$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2038383838.roa File: 3230332e39362e3233362e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: llvx1nJPqemZ0rvO4OJjQbyJXb71XdenxrhQ2TIzXXs= Subject key identifier: 01:C2:46:C6:82:7F:74:E0:DC:44:CE:2A:96:38:F2:78:B5:BD:65:84 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 3DD40454AB1F32233ABD1937338EDD43135C8923 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2038383838.roa Signing time: Thu 30 Apr 2026 09:17:32 +0000 ROA not before: Thu 30 Apr 2026 09:12:32 +0000 ROA not after: Thu 29 Apr 2027 09:17:32 +0000 asID: 8888 IP address blocks: 203.96.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:d4:04:54:ab:1f:32:23:3a:bd:19:37:33:8e:dd:43:13:5c:89:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Apr 30 09:12:32 2026 GMT Not After : Apr 29 09:17:32 2027 GMT Subject: CN=01C246C6827F74E0DC44CE2A9638F278B5BD6584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4f:a3:a2:e5:76:3c:ad:d8:56:7f:70:ab:a9: 47:1c:e4:b9:67:2a:90:00:39:c8:25:9a:df:77:da: 10:0a:dc:12:01:9f:67:39:5b:ca:72:cf:fc:a0:aa: e7:ed:99:85:1b:1c:18:54:be:78:58:9c:c0:1f:85: 7f:0c:b7:80:0c:70:37:ca:59:a5:fc:b0:c6:56:a6: b9:56:d4:cc:09:7b:0a:78:35:ce:68:a1:94:21:92: 87:4e:e2:f2:bd:74:e8:c6:c1:e2:8e:89:38:72:51: 44:8e:13:6d:d2:5d:81:ba:d1:03:2a:1f:52:d4:a5: 7d:89:42:6b:7d:a2:d6:4f:43:4c:c3:ca:8c:5d:59: 7d:23:05:cf:50:b3:18:2f:bd:f7:30:eb:85:d4:70: 2d:a7:29:4d:54:8a:f3:cd:87:d9:da:55:7a:06:3f: 28:e9:22:40:59:a2:80:31:e1:0d:4e:37:cb:b6:17: 55:7c:5c:2e:36:e5:ca:33:3b:d9:0d:f3:1f:7b:64: 02:11:e9:02:3c:95:17:cd:a0:99:46:ed:c7:bd:5e: 30:16:4d:71:0a:da:38:ab:cc:22:1f:5c:8f:1c:e3: 1f:58:a5:a8:3c:ac:bc:14:3d:43:47:98:c7:c4:c1: 02:37:26:70:59:be:7b:d9:67:75:ef:9b:7b:3d:f8: 20:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C2:46:C6:82:7F:74:E0:DC:44:CE:2A:96:38:F2:78:B5:BD:65:84 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.96.236.0/22 Signature Algorithm: sha256WithRSAEncryption 06:42:81:08:f7:ec:ed:df:44:e6:c9:0c:8e:d6:51:f6:1b:ff: ef:30:ba:2d:90:9c:98:18:9f:27:03:15:29:20:70:bb:b8:26: bd:e1:11:4a:bb:87:a4:56:bf:d6:6e:fd:03:60:44:d3:e7:9e: 08:a9:5f:2f:f5:f1:48:0f:8a:6d:a9:ec:06:ca:b5:3d:a1:bd: 64:c7:87:0d:5b:2f:6a:18:83:d3:04:fd:ac:93:c9:30:a7:81: a4:28:1c:be:96:cb:f0:7c:0a:b1:b0:81:c0:2f:2e:40:a9:8a: ca:8d:e5:43:86:5c:6f:17:49:67:cd:98:f7:c2:33:7a:26:81: dd:19:41:92:1b:98:1a:91:43:ed:64:70:a2:5d:1a:b4:43:74: 39:93:4c:f5:f9:0a:10:7b:40:80:a9:ca:fa:c2:43:4f:a1:34: bb:83:b7:f8:0e:c6:2a:fa:6e:c8:2a:ae:3e:31:b2:90:e8:f7: 5b:e3:27:dc:05:15:be:df:3d:5f:c2:d9:c0:cc:70:aa:ca:7e: 18:95:cb:08:aa:a8:0d:c1:1c:17:39:c9:d3:86:c5:c5:e9:e3: a8:f4:00:f0:95:07:8b:18:4b:ad:bc:cc:d9:5e:94:eb:3e:65: 12:e8:ec:a3:ef:25:cf:22:6d:43:4c:c3:5d:57:49:ba:b4:cc: 0c:f1:96:ad -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUPdQEVKsfMiM6vRk3M47dQxNciSMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI2MDQzMDA5MTIzMloX DTI3MDQyOTA5MTczMlowMzExMC8GA1UEAxMoMDFDMjQ2QzY4MjdGNzRFMERDNDRD RTJBOTYzOEYyNzhCNUJENjU4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVPo6Lldjyt2FZ/cKupRxzkuWcqkAA5yCWa33faEArcEgGfZzlbynLP/KCq 5+2ZhRscGFS+eFicwB+Ffwy3gAxwN8pZpfywxlamuVbUzAl7Cng1zmihlCGSh07i 8r106MbB4o6JOHJRRI4TbdJdgbrRAyofUtSlfYlCa32i1k9DTMPKjF1ZfSMFz1Cz GC+99zDrhdRwLacpTVSK882H2dpVegY/KOkiQFmigDHhDU43y7YXVXxcLjblyjM7 2Q3zH3tkAhHpAjyVF82gmUbtx71eMBZNcQraOKvMIh9cjxzjH1ilqDysvBQ9Q0eY x8TBAjcmcFm+e9lnde+bez34IKECAwEAAaOCAegwggHkMB0GA1UdDgQWBBQBwkbG gn904NxEziqWOPJ4tb1lhDAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzIzMDMzMmUzOTM2MmUzMjMzMzYyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzODM4MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAstg7DANBgkqhkiG9w0B AQsFAAOCAQEABkKBCPfs7d9E5skMjtZR9hv/7zC6LZCcmBifJwMVKSBwu7gmveER SruHpFa/1m79A2BE0+eeCKlfL/XxSA+KbansBsq1PaG9ZMeHDVsvahiD0wT9rJPJ MKeBpCgcvpbL8HwKsbCBwC8uQKmKyo3lQ4ZcbxdJZ82Y98IzeiaB3RlBkhuYGpFD 7WRwol0atEN0OZNM9fkKEHtAgKnK+sJDT6E0u4O3+A7GKvpuyCquPjGykOj3W+Mn 3AUVvt89X8LZwMxwqsp+GJXLCKqoDcEcFznJ04bFxenjqPQA8JUHixhLrbzM2V6U 6z5lEujso+8lzyJtQ0zDXVdJurTMDPGWrQ== -----END CERTIFICATE-----Generated at Wed May 13 01:06:50 2026 by rpki-client