$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/323430303a646463303a613030623a3a2f34382d3438203d3e203233393539.roa File: 323430303a646463303a613030623a3a2f34382d3438203d3e203233393539.roa (raw, json) Hash identifier: T2g8N5/r0n9+AFvisfdLDm8qvrUNtqSonA48EgOSxAo= Subject key identifier: 9B:10:76:7A:5C:22:0B:7C:15:62:65:C4:FE:59:F8:5D:A8:40:AD:79 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 2919159E477B232B8F81794D1D148C5D733695A7 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/323430303a646463303a613030623a3a2f34382d3438203d3e203233393539.roa Signing time: Thu 25 Sep 2025 07:49:56 +0000 ROA not before: Thu 25 Sep 2025 07:44:56 +0000 ROA not after: Thu 24 Sep 2026 07:49:56 +0000 asID: 23959 IP address blocks: 2400:ddc0:a00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 06:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:19:15:9e:47:7b:23:2b:8f:81:79:4d:1d:14:8c:5d:73:36:95:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Sep 25 07:44:56 2025 GMT Not After : Sep 24 07:49:56 2026 GMT Subject: CN=9B10767A5C220B7C156265C4FE59F85DA840AD79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ea:d2:58:34:51:ed:95:a5:79:df:e8:28:c5: 11:fd:93:c0:38:05:3c:be:42:8d:27:a7:d0:98:56: f5:7c:33:d5:f6:66:6a:5c:c2:5f:e5:6d:0c:02:0b: a6:8a:fd:72:a6:f3:67:e5:b3:3f:5e:c2:81:7e:71: a1:b2:97:65:8b:a7:dc:f7:d1:68:bd:63:40:0c:b5: 25:9a:ba:a6:3e:c7:54:a5:f3:53:ce:ad:b8:23:08: 4e:c1:64:e9:cd:fe:da:d8:bd:87:51:b2:4a:f9:0a: ff:de:84:39:df:5b:52:f4:8d:36:e2:d8:b3:90:d5: 5c:3d:8c:29:12:05:5a:08:bb:05:f3:eb:6b:9b:c7: 88:97:75:99:04:80:b5:bc:1d:90:be:d6:0c:f3:db: 53:07:9a:34:c3:71:2e:7f:b3:cc:95:b9:3c:10:9d: 02:4e:fe:a8:65:d7:58:4c:15:5a:87:eb:8d:40:2e: 06:55:c0:e2:4e:9f:c5:bd:e3:96:5b:5e:46:3d:69: 80:6e:76:e2:96:e5:0c:6f:3d:8a:e2:7f:26:c3:90: 99:a3:04:dc:2b:98:90:45:91:13:a7:59:9e:03:c5: 29:c5:ef:11:e6:47:c2:b9:ee:ed:1e:31:84:9a:0c: 13:ef:44:e8:98:71:32:37:43:86:df:21:4c:e3:b0: 10:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:10:76:7A:5C:22:0B:7C:15:62:65:C4:FE:59:F8:5D:A8:40:AD:79 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/323430303a646463303a613030623a3a2f34382d3438203d3e203233393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:ddc0:a00b::/48 Signature Algorithm: sha256WithRSAEncryption 30:26:b2:3b:5d:46:d0:ef:ad:19:ea:33:e2:bc:a8:00:9f:93: ac:11:8e:f6:d7:f0:1a:10:0b:23:c2:5c:3c:25:28:7d:86:06: 7d:85:ab:4c:06:bd:74:2e:97:7e:14:46:4f:75:00:20:92:34: 35:95:fc:61:b2:4c:17:83:85:18:69:b7:d0:53:2c:60:31:6c: ee:67:17:92:03:de:45:95:2c:17:26:f4:64:8b:7f:bc:13:c3: 4c:22:6a:30:9e:a1:96:9b:e7:ed:fa:13:88:4f:ce:e1:e4:05: 2e:19:69:ea:88:dd:53:c7:04:5f:1b:03:b0:58:c4:17:8b:da: 42:60:af:8b:13:0c:a9:f5:af:10:a2:4a:b0:98:23:c7:fa:97: cf:30:7c:5c:b9:ba:e7:9a:0c:85:7e:45:a8:b5:01:d3:ad:c1: 79:8a:a3:46:2b:b7:34:43:47:33:3d:cd:6e:e2:b7:8a:26:b9: 53:ca:1a:df:5f:55:09:47:c5:c0:32:5a:49:00:e8:61:cb:b9: 20:fc:0f:46:db:b1:2f:08:60:36:6d:ed:68:c4:fd:19:0a:60: 11:37:23:55:4f:4a:8a:17:72:e6:5b:6d:83:51:b4:1b:31:f6: 60:3a:14:94:fb:7b:a0:e6:84:99:5c:e7:5a:12:89:7e:77:01: 21:bc:7d:a6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUKRkVnkd7IyuPgXlNHRSMXXM2lacwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI1MDkyNTA3NDQ1NloX DTI2MDkyNDA3NDk1NlowMzExMC8GA1UEAxMoOUIxMDc2N0E1QzIyMEI3QzE1NjI2 NUM0RkU1OUY4NURBODQwQUQ3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPfq0lg0Ue2VpXnf6CjFEf2TwDgFPL5CjSen0JhW9Xwz1fZmalzCX+VtDAIL por9cqbzZ+WzP17CgX5xobKXZYun3PfRaL1jQAy1JZq6pj7HVKXzU86tuCMITsFk 6c3+2ti9h1GySvkK/96EOd9bUvSNNuLYs5DVXD2MKRIFWgi7BfPra5vHiJd1mQSA tbwdkL7WDPPbUweaNMNxLn+zzJW5PBCdAk7+qGXXWEwVWofrjUAuBlXA4k6fxb3j llteRj1pgG524pblDG89iuJ/JsOQmaME3CuYkEWRE6dZngPFKcXvEeZHwrnu7R4x hJoME+9E6JhxMjdDht8hTOOwEBkCAwEAAaOCAfYwggHyMB0GA1UdDgQWBBSbEHZ6 XCILfBViZcT+WfhdqECteTAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9ycGtpLnJv YS5uZXQvcnJkcC94VG9tLzU2LzMyMzQzMDMwM2E2NDY0NjMzMDNhNjEzMDMwNjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzkzNTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADd wKALMA0GCSqGSIb3DQEBCwUAA4IBAQAwJrI7XUbQ760Z6jPivKgAn5OsEY721/Aa EAsjwlw8JSh9hgZ9hatMBr10Lpd+FEZPdQAgkjQ1lfxhskwXg4UYabfQUyxgMWzu ZxeSA95FlSwXJvRki3+8E8NMImownqGWm+ft+hOIT87h5AUuGWnqiN1TxwRfGwOw WMQXi9pCYK+LEwyp9a8QokqwmCPH+pfPMHxcubrnmgyFfkWotQHTrcF5iqNGK7c0 Q0czPc1u4reKJrlTyhrfX1UJR8XAMlpJAOhhy7kg/A9G27EvCGA2be1oxP0ZCmAR NyNVT0qKF3LmW22DUbQbMfZgOhSU+3ug5oSZXOdaEol+dwEhvH2m -----END CERTIFICATE-----Generated at Mon Oct 20 00:15:03 2025 by rpki-client