$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2033323538.roa File: 3230332e39362e3233362e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: JMaRsQ48zGb4xncBKzQEEQ2heSEKed6SCwNzvViFnYI= Subject key identifier: C4:9E:2C:F4:E8:6F:7C:79:9E:DC:3C:D2:A1:35:0F:5C:FB:D3:98:F1 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 4595D3B18B579AF2756D5B9411652738C4165235 Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2033323538.roa Signing time: Thu 30 Apr 2026 09:17:22 +0000 ROA not before: Thu 30 Apr 2026 09:12:22 +0000 ROA not after: Thu 29 Apr 2027 09:17:22 +0000 asID: 3258 IP address blocks: 203.96.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 19:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:95:d3:b1:8b:57:9a:f2:75:6d:5b:94:11:65:27:38:c4:16:52:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Apr 30 09:12:22 2026 GMT Not After : Apr 29 09:17:22 2027 GMT Subject: CN=C49E2CF4E86F7C799EDC3CD2A1350F5CFBD398F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7a:07:70:53:f1:30:4c:a5:24:ab:5d:1e:4a: 78:15:ac:69:62:e9:5c:1d:50:bc:82:40:51:b8:b3: 45:6a:23:5d:ac:75:23:84:f9:e1:75:73:1d:30:5f: 7c:54:86:ed:c5:c2:31:91:db:2c:30:07:d7:a5:09: 3e:22:ec:ef:57:8a:69:e9:12:49:81:2b:b6:a6:af: ed:dc:14:43:c7:fa:7d:a9:ce:87:4f:50:88:35:f2: 3d:d3:3e:53:bc:9d:da:7f:25:e8:dc:b7:a3:34:c6: 28:c1:99:b9:3a:4d:11:6b:43:e1:a3:27:ac:65:95: 3b:c9:6f:93:3c:d4:b0:a8:3c:2f:06:de:0a:c7:a0: 4b:0e:09:5a:66:ae:59:8e:f0:a7:01:35:6c:96:06: 79:a7:1f:79:5e:9e:3d:fc:df:94:81:dc:bc:83:02: a4:68:59:0a:0f:af:a9:3e:72:d6:b2:6a:6d:fa:6a: d8:7d:96:f0:0c:0d:90:6d:78:06:03:80:62:d9:9d: fd:ec:9c:b7:59:bb:14:c3:71:ef:08:0c:26:26:fb: 8a:70:d5:37:6f:e5:e1:f0:c8:f7:28:57:dd:2d:7c: a1:88:7c:aa:de:4c:73:15:c3:c2:4a:d1:1f:5f:a9: 05:d2:0b:cf:f9:d5:20:61:0b:3b:5e:5c:22:58:e6: 05:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9E:2C:F4:E8:6F:7C:79:9E:DC:3C:D2:A1:35:0F:5C:FB:D3:98:F1 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3230332e39362e3233362e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.96.236.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:36:76:1f:a9:1c:5b:59:d1:2d:69:fe:cd:8c:8e:5c:d7:1e: f4:b8:62:59:27:90:f9:26:01:6c:7e:14:b6:89:9d:97:88:82: 85:b2:bf:5d:06:9b:f9:fd:d4:4c:1e:b7:eb:ef:0a:64:39:80: 3a:8c:23:ed:03:ee:b4:a2:bb:c1:c7:6e:68:19:29:ed:93:c2: ed:dc:ee:bf:4b:45:3c:3f:7e:2e:fa:b7:3c:a5:33:9f:dd:09: 21:be:43:ab:d8:39:72:6a:7c:8b:00:f4:d4:d3:94:9d:b5:0c: 88:12:40:73:21:02:1d:44:1a:4b:0f:22:89:6a:62:6a:a4:2e: e9:d9:7f:c6:aa:ff:3a:fe:f0:ad:c6:50:36:91:dc:df:90:55: 3d:63:c2:78:81:f1:90:33:a7:0a:25:6a:b6:d4:27:fe:56:7e: ce:1e:c7:24:7e:ab:a1:3b:81:dd:b4:a1:4f:d6:06:31:15:63: 55:db:08:99:9f:d7:ff:8a:9a:3d:12:67:b6:31:6d:86:21:3b: d5:c0:60:66:94:2e:b6:ee:53:aa:42:f2:9b:8d:0a:67:34:38: 4e:8a:6d:69:75:28:99:97:65:aa:fc:c9:db:0d:de:31:df:3b: 4a:1c:8b:21:dd:22:ce:84:97:6f:27:84:16:de:a5:b5:02:fd: 3c:17:15:c7 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIURZXTsYtXmvJ1bVuUEWUnOMQWUjUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI2MDQzMDA5MTIyMloX DTI3MDQyOTA5MTcyMlowMzExMC8GA1UEAxMoQzQ5RTJDRjRFODZGN0M3OTlFREMz Q0QyQTEzNTBGNUNGQkQzOThGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJ6B3BT8TBMpSSrXR5KeBWsaWLpXB1QvIJAUbizRWojXax1I4T54XVzHTBf fFSG7cXCMZHbLDAH16UJPiLs71eKaekSSYErtqav7dwUQ8f6fanOh09QiDXyPdM+ U7yd2n8l6Ny3ozTGKMGZuTpNEWtD4aMnrGWVO8lvkzzUsKg8LwbeCsegSw4JWmau WY7wpwE1bJYGeacfeV6ePfzflIHcvIMCpGhZCg+vqT5y1rJqbfpq2H2W8AwNkG14 BgOAYtmd/eyct1m7FMNx7wgMJib7inDVN2/l4fDI9yhX3S18oYh8qt5McxXDwkrR H1+pBdILz/nVIGELO15cIljmBSsCAwEAAaOCAegwggHkMB0GA1UdDgQWBBTEniz0 6G98eZ7cPNKhNQ9c+9OY8TAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzIzMDMzMmUzOTM2MmUzMjMzMzYyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzMzMyMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAstg7DANBgkqhkiG9w0B AQsFAAOCAQEAXDZ2H6kcW1nRLWn+zYyOXNce9LhiWSeQ+SYBbH4Utomdl4iChbK/ XQab+f3UTB636+8KZDmAOowj7QPutKK7wcduaBkp7ZPC7dzuv0tFPD9+Lvq3PKUz n90JIb5Dq9g5cmp8iwD01NOUnbUMiBJAcyECHUQaSw8iiWpiaqQu6dl/xqr/Ov7w rcZQNpHc35BVPWPCeIHxkDOnCiVqttQn/lZ+zh7HJH6roTuB3bShT9YGMRVjVdsI mZ/X/4qaPRJntjFthiE71cBgZpQutu5TqkLym40KZzQ4ToptaXUomZdlqvzJ2w3e Md87ShyLId0izoSXbyeEFt6ltQL9PBcVxw== -----END CERTIFICATE-----Generated at Sat May 2 00:51:44 2026 by rpki-client