$ rpki-client -vvf rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa File: 3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa (raw, json) Hash identifier: 5aKVEqF4CQ0sEJpSq0LpERs02xrta8fAyt1be/qMC+4= Subject key identifier: F0:04:6B:14:5A:6D:B0:18:ED:3C:C3:B0:AB:BC:AE:DA:CD:91:28:77 Certificate issuer: /CN=A913FFE90000/serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Certificate serial: 17C71B24B3D2740C3BC9898F57915A8F7F6081A1 Authority key identifier: E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa Signing time: Fri 11 Apr 2025 08:54:29 +0000 ROA not before: Fri 11 Apr 2025 08:49:29 +0000 ROA not after: Fri 10 Apr 2026 08:54:29 +0000 asID: 3258 IP address blocks: 103.155.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 18:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c7:1b:24:b3:d2:74:0c:3b:c9:89:8f:57:91:5a:8f:7f:60:81:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FFE90000, serialNumber=E9BFE0215B84F449D0BB55F37B2D6160D464C190 Validity Not Before: Apr 11 08:49:29 2025 GMT Not After : Apr 10 08:54:29 2026 GMT Subject: CN=F0046B145A6DB018ED3CC3B0ABBCAEDACD912877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:20:f3:8a:38:b6:ca:df:ae:04:52:a5:85:6f: 75:6c:22:b5:5f:5c:4a:4d:b9:52:93:91:f0:1b:37: 26:09:78:3a:03:fa:a7:c5:98:25:a3:d6:7d:08:b5: ce:78:e7:5c:a9:a0:9c:3f:62:42:71:88:72:83:55: 0f:9c:7f:64:2c:78:91:df:97:d9:2e:d2:d6:58:81: f4:96:ea:79:99:50:82:d3:db:4d:eb:3d:e6:3e:16: 28:ad:ff:8f:83:ed:5d:ee:bf:fd:a4:c7:de:a3:b4: eb:b7:b8:1d:ba:d2:a9:31:ec:e9:05:07:a7:51:69: c0:91:0b:f9:73:f0:91:1e:06:f4:6d:49:43:43:6f: d7:56:d7:af:2e:0a:88:65:10:13:07:79:2b:d5:b6: 5c:88:57:92:bd:98:5e:4d:00:10:40:dc:77:40:4f: 63:05:3f:c6:85:c1:b7:7b:05:b6:4c:d1:b8:cd:b7: 84:35:40:d6:e0:24:eb:04:02:cc:b6:b7:86:fb:71: 67:b8:a2:9b:8a:0c:d6:a2:26:1e:5d:fb:ff:12:90: 4f:33:41:70:f7:68:a0:4c:15:c0:5d:80:36:59:70: 4e:40:1d:bc:8f:7a:ef:93:eb:79:50:2a:11:e0:29: c8:e6:48:0f:29:e3:38:c9:05:f2:44:09:93:6b:2b: 73:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:04:6B:14:5A:6D:B0:18:ED:3C:C3:B0:AB:BC:AE:DA:CD:91:28:77 X509v3 Authority Key Identifier: keyid:E9:BF:E0:21:5B:84:F4:49:D0:BB:55:F3:7B:2D:61:60:D4:64:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/43/E9BFE0215B84F449D0BB55F37B2D6160D464C190.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6b_gIVuE9EnQu1Xzey1hYNRkwZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/43/3130332e3135352e3233322e302f32332d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.232.0/23 Signature Algorithm: sha256WithRSAEncryption 54:03:a4:0c:df:39:43:2f:6e:32:3b:ad:0b:57:25:97:8b:4b: ed:f2:96:86:0e:7a:e2:a2:fd:57:a2:48:7d:f9:32:aa:4a:ab: ab:94:23:50:01:91:5b:e3:34:21:e2:13:5e:80:50:54:1b:e5: 2d:5f:8d:50:c4:8f:3f:2c:0a:73:a4:7a:e8:ff:f1:9f:5e:bb: 47:2b:12:c8:e2:67:29:90:3d:c5:18:23:89:9a:54:e8:a3:1b: ec:87:7f:37:4b:74:22:5a:d4:d5:3b:cb:c2:6f:df:0f:40:ea: 18:02:b1:96:83:08:81:59:9a:13:ff:b3:c8:12:5f:e7:fd:a6: 5a:a8:53:db:9f:5c:da:70:41:be:c1:37:fd:0c:6d:5f:58:b6: 49:e9:2e:53:ca:66:f8:6c:20:d4:f6:9b:d4:ab:95:1a:5d:ff: 6a:eb:10:10:10:6c:db:19:a5:3f:08:e5:5a:f4:b6:0b:b1:98: 3f:67:2c:35:2d:3f:27:a0:40:95:76:54:dd:ca:cc:a1:b6:d1: 9d:df:a0:d8:cd:62:11:86:68:f4:e0:08:38:09:89:55:1e:2d: e2:55:1a:93:01:94:8c:86:ce:10:84:e4:a2:e5:13:19:dc:9e: 0b:10:85:4b:fd:4e:3e:6d:a7:db:ad:ad:11:95:27:18:43:64: 61:ed:53:e9 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUF8cbJLPSdAw7yYmPV5Faj39ggaEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxM0ZGRTkwMDAwMTEwLwYDVQQFEyhFOUJGRTAyMTVC ODRGNDQ5RDBCQjU1RjM3QjJENjE2MEQ0NjRDMTkwMB4XDTI1MDQxMTA4NDkyOVoX DTI2MDQxMDA4NTQyOVowMzExMC8GA1UEAxMoRjAwNDZCMTQ1QTZEQjAxOEVEM0ND M0IwQUJCQ0FFREFDRDkxMjg3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsg84o4tsrfrgRSpYVvdWwitV9cSk25UpOR8Bs3Jgl4OgP6p8WYJaPWfQi1 znjnXKmgnD9iQnGIcoNVD5x/ZCx4kd+X2S7S1liB9JbqeZlQgtPbTes95j4WKK3/ j4PtXe6//aTH3qO067e4HbrSqTHs6QUHp1FpwJEL+XPwkR4G9G1JQ0Nv11bXry4K iGUQEwd5K9W2XIhXkr2YXk0AEEDcd0BPYwU/xoXBt3sFtkzRuM23hDVA1uAk6wQC zLa3hvtxZ7iim4oM1qImHl37/xKQTzNBcPdooEwVwF2ANllwTkAdvI9675PreVAq EeApyOZIDynjOMkF8kQJk2src5kCAwEAAaOCAeowggHmMB0GA1UdDgQWBBTwBGsU Wm2wGO08w7CrvK7azZEodzAfBgNVHSMEGDAWgBTpv+AhW4T0SdC7VfN7LWFg1GTB kDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQzL0U5QkZFMDIxNUI4NEY0NDlEMEJCNTVGMzdC MkQ2MTYwRDQ2NEMxOTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzZiX2dJVnVFOUVuUXUxWHpleTFoWU5Sa3daQS5j ZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDMvMzEzMDMzMmUzMTM1MzUyZTMyMzMzMjJlMzAyZjMy MzMyZDMyMzQyMDNkM2UyMDMzMzIzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5voMA0GCSqGSIb3 DQEBCwUAA4IBAQBUA6QM3zlDL24yO60LVyWXi0vt8paGDnriov1Xokh9+TKqSqur lCNQAZFb4zQh4hNegFBUG+UtX41QxI8/LApzpHro//GfXrtHKxLI4mcpkD3FGCOJ mlTooxvsh383S3QiWtTVO8vCb98PQOoYArGWgwiBWZoT/7PIEl/n/aZaqFPbn1za cEG+wTf9DG1fWLZJ6S5Tymb4bCDU9pvUq5UaXf9q6xAQEGzbGaU/COVa9LYLsZg/ Zyw1LT8noECVdlTdysyhttGd36DYzWIRhmj04Ag4CYlVHi3iVRqTAZSMhs4QhOSi 5RMZ3J4LEIVL/U4+bafbra0RlScYQ2Rh7VPp -----END CERTIFICATE-----Generated at Sat Apr 26 08:04:49 2025 by rpki-client