$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3332203d3e2039333132.roa File: 3138302e3233352e3133372e302f32342d3332203d3e2039333132.roa (raw, json) Hash identifier: w4pKm5N/rDBRMwugzh3tQ3TgLHB/D7bVPmkVqLJmQ10= Subject key identifier: 16:77:54:89:76:33:79:47:68:60:06:45:F9:90:29:D7:F2:48:FF:15 Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 412A408353365CCD2769FBBE876035CF80799F38 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3332203d3e2039333132.roa Signing time: Thu 05 Feb 2026 06:56:12 +0000 ROA not before: Thu 05 Feb 2026 06:51:12 +0000 ROA not after: Thu 04 Feb 2027 06:56:12 +0000 asID: 9312 IP address blocks: 180.235.137.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 12:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:2a:40:83:53:36:5c:cd:27:69:fb:be:87:60:35:cf:80:79:9f:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000, serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Feb 5 06:51:12 2026 GMT Not After : Feb 4 06:56:12 2027 GMT Subject: CN=167754897633794768600645F99029D7F248FF15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fe:cb:e0:90:c5:c7:dd:d2:dd:1a:99:ce:c0: b0:b8:52:bc:d3:68:83:e0:ce:21:be:5a:58:3b:34: ad:22:9e:bf:ed:b5:3c:c1:2a:e6:e7:3f:33:5e:f2: 50:50:e2:ed:91:7e:13:81:6f:c5:ee:65:91:6a:9c: 16:d1:0b:ab:40:29:bb:04:36:f2:a7:ab:fd:57:c4: 25:6d:4e:cc:ac:7b:fc:0b:c2:99:f3:42:15:33:0f: 53:17:05:c5:0c:db:d0:81:f6:17:0d:13:c1:fc:7c: 39:06:d7:20:03:e9:3e:15:4e:e8:a5:48:c2:90:e3: 3b:d8:ac:c6:6c:7c:54:2d:2a:42:e4:c2:0f:42:a6: f4:d9:80:59:37:ba:19:93:88:bb:46:41:29:36:6e: dc:99:1d:df:7b:de:76:36:9c:f8:2b:2e:28:23:56: 46:c7:0b:09:e8:21:74:44:09:92:c6:41:89:5c:95: 13:8e:37:c7:cf:02:ff:c2:1a:40:30:09:50:24:c2: e7:09:a0:38:6b:89:e2:73:2f:48:4d:8e:01:f5:1c: 7b:2a:bf:4b:39:b3:ee:2a:0b:21:33:d6:f6:e0:5d: ce:ac:1e:ae:fa:80:00:c7:79:a0:0a:0e:a9:76:8c: 2b:c3:7d:78:f4:b8:e6:dd:77:a7:76:49:24:6e:4e: 5e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:77:54:89:76:33:79:47:68:60:06:45:F9:90:29:D7:F2:48:FF:15 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3138302e3233352e3133372e302f32342d3332203d3e2039333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.235.137.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:54:9b:15:07:6e:64:c8:3b:31:c8:c9:22:c8:de:f3:ab:d1: 07:0c:1b:4c:0d:2f:95:7b:53:e0:d8:70:47:64:3c:59:a9:e8: aa:c8:73:81:fc:bb:df:ac:6e:bd:d1:e8:35:7e:25:19:ed:4e: e3:a3:15:cd:3d:ea:d4:12:55:5d:df:18:71:33:e3:35:c5:48: 06:be:fe:ce:32:24:94:aa:00:a7:70:8c:ac:2f:30:58:8d:55: 70:9c:18:54:b0:45:7e:99:28:d0:21:e1:e0:46:89:13:77:ae: 0a:16:49:ad:be:93:63:0d:78:cf:7c:8b:23:8d:60:90:fc:f4: 3e:49:a9:5a:ac:ac:f5:d5:2d:58:b3:53:eb:0f:9b:20:b2:6c: 0c:dd:b1:78:81:0f:6e:84:e9:38:14:ab:6c:eb:e9:5f:34:52: f4:b7:81:13:d0:68:20:34:5e:88:a5:dd:8b:4b:7c:d8:5b:d9: 13:73:33:2c:2c:e2:64:6e:66:dc:28:bf:e8:78:f6:fc:4b:e7: 4c:12:e2:d8:f8:a7:1c:19:a7:45:85:33:ec:8d:f6:86:e6:d4: 18:81:eb:f6:c6:58:c5:d5:26:fe:c5:34:4d:29:aa:60:55:52: 89:2d:c7:cf:7a:cb:ec:3c:7b:fb:2e:99:66:06:02:d4:61:46: 54:de:d6:bd -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUQSpAg1M2XM0nafu+h2A1z4B5nzgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI2MDIwNTA2NTExMloX DTI3MDIwNDA2NTYxMlowMzExMC8GA1UEAxMoMTY3NzU0ODk3NjMzNzk0NzY4NjAw NjQ1Rjk5MDI5RDdGMjQ4RkYxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMD+y+CQxcfd0t0amc7AsLhSvNNog+DOIb5aWDs0rSKev+21PMEq5uc/M17y UFDi7ZF+E4Fvxe5lkWqcFtELq0ApuwQ28qer/VfEJW1OzKx7/AvCmfNCFTMPUxcF xQzb0IH2Fw0Twfx8OQbXIAPpPhVO6KVIwpDjO9isxmx8VC0qQuTCD0Km9NmAWTe6 GZOIu0ZBKTZu3Jkd33vedjac+CsuKCNWRscLCeghdEQJksZBiVyVE443x88C/8Ia QDAJUCTC5wmgOGuJ4nMvSE2OAfUceyq/Szmz7ioLITPW9uBdzqwervqAAMd5oAoO qXaMK8N9ePS45t13p3ZJJG5OXqMCAwEAAaOCAeowggHmMB0GA1UdDgQWBBQWd1SJ djN5R2hgBkX5kCnX8kj/FTAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvMzEzODMwMmUzMjMzMzUyZTMxMzMzNzJlMzAyZjMy MzQyZDMzMzIyMDNkM2UyMDM5MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtOuJMA0GCSqGSIb3 DQEBCwUAA4IBAQBdVJsVB25kyDsxyMkiyN7zq9EHDBtMDS+Ve1Pg2HBHZDxZqeiq yHOB/LvfrG690eg1fiUZ7U7joxXNPerUElVd3xhxM+M1xUgGvv7OMiSUqgCncIys LzBYjVVwnBhUsEV+mSjQIeHgRokTd64KFkmtvpNjDXjPfIsjjWCQ/PQ+SalarKz1 1S1Ys1PrD5sgsmwM3bF4gQ9uhOk4FKts6+lfNFL0t4ET0GggNF6Ipd2LS3zYW9kT czMsLOJkbmbcKL/oePb8S+dMEuLY+KccGadFhTPsjfaG5tQYgev2xljF1Sb+xTRN KapgVVKJLcfPesvsPHv7LplmBgLUYUZU3ta9 -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:29 2026 by rpki-client