$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa File: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (raw, json) Hash identifier: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac= Subject key identifier: CD:B1:C4:03:38:9D:DA:5B:B7:22:77:64:70:6A:92:80:FF:76:9B:05 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 63E782575F29B29C22897D6DF898E43332D7C80A Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa Signing time: Sat 16 Aug 2025 01:48:22 +0000 ROA not before: Sat 16 Aug 2025 01:43:22 +0000 ROA not after: Sat 15 Aug 2026 01:48:22 +0000 asID: 36351 IP address blocks: 103.57.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 18:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e7:82:57:5f:29:b2:9c:22:89:7d:6d:f8:98:e4:33:32:d7:c8:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Aug 16 01:43:22 2025 GMT Not After : Aug 15 01:48:22 2026 GMT Subject: CN=CDB1C403389DDA5BB7227764706A9280FF769B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7c:00:64:35:d6:03:11:33:82:39:1a:85:48: 09:b3:f0:80:e9:ee:c5:85:23:63:72:5c:f0:57:8c: b4:56:6b:b0:6d:d3:b7:4b:f4:69:56:6d:44:40:ac: 7f:a8:7f:23:12:ce:dc:5b:aa:e0:88:b6:51:5d:58: 70:06:b0:47:d2:61:88:90:bf:bc:35:1c:5d:be:ca: 3b:f9:97:d3:f5:4a:e6:42:24:f8:50:b9:d6:12:e4: 14:52:1c:8a:71:34:69:e3:0c:a4:fb:57:0e:06:72: 29:23:87:5a:57:e3:c1:16:5b:9f:24:39:67:c1:2f: 13:56:0e:a4:71:9c:0d:b4:6b:1f:f3:00:47:15:63: 73:84:ea:2e:4e:05:9c:ce:2c:6c:77:a9:43:79:66: 4d:5e:a7:43:2e:37:d2:cb:a4:0d:03:ca:80:ee:0c: 38:eb:41:73:3e:76:80:41:99:1c:d3:5e:ba:11:52: 26:b8:a2:6d:8c:a7:02:3c:5a:74:2c:24:bc:db:28: eb:db:dd:01:15:a2:b6:38:21:42:32:4a:15:72:fc: 53:c1:30:1e:df:3e:39:e1:66:64:6f:5b:88:11:3f: a9:8f:44:6c:b4:78:62:ae:e6:15:2c:80:af:e6:bc: 8b:d2:bc:01:27:da:e1:22:c3:25:32:93:0e:f8:26: 86:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B1:C4:03:38:9D:DA:5B:B7:22:77:64:70:6A:92:80:FF:76:9B:05 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/3130332e35372e3136352e302f32342d3234203d3e203336333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.57.165.0/24 Signature Algorithm: sha256WithRSAEncryption 95:fa:57:6d:3e:1d:22:b7:4e:88:0c:0a:cc:6c:7e:ce:40:20: 72:d3:85:b1:a0:54:cd:d2:9e:db:02:28:6d:0d:ea:e6:bc:6d: 0e:78:2b:47:ec:94:41:51:bb:d2:33:76:af:04:7d:f6:17:ab: 71:66:85:ac:c3:fe:ca:a8:da:79:96:a2:0e:53:88:12:8a:7a: 9a:14:2f:17:7a:22:17:ea:60:c7:3e:c5:54:dc:c3:80:d1:54: 77:c7:74:bc:a1:de:ee:90:0b:41:57:3c:53:af:d7:6a:65:c0: 6e:4c:96:9a:24:1b:56:6b:ec:a7:e2:65:1e:c8:92:99:24:99: f5:9a:9e:13:1d:0a:f6:0e:0b:0d:ca:eb:31:cd:0d:51:8a:80: 03:af:f7:bf:34:f8:0f:75:81:a2:cc:71:38:60:8f:13:01:f6: df:f8:56:5e:c5:f8:0a:06:46:0a:d0:e6:28:3f:36:d4:38:51: 3c:61:ce:63:8d:a5:b1:58:6e:53:cc:eb:fa:ea:58:5c:61:a2: 08:03:09:62:0c:16:76:fb:15:ca:13:4f:2a:1e:ed:16:93:4b: 3f:f3:56:c7:8c:0c:99:c9:12:0a:e9:63:0c:90:4c:3e:4a:14: 4e:5d:f8:37:73:21:6f:7c:aa:2e:b2:1e:9e:d5:83:92:84:90: cc:b8:64:ce -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUY+eCV18pspwiiX1t+JjkMzLXyAowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDgxNjAxNDMyMloX DTI2MDgxNTAxNDgyMlowMzExMC8GA1UEAxMoQ0RCMUM0MDMzODlEREE1QkI3MjI3 NzY0NzA2QTkyODBGRjc2OUIwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL58AGQ11gMRM4I5GoVICbPwgOnuxYUjY3Jc8FeMtFZrsG3Tt0v0aVZtRECs f6h/IxLO3Fuq4Ii2UV1YcAawR9JhiJC/vDUcXb7KO/mX0/VK5kIk+FC51hLkFFIc inE0aeMMpPtXDgZyKSOHWlfjwRZbnyQ5Z8EvE1YOpHGcDbRrH/MARxVjc4TqLk4F nM4sbHepQ3lmTV6nQy430sukDQPKgO4MOOtBcz52gEGZHNNeuhFSJriibYynAjxa dCwkvNso69vdARWitjghQjJKFXL8U8EwHt8+OeFmZG9biBE/qY9EbLR4Yq7mFSyA r+a8i9K8ASfa4SLDJTKTDvgmhm0CAwEAAaOCAeowggHmMB0GA1UdDgQWBBTNscQD OJ3aW7cid2RwapKA/3abBTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzEzMDMzMmUzNTM3MmUzMTM2MzUyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzMzM2MzMzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzmlMA0GCSqGSIb3 DQEBCwUAA4IBAQCV+ldtPh0it06IDArMbH7OQCBy04WxoFTN0p7bAihtDermvG0O eCtH7JRBUbvSM3avBH32F6txZoWsw/7KqNp5lqIOU4gSinqaFC8XeiIX6mDHPsVU 3MOA0VR3x3S8od7ukAtBVzxTr9dqZcBuTJaaJBtWa+yn4mUeyJKZJJn1mp4THQr2 DgsNyusxzQ1RioADr/e/NPgPdYGizHE4YI8TAfbf+FZexfgKBkYK0OYoPzbUOFE8 Yc5jjaWxWG5TzOv66lhcYaIIAwliDBZ2+xXKE08qHu0Wk0s/81bHjAyZyRIK6WMM kEw+ShROXfg3cyFvfKoush6e1YOShJDMuGTO -----END CERTIFICATE-----Generated at Fri Aug 22 18:54:35 2025 by rpki-client