$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133302e302f32342d3234203d3e2034373835.roa File: 3130332e3139332e3133302e302f32342d3234203d3e2034373835.roa (raw, json) Hash identifier: 0O+3MdkaNltIobwAkM5RP52uTwvWhiqsqlMkm4meRLg= Subject key identifier: A1:88:BA:5D:D8:6E:E4:A6:23:8C:55:1C:F0:6D:80:19:93:DC:F1:FD Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 46B85F874DB351B41F57A40D4E206E45ED6C5279 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133302e302f32342d3234203d3e2034373835.roa Signing time: Sat 16 Aug 2025 01:48:26 +0000 ROA not before: Sat 16 Aug 2025 01:43:26 +0000 ROA not after: Sat 15 Aug 2026 01:48:26 +0000 asID: 4785 IP address blocks: 103.193.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b8:5f:87:4d:b3:51:b4:1f:57:a4:0d:4e:20:6e:45:ed:6c:52:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Aug 16 01:43:26 2025 GMT Not After : Aug 15 01:48:26 2026 GMT Subject: CN=A188BA5DD86EE4A6238C551CF06D801993DCF1FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8c:75:42:b6:ff:0f:6c:87:d4:f2:f8:c1:d7: 39:c8:2b:7f:43:fe:69:95:a4:2b:ba:24:83:03:08: 04:bc:ae:33:cd:6c:42:80:6d:42:e9:05:fc:99:53: 00:ea:fb:bc:bd:05:13:c1:b9:10:d3:ea:4a:3b:90: 82:f3:f1:36:fc:f1:f6:0c:42:91:35:9b:35:98:1c: 3e:eb:de:c1:03:28:f7:ec:f8:f2:89:7b:94:f3:9d: 61:06:86:d9:a6:63:3f:f3:d7:3c:43:28:a5:d6:d2: d8:45:6d:4b:eb:f3:74:24:56:f0:d2:c3:e1:5f:34: 6f:81:c1:17:2e:15:4a:03:c2:8c:a5:70:f1:62:56: 5d:84:08:c8:d0:4c:d6:26:dc:ce:58:ac:96:a4:50: fc:c8:60:69:21:cf:a0:f5:b5:be:6e:8d:65:7a:d5: 33:20:b1:ea:18:6e:73:1a:45:2c:ab:e4:33:da:9e: db:73:3d:d3:54:87:bb:7b:4d:c4:20:b4:c1:98:10: a0:fe:2d:71:de:8c:14:80:b9:e7:b3:8d:c0:c7:05: 1a:27:db:a3:6c:4a:e2:32:25:b0:65:12:6f:a3:ee: 08:4a:5e:28:ff:27:54:0b:61:27:a5:94:06:02:c0: c5:d3:79:a8:0c:3e:a0:14:9d:74:a6:8c:bc:a8:db: bb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:88:BA:5D:D8:6E:E4:A6:23:8C:55:1C:F0:6D:80:19:93:DC:F1:FD X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3133302e302f32342d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.130.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:4e:27:35:c3:3c:c0:90:e4:15:18:65:4e:82:ed:b4:37:31: 18:a0:71:b8:73:94:8c:5b:ba:96:da:39:45:8b:a2:91:10:77: bb:6e:a8:b0:0e:57:6d:ab:b2:38:ee:b9:10:e6:4b:42:db:eb: e9:e4:1c:4d:a7:61:87:3c:0c:b4:54:0f:c0:0f:5f:df:72:eb: 4b:f9:8b:be:ea:ce:41:2a:34:99:84:ad:08:3a:e5:5a:52:2e: b8:a3:5c:3a:d4:54:71:f4:b5:99:b8:08:90:ea:fa:ba:5c:d6: b8:1c:e4:c2:50:ed:60:6d:b8:d2:62:ee:6c:ed:c0:d4:5c:e7: 02:1f:8a:88:59:a2:58:4d:3a:0a:fb:d3:fc:3b:71:79:87:8a: 74:8a:46:39:b4:3f:1f:36:78:43:14:2e:d8:cd:f9:7c:e6:56: e0:6f:a9:01:27:d6:81:48:84:24:ac:29:77:bc:e2:71:c6:75: 34:36:f4:04:c9:65:13:75:b6:09:b3:77:c0:83:8b:b8:af:4f: 09:db:7a:d9:1d:0a:be:bb:84:22:82:2b:6c:b2:33:97:91:d8: 93:44:9b:0d:df:73:f9:3f:02:ac:9c:4a:d5:f7:64:61:29:96: fb:93:11:46:3e:a6:f5:a9:97:3d:29:77:10:af:aa:13:39:04: c2:1c:23:e0 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIURrhfh02zUbQfV6QNTiBuRe1sUnkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI1MDgxNjAxNDMyNloX DTI2MDgxNTAxNDgyNlowMzExMC8GA1UEAxMoQTE4OEJBNUREODZFRTRBNjIzOEM1 NTFDRjA2RDgwMTk5M0RDRjFGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2MdUK2/w9sh9Ty+MHXOcgrf0P+aZWkK7okgwMIBLyuM81sQoBtQukF/JlT AOr7vL0FE8G5ENPqSjuQgvPxNvzx9gxCkTWbNZgcPuvewQMo9+z48ol7lPOdYQaG 2aZjP/PXPEMopdbS2EVtS+vzdCRW8NLD4V80b4HBFy4VSgPCjKVw8WJWXYQIyNBM 1ibczlislqRQ/MhgaSHPoPW1vm6NZXrVMyCx6hhucxpFLKvkM9qe23M901SHu3tN xCC0wZgQoP4tcd6MFIC557ONwMcFGifbo2xK4jIlsGUSb6PuCEpeKP8nVAthJ6WU BgLAxdN5qAw+oBSddKaMvKjbu4cCAwEAAaOCAeowggHmMB0GA1UdDgQWBBShiLpd 2G7kpiOMVRzwbYAZk9zx/TAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzMzMDJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM0MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8GCMA0GCSqGSIb3 DQEBCwUAA4IBAQBsTic1wzzAkOQVGGVOgu20NzEYoHG4c5SMW7qW2jlFi6KREHe7 bqiwDldtq7I47rkQ5ktC2+vp5BxNp2GHPAy0VA/AD1/fcutL+Yu+6s5BKjSZhK0I OuVaUi64o1w61FRx9LWZuAiQ6vq6XNa4HOTCUO1gbbjSYu5s7cDUXOcCH4qIWaJY TToK+9P8O3F5h4p0ikY5tD8fNnhDFC7Yzfl85lbgb6kBJ9aBSIQkrCl3vOJxxnU0 NvQEyWUTdbYJs3fAg4u4r08J23rZHQq+u4QigitssjOXkdiTRJsN33P5PwKsnErV 92RhKZb7kxFGPqb1qZc9KXcQr6oTOQTCHCPg -----END CERTIFICATE-----Generated at Sat Aug 23 22:14:26 2025 by rpki-client