$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa File: 3130332e38382e34342e302f32322d3234203d3e2034373835.roa (raw, json) Hash identifier: s/pH0SHC4iBtM2isI0BGDvrzKx3Enp130LjtabBklX8= Subject key identifier: 53:57:13:A7:F2:4C:4A:57:04:D4:36:D5:99:F9:FF:DD:3A:4D:54:4C Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 38674C9AE4EDC21284D3B22D35BAA4A3676FA8B8 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa Signing time: Sat 16 Aug 2025 01:48:25 +0000 ROA not before: Sat 16 Aug 2025 01:43:25 +0000 ROA not after: Sat 15 Aug 2026 01:48:25 +0000 asID: 4785 IP address blocks: 103.88.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:67:4c:9a:e4:ed:c2:12:84:d3:b2:2d:35:ba:a4:a3:67:6f:a8:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Aug 16 01:43:25 2025 GMT Not After : Aug 15 01:48:25 2026 GMT Subject: CN=535713A7F24C4A5704D436D599F9FFDD3A4D544C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6b:65:ee:2c:0c:99:0d:fe:2f:36:93:cb:ee: 72:79:23:cc:b4:86:e8:30:d9:29:28:13:e3:bc:34: e2:3c:ad:1f:92:8f:ab:54:b0:89:7d:3d:7f:77:fb: 7a:21:84:18:12:d9:94:c0:95:26:ea:33:28:73:e3: 85:93:73:5f:ce:86:83:f1:bb:4d:55:48:ce:69:d5: db:88:64:14:a6:b1:ba:c5:d3:3f:6f:6a:a8:f1:d5: 29:36:a9:23:e7:8b:8f:d0:2a:2a:b8:b4:0c:c4:75: 9f:70:eb:ab:85:f8:f0:83:2b:fe:bc:64:e3:6d:83: 12:80:a9:aa:d5:3d:6a:28:e7:4e:81:92:13:64:47: 0f:8b:c4:db:0e:41:63:16:33:75:c8:66:ea:72:33: 96:c6:df:c6:24:11:ef:83:bf:3e:33:53:3d:f5:2c: f5:01:92:91:8b:92:5e:0f:c6:f5:f3:57:ae:5b:e7: 3b:6d:39:f4:35:c5:ef:e5:12:6a:32:7e:ce:89:48: 58:6b:10:98:14:1e:b2:68:98:8c:36:86:1c:dc:99: bb:89:62:83:23:ff:fa:c7:9d:e2:16:79:2c:24:2c: 10:1e:67:54:37:d6:dc:19:90:f2:44:b6:3c:b3:9a: bd:6c:94:6d:bd:ce:94:2d:7b:06:3f:10:23:fa:a2: 1e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:57:13:A7:F2:4C:4A:57:04:D4:36:D5:99:F9:FF:DD:3A:4D:54:4C X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e38382e34342e302f32322d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.44.0/22 Signature Algorithm: sha256WithRSAEncryption 97:b0:4e:eb:22:e7:44:c7:d1:15:a5:16:9a:77:01:53:60:5c: d8:2c:e9:50:e6:22:bc:65:ec:3e:48:6a:0b:0e:80:62:b2:6f: 65:52:00:03:12:f2:de:2e:fb:43:dc:77:5a:55:57:29:3e:60: 0f:41:ff:96:39:42:a8:68:a7:15:21:3c:25:77:eb:7a:c2:b1: 0f:b2:3f:14:dc:c6:90:85:53:1d:70:95:99:27:da:ea:a1:48: 9c:0b:cd:3d:fb:1f:f9:08:e9:f7:ee:e4:d6:c0:20:03:64:d0: 20:a6:df:18:0a:4b:2e:02:ff:9c:74:19:3e:2e:db:02:da:d0: bd:7b:5d:08:aa:ac:13:9f:9f:f4:90:f3:e1:15:df:12:4b:43: e1:06:9b:fe:f1:7e:7a:27:24:51:c8:8f:35:4b:f1:75:c4:c8: 78:cb:6e:21:46:46:de:b4:52:07:4d:d4:39:d8:3e:a8:68:fb: c5:76:14:74:f7:ca:73:50:81:b5:35:7c:a6:2b:27:90:68:f1: 27:c3:86:50:89:cc:a8:a6:3c:7c:4f:15:70:7d:c2:c3:03:8d: 66:43:dc:a7:ea:38:0e:c6:be:c8:3d:ee:8c:b6:b6:0b:94:3a: 63:1a:04:9d:ed:c6:2f:08:f9:70:d2:98:16:a9:c9:ce:4c:db: 04:3d:d5:67 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgIUOGdMmuTtwhKE07ItNbqko2dvqLgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI1MDgxNjAxNDMyNVoX DTI2MDgxNTAxNDgyNVowMzExMC8GA1UEAxMoNTM1NzEzQTdGMjRDNEE1NzA0RDQz NkQ1OTlGOUZGREQzQTRENTQ0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO9rZe4sDJkN/i82k8vucnkjzLSG6DDZKSgT47w04jytH5KPq1SwiX09f3f7 eiGEGBLZlMCVJuozKHPjhZNzX86Gg/G7TVVIzmnV24hkFKaxusXTP29qqPHVKTap I+eLj9AqKri0DMR1n3Drq4X48IMr/rxk422DEoCpqtU9aijnToGSE2RHD4vE2w5B YxYzdchm6nIzlsbfxiQR74O/PjNTPfUs9QGSkYuSXg/G9fNXrlvnO2059DXF7+US ajJ+zolIWGsQmBQesmiYjDaGHNyZu4ligyP/+sed4hZ5LCQsEB5nVDfW3BmQ8kS2 PLOavWyUbb3OlC17Bj8QI/qiHlUCAwEAAaOCAeYwggHiMB0GA1UdDgQWBBRTVxOn 8kxKVwTUNtWZ+f/dOk1UTDAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzODM4MmUzNDM0MmUzMDJmMzIzMjJk MzIzNDIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnWCwwDQYJKoZIhvcNAQEL BQADggEBAJewTusi50TH0RWlFpp3AVNgXNgs6VDmIrxl7D5IagsOgGKyb2VSAAMS 8t4u+0Pcd1pVVyk+YA9B/5Y5QqhopxUhPCV363rCsQ+yPxTcxpCFUx1wlZkn2uqh SJwLzT37H/kI6ffu5NbAIANk0CCm3xgKSy4C/5x0GT4u2wLa0L17XQiqrBOfn/SQ 8+EV3xJLQ+EGm/7xfnonJFHIjzVL8XXEyHjLbiFGRt60UgdN1DnYPqho+8V2FHT3 ynNQgbU1fKYrJ5Bo8SfDhlCJzKimPHxPFXB9wsMDjWZD3KfqOA7Gvsg97oy2tguU OmMaBJ3txi8I+XDSmBapyc5M2wQ91Wc= -----END CERTIFICATE-----Generated at Sat Aug 23 22:03:27 2025 by rpki-client