$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/323430333a326538303a3a2f33322d3438203d3e2038383838.roa File: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (raw, json) Hash identifier: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U= Subject key identifier: 56:69:24:25:EA:59:C5:CC:D9:24:9C:F5:82:9C:ED:FC:3B:50:13:B5 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 06FB4A8A45BBF9CDE2A4AF57325BD9E0E15D073E Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/323430333a326538303a3a2f33322d3438203d3e2038383838.roa Signing time: Sat 16 Aug 2025 01:48:22 +0000 ROA not before: Sat 16 Aug 2025 01:43:22 +0000 ROA not after: Sat 15 Aug 2026 01:48:22 +0000 asID: 8888 IP address blocks: 2403:2e80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 18:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:fb:4a:8a:45:bb:f9:cd:e2:a4:af:57:32:5b:d9:e0:e1:5d:07:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Aug 16 01:43:22 2025 GMT Not After : Aug 15 01:48:22 2026 GMT Subject: CN=56692425EA59C5CCD9249CF5829CEDFC3B5013B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:29:b4:ac:f7:d6:aa:e8:97:90:93:f1:a6:6b: a8:33:c1:57:14:3c:6e:9c:0d:38:10:db:36:ba:11: 38:c7:1c:33:33:53:37:3a:1f:6e:70:8f:03:67:ae: 53:f1:e8:d0:c5:b6:a2:69:08:1e:78:6d:7b:df:d0: e1:13:c0:a4:50:0b:56:fb:d4:c1:1b:64:4e:de:3f: 69:79:0e:9c:b2:49:0f:50:1d:aa:02:f6:06:15:e2: c7:46:9c:d6:3a:6b:b5:3e:33:cd:43:47:89:f9:42: 70:83:e9:1b:dd:77:d2:06:54:08:04:53:21:0c:2f: c3:38:91:9e:cd:18:a6:bb:59:ff:cc:22:73:5e:fe: 18:c5:fd:9e:1a:78:8d:05:d5:43:11:49:99:df:51: f6:17:dd:a9:bc:03:bd:15:65:b6:42:b1:7f:a8:9a: 84:fc:10:f9:a8:9a:bc:10:e2:38:21:89:c0:37:55: 32:1f:f0:65:9a:8f:4f:86:92:24:85:7a:12:52:6b: ca:25:58:67:74:b2:bc:ea:25:63:9f:8a:f8:8a:5f: c7:51:84:24:e9:4a:0b:53:50:ce:f5:b0:63:4e:fd: a5:f0:db:2e:cf:e3:c7:d6:c9:7b:fb:80:c1:7e:52: 0c:78:1b:1d:cf:d9:9c:79:d5:4a:b2:87:e3:9a:fa: 06:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:69:24:25:EA:59:C5:CC:D9:24:9C:F5:82:9C:ED:FC:3B:50:13:B5 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/323430333a326538303a3a2f33322d3438203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2e80::/32 Signature Algorithm: sha256WithRSAEncryption 4a:b4:ff:5a:e3:1e:c1:11:2a:ac:90:27:f2:3a:da:91:21:9d: 67:9a:1d:68:c7:bf:3e:fa:73:8c:bc:f4:3c:6d:39:e2:fb:71: 11:0b:5e:a6:3a:4e:e7:25:ca:88:54:9b:31:e5:4f:06:ef:52: 56:8f:24:ba:0c:70:f2:f8:c3:05:c8:54:1c:ba:1a:ff:bd:5d: 57:b8:3b:e5:86:4a:d6:45:9f:9a:8f:44:5d:e9:1b:f9:9c:05: 47:bd:ca:ee:8d:e6:49:66:80:0b:55:45:7d:25:ad:09:7b:e5: fc:3b:f8:a6:b6:01:9f:7b:94:7e:c6:45:5b:11:ad:c1:5b:9d: 5f:a1:11:36:3e:a0:0f:79:6f:7c:5a:bd:c2:30:21:46:b9:07: 77:63:19:64:f6:17:91:48:bc:d3:20:a4:66:0b:cd:78:69:42: 08:14:cd:b3:a5:81:5f:7c:ac:db:78:c4:0a:43:d9:ea:d7:31: 7f:62:cf:24:27:76:68:fb:2b:59:fa:b2:a1:8f:17:a8:46:ab: 30:ce:9a:27:38:e4:8f:45:53:7b:df:54:bd:32:3e:83:bd:54: 92:0f:36:df:38:7c:f0:51:25:0f:f0:6a:8f:5d:6f:25:85:ee: ea:c9:54:c3:33:0b:a1:88:c5:64:d1:6f:cc:68:0f:19:22:92: 95:3f:76:e9 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUBvtKikW7+c3ipK9XMlvZ4OFdBz4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDgxNjAxNDMyMloX DTI2MDgxNTAxNDgyMlowMzExMC8GA1UEAxMoNTY2OTI0MjVFQTU5QzVDQ0Q5MjQ5 Q0Y1ODI5Q0VERkMzQjUwMTNCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJkptKz31qrol5CT8aZrqDPBVxQ8bpwNOBDbNroROMccMzNTNzofbnCPA2eu U/Ho0MW2omkIHnhte9/Q4RPApFALVvvUwRtkTt4/aXkOnLJJD1AdqgL2BhXix0ac 1jprtT4zzUNHiflCcIPpG9130gZUCARTIQwvwziRns0YprtZ/8wic17+GMX9nhp4 jQXVQxFJmd9R9hfdqbwDvRVltkKxf6iahPwQ+aiavBDiOCGJwDdVMh/wZZqPT4aS JIV6ElJryiVYZ3SyvOolY5+K+Ipfx1GEJOlKC1NQzvWwY079pfDbLs/jx9bJe/uA wX5SDHgbHc/ZnHnVSrKH45r6BiMCAwEAAaOCAecwggHjMB0GA1UdDgQWBBRWaSQl 6lnFzNkknPWCnO38O1ATtTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzIzNDMwMzMzYTMyNjUzODMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzgzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAy6AMA0GCSqGSIb3DQEB CwUAA4IBAQBKtP9a4x7BESqskCfyOtqRIZ1nmh1ox78++nOMvPQ8bTni+3ERC16m Ok7nJcqIVJsx5U8G71JWjyS6DHDy+MMFyFQcuhr/vV1XuDvlhkrWRZ+aj0Rd6Rv5 nAVHvcrujeZJZoALVUV9Ja0Je+X8O/imtgGfe5R+xkVbEa3BW51foRE2PqAPeW98 Wr3CMCFGuQd3Yxlk9heRSLzTIKRmC814aUIIFM2zpYFffKzbeMQKQ9nq1zF/Ys8k J3Zo+ytZ+rKhjxeoRqswzponOOSPRVN731S9Mj6DvVSSDzbfOHzwUSUP8GqPXW8l he7qyVTDMwuhiMVk0W/MaA8ZIpKVP3bp -----END CERTIFICATE-----Generated at Fri Aug 22 18:55:30 2025 by rpki-client