$ rpki-client -vvf rpki.roa.net/rrdp/xTom/63/3130332e3136392e39322e302f32332d3234203d3e2033323538.roa File: 3130332e3136392e39322e302f32332d3234203d3e2033323538.roa (raw, json) Hash identifier: /M7x2kwyDiR3KQMuxiEOujL472HLQ7UD/cUaoplODxw= Subject key identifier: ED:57:65:9B:5E:93:E6:60:81:04:E8:7B:DC:2D:B5:C7:55:89:EB:5D Certificate issuer: /CN=A91C44A00000/serialNumber=5C6CE387337886989FB3C3D4E6186A370B728D50 Certificate serial: 141C2291E842A17FAA6B35361A9125303D891C72 Authority key identifier: 5C:6C:E3:87:33:78:86:98:9F:B3:C3:D4:E6:18:6A:37:0B:72:8D:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XGzjhzN4hpifs8PU5hhqNwtyjVA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/63/3130332e3136392e39322e302f32332d3234203d3e2033323538.roa Signing time: Thu 30 Apr 2026 09:14:19 +0000 ROA not before: Thu 30 Apr 2026 09:09:19 +0000 ROA not after: Thu 29 Apr 2027 09:14:19 +0000 asID: 3258 IP address blocks: 103.169.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/63/5C6CE387337886989FB3C3D4E6186A370B728D50.crl rsync://rpki.roa.net/rrdp/xTom/63/5C6CE387337886989FB3C3D4E6186A370B728D50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XGzjhzN4hpifs8PU5hhqNwtyjVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 18:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:1c:22:91:e8:42:a1:7f:aa:6b:35:36:1a:91:25:30:3d:89:1c:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C44A00000, serialNumber=5C6CE387337886989FB3C3D4E6186A370B728D50 Validity Not Before: Apr 30 09:09:19 2026 GMT Not After : Apr 29 09:14:19 2027 GMT Subject: CN=ED57659B5E93E6608104E87BDC2DB5C75589EB5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6e:63:c0:0d:7b:0d:02:97:70:79:74:b9:ab: d2:f4:66:d9:0f:28:45:85:98:18:54:87:1d:91:b2: 98:63:b1:77:ce:db:77:d5:5d:14:64:f8:9c:55:ec: 79:28:55:42:56:1c:a8:6f:5b:d3:26:38:1b:fc:69: 00:4c:3b:0b:be:ff:fc:85:44:f7:e8:6d:e5:19:36: 21:4c:01:63:74:08:8d:6f:5b:09:c3:a9:d8:19:d0: c7:64:19:cb:e4:3d:02:48:0c:6f:4d:87:fe:53:a3: 17:98:41:fc:ac:4f:78:b8:64:57:4f:7b:42:98:04: 2e:a4:46:0c:23:80:06:2f:38:eb:9c:9d:25:1d:7a: 4f:8d:ba:dd:dc:7e:1b:d1:7c:16:28:00:dd:5e:3b: 61:d4:38:74:75:64:9b:bb:36:7c:bf:dc:f7:6f:c0: ba:0f:82:8c:70:52:0d:63:fd:77:c8:af:a1:dd:a0: ef:bd:08:08:83:ca:fc:a2:f5:a7:e4:4a:48:cb:75: 25:fb:5e:e8:10:9e:f5:ef:2d:dd:c7:fd:ea:aa:8e: a1:85:f0:a2:c3:52:d3:cd:cd:f9:36:ee:d5:c3:91: 81:d3:71:29:06:54:c0:93:b7:6b:00:f7:98:cf:08: 0a:8b:e0:f6:e0:65:95:6b:43:39:42:8e:49:f5:f5: 83:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:57:65:9B:5E:93:E6:60:81:04:E8:7B:DC:2D:B5:C7:55:89:EB:5D X509v3 Authority Key Identifier: keyid:5C:6C:E3:87:33:78:86:98:9F:B3:C3:D4:E6:18:6A:37:0B:72:8D:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/63/5C6CE387337886989FB3C3D4E6186A370B728D50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XGzjhzN4hpifs8PU5hhqNwtyjVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/63/3130332e3136392e39322e302f32332d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.92.0/23 Signature Algorithm: sha256WithRSAEncryption e2:dc:2a:6f:89:fa:24:60:94:e0:de:b7:37:e2:b3:d0:2c:85: 0c:05:87:b1:64:91:d3:db:0d:ab:43:5d:df:7c:3c:6c:c8:cd: 0f:bf:b9:95:3f:5a:09:74:61:90:0f:a1:35:67:18:6a:39:34: 23:69:f6:91:31:02:09:93:eb:a6:42:5b:7b:8e:02:6e:3c:7b: 0c:17:64:d0:ed:b8:ee:6f:82:66:0b:ee:e6:53:6e:24:72:92: 69:32:79:0e:1e:2d:01:a5:09:c5:0e:5e:53:6d:e9:b0:b3:fa: cf:33:26:b3:fa:2d:a0:0c:c6:61:f6:92:a7:aa:4d:77:80:9b: a6:fe:5b:71:75:04:13:37:dc:25:fa:83:89:7a:a8:aa:61:a1: 0f:b1:43:88:52:54:86:60:a2:4d:e4:2d:b1:56:3a:5f:c3:2e: 55:5b:58:b9:a0:92:57:79:65:3c:18:95:51:ee:b9:be:32:09: 83:8e:9c:42:ea:bb:c8:d0:30:33:76:18:a5:bc:17:e0:b6:eb: c7:39:fa:05:07:87:2f:bb:bc:81:8d:b3:93:99:05:04:15:3a: 1e:24:53:5d:d0:ab:13:bb:62:98:e3:9a:fc:65:61:3d:3b:7d: d2:9d:ff:ea:1c:d6:dd:68:8b:5d:4f:6e:41:c5:d3:64:f8:81: 34:77:d1:05 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUFBwikehCoX+qazU2GpElMD2JHHIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQzQ0QTAwMDAwMTEwLwYDVQQFEyg1QzZDRTM4NzMz Nzg4Njk4OUZCM0MzRDRFNjE4NkEzNzBCNzI4RDUwMB4XDTI2MDQzMDA5MDkxOVoX DTI3MDQyOTA5MTQxOVowMzExMC8GA1UEAxMoRUQ1NzY1OUI1RTkzRTY2MDgxMDRF ODdCREMyREI1Qzc1NTg5RUI1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9uY8ANew0Cl3B5dLmr0vRm2Q8oRYWYGFSHHZGymGOxd87bd9VdFGT4nFXs eShVQlYcqG9b0yY4G/xpAEw7C77//IVE9+ht5Rk2IUwBY3QIjW9bCcOp2BnQx2QZ y+Q9AkgMb02H/lOjF5hB/KxPeLhkV097QpgELqRGDCOABi8465ydJR16T4263dx+ G9F8FigA3V47YdQ4dHVkm7s2fL/c92/Aug+CjHBSDWP9d8ivod2g770ICIPK/KL1 p+RKSMt1Jfte6BCe9e8t3cf96qqOoYXwosNS083N+Tbu1cORgdNxKQZUwJO3awD3 mM8ICovg9uBllWtDOUKOSfX1g9cCAwEAAaOCAegwggHkMB0GA1UdDgQWBBTtV2Wb XpPmYIEE6HvcLbXHVYnrXTAfBgNVHSMEGDAWgBRcbOOHM3iGmJ+zw9TmGGo3C3KN UDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzYzLzVDNkNFMzg3MzM3ODg2OTg5RkIzQzNENEU2 MTg2QTM3MEI3MjhENTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1hHempoek40aHBpZnM4UFU1aGhxTnd0eWpWQS5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNjMvMzEzMDMzMmUzMTM2MzkyZTM5MzIyZTMwMmYzMjMz MmQzMjM0MjAzZDNlMjAzMzMyMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWepXDANBgkqhkiG9w0B AQsFAAOCAQEA4twqb4n6JGCU4N63N+Kz0CyFDAWHsWSR09sNq0Nd33w8bMjND7+5 lT9aCXRhkA+hNWcYajk0I2n2kTECCZPrpkJbe44Cbjx7DBdk0O247m+CZgvu5lNu JHKSaTJ5Dh4tAaUJxQ5eU23psLP6zzMms/otoAzGYfaSp6pNd4Cbpv5bcXUEEzfc JfqDiXqoqmGhD7FDiFJUhmCiTeQtsVY6X8MuVVtYuaCSV3llPBiVUe65vjIJg46c Quq7yNAwM3YYpbwX4Lbrxzn6BQeHL7u8gY2zk5kFBBU6HiRTXdCrE7timOOa/GVh PTt90p3/6hzW3WiLXU9uQcXTZPiBNHfRBQ== -----END CERTIFICATE-----Generated at Sat May 2 00:51:42 2026 by rpki-client