$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa File: 3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa (raw, json) Hash identifier: pVI7zwVJ3eFI6cvnEg0lfUzCoaycVAOPNZXkjyp1F20= Subject key identifier: 21:17:95:94:87:6A:FA:CE:A6:A3:E6:72:43:4E:09:4B:D7:EC:E5:DA Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 5BAA75BE01ECCA0B0AD9BB2D338ED849FF3BDDC8 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa Signing time: Wed 08 Oct 2025 18:50:56 +0000 ROA not before: Wed 08 Oct 2025 18:45:56 +0000 ROA not after: Wed 07 Oct 2026 18:50:56 +0000 asID: 137443 IP address blocks: 103.193.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 19:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:aa:75:be:01:ec:ca:0b:0a:d9:bb:2d:33:8e:d8:49:ff:3b:dd:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Oct 8 18:45:56 2025 GMT Not After : Oct 7 18:50:56 2026 GMT Subject: CN=21179594876AFACEA6A3E672434E094BD7ECE5DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d3:9f:59:6f:df:af:db:c4:d2:ae:b3:c0:c0: 3f:f4:f1:9a:c8:21:ac:68:56:0b:d7:e8:fb:dc:b3: fe:b1:e8:a4:5f:fb:8b:bf:55:7d:d4:57:de:11:db: c7:37:c9:70:9d:4c:41:03:28:bc:3c:73:bb:ed:88: d9:56:f3:fc:bd:1b:c9:da:a1:06:62:63:26:90:a8: 10:d4:ac:86:c5:50:ae:3a:aa:c9:c2:4b:95:b0:b2: 86:cc:03:1d:98:46:e1:5b:f6:10:fd:68:54:6f:16: 87:38:e4:c7:c7:3d:ea:ec:56:03:2b:35:d0:24:f8: f7:a7:19:c3:75:e3:9d:21:a6:fa:60:05:ac:fb:ae: 5d:12:29:a3:32:d2:14:3e:4d:8e:7d:d4:7e:21:87: a1:a3:96:2a:0e:e7:6c:88:b3:fc:7d:5c:da:f7:fe: 6a:5a:37:26:dd:3f:dc:ea:b8:8a:2a:39:0c:12:a5: 17:64:6f:2d:df:0d:32:88:72:e7:46:f6:d8:60:99: ba:30:05:b4:c5:60:fe:ee:a9:c2:52:21:b1:65:de: b5:53:8b:e7:e8:ae:59:d2:19:aa:8c:2c:c7:43:91: 18:c2:94:2c:7f:22:ba:10:a9:e3:45:6a:a1:bc:05: 63:55:9e:5e:ed:9d:b5:0f:87:dc:51:a0:af:51:f1: 0b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:17:95:94:87:6A:FA:CE:A6:A3:E6:72:43:4E:09:4B:D7:EC:E5:DA X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.128.0/24 Signature Algorithm: sha256WithRSAEncryption aa:64:19:14:3c:81:f5:52:04:84:e4:81:2c:a7:37:1b:f7:30: dc:7d:2e:b3:21:6d:2c:dc:a5:f3:ba:e7:d4:06:6a:be:67:02: 39:3b:5f:c3:64:14:80:d7:a3:b4:99:7a:5e:c3:ad:41:e1:af: 3d:c8:d2:92:8c:b8:ee:cc:83:cf:de:53:30:31:5d:7e:fb:0e: 2e:05:6e:5c:f7:ab:cc:e9:ea:54:cd:84:90:08:55:5a:d9:3f: 9b:3f:56:3e:ad:03:f2:f9:8a:b0:14:d9:ae:9b:18:fd:41:41: e3:2d:75:cd:d1:ab:55:99:ee:1d:70:3e:f4:06:e2:77:f6:36: fc:df:85:b1:8f:8a:67:ba:ac:5f:c3:80:64:ea:19:8f:b0:f0: 81:2b:89:bc:ff:39:95:f2:b8:90:01:e4:cc:e8:25:3f:97:72: 53:f5:8e:e0:de:de:57:a5:c2:b2:f9:02:e9:16:5f:68:9b:64: dd:dd:6f:44:36:68:75:cb:b0:5f:e2:eb:5c:c5:0c:41:22:1a: 6f:39:dd:33:e7:57:07:18:f4:23:ba:06:32:d1:4c:98:1f:61: 58:06:59:bf:a3:92:d4:19:0f:01:96:6a:cc:08:4e:c7:9b:84: 21:bb:df:54:05:38:25:9b:ef:ca:cf:7f:bc:92:a0:bb:f4:b5: 14:33:fe:63 -----BEGIN CERTIFICATE----- MIIE+zCCA+OgAwIBAgIUW6p1vgHsygsK2bstM47YSf873cgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI1MTAwODE4NDU1NloX DTI2MTAwNzE4NTA1NlowMzExMC8GA1UEAxMoMjExNzk1OTQ4NzZBRkFDRUE2QTNF NjcyNDM0RTA5NEJEN0VDRTVEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLTn1lv36/bxNKus8DAP/TxmsghrGhWC9fo+9yz/rHopF/7i79VfdRX3hHb xzfJcJ1MQQMovDxzu+2I2Vbz/L0bydqhBmJjJpCoENSshsVQrjqqycJLlbCyhswD HZhG4Vv2EP1oVG8Whzjkx8c96uxWAys10CT496cZw3XjnSGm+mAFrPuuXRIpozLS FD5Njn3UfiGHoaOWKg7nbIiz/H1c2vf+alo3Jt0/3Oq4iio5DBKlF2RvLd8NMohy 50b22GCZujAFtMVg/u6pwlIhsWXetVOL5+iuWdIZqowsx0ORGMKULH8iuhCp40Vq obwFY1WeXu2dtQ+H3FGgr1HxCw0CAwEAAaOCAe4wggHqMB0GA1UdDgQWBBQhF5WU h2r6zqaj5nJDTglL1+zl2jAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzIzODJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM0MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfBgDANBgkq hkiG9w0BAQsFAAOCAQEAqmQZFDyB9VIEhOSBLKc3G/cw3H0usyFtLNyl87rn1AZq vmcCOTtfw2QUgNejtJl6XsOtQeGvPcjSkoy47syDz95TMDFdfvsOLgVuXPerzOnq VM2EkAhVWtk/mz9WPq0D8vmKsBTZrpsY/UFB4y11zdGrVZnuHXA+9Abid/Y2/N+F sY+KZ7qsX8OAZOoZj7DwgSuJvP85lfK4kAHkzOglP5dyU/WO4N7eV6XCsvkC6RZf aJtk3d1vRDZodcuwX+LrXMUMQSIabzndM+dXBxj0I7oGMtFMmB9hWAZZv6OS1BkP AZZqzAhOx5uEIbvfVAU4JZvvys9/vJKgu/S1FDP+Yw== -----END CERTIFICATE-----Generated at Mon Oct 20 21:22:10 2025 by rpki-client