$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e2033323538.roa File: 3130332e31392e312e302f32342d3234203d3e2033323538.roa (raw, json) Hash identifier: i9ybobFTVbul9ZCc+OUaPc0OosdiMUtEFehiPPURvCM= Subject key identifier: 57:F0:3F:A2:AD:24:F6:E6:AD:6C:D1:88:92:A3:CA:68:46:5E:D2:33 Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Certificate serial: 115030B6B63689C66CE71E91A5EE1739A8D18E4A Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e2033323538.roa Signing time: Fri 11 Apr 2025 08:54:29 +0000 ROA not before: Fri 11 Apr 2025 08:49:29 +0000 ROA not after: Fri 10 Apr 2026 08:54:29 +0000 asID: 3258 IP address blocks: 103.19.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 21:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:50:30:b6:b6:36:89:c6:6c:e7:1e:91:a5:ee:17:39:a8:d1:8e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181FC40000, serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729 Validity Not Before: Apr 11 08:49:29 2025 GMT Not After : Apr 10 08:54:29 2026 GMT Subject: CN=57F03FA2AD24F6E6AD6CD18892A3CA68465ED233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bd:11:82:f5:c7:a8:d3:00:52:b4:b8:d7:1a: 97:31:58:78:89:79:c2:07:87:26:a2:2b:9d:10:99: 35:7b:7c:bd:39:62:16:87:d4:34:c6:c8:d4:69:91: 64:4e:f2:6a:be:fc:29:59:39:c4:72:27:79:84:04: 51:a4:84:97:4a:1e:c4:54:1e:8c:38:ce:a9:f4:9a: 8d:5d:d7:f5:4d:30:c8:7d:74:f0:d1:58:97:bc:5b: e8:c0:a1:23:c7:6f:9d:f7:0b:49:1e:00:91:0b:4e: 28:b8:d0:b7:dc:14:3a:34:31:b2:9d:5f:b4:85:3e: 6d:4d:fd:80:9a:39:f3:27:4b:c3:2f:ca:02:e8:ee: 8b:7c:2c:bc:b5:3c:28:dc:ca:85:c0:05:de:1d:47: 5e:2b:3f:c3:b3:7e:19:a7:d8:6a:ef:b3:6d:da:71: 46:fa:b9:77:9c:5d:57:f6:3f:9e:a2:4b:85:71:da: 34:cc:6a:54:ca:2e:7e:a0:15:70:99:6f:02:30:31: 81:11:55:39:0a:e2:95:d5:45:99:e0:0b:06:06:b4: de:a2:25:94:31:b4:92:a4:78:75:f3:86:9f:77:05: b5:13:52:db:34:a3:3d:0b:7f:70:65:77:aa:5c:fc: 0b:88:32:92:7c:fe:f3:74:5d:b7:d9:14:26:2a:62: ba:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F0:3F:A2:AD:24:F6:E6:AD:6C:D1:88:92:A3:CA:68:46:5E:D2:33 X509v3 Authority Key Identifier: keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e31392e312e302f32342d3234203d3e2033323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.1.0/24 Signature Algorithm: sha256WithRSAEncryption 14:35:fe:29:52:de:91:63:c3:8c:33:18:04:1a:bd:28:61:7f: 29:b5:70:2d:49:36:df:13:f7:ff:66:4c:12:81:55:c7:ab:0b: 8b:5f:b5:f1:44:32:48:07:6d:79:b1:0a:e8:c2:ae:b1:0d:e5: 8d:86:06:b2:da:71:4f:45:0d:0c:71:59:9d:f7:30:9a:b6:27: c7:72:db:6a:3a:4b:9a:6b:ec:34:2c:6c:d8:aa:d6:b0:73:f7: 04:d6:07:40:84:27:c8:2a:cd:15:57:02:6f:b4:06:eb:5c:6d: 16:f8:62:68:47:7e:3e:a1:96:cc:4e:62:6a:e4:63:1e:65:84: 1c:bc:e9:41:f3:37:b3:e6:c6:ec:4d:06:af:29:8d:e6:b0:e3: 04:a2:21:58:a1:b9:d0:32:40:c4:18:b6:1d:cb:ec:5c:ac:ce: 24:2a:23:17:ad:c4:da:89:0a:16:2b:07:f9:bf:e4:ab:48:34: 34:42:5d:97:af:ad:42:46:3e:47:68:1a:f2:95:2f:f8:c7:e9: 77:6c:a7:93:62:e1:6f:22:5d:0f:59:e5:40:07:3e:11:21:7f: cf:51:93:86:27:74:2c:24:90:e8:2b:cc:5e:2f:18:37:87:59: 3e:ff:30:a8:30:a3:4c:eb:02:58:2b:5e:4d:c2:84:2c:16:ee: 67:90:16:8c -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUEVAwtrY2icZs5x6Rpe4XOajRjkowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI1MDQxMTA4NDkyOVoX DTI2MDQxMDA4NTQyOVowMzExMC8GA1UEAxMoNTdGMDNGQTJBRDI0RjZFNkFENkNE MTg4OTJBM0NBNjg0NjVFRDIzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKu9EYL1x6jTAFK0uNcalzFYeIl5wgeHJqIrnRCZNXt8vTliFofUNMbI1GmR ZE7yar78KVk5xHIneYQEUaSEl0oexFQejDjOqfSajV3X9U0wyH108NFYl7xb6MCh I8dvnfcLSR4AkQtOKLjQt9wUOjQxsp1ftIU+bU39gJo58ydLwy/KAujui3wsvLU8 KNzKhcAF3h1HXis/w7N+GafYau+zbdpxRvq5d5xdV/Y/nqJLhXHaNMxqVMoufqAV cJlvAjAxgRFVOQrildVFmeALBga03qIllDG0kqR4dfOGn3cFtRNS2zSjPQt/cGV3 qlz8C4gyknz+83Rdt9kUJipiuvkCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBRX8D+i rST25q1s0YiSo8poRl7SMzAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j ZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MmUzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzIzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxMBMA0GCSqGSIb3DQEBCwUA A4IBAQAUNf4pUt6RY8OMMxgEGr0oYX8ptXAtSTbfE/f/ZkwSgVXHqwuLX7XxRDJI B215sQrowq6xDeWNhgay2nFPRQ0McVmd9zCatifHcttqOkuaa+w0LGzYqtawc/cE 1gdAhCfIKs0VVwJvtAbrXG0W+GJoR34+oZbMTmJq5GMeZYQcvOlB8zez5sbsTQav KY3msOMEoiFYobnQMkDEGLYdy+xcrM4kKiMXrcTaiQoWKwf5v+SrSDQ0Ql2Xr61C Rj5HaBrylS/4x+l3bKeTYuFvIl0PWeVABz4RIX/PUZOGJ3QsJJDoK8xeLxg3h1k+ /zCoMKNM6wJYK15NwoQsFu5nkBaM -----END CERTIFICATE-----Generated at Sat Apr 26 05:54:13 2025 by rpki-client