$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa File: 3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa (raw, json) Hash identifier: jiLNzaw7iBtcFJxEv9OfaOgZBrm9RcqwuCcH4jUB7QA= Subject key identifier: 4D:96:26:B6:71:D7:A7:5A:1B:F7:C8:CB:19:7C:25:4C:0D:13:D6:00 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 503D4A646A72CA46463C3BE8DC0FE54DD304A5E4 Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa Signing time: Fri 13 Mar 2026 08:56:13 +0000 ROA not before: Fri 13 Mar 2026 08:51:13 +0000 ROA not after: Fri 12 Mar 2027 08:56:13 +0000 asID: 3258 IP address blocks: 103.155.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 05:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3d:4a:64:6a:72:ca:46:46:3c:3b:e8:dc:0f:e5:4d:d3:04:a5:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000, serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Mar 13 08:51:13 2026 GMT Not After : Mar 12 08:56:13 2027 GMT Subject: CN=4D9626B671D7A75A1BF7C8CB197C254C0D13D600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:90:73:87:6f:4b:ad:01:52:af:1f:24:b7:90: 4c:2e:49:b9:42:92:c1:21:22:fb:28:3c:50:96:5c: c5:ea:eb:63:a5:58:45:e8:07:31:b7:e7:06:91:93: 46:a9:5a:6b:ff:bb:e6:ff:d1:77:23:60:74:b7:67: 81:5d:ad:e6:ad:2c:ef:89:e2:f2:c2:07:33:f1:76: 9c:f5:ce:9c:8f:55:c7:33:68:31:c2:ef:07:55:a0: eb:29:f7:95:11:b7:30:24:01:88:6d:1c:3e:d4:f7: 8c:ba:cf:9c:77:25:5e:47:a4:47:0c:b9:11:a6:f0: f7:cd:f6:9b:f2:8b:64:1d:9d:93:1e:77:bc:86:43: f0:62:71:3f:5a:f2:5a:21:40:9a:28:10:b9:16:be: 58:9d:48:c5:f3:89:fe:62:47:12:59:3a:1f:52:c0: 3c:04:22:a3:17:3e:e2:4a:e4:09:c9:12:da:9d:24: 5a:47:3b:d6:2c:96:4c:2e:bc:d4:e3:82:32:9a:15: 8d:bd:44:02:d6:cd:70:ee:fb:d3:d5:60:17:51:24: db:9d:35:95:e6:80:67:f5:8a:a9:a3:fb:ab:c4:e2: ef:e1:7f:60:46:02:a1:73:30:f0:f2:fa:89:ed:a8: 3b:26:85:53:16:9b:eb:66:97:96:67:2b:7e:29:0d: 47:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:96:26:B6:71:D7:A7:5A:1B:F7:C8:CB:19:7C:25:4C:0D:13:D6:00 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.232.0/23 Signature Algorithm: sha256WithRSAEncryption 68:1c:75:ac:40:c2:ae:04:ed:d4:fd:5b:65:94:74:eb:d7:29: 28:0d:20:87:33:bf:08:b8:e2:78:ee:c6:93:89:5f:92:6a:da: f0:b9:0c:d3:11:79:ff:25:9a:ed:43:89:ab:0e:ab:55:7f:b6: 1d:97:d6:75:dc:e4:59:23:73:ac:7d:bb:8f:af:3d:81:6b:0d: a5:fc:ab:80:a6:94:dd:12:c0:4c:3c:40:2e:b3:69:ba:d7:21: d5:2a:5e:f5:4c:1c:3c:a1:04:b8:30:ba:30:5d:88:8f:ea:49: 22:de:8e:ae:6a:74:91:b6:7b:53:dd:ba:c4:7e:30:aa:a3:96: 21:43:64:b5:85:5e:db:a6:53:84:0a:23:83:49:11:dd:06:3f: fa:39:e8:1e:23:a5:cd:5d:b1:e0:b8:37:63:2e:3b:bb:c2:86: 44:87:fe:31:12:3a:0e:97:39:60:b5:b7:e6:f4:98:94:00:8b: 3b:3d:e7:e6:6b:97:e1:f3:a4:77:66:13:aa:ea:49:46:23:c0: 57:67:46:38:01:c9:53:bd:39:a9:a0:f9:bf:13:de:17:03:f2: 25:d4:64:f9:40:4c:5e:03:59:62:cf:55:7c:3a:53:f7:eb:e5: 1c:f2:3d:ff:26:77:50:e9:90:0a:a6:e0:77:11:85:0a:9a:b2: 1e:79:50:e3 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUUD1KZGpyykZGPDvo3A/lTdMEpeQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTI2MDMxMzA4NTExM1oX DTI3MDMxMjA4NTYxM1owMzExMC8GA1UEAxMoNEQ5NjI2QjY3MUQ3QTc1QTFCRjdD OENCMTk3QzI1NEMwRDEzRDYwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+Qc4dvS60BUq8fJLeQTC5JuUKSwSEi+yg8UJZcxerrY6VYRegHMbfnBpGT Rqlaa/+75v/RdyNgdLdngV2t5q0s74ni8sIHM/F2nPXOnI9VxzNoMcLvB1Wg6yn3 lRG3MCQBiG0cPtT3jLrPnHclXkekRwy5Eabw9832m/KLZB2dkx53vIZD8GJxP1ry WiFAmigQuRa+WJ1IxfOJ/mJHElk6H1LAPAQioxc+4krkCckS2p0kWkc71iyWTC68 1OOCMpoVjb1EAtbNcO7709VgF1Ek2501leaAZ/WKqaP7q8Ti7+F/YEYCoXMw8PL6 ie2oOyaFUxab62aXlmcrfikNR0ECAwEAAaOCAeowggHmMB0GA1UdDgQWBBRNlia2 cdenWhv3yMsZfCVMDRPWADAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzEzMDMzMmUzMTM1MzUyZTMyMzMzMjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDMzMzIzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5voMA0GCSqGSIb3 DQEBCwUAA4IBAQBoHHWsQMKuBO3U/VtllHTr1ykoDSCHM78IuOJ47saTiV+Satrw uQzTEXn/JZrtQ4mrDqtVf7Ydl9Z13ORZI3OsfbuPrz2Baw2l/KuAppTdEsBMPEAu s2m61yHVKl71TBw8oQS4MLowXYiP6kki3o6uanSRtntT3brEfjCqo5YhQ2S1hV7b plOECiODSRHdBj/6OegeI6XNXbHguDdjLju7woZEh/4xEjoOlzlgtbfm9JiUAIs7 Pefma5fh86R3ZhOq6klGI8BXZ0Y4AclTvTmpoPm/E94XA/Il1GT5QExeA1liz1V8 OlP36+Uc8j3/JndQ6ZAKpuB3EYUKmrIeeVDj -----END CERTIFICATE-----Generated at Tue Mar 17 18:01:40 2026 by rpki-client