$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/34352e3131372e3130302e302f32322d3234203d3e2038383838.roa File: 34352e3131372e3130302e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: voPiakdEWPirMq/WncFYq7Upw23ZrCEb5LKsM3/mXvw= Subject key identifier: 43:24:55:A3:5B:51:35:A0:39:75:C2:30:1F:A5:4F:C8:33:9F:F4:5E Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 45CBB2D8692A23824B0657090292AC379AA3A783 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/34352e3131372e3130302e302f32322d3234203d3e2038383838.roa Signing time: Thu 30 Apr 2026 09:10:22 +0000 ROA not before: Thu 30 Apr 2026 09:05:22 +0000 ROA not after: Thu 29 Apr 2027 09:10:22 +0000 asID: 8888 IP address blocks: 45.117.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:cb:b2:d8:69:2a:23:82:4b:06:57:09:02:92:ac:37:9a:a3:a7:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Apr 30 09:05:22 2026 GMT Not After : Apr 29 09:10:22 2027 GMT Subject: CN=432455A35B5135A03975C2301FA54FC8339FF45E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:96:be:03:1a:96:a5:5b:67:8f:2e:35:e6:fe: 79:31:73:b5:12:08:70:d4:45:72:2a:12:45:ac:e3: 9c:97:61:fe:09:5f:4f:b3:2b:4f:b4:87:74:a3:10: 96:65:2d:17:0c:bd:69:84:0b:fa:fa:a4:b3:ca:70: f3:90:10:9c:b9:fb:99:74:b6:4c:85:6e:10:a9:38: 6d:fc:07:99:88:a5:ef:64:e2:fa:46:92:f7:75:0c: 40:96:d7:49:5c:ec:4b:ae:aa:f6:16:8e:6a:19:bb: 1f:cf:86:9b:59:92:53:fe:df:53:c9:91:1f:1e:53: dc:46:d0:a0:4a:fc:45:aa:96:84:00:13:78:a8:ce: 36:b9:1a:5c:3c:a9:9c:4e:1a:a8:45:08:06:ad:58: 76:7d:be:c8:95:80:92:00:e2:6f:31:8f:53:8a:22: e0:fa:82:74:76:98:6a:5c:b9:5f:09:a9:b3:ec:ef: 88:a0:b3:57:b7:7f:53:56:11:a6:ca:cc:ae:c4:0d: 88:d5:c3:70:7b:c1:38:0e:23:40:19:63:91:ac:52: e1:d8:9c:d8:19:cf:da:df:b0:45:c2:b8:6c:cd:62: 68:b9:6d:ab:00:af:34:58:f6:72:f3:8b:7f:3e:22: f5:b7:8b:b9:b9:38:52:1d:d1:d1:c9:ae:d6:84:af: cd:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:24:55:A3:5B:51:35:A0:39:75:C2:30:1F:A5:4F:C8:33:9F:F4:5E X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/34352e3131372e3130302e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.117.100.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:eb:3b:2f:7f:08:b4:d5:a9:b5:24:30:24:7e:c0:6f:e2:f2: 76:b8:e5:1a:e6:dd:f0:61:b0:8f:2c:09:8b:17:fb:11:79:d5: b5:e3:6a:48:e3:82:84:ca:0e:c8:7e:f4:a6:0b:45:8d:aa:1c: 5b:f1:63:4d:50:96:8d:8a:c9:4f:df:bf:9a:ec:64:e2:f7:56: e7:92:77:aa:01:40:04:92:bc:7b:46:e7:07:a8:d1:d9:82:e3: 19:88:c4:94:c4:a6:b7:d8:99:f0:d0:62:94:08:c1:fe:0c:5c: 51:03:28:1a:28:9e:f0:6b:d9:1e:35:b6:42:53:fb:5e:d8:09: 70:f7:3c:5e:eb:41:7e:80:2b:e6:62:52:a9:ed:75:e2:bf:16: 92:6e:ce:dc:f2:95:23:46:d5:a7:f0:28:3a:4e:a5:79:f9:d0: 0a:c4:31:f8:42:71:d1:db:b2:ff:b9:ad:8e:aa:95:28:4e:3a: 1e:5e:e5:42:d8:e7:5b:c6:8d:82:bf:6c:89:d2:62:de:38:a8: a1:bf:21:87:44:e9:36:9e:09:64:cf:2d:bc:f8:03:2e:a3:af: 89:b2:06:bf:d1:2e:0a:c9:7a:da:a7:d8:10:62:a3:33:1a:65: 86:08:5e:bc:24:a7:46:2f:e3:57:c6:f6:58:f2:0d:21:82:b4: fc:7c:1e:1b -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIURcuy2GkqI4JLBlcJApKsN5qjp4MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDQzMDA5MDUyMloX DTI3MDQyOTA5MTAyMlowMzExMC8GA1UEAxMoNDMyNDU1QTM1QjUxMzVBMDM5NzVD MjMwMUZBNTRGQzgzMzlGRjQ1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKuWvgMalqVbZ48uNeb+eTFztRIIcNRFcioSRazjnJdh/glfT7MrT7SHdKMQ lmUtFwy9aYQL+vqks8pw85AQnLn7mXS2TIVuEKk4bfwHmYil72Ti+kaS93UMQJbX SVzsS66q9haOahm7H8+Gm1mSU/7fU8mRHx5T3EbQoEr8RaqWhAATeKjONrkaXDyp nE4aqEUIBq1Ydn2+yJWAkgDibzGPU4oi4PqCdHaYaly5Xwmps+zviKCzV7d/U1YR psrMrsQNiNXDcHvBOA4jQBljkaxS4dic2BnP2t+wRcK4bM1iaLltqwCvNFj2cvOL fz4i9beLubk4Uh3R0cmu1oSvzckCAwEAAaOCAegwggHkMB0GA1UdDgQWBBRDJFWj W1E1oDl1wjAfpU/IM5/0XjAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzQzNTJlMzEzMTM3MmUzMTMwMzAyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzODM4MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi11ZDANBgkqhkiG9w0B AQsFAAOCAQEAfes7L38ItNWptSQwJH7Ab+LydrjlGubd8GGwjywJixf7EXnVteNq SOOChMoOyH70pgtFjaocW/FjTVCWjYrJT9+/muxk4vdW55J3qgFABJK8e0bnB6jR 2YLjGYjElMSmt9iZ8NBilAjB/gxcUQMoGiie8GvZHjW2QlP7XtgJcPc8XutBfoAr 5mJSqe114r8Wkm7O3PKVI0bVp/AoOk6lefnQCsQx+EJx0duy/7mtjqqVKE46Hl7l QtjnW8aNgr9sidJi3jioob8hh0TpNp4JZM8tvPgDLqOvibIGv9EuCsl62qfYEGKj MxplhghevCSnRi/jV8b2WPINIYK0/HweGw== -----END CERTIFICATE-----Generated at Wed May 13 01:06:46 2026 by rpki-client