$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/34352e3131372e3130332e302f32342d3234203d3e2034373835.roa File: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (raw, json) Hash identifier: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA= Subject key identifier: 4F:31:51:E8:DB:66:D8:0A:DF:E5:1F:AE:35:49:77:E3:1F:78:57:C3 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 236449A47E6FC6E3D1E8C183C2BD86B6E2664573 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/34352e3131372e3130332e302f32342d3234203d3e2034373835.roa Signing time: Sat 16 Aug 2025 01:48:22 +0000 ROA not before: Sat 16 Aug 2025 01:43:22 +0000 ROA not after: Sat 15 Aug 2026 01:48:22 +0000 asID: 4785 IP address blocks: 45.117.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 18:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:64:49:a4:7e:6f:c6:e3:d1:e8:c1:83:c2:bd:86:b6:e2:66:45:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Aug 16 01:43:22 2025 GMT Not After : Aug 15 01:48:22 2026 GMT Subject: CN=4F3151E8DB66D80ADFE51FAE354977E31F7857C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:77:0e:1c:e1:4f:40:d9:74:d4:ab:75:76:25: eb:17:64:f3:b1:58:c7:2c:35:50:f2:d7:70:8e:b7: e4:1e:d8:07:93:ec:74:59:a8:b4:d7:50:92:60:0f: 79:cc:65:16:84:4b:f7:a7:b2:2c:96:87:c0:9b:ff: 19:b6:b2:43:88:0b:2b:f0:78:4b:88:55:d1:13:a4: d7:a1:b0:5d:aa:68:0d:58:b3:e7:49:47:54:05:54: 6e:86:81:02:72:69:3b:44:6b:46:a6:67:27:10:46: 7f:70:1b:5b:f4:a7:18:47:6d:ae:dc:14:24:89:b2: 8d:19:a1:e3:85:3d:60:fe:fc:15:9e:0a:6c:1f:d8: ee:3f:da:b4:51:24:87:ce:59:e7:9d:4c:28:93:44: 43:67:c5:e0:c1:d4:91:ea:d1:5c:a3:5c:c8:ce:b1: 29:82:4e:a4:e4:ad:05:b9:0d:60:1e:92:1c:85:b2: f2:27:23:fb:76:e5:73:4b:b5:66:75:50:b2:b1:4f: 02:a5:77:1e:5c:ea:31:ca:34:cc:06:b6:ef:9a:c0: bb:3e:d3:d5:9b:66:9c:0f:4f:1f:a8:55:73:4d:42: 93:65:eb:e9:ec:24:e0:96:2f:e2:09:e1:e2:06:1a: b6:90:7c:61:62:03:43:0d:16:18:ce:cc:03:7f:04: 64:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:31:51:E8:DB:66:D8:0A:DF:E5:1F:AE:35:49:77:E3:1F:78:57:C3 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/34352e3131372e3130332e302f32342d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.117.103.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:ef:3f:fc:64:cc:bf:22:a1:70:fa:c3:32:4e:c4:59:7e:53: 0a:cc:be:22:f1:cd:1f:d8:a0:e8:f1:4a:72:47:d1:19:ea:08: 84:ee:47:24:af:fb:e0:f7:e5:60:e4:ed:6d:5e:fb:9e:73:76: ed:e7:f3:ed:55:7b:7c:b2:36:7f:44:c0:64:72:9c:e6:9b:c3: 8d:db:65:67:83:c8:33:6e:f5:f0:b2:a7:78:ef:88:20:a1:9c: ca:7d:26:18:16:63:76:2a:bf:ec:2d:18:ee:4d:eb:0c:c3:4f: d4:69:77:9b:89:8b:15:52:86:6e:dc:d6:4c:ca:37:64:a2:bc: 7d:fe:1e:cf:b1:32:46:38:80:f8:ad:2f:66:f3:7c:b4:1f:7c: d4:f3:21:c2:a1:ef:64:52:60:ad:8d:c1:9c:f7:80:26:25:62: 86:1f:86:f2:e4:63:13:42:7e:05:f5:b9:f4:21:3e:6c:a3:05: 78:82:07:45:d1:78:4d:fa:af:2f:cb:86:a5:2f:d0:10:f7:2d: 38:aa:e1:a2:98:21:60:c5:66:60:0d:7f:33:20:3e:59:48:52: ed:4e:82:25:e5:fc:be:36:25:45:90:29:8d:69:0d:6a:40:f1: 9e:76:94:a5:bf:4e:9e:3d:6a:14:fb:54:d7:fa:91:57:69:4c: c6:cb:f5:5d -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUI2RJpH5vxuPR6MGDwr2GtuJmRXMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDgxNjAxNDMyMloX DTI2MDgxNTAxNDgyMlowMzExMC8GA1UEAxMoNEYzMTUxRThEQjY2RDgwQURGRTUx RkFFMzU0OTc3RTMxRjc4NTdDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKl3DhzhT0DZdNSrdXYl6xdk87FYxyw1UPLXcI635B7YB5PsdFmotNdQkmAP ecxlFoRL96eyLJaHwJv/GbayQ4gLK/B4S4hV0ROk16GwXapoDViz50lHVAVUboaB AnJpO0RrRqZnJxBGf3AbW/SnGEdtrtwUJImyjRmh44U9YP78FZ4KbB/Y7j/atFEk h85Z551MKJNEQ2fF4MHUkerRXKNcyM6xKYJOpOStBbkNYB6SHIWy8icj+3blc0u1 ZnVQsrFPAqV3HlzqMco0zAa275rAuz7T1ZtmnA9PH6hVc01Ck2Xr6ewk4JYv4gnh 4gYatpB8YWIDQw0WGM7MA38EZKECAwEAAaOCAegwggHkMB0GA1UdDgQWBBRPMVHo 22bYCt/lH641SXfjH3hXwzAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvMzQzNTJlMzEzMTM3MmUzMTMwMzMyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzNDM3MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC11ZzANBgkqhkiG9w0B AQsFAAOCAQEAHe8//GTMvyKhcPrDMk7EWX5TCsy+IvHNH9ig6PFKckfRGeoIhO5H JK/74PflYOTtbV77nnN27efz7VV7fLI2f0TAZHKc5pvDjdtlZ4PIM2718LKneO+I IKGcyn0mGBZjdiq/7C0Y7k3rDMNP1Gl3m4mLFVKGbtzWTMo3ZKK8ff4ez7EyRjiA +K0vZvN8tB981PMhwqHvZFJgrY3BnPeAJiVihh+G8uRjE0J+BfW59CE+bKMFeIIH RdF4TfqvL8uGpS/QEPctOKrhopghYMVmYA1/MyA+WUhS7U6CJeX8vjYlRZApjWkN akDxnnaUpb9Onj1qFPtU1/qRV2lMxsv1XQ== -----END CERTIFICATE-----Generated at Fri Aug 22 18:55:26 2025 by rpki-client