$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa File: 3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa (raw, json) Hash identifier: 6o3ZD17xcSHOqLQcxJQZ/FkTeLCfTWGUrjvEoGrfscY= Subject key identifier: 1A:90:16:77:63:82:29:0B:80:2F:82:DA:8B:E1:3B:3D:A3:76:73:53 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 44783165F6775C6D80851F4648C5D515D63BB081 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:27 +0000 ROA not before: Sat 16 Aug 2025 01:43:27 +0000 ROA not after: Sat 15 Aug 2026 01:48:27 +0000 asID: 6233 IP address blocks: 157.119.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 09:30:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:78:31:65:f6:77:5c:6d:80:85:1f:46:48:c5:d5:15:d6:3b:b0:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Aug 16 01:43:27 2025 GMT Not After : Aug 15 01:48:27 2026 GMT Subject: CN=1A9016776382290B802F82DA8BE13B3DA3767353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b4:84:19:a3:ec:7e:63:3e:29:a4:0d:4c:eb: ed:64:eb:66:45:8b:95:4c:72:82:22:f9:24:61:c1: 96:c3:83:54:08:ef:7f:c6:da:91:f2:75:66:44:37: 5a:e8:af:8e:8c:89:c3:0c:e6:ef:bf:72:c6:17:df: 75:3c:fc:16:1c:14:af:0b:9b:df:b5:4d:9b:2f:ae: ca:71:d1:81:a1:99:c4:b3:6b:eb:01:16:44:48:c3: 37:a6:c6:d3:27:4c:38:f0:2c:1b:6c:b1:e3:09:83: 1d:61:71:60:64:26:e6:33:62:bd:42:26:23:db:e4: 00:e4:a3:e0:48:1e:23:c0:d4:8c:14:47:df:5a:28: 7a:75:03:df:a7:75:ef:4d:c2:3f:4d:cc:7d:cd:41: 90:62:b4:ae:6f:34:bd:b2:3b:3f:18:22:7c:9f:e2: d2:a2:ea:1e:44:4f:52:7f:2b:24:27:84:14:52:ed: 83:0f:8a:e3:18:75:be:68:bc:85:b8:83:d7:1c:ef: 9f:02:67:f6:51:9e:51:03:b7:b2:d4:2b:1a:50:b1: 25:aa:7a:ab:55:1f:94:f1:e4:cc:a1:b2:6d:dc:b5: 5c:03:dd:07:65:b0:24:48:2a:0f:a2:2e:66:41:ac: 2b:35:6b:c5:1b:ee:69:b3:60:a8:76:35:19:e2:ee: b7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:90:16:77:63:82:29:0B:80:2F:82:DA:8B:E1:3B:3D:A3:76:73:53 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.119.100.0/22 Signature Algorithm: sha256WithRSAEncryption b1:4c:f2:8d:85:ee:fb:3d:1b:38:d9:4a:fd:3a:cc:c7:87:b4: 9d:e5:ae:7d:f5:f9:47:05:f4:36:58:43:8f:35:01:bc:ac:c6: ae:a4:3b:d5:06:2f:29:24:ca:c6:30:a5:0b:2c:c9:a1:f3:8b: 4c:6e:fe:66:27:57:b9:6f:e2:f5:28:32:04:eb:9c:1b:09:28: 51:28:3e:eb:fd:84:1e:cb:8f:de:60:b1:98:6a:5a:f6:d3:7b: b5:49:06:a4:01:eb:2e:74:63:95:f3:05:6d:60:ac:36:1a:a0: 16:2d:fa:bf:b3:41:b0:a9:ef:eb:32:40:e1:0f:e1:c1:3c:2c: 99:57:8d:4f:f8:16:e1:e9:f5:8d:d2:4c:8c:57:45:44:5e:9a: ed:a0:0c:47:19:99:c4:7d:00:e9:82:51:74:4c:1d:b9:76:f3: 49:4e:6a:91:fc:14:06:59:8d:89:e9:77:87:c3:d5:47:70:8b: 89:6a:93:96:92:c7:86:dc:31:d4:bf:8e:15:b4:75:bc:46:e2: 57:4b:aa:bf:82:32:7a:23:cb:40:84:a5:29:32:4a:07:01:91: 35:63:ff:b3:67:c3:91:18:f3:56:fe:56:d2:0e:96:8b:da:7d: b1:c1:94:9c:32:76:df:1b:c4:5a:dd:98:b8:a0:52:b4:98:fe: 9d:38:6d:c0 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIURHgxZfZ3XG2AhR9GSMXVFdY7sIEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI1MDgxNjAxNDMyN1oX DTI2MDgxNTAxNDgyN1owMzExMC8GA1UEAxMoMUE5MDE2Nzc2MzgyMjkwQjgwMkY4 MkRBOEJFMTNCM0RBMzc2NzM1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOG0hBmj7H5jPimkDUzr7WTrZkWLlUxygiL5JGHBlsODVAjvf8bakfJ1ZkQ3 WuivjoyJwwzm779yxhffdTz8FhwUrwub37VNmy+uynHRgaGZxLNr6wEWREjDN6bG 0ydMOPAsG2yx4wmDHWFxYGQm5jNivUImI9vkAOSj4EgeI8DUjBRH31ooenUD36d1 703CP03Mfc1BkGK0rm80vbI7PxgifJ/i0qLqHkRPUn8rJCeEFFLtgw+K4xh1vmi8 hbiD1xzvnwJn9lGeUQO3stQrGlCxJap6q1UflPHkzKGybdy1XAPdB2WwJEgqD6Iu ZkGsKzVrxRvuabNgqHY1GeLut6sCAwEAAaOCAeowggHmMB0GA1UdDgQWBBQakBZ3 Y4IpC4AvgtqL4Ts9o3ZzUzAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzNTM3MmUzMTMxMzkyZTMxMzAzMDJlMzAyZjMy MzIyZDMyMzQyMDNkM2UyMDM2MzIzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnXdkMA0GCSqGSIb3 DQEBCwUAA4IBAQCxTPKNhe77PRs42Ur9OszHh7Sd5a599flHBfQ2WEOPNQG8rMau pDvVBi8pJMrGMKULLMmh84tMbv5mJ1e5b+L1KDIE65wbCShRKD7r/YQey4/eYLGY alr203u1SQakAesudGOV8wVtYKw2GqAWLfq/s0Gwqe/rMkDhD+HBPCyZV41P+Bbh 6fWN0kyMV0VEXprtoAxHGZnEfQDpglF0TB25dvNJTmqR/BQGWY2J6XeHw9VHcIuJ apOWkseG3DHUv44VtHW8RuJXS6q/gjJ6I8tAhKUpMkoHAZE1Y/+zZ8ORGPNW/lbS DpaL2n2xwZScMnbfG8Ra3Zi4oFK0mP6dOG3A -----END CERTIFICATE-----Generated at Wed Oct 22 10:31:41 2025 by rpki-client