$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa File: 3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa (raw, json) Hash identifier: MbjMEnkehPoT06ecVuwuD+KIWL4rGGQghMYFOGne3Vc= Subject key identifier: 02:90:16:FA:0C:81:DD:B3:87:AA:9C:2E:5C:09:D8:92:F6:42:A5:C8 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 35A2604D32CB3BAF524674BF53D266FAAB6BBA54 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa Signing time: Wed 08 Oct 2025 18:50:56 +0000 ROA not before: Wed 08 Oct 2025 18:45:56 +0000 ROA not after: Wed 07 Oct 2026 18:50:56 +0000 asID: 6134 IP address blocks: 103.192.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 16:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:a2:60:4d:32:cb:3b:af:52:46:74:bf:53:d2:66:fa:ab:6b:ba:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Oct 8 18:45:56 2025 GMT Not After : Oct 7 18:50:56 2026 GMT Subject: CN=029016FA0C81DDB387AA9C2E5C09D892F642A5C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:82:76:ce:21:af:15:7f:fd:6e:65:dc:46:de: 01:5f:a0:5d:ea:fc:41:92:eb:33:ea:10:07:48:09: c1:2b:44:20:e5:77:bf:bd:00:c1:28:19:12:f0:7e: b8:df:51:0d:c8:43:80:f9:0a:91:8c:73:aa:7e:bf: 90:2b:de:7f:9b:9f:c7:89:78:9a:7b:66:e1:6f:5e: 9d:bd:0e:2b:4f:03:4c:9e:82:94:ef:da:fd:2d:c1: 4a:8c:c6:9a:9d:07:9e:24:50:8b:30:cc:20:dc:2e: d5:42:59:56:ec:b3:09:f0:f2:c9:e8:89:71:3a:5e: 6b:39:85:d8:89:8a:0d:af:79:fe:d4:35:2e:18:d0: 1d:2c:e6:26:d7:08:1d:69:92:3f:32:00:86:e1:8f: 85:2a:ac:68:e8:c7:9d:94:40:47:2f:95:93:81:9a: 30:9d:17:cc:69:aa:e6:d8:53:c4:37:10:5b:19:ab: 10:b1:3a:bb:72:d5:d7:2b:54:a0:d6:7d:0e:58:13: 8c:31:1f:1e:d5:d3:38:0a:7d:ec:60:98:4c:c8:63: af:15:2b:46:c7:d2:04:94:01:19:9b:5e:83:cd:26: 57:9f:8b:36:4c:c3:d0:20:5a:5b:57:bf:08:65:94: 12:90:49:64:1a:72:52:53:14:5e:1a:14:a2:ba:7e: be:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:90:16:FA:0C:81:DD:B3:87:AA:9C:2E:5C:09:D8:92:F6:42:A5:C8 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.226.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:4c:23:ee:a4:bd:57:a5:93:64:cb:47:b0:53:94:b0:39:8c: 6f:3b:ee:e7:7f:69:bd:2c:a9:64:db:3d:9c:03:05:24:cb:4e: 57:56:38:e9:dc:ee:8d:3d:25:b8:ba:15:2e:64:68:0f:52:37: d2:25:0b:a7:de:b4:0f:35:c2:c9:59:51:d4:ad:13:75:fb:c4: 5b:7d:20:93:69:67:41:50:6c:13:85:4d:d8:20:83:15:a0:c9: a0:7f:93:55:62:e4:90:a2:5b:af:eb:aa:87:24:5e:87:25:39: 0f:78:ac:d4:4d:36:77:94:45:3f:5c:60:96:e1:6c:7f:39:33: fe:60:31:dc:59:b7:b2:5d:35:90:88:2b:b1:8e:1c:2b:ac:d7: 41:a7:fe:ea:5e:5c:2f:c6:8c:f5:80:ed:ed:e2:3e:2d:d0:e7: ff:ea:63:cf:d8:0c:8a:94:2e:48:50:fe:7f:bc:e8:ae:4e:71: df:0b:59:89:65:c8:0f:49:58:5b:89:d4:c8:28:d4:3b:f6:2e: f9:da:7f:9f:4d:34:d9:a0:a2:6d:47:43:7a:44:11:41:5e:2d: 4c:50:8c:55:ef:64:2c:bc:9a:b0:9a:49:1a:57:05:2b:7a:f4: 2f:5c:02:6d:ab:03:77:a2:0e:c8:22:7c:de:12:5c:12:19:37: 48:9b:50:85 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUNaJgTTLLO69SRnS/U9Jm+qtrulQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MTAwODE4NDU1NloX DTI2MTAwNzE4NTA1NlowMzExMC8GA1UEAxMoMDI5MDE2RkEwQzgxRERCMzg3QUE5 QzJFNUMwOUQ4OTJGNjQyQTVDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANSCds4hrxV//W5l3EbeAV+gXer8QZLrM+oQB0gJwStEIOV3v70AwSgZEvB+ uN9RDchDgPkKkYxzqn6/kCvef5ufx4l4mntm4W9enb0OK08DTJ6ClO/a/S3BSozG mp0HniRQizDMINwu1UJZVuyzCfDyyeiJcTpeazmF2ImKDa95/tQ1LhjQHSzmJtcI HWmSPzIAhuGPhSqsaOjHnZRARy+Vk4GaMJ0XzGmq5thTxDcQWxmrELE6u3LV1ytU oNZ9DlgTjDEfHtXTOAp97GCYTMhjrxUrRsfSBJQBGZteg80mV5+LNkzD0CBaW1e/ CGWUEpBJZBpyUlMUXhoUorp+vkMCAwEAAaOCAeowggHmMB0GA1UdDgQWBBQCkBb6 DIHds4eqnC5cCdiS9kKlyDAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzMDMzMmUzMTM5MzIyZTMyMzIzNjJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM2MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8DiMA0GCSqGSIb3 DQEBCwUAA4IBAQAvTCPupL1XpZNky0ewU5SwOYxvO+7nf2m9LKlk2z2cAwUky05X Vjjp3O6NPSW4uhUuZGgPUjfSJQun3rQPNcLJWVHUrRN1+8RbfSCTaWdBUGwThU3Y IIMVoMmgf5NVYuSQoluv66qHJF6HJTkPeKzUTTZ3lEU/XGCW4Wx/OTP+YDHcWbey XTWQiCuxjhwrrNdBp/7qXlwvxoz1gO3t4j4t0Of/6mPP2AyKlC5IUP5/vOiuTnHf C1mJZcgPSVhbidTIKNQ79i752n+fTTTZoKJtR0N6RBFBXi1MUIxV72QsvJqwmkka VwUrevQvXAJtqwN3og7IInzeElwSGTdIm1CF -----END CERTIFICATE-----Generated at Fri Oct 24 08:24:30 2025 by rpki-client