$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa File: 3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa (raw, json) Hash identifier: z9Q9CGufBAvrvOJB0olivAFu9jmd++uYZyp82jFynZ0= Subject key identifier: 86:99:EF:B9:C1:99:BC:CC:55:7E:46:A1:C3:18:38:49:D4:E2:26:65 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 3481C34FDE258AB17F94AA66A35F562BD02BE71D Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa Signing time: Sat 16 Aug 2025 01:48:28 +0000 ROA not before: Sat 16 Aug 2025 01:43:28 +0000 ROA not after: Sat 15 Aug 2026 01:48:28 +0000 asID: 43959 IP address blocks: 103.155.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 08:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:81:c3:4f:de:25:8a:b1:7f:94:aa:66:a3:5f:56:2b:d0:2b:e7:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000, serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Aug 16 01:43:28 2025 GMT Not After : Aug 15 01:48:28 2026 GMT Subject: CN=8699EFB9C199BCCC557E46A1C3183849D4E22665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cd:10:55:c3:de:be:d3:f2:e7:01:6f:b7:9d: c9:1c:cc:62:d3:cb:28:3a:90:0d:50:6a:23:fd:3f: 0c:34:b3:a5:82:48:94:9a:46:8a:af:ed:47:97:f5: 60:c3:f8:93:ff:89:d8:fe:9d:0c:26:22:35:85:09: 71:c2:b9:50:59:08:6d:ec:9d:10:66:3b:54:45:8f: 1f:39:9b:8d:d9:f9:24:5e:1f:32:0c:37:20:c5:c6: 71:19:35:54:b0:28:a8:ef:9b:9b:09:7b:d8:f9:ba: 9d:d1:68:7b:8d:5f:65:d3:23:7d:e3:19:05:a5:d3: af:b2:08:28:fb:1f:b4:eb:6e:9b:01:f7:55:55:23: ee:68:ad:66:fa:40:f2:40:1d:0b:51:6d:cf:79:79: 7c:88:1d:84:48:f7:df:81:71:53:cb:13:f1:50:59: 4f:1b:48:c5:e5:ec:48:c1:37:0d:3e:47:5a:8d:5c: 02:35:51:49:05:06:43:b1:1f:bf:0f:ca:4f:ae:13: 14:f9:b7:f0:3e:3b:14:e0:4d:cd:42:7b:45:53:15: 98:ea:7b:64:e2:2b:67:5f:36:5f:38:42:59:0c:17: 8e:7c:25:d1:be:5b:3b:6e:02:1f:23:0d:a4:69:1e: b8:e6:c1:a4:1b:fc:72:aa:dd:18:b0:be:f2:3d:d3: 7a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:99:EF:B9:C1:99:BC:CC:55:7E:46:A1:C3:18:38:49:D4:E2:26:65 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e203433393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.232.0/23 Signature Algorithm: sha256WithRSAEncryption 24:34:3b:91:fa:e1:4e:aa:51:83:13:0c:d8:71:69:52:c3:03: 52:34:7b:6f:7a:65:ae:e0:ce:eb:c1:75:7a:8a:b0:9f:04:2b: eb:f0:30:16:4d:6e:4a:c4:04:5b:db:76:02:dc:6b:f6:71:59: a5:c3:eb:2c:da:49:d8:42:72:b4:c0:22:3c:19:b4:f4:90:b1: 4c:9a:b0:15:c0:7a:b9:df:f5:6d:23:0b:bd:8b:e8:07:58:5d: c3:e0:53:97:6a:63:88:88:d9:e5:96:d8:9e:5b:80:1b:c3:54: 45:51:44:94:63:63:86:b6:7b:13:0e:b8:12:18:c4:ce:6b:27: e9:f1:39:f5:63:8c:05:72:26:cb:6b:e0:8c:01:60:54:89:b7: 15:ac:e8:4f:43:a2:22:c6:85:fd:98:e0:e0:fa:f7:de:1f:e0: 08:80:da:1c:08:26:ff:9d:26:90:5a:48:f5:2e:c1:52:8b:3b: 7e:7a:79:e6:f9:07:f3:f7:0e:0b:c7:1d:e9:3c:64:87:00:ae: d4:c6:d8:03:92:c9:51:35:cc:03:04:a4:f8:69:8d:d0:3d:97: 3b:81:0a:34:b6:06:5d:0d:19:4d:a4:fa:22:52:59:22:dc:64: 16:82:b4:e9:35:e6:61:92:d8:69:5b:c5:94:c9:d4:93:28:e8: 51:a3:72:ce -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIUNIHDT94lirF/lKpmo19WK9Ar5x0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTI1MDgxNjAxNDMyOFoX DTI2MDgxNTAxNDgyOFowMzExMC8GA1UEAxMoODY5OUVGQjlDMTk5QkNDQzU1N0U0 NkExQzMxODM4NDlENEUyMjY2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPNEFXD3r7T8ucBb7edyRzMYtPLKDqQDVBqI/0/DDSzpYJIlJpGiq/tR5f1 YMP4k/+J2P6dDCYiNYUJccK5UFkIbeydEGY7VEWPHzmbjdn5JF4fMgw3IMXGcRk1 VLAoqO+bmwl72Pm6ndFoe41fZdMjfeMZBaXTr7IIKPsftOtumwH3VVUj7mitZvpA 8kAdC1Ftz3l5fIgdhEj334FxU8sT8VBZTxtIxeXsSME3DT5HWo1cAjVRSQUGQ7Ef vw/KT64TFPm38D47FOBNzUJ7RVMVmOp7ZOIrZ182XzhCWQwXjnwl0b5bO24CHyMN pGkeuObBpBv8cqrdGLC+8j3Tes8CAwEAAaOCAewwggHoMB0GA1UdDgQWBBSGme+5 wZm8zFV+RqHDGDhJ1OImZTAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzEzMDMzMmUzMTM1MzUyZTMyMzMzMjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDM0MzMzOTM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm+gwDQYJKoZI hvcNAQELBQADggEBACQ0O5H64U6qUYMTDNhxaVLDA1I0e296Za7gzuvBdXqKsJ8E K+vwMBZNbkrEBFvbdgLca/ZxWaXD6yzaSdhCcrTAIjwZtPSQsUyasBXAernf9W0j C72L6AdYXcPgU5dqY4iI2eWW2J5bgBvDVEVRRJRjY4a2exMOuBIYxM5rJ+nxOfVj jAVyJstr4IwBYFSJtxWs6E9DoiLGhf2Y4OD6994f4AiA2hwIJv+dJpBaSPUuwVKL O356eeb5B/P3DgvHHek8ZIcArtTG2AOSyVE1zAMEpPhpjdA9lzuBCjS2Bl0NGU2k +iJSWSLcZBaCtOk15mGS2GlbxZTJ1JMo6FGjcs4= -----END CERTIFICATE-----Generated at Wed Oct 22 18:38:04 2025 by rpki-client