$ rpki-client -vvf rpki.roa.net/rrdp/xTom/62/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa File: 3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa (raw, json) Hash identifier: thQvr/N0a8AQrIYugr9DeDyUSsLd2ILFdpj+ZmdXBk4= Subject key identifier: FE:E1:0C:5F:AD:79:58:F8:D4:DB:57:E9:94:E1:D8:8A:CC:40:D3:42 Certificate issuer: /CN=A9124B5E0000/serialNumber=DAEAFB37164B3F2015820693231F24002ADC2113 Certificate serial: 77AD5F77EACF42572082923DB5D9C6A251DB5C5B Authority key identifier: DA:EA:FB:37:16:4B:3F:20:15:82:06:93:23:1F:24:00:2A:DC:21:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/62/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa Signing time: Wed 01 Apr 2026 20:53:37 +0000 ROA not before: Wed 01 Apr 2026 20:48:37 +0000 ROA not after: Wed 31 Mar 2027 20:53:37 +0000 asID: 24242 IP address blocks: 103.136.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.crl rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 Apr 2026 12:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:ad:5f:77:ea:cf:42:57:20:82:92:3d:b5:d9:c6:a2:51:db:5c:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000, serialNumber=DAEAFB37164B3F2015820693231F24002ADC2113 Validity Not Before: Apr 1 20:48:37 2026 GMT Not After : Mar 31 20:53:37 2027 GMT Subject: CN=FEE10C5FAD7958F8D4DB57E994E1D88ACC40D342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:2b:93:59:e3:6d:c8:ff:f3:4d:d6:f5:13:7b: 64:f6:69:77:80:e1:4c:5a:7b:8e:e2:52:4f:c1:5a: 46:d1:e6:a7:c0:38:ec:8c:56:36:8d:83:e5:03:85: 90:e5:d4:32:5d:2a:f0:3d:de:e1:40:18:19:c2:d6: 5b:91:76:91:7e:67:2a:86:1c:4a:f4:dd:1a:02:a9: 62:75:f7:5d:62:ec:77:91:75:c3:f9:7f:ad:b6:2f: ba:7f:66:5a:12:cf:fe:aa:f0:32:67:76:2e:6d:af: 6a:61:1a:9c:19:d5:3e:36:5b:5c:30:e6:4a:20:23: 91:80:8d:56:ce:46:35:05:cb:e2:91:cf:cc:02:c4: 7a:9c:20:33:f3:fa:74:38:b2:d1:38:d8:bc:98:97: f4:68:24:77:43:6f:93:33:18:61:59:64:ea:3f:8c: 41:15:99:79:0c:df:b6:a1:be:3e:b9:38:b7:5d:ab: c3:ec:1f:29:8b:47:c7:9c:37:e9:a3:68:f9:3e:45: ef:20:42:a3:85:4a:58:0a:5f:36:07:bc:2d:5e:db: 3d:4f:2b:40:24:c9:05:61:d8:86:11:07:3a:56:fa: ac:1f:68:36:65:8e:35:3c:c9:a1:09:01:99:14:32: 62:7e:4d:31:fa:c0:34:f5:d3:1e:22:a1:c4:f4:ea: 95:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E1:0C:5F:AD:79:58:F8:D4:DB:57:E9:94:E1:D8:8A:CC:40:D3:42 X509v3 Authority Key Identifier: keyid:DA:EA:FB:37:16:4B:3F:20:15:82:06:93:23:1F:24:00:2A:DC:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/62/3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.144.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:b4:5e:94:bd:3f:f7:60:80:9c:24:73:80:c0:c0:be:c1:6e: 00:c6:1b:49:91:f7:2a:92:f6:4b:48:3c:d3:bd:81:61:af:58: ae:02:eb:bd:70:bc:0b:50:77:a5:1b:4d:7e:b1:8a:fd:6b:af: 00:8f:6e:1a:d8:52:ae:c4:3d:a9:90:fa:42:83:c7:5a:25:80: cf:ca:4f:90:3b:41:aa:29:02:9b:ad:bb:db:c7:31:4b:82:f3: e7:09:cc:27:4d:46:09:51:9a:ca:fe:76:76:69:0f:b5:d7:71: 66:1f:80:7d:c3:d6:41:10:ee:df:30:b0:fd:b8:e4:93:6f:0b: ba:17:ac:9b:f6:89:69:4a:ca:d2:5a:1a:70:30:85:3e:1b:ea: 6f:e4:de:a0:ed:4b:d9:e8:57:81:b4:9f:23:5b:6b:b3:a1:91: 97:4f:07:1e:9c:68:77:f3:74:d4:76:9d:f3:35:6a:81:28:12: 0d:3d:ae:ac:c9:10:10:e0:38:97:be:a4:d5:b1:fa:7f:d4:cd: f9:3f:c8:ce:54:b2:3c:b5:eb:91:65:33:90:0b:eb:69:da:30: 02:60:00:92:64:46:ef:71:80:b9:67:43:20:3f:25:03:fd:90: 65:e5:a7:99:21:1e:25:43:26:38:99:3f:49:9d:0b:e7:7a:99: ab:f0:29:7b -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIUd61fd+rPQlcggpI9tdnGolHbXFswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyhEQUVBRkIzNzE2 NEIzRjIwMTU4MjA2OTMyMzFGMjQwMDJBREMyMTEzMB4XDTI2MDQwMTIwNDgzN1oX DTI3MDMzMTIwNTMzN1owMzExMC8GA1UEAxMoRkVFMTBDNUZBRDc5NThGOEQ0REI1 N0U5OTRFMUQ4OEFDQzQwRDM0MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI4rk1njbcj/803W9RN7ZPZpd4DhTFp7juJST8FaRtHmp8A47IxWNo2D5QOF kOXUMl0q8D3e4UAYGcLWW5F2kX5nKoYcSvTdGgKpYnX3XWLsd5F1w/l/rbYvun9m WhLP/qrwMmd2Lm2vamEanBnVPjZbXDDmSiAjkYCNVs5GNQXL4pHPzALEepwgM/P6 dDiy0TjYvJiX9Ggkd0NvkzMYYVlk6j+MQRWZeQzftqG+Prk4t12rw+wfKYtHx5w3 6aNo+T5F7yBCo4VKWApfNge8LV7bPU8rQCTJBWHYhhEHOlb6rB9oNmWONTzJoQkB mRQyYn5NMfrANPXTHiKhxPTqlUsCAwEAAaOCAewwggHoMB0GA1UdDgQWBBT+4Qxf rXlY+NTbV+mU4diKzEDTQjAfBgNVHSMEGDAWgBTa6vs3Fks/IBWCBpMjHyQAKtwh EzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzYyL0RBRUFGQjM3MTY0QjNGMjAxNTgyMDY5MzIz MUYyNDAwMkFEQzIxMTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzJ1cjdOeFpMUHlBVmdnYVRJeDhrQUNyY0lSTS5j ZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNjIvMzEzMDMzMmUzMTMzMzYyZTMxMzQzNDJlMzAyZjMy MzIyZDMyMzQyMDNkM2UyMDMyMzQzMjM0MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJniJAwDQYJKoZI hvcNAQELBQADggEBAE+0XpS9P/dggJwkc4DAwL7BbgDGG0mR9yqS9ktIPNO9gWGv WK4C671wvAtQd6UbTX6xiv1rrwCPbhrYUq7EPamQ+kKDx1olgM/KT5A7QaopAput u9vHMUuC8+cJzCdNRglRmsr+dnZpD7XXcWYfgH3D1kEQ7t8wsP245JNvC7oXrJv2 iWlKytJaGnAwhT4b6m/k3qDtS9noV4G0nyNba7OhkZdPBx6caHfzdNR2nfM1aoEo Eg09rqzJEBDgOJe+pNWx+n/Uzfk/yM5Usjy165FlM5AL62naMAJgAJJkRu9xgLln QyA/JQP9kGXlp5khHiVDJjiZP0mdC+d6mavwKXs= -----END CERTIFICATE-----Generated at Sun Apr 5 22:22:16 2026 by rpki-client