$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2038383838.roa File: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (raw, json) Hash identifier: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M= Subject key identifier: 00:5B:FD:41:31:35:4C:EE:99:D5:C8:7D:0D:A6:6A:0B:64:23:D7:4D Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 23E83B71D89285E2C870F9F1A8BF084000E0E63B Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2038383838.roa Signing time: Sat 16 Aug 2025 01:48:22 +0000 ROA not before: Sat 16 Aug 2025 01:43:22 +0000 ROA not after: Sat 15 Aug 2026 01:48:22 +0000 asID: 8888 IP address blocks: 103.57.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 18:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e8:3b:71:d8:92:85:e2:c8:70:f9:f1:a8:bf:08:40:00:e0:e6:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Aug 16 01:43:22 2025 GMT Not After : Aug 15 01:48:22 2026 GMT Subject: CN=005BFD4131354CEE99D5C87D0DA66A0B6423D74D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b3:1b:a3:4a:f4:4e:25:27:34:89:4a:36:33: 79:c9:89:74:55:40:23:0d:b3:94:31:84:42:6e:f6: 12:f1:9e:a1:0c:2e:46:43:44:f6:d2:9e:04:74:34: b9:e3:c4:33:1b:0e:fe:9d:4b:f6:13:4e:7c:d8:e6: dc:95:6b:91:dc:4b:e5:0a:8f:da:fe:86:dc:c5:c7: 09:59:45:e0:32:f3:ef:28:0c:a3:e8:19:24:52:2b: d4:30:c7:58:a7:68:9e:05:74:78:82:19:ff:67:ed: 6e:8d:37:3d:3e:d0:89:ef:87:ad:d2:77:14:5a:e8: f4:eb:ff:88:95:67:30:d8:09:85:99:c0:37:dd:38: 03:c7:70:07:8b:5d:52:23:c4:9f:8e:d2:4c:df:c7: 7d:fd:95:90:df:35:92:59:6b:c5:ba:be:8f:ba:ef: 1a:b0:c3:aa:cb:65:90:1d:89:1f:5e:64:49:c9:eb: dd:29:69:38:8d:68:a9:c9:24:bf:76:71:a0:0d:39: 41:d6:d8:25:48:19:f0:0a:67:a7:57:e6:42:ea:12: 3d:85:ea:34:e1:5f:54:e7:69:83:4a:06:23:24:6b: 96:d0:d1:6a:7d:df:b2:5f:a7:eb:f1:fe:07:a1:79: 7d:e8:ac:da:06:7f:f3:36:5b:ad:0e:14:fc:8a:9c: 11:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5B:FD:41:31:35:4C:EE:99:D5:C8:7D:0D:A6:6A:0B:64:23:D7:4D X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136342e302f32322d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.164.0/22 Signature Algorithm: sha256WithRSAEncryption 68:1c:ac:a1:31:7e:18:7c:ee:0b:70:73:f8:f4:84:9b:eb:b5: 91:8a:72:c2:ca:b5:de:c7:d1:a4:07:3e:df:c3:dd:bb:f1:20: 02:a3:a4:98:b2:e3:f5:50:e1:f4:ab:69:cf:5b:dc:ab:a8:55: 0a:87:5b:cd:d6:f8:61:0f:b4:8c:2d:fe:e7:b8:ad:55:72:f8: c8:16:08:ac:0f:8a:d2:7b:4f:0c:0f:3a:b5:07:f2:6a:a2:92: 0f:88:27:41:4c:50:9c:90:da:ad:35:27:d0:ef:21:dd:62:a7: 29:1d:2d:95:9e:5d:5e:c0:2f:50:4f:4d:83:36:83:49:19:57: fc:6f:06:30:12:99:3b:bd:2d:bc:79:e7:ef:23:2a:f6:50:8e: bc:42:0a:04:66:d4:13:91:c2:6d:c2:7c:be:fb:b7:51:3d:ad: ee:08:5f:e6:70:4b:fc:76:85:6a:0f:5b:cb:5b:56:66:99:8b: af:b0:14:5d:60:81:55:c4:91:06:6f:75:fe:c2:58:30:bc:e0: d4:16:1a:27:51:ed:a6:e6:f0:9b:90:f4:5c:b3:13:76:71:d9: 3d:30:c2:ad:fb:cb:3c:c8:5c:ee:37:41:1e:b9:b9:79:a2:6d: 83:9c:33:58:f8:8e:79:25:8c:36:71:03:10:b7:17:88:fe:4c: 91:d7:4c:8a -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUI+g7cdiSheLIcPnxqL8IQADg5jswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDgxNjAxNDMyMloX DTI2MDgxNTAxNDgyMlowMzExMC8GA1UEAxMoMDA1QkZENDEzMTM1NENFRTk5RDVD ODdEMERBNjZBMEI2NDIzRDc0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCzG6NK9E4lJzSJSjYzecmJdFVAIw2zlDGEQm72EvGeoQwuRkNE9tKeBHQ0 uePEMxsO/p1L9hNOfNjm3JVrkdxL5QqP2v6G3MXHCVlF4DLz7ygMo+gZJFIr1DDH WKdongV0eIIZ/2ftbo03PT7Qie+HrdJ3FFro9Ov/iJVnMNgJhZnAN904A8dwB4td UiPEn47STN/Hff2VkN81kllrxbq+j7rvGrDDqstlkB2JH15kScnr3SlpOI1oqckk v3ZxoA05QdbYJUgZ8Apnp1fmQuoSPYXqNOFfVOdpg0oGIyRrltDRan3fsl+n6/H+ B6F5feis2gZ/8zZbrQ4U/IqcERkCAwEAAaOCAegwggHkMB0GA1UdDgQWBBQAW/1B MTVM7pnVyH0NpmoLZCPXTTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzEzMDMzMmUzNTM3MmUzMTM2MzQyZTMwMmYzMjMy MmQzMjM0MjAzZDNlMjAzODM4MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc5pDANBgkqhkiG9w0B AQsFAAOCAQEAaBysoTF+GHzuC3Bz+PSEm+u1kYpywsq13sfRpAc+38Pdu/EgAqOk mLLj9VDh9Ktpz1vcq6hVCodbzdb4YQ+0jC3+57itVXL4yBYIrA+K0ntPDA86tQfy aqKSD4gnQUxQnJDarTUn0O8h3WKnKR0tlZ5dXsAvUE9NgzaDSRlX/G8GMBKZO70t vHnn7yMq9lCOvEIKBGbUE5HCbcJ8vvu3UT2t7ghf5nBL/HaFag9by1tWZpmLr7AU XWCBVcSRBm91/sJYMLzg1BYaJ1Htpubwm5D0XLMTdnHZPTDCrfvLPMhc7jdBHrm5 eaJtg5wzWPiOeSWMNnEDELcXiP5MkddMig== -----END CERTIFICATE-----Generated at Fri Aug 22 18:54:38 2025 by rpki-client