$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2033323538.roa File: 3130332e35372e3136342e302f32322d3234203d3e2033323538.roa (raw, json) Hash identifier: UqIC9u7BB9Id3IMbYgH9FX+luoFs+hXH+2V/k9wpOTU= Subject key identifier: 54:CA:B1:63:0C:09:B7:7A:CC:71:A5:4D:FF:11:87:77:9A:A8:C6:14 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 36F8CA12609F2782BAAD3AFF623CAA0E9DD4CDAE Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2033323538.roa Signing time: Thu 30 Apr 2026 09:13:29 +0000 ROA not before: Thu 30 Apr 2026 09:08:29 +0000 ROA not after: Thu 29 Apr 2027 09:13:29 +0000 asID: 3258 IP address blocks: 103.57.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 07:33:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f8:ca:12:60:9f:27:82:ba:ad:3a:ff:62:3c:aa:0e:9d:d4:cd:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Apr 30 09:08:29 2026 GMT Not After : Apr 29 09:13:29 2027 GMT Subject: CN=54CAB1630C09B77ACC71A54DFF1187779AA8C614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9d:bf:5b:a2:1c:4e:a4:f5:26:52:0c:16:86: cf:8e:e1:c1:25:cb:60:22:6e:11:12:09:44:7c:4a: 76:6d:89:0f:8a:c3:12:79:8f:61:e1:85:f9:0b:80: 3a:e7:70:af:bf:17:43:77:bb:a1:f7:f8:1e:ac:8e: 99:46:77:51:6d:01:75:8e:30:75:29:29:91:f8:01: 18:0a:3a:73:2f:f0:dc:54:20:ad:21:cf:e2:71:20: 0b:63:0e:fd:d8:72:f4:6b:de:82:83:de:ca:88:ee: 04:84:b0:ae:59:fc:4b:34:27:7a:82:ec:1e:74:fe: 3b:ef:27:59:9c:0b:03:63:8d:36:c5:33:a0:2b:38: 8d:aa:41:38:53:02:e8:09:c9:cd:36:94:2b:07:6e: 69:df:55:8d:af:0b:a5:f5:8e:7a:5f:e7:3d:12:24: 16:ff:5c:4b:b4:94:20:18:33:e9:76:97:82:22:85: 9b:c4:05:a1:6f:7c:61:93:c5:4d:4b:6e:a0:24:04: 64:68:ae:88:57:6c:c8:07:cb:76:6e:88:bc:dc:34: aa:5e:40:8d:6e:5d:15:8a:70:8a:22:ee:ff:d2:4a: 89:72:76:a7:cd:cc:fb:7f:a6:14:dd:c9:47:a6:0a: f5:14:19:91:48:3c:d7:b2:7f:6b:a1:84:c1:af:44: 6c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:CA:B1:63:0C:09:B7:7A:CC:71:A5:4D:FF:11:87:77:9A:A8:C6:14 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.164.0/22 Signature Algorithm: sha256WithRSAEncryption 99:79:24:b9:d1:b7:ff:e2:70:f8:91:62:8e:be:61:76:ca:aa: 70:e8:d4:f6:96:c1:c1:44:8e:f8:30:f2:8f:f3:75:b7:6c:13: 9f:b5:d9:75:b8:86:e7:80:e2:0d:51:e4:f0:a9:a5:2a:b0:bd: 05:87:bf:08:62:10:bf:9b:84:38:e9:61:d1:0c:f2:7d:ee:14: 27:83:29:93:b9:44:78:d4:72:b2:dc:ea:38:d4:1b:03:a2:62: b9:a5:22:e1:e0:bb:d6:10:c4:e6:9b:95:69:44:b9:8d:1b:b1: 97:6a:84:72:c6:5c:76:35:5f:e7:aa:96:4b:ad:b1:0e:34:a3: f9:e2:d5:27:ec:96:ea:6f:0f:c4:bd:32:64:2a:4c:d7:b5:c8: 72:aa:34:e5:d3:6a:1a:10:27:40:79:28:8e:d1:f8:39:4d:5f: d3:f3:78:6f:8c:62:c9:13:97:e2:45:85:6a:f7:af:ca:16:3f: 66:63:ca:5d:c6:08:17:6f:28:26:80:8d:26:1e:de:f0:50:44: 5b:46:4b:b2:5c:66:cc:ec:e8:73:4d:44:47:88:f1:0f:f0:be: da:7c:9f:f5:74:65:96:93:80:ea:04:b0:97:43:1a:d2:44:59: cc:be:5f:3b:1c:db:71:7a:0d:e4:07:f1:d4:f2:e8:7d:22:59: 23:53:98:0d -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUNvjKEmCfJ4K6rTr/YjyqDp3Uza4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDQzMDA5MDgyOVoX DTI3MDQyOTA5MTMyOVowMzExMC8GA1UEAxMoNTRDQUIxNjMwQzA5Qjc3QUNDNzFB NTRERkYxMTg3Nzc5QUE4QzYxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCdv1uiHE6k9SZSDBaGz47hwSXLYCJuERIJRHxKdm2JD4rDEnmPYeGF+QuA Oudwr78XQ3e7off4HqyOmUZ3UW0BdY4wdSkpkfgBGAo6cy/w3FQgrSHP4nEgC2MO /dhy9GvegoPeyojuBISwrln8SzQneoLsHnT+O+8nWZwLA2ONNsUzoCs4japBOFMC 6AnJzTaUKwduad9Vja8LpfWOel/nPRIkFv9cS7SUIBgz6XaXgiKFm8QFoW98YZPF TUtuoCQEZGiuiFdsyAfLdm6IvNw0ql5AjW5dFYpwiiLu/9JKiXJ2p83M+3+mFN3J R6YK9RQZkUg817J/a6GEwa9EbCsCAwEAAaOCAegwggHkMB0GA1UdDgQWBBRUyrFj DAm3esxxpU3/EYd3mqjGFDAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzEzMDMzMmUzNTM3MmUzMTM2MzQyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzMzMyMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc5pDANBgkqhkiG9w0B AQsFAAOCAQEAmXkkudG3/+Jw+JFijr5hdsqqcOjU9pbBwUSO+DDyj/N1t2wTn7XZ dbiG54DiDVHk8KmlKrC9BYe/CGIQv5uEOOlh0Qzyfe4UJ4Mpk7lEeNRystzqONQb A6JiuaUi4eC71hDE5puVaUS5jRuxl2qEcsZcdjVf56qWS62xDjSj+eLVJ+yW6m8P xL0yZCpM17XIcqo05dNqGhAnQHkojtH4OU1f0/N4b4xiyROX4kWFavevyhY/ZmPK XcYIF28oJoCNJh7e8FBEW0ZLslxmzOzoc01ER4jxD/C+2nyf9XRllpOA6gSwl0Ma 0kRZzL5fOxzbcXoN5Afx1PLofSJZI1OYDQ== -----END CERTIFICATE-----Generated at Sat May 2 00:51:43 2026 by rpki-client