$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3332203d3e2033323538.roa File: 3138302e3233352e3133372e302f32342d3332203d3e2033323538.roa (raw, json) Hash identifier: SC1ROahhu5b/WlirfJMBS1lnnp2yNpJw/qZ1H/qmHoA= Subject key identifier: 61:BF:44:C5:C3:B6:C3:8D:2F:8E:86:25:CB:0E:20:8F:19:B7:F8:DB Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 75F0046BCCCE89E05B0AA33A3739794F2C3301AD Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3332203d3e2033323538.roa Signing time: Thu 05 Feb 2026 06:56:12 +0000 ROA not before: Thu 05 Feb 2026 06:51:12 +0000 ROA not after: Thu 04 Feb 2027 06:56:12 +0000 asID: 3258 IP address blocks: 180.235.137.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 12:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f0:04:6b:cc:ce:89:e0:5b:0a:a3:3a:37:39:79:4f:2c:33:01:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Feb 5 06:51:12 2026 GMT Not After : Feb 4 06:56:12 2027 GMT Subject: CN=61BF44C5C3B6C38D2F8E8625CB0E208F19B7F8DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:71:22:93:ef:e8:37:90:c5:a0:e5:00:6f: 87:19:54:fd:b6:4a:0c:43:4d:35:05:1a:e4:38:64: 62:af:d9:07:de:8b:41:c3:6d:7a:d1:2c:86:a4:c2: 19:b6:9a:e5:50:ec:0c:33:a5:91:95:6e:49:b1:a8: 12:ea:ca:5b:31:c0:a0:da:a3:56:64:84:ef:b3:fe: b4:db:03:a9:d0:6a:78:d7:b1:6f:ac:84:c1:d2:e5: 02:30:27:78:61:77:b8:6c:a2:94:b6:61:d0:fc:59: 3b:37:20:f1:97:2a:d8:40:21:eb:78:4c:fc:75:6b: 9d:af:26:0f:5c:1e:c1:39:50:82:73:96:53:38:2f: 47:0c:57:ce:1f:4d:f6:78:f1:80:f9:75:94:6b:bb: 1c:81:ca:1e:18:04:3a:e2:7a:1e:0e:04:c2:af:51: 3a:c8:29:30:1a:bd:21:8c:9a:b1:fe:25:db:ba:9e: 1a:dd:d3:f4:b7:a1:a3:31:b4:ac:cd:b2:3d:d5:95: 5c:9d:d8:6b:2e:7c:0a:b9:e3:bf:fa:70:34:76:35: 06:30:a3:b2:5f:9d:39:e4:d3:7b:7b:70:a5:78:bd: dc:57:42:ab:e0:b5:4b:15:43:1a:09:51:86:cd:ea: 92:98:00:7e:c1:6f:3d:fc:f7:ce:ca:59:0e:85:e6: 65:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BF:44:C5:C3:B6:C3:8D:2F:8E:86:25:CB:0E:20:8F:19:B7:F8:DB X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3332203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.235.137.0/24 Signature Algorithm: sha256WithRSAEncryption 88:83:60:44:26:8b:de:45:22:73:fc:d0:9d:63:39:9f:cb:41: d8:ee:52:64:d7:03:34:4c:be:96:91:75:b0:03:fa:b0:0c:52: 0b:76:29:8c:1d:c2:44:73:16:08:87:7e:1b:15:81:41:e8:2d: 5a:d6:e3:53:bf:90:c0:57:f2:87:14:3e:b9:6d:40:c5:d9:57: 87:16:45:1a:94:cc:6b:8d:16:5e:bf:52:ed:5d:2f:5e:41:00: eb:2c:c4:8b:03:45:80:e8:76:36:0e:77:84:be:65:0c:4b:2f: 05:2d:4c:76:e1:23:b5:44:82:83:1c:59:5e:44:4d:4a:8c:c3: 0f:95:62:3a:b6:c3:d5:a0:03:ae:c7:d3:00:19:a1:6b:bb:b4: f3:42:4a:46:fb:d5:bf:45:64:0b:40:d7:ce:86:a6:18:78:2c: 91:71:63:7b:01:af:d1:5f:02:f3:38:5b:6e:10:64:cb:74:51: 4b:31:d9:3e:5e:22:dc:c8:38:5e:0a:02:fc:82:8a:78:22:cb: 3a:87:d1:33:75:ad:0e:17:98:88:97:5c:96:65:a5:e8:f4:fc: 45:04:1f:83:e4:5e:cb:f2:73:bc:0a:e3:25:e8:90:d6:e0:bd: fa:e1:76:07:57:c3:e8:2d:bd:0f:f1:b9:55:6f:92:e0:11:99: 8a:79:c8:fd -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUdfAEa8zOieBbCqM6Nzl5TywzAa0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI2MDIwNTA2NTExMloX DTI3MDIwNDA2NTYxMlowMzExMC8GA1UEAxMoNjFCRjQ0QzVDM0I2QzM4RDJGOEU4 NjI1Q0IwRTIwOEYxOUI3RjhEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMmcSKT7+g3kMWg5QBvhxlU/bZKDENNNQUa5DhkYq/ZB96LQcNtetEshqTC Gbaa5VDsDDOlkZVuSbGoEurKWzHAoNqjVmSE77P+tNsDqdBqeNexb6yEwdLlAjAn eGF3uGyilLZh0PxZOzcg8Zcq2EAh63hM/HVrna8mD1wewTlQgnOWUzgvRwxXzh9N 9njxgPl1lGu7HIHKHhgEOuJ6Hg4Ewq9ROsgpMBq9IYyasf4l27qeGt3T9LehozG0 rM2yPdWVXJ3Yay58Crnjv/pwNHY1BjCjsl+dOeTTe3twpXi93FdCq+C1SxVDGglR hs3qkpgAfsFvPfz3zspZDoXmZTUCAwEAAaOCAeowggHmMB0GA1UdDgQWBBRhv0TF w7bDjS+OhiXLDiCPGbf42zAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzODMwMmUzMjMzMzUyZTMxMzMzNzJlMzAyZjMy MzQyZDMzMzIyMDNkM2UyMDMzMzIzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtOuJMA0GCSqGSIb3 DQEBCwUAA4IBAQCIg2BEJoveRSJz/NCdYzmfy0HY7lJk1wM0TL6WkXWwA/qwDFIL dimMHcJEcxYIh34bFYFB6C1a1uNTv5DAV/KHFD65bUDF2VeHFkUalMxrjRZev1Lt XS9eQQDrLMSLA0WA6HY2DneEvmUMSy8FLUx24SO1RIKDHFleRE1KjMMPlWI6tsPV oAOux9MAGaFru7TzQkpG+9W/RWQLQNfOhqYYeCyRcWN7Aa/RXwLzOFtuEGTLdFFL Mdk+XiLcyDheCgL8gop4Iss6h9Ezda0OF5iIl1yWZaXo9PxFBB+D5F7L8nO8CuMl 6JDW4L364XYHV8PoLb0P8blVb5LgEZmKecj9 -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:29 2026 by rpki-client