx5fmj5dIOVw2C8Blo0EqU7poG ZR4BUebWU1d3AZyTvwAg82cWjSDHtEE= -----END CERTIFICATE-----Generated at Sun Aug 24 05:20:23 2025 by rpki-client