$ rpki-client -vvf rpki.roa.net/rrdp/xTom/63/3130332e3136392e39322e302f32332d3234203d3e2038383838.roa File: 3130332e3136392e39322e302f32332d3234203d3e2038383838.roa (raw, json) Hash identifier: 2ynH3ZlcLbUkfH9QxYt0drp47MV4SL9VdzeXUvA/9DM= Subject key identifier: E0:B6:52:25:5F:5D:F5:05:7F:60:92:56:B7:44:D9:3D:25:95:9A:AF Certificate issuer: /CN=A91C44A00000/serialNumber=5C6CE387337886989FB3C3D4E6186A370B728D50 Certificate serial: 70C504A0D7A085C6E6A1F8C9531F9D65BF3B25F2 Authority key identifier: 5C:6C:E3:87:33:78:86:98:9F:B3:C3:D4:E6:18:6A:37:0B:72:8D:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XGzjhzN4hpifs8PU5hhqNwtyjVA.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/63/3130332e3136392e39322e302f32332d3234203d3e2038383838.roa Signing time: Thu 09 Apr 2026 20:39:09 +0000 ROA not before: Thu 09 Apr 2026 20:34:09 +0000 ROA not after: Thu 08 Apr 2027 20:39:09 +0000 asID: 8888 IP address blocks: 103.169.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/63/5C6CE387337886989FB3C3D4E6186A370B728D50.crl rsync://rpki.roa.net/rrdp/xTom/63/5C6CE387337886989FB3C3D4E6186A370B728D50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XGzjhzN4hpifs8PU5hhqNwtyjVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 23:33:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:c5:04:a0:d7:a0:85:c6:e6:a1:f8:c9:53:1f:9d:65:bf:3b:25:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C44A00000, serialNumber=5C6CE387337886989FB3C3D4E6186A370B728D50 Validity Not Before: Apr 9 20:34:09 2026 GMT Not After : Apr 8 20:39:09 2027 GMT Subject: CN=E0B652255F5DF5057F609256B744D93D25959AAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7a:aa:ad:c1:bb:93:3d:53:7a:7e:3f:88:72: 08:96:32:51:83:7a:5c:34:65:a2:63:43:4f:5b:24: d1:33:dd:13:cc:d6:fb:38:ed:6b:3f:ce:be:69:2c: 74:76:5c:d5:22:f3:12:d0:1f:cb:fe:9c:54:8d:e0: 12:8b:b1:35:2d:31:15:9d:8b:d8:59:f2:11:2c:95: d1:49:1f:65:ba:58:85:a4:43:69:04:ce:5e:4a:1c: c6:5e:fd:d2:e5:7a:12:96:bd:99:63:0b:b3:23:be: 25:37:75:9b:ec:75:96:cb:44:8c:fc:91:65:3d:c6: a5:70:45:2a:3a:74:c7:95:b7:3a:26:75:a7:dc:68: 13:16:53:f5:ea:92:b2:9f:13:8e:3a:34:a8:44:ff: 13:ca:be:26:bb:6b:38:c9:eb:9f:2d:00:7c:5f:2b: 31:90:03:f8:6d:0a:5c:d6:1d:be:91:b5:c8:dc:e1: 02:91:f4:ee:5c:7d:99:95:5f:d6:10:36:f0:8b:76: 85:6d:df:87:8a:a0:c8:88:ac:8a:e2:59:c8:96:7d: ef:8a:19:47:2f:97:cf:85:eb:d3:cf:81:8c:35:55: 77:6e:dd:2c:6c:06:ca:e5:41:ce:01:a3:a8:f0:bd: 9d:61:d9:05:7c:57:e8:54:8c:ce:e4:4f:2f:b2:f3: 9d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B6:52:25:5F:5D:F5:05:7F:60:92:56:B7:44:D9:3D:25:95:9A:AF X509v3 Authority Key Identifier: keyid:5C:6C:E3:87:33:78:86:98:9F:B3:C3:D4:E6:18:6A:37:0B:72:8D:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/63/5C6CE387337886989FB3C3D4E6186A370B728D50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XGzjhzN4hpifs8PU5hhqNwtyjVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/63/3130332e3136392e39322e302f32332d3234203d3e2038383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.92.0/23 Signature Algorithm: sha256WithRSAEncryption 01:57:12:86:69:32:84:79:33:09:b7:c6:c9:c0:f9:44:45:06: 1e:47:98:74:6c:25:0b:de:48:68:6f:36:14:f2:d3:de:20:c4: 8f:9b:b2:68:0c:32:8d:30:c0:59:a9:fe:36:2d:69:b6:ad:5f: b9:1f:a6:5f:12:b1:ad:9f:fb:6b:5e:12:62:11:25:c0:53:63: c7:fc:8e:03:e8:3e:b3:41:e6:c8:46:6e:2c:d1:3a:5b:3f:b2: e4:92:9d:e0:80:e0:71:cf:93:76:c3:a0:38:3a:47:44:3e:b9: 31:dc:22:34:4c:ba:09:83:96:81:1f:47:4f:51:2c:43:2f:a0: 2c:e2:d0:2f:1d:cc:19:4a:9d:5f:98:60:68:0c:68:77:d4:9b: 6f:ba:92:4a:5d:20:d3:11:95:b2:1f:b0:a6:80:41:6d:51:83: ab:12:86:28:07:ca:5c:c7:16:8d:e2:1d:cf:46:91:45:0a:07: a3:0d:24:96:e3:d3:07:18:ee:73:71:91:a1:6d:87:6a:c0:5b: 17:85:7f:6b:c6:1c:fb:e0:65:20:37:97:ad:55:ff:7d:bc:39: ba:5b:20:30:ab:a1:83:47:46:4d:05:05:7f:e4:81:6d:07:b2: f0:b9:c4:eb:c4:5c:f4:f5:7d:18:9d:b5:bf:99:b1:d3:fd:39: a6:f4:99:41 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUcMUEoNeghcbmofjJUx+dZb87JfIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQzQ0QTAwMDAwMTEwLwYDVQQFEyg1QzZDRTM4NzMz Nzg4Njk4OUZCM0MzRDRFNjE4NkEzNzBCNzI4RDUwMB4XDTI2MDQwOTIwMzQwOVoX DTI3MDQwODIwMzkwOVowMzExMC8GA1UEAxMoRTBCNjUyMjU1RjVERjUwNTdGNjA5 MjU2Qjc0NEQ5M0QyNTk1OUFBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL96qq3Bu5M9U3p+P4hyCJYyUYN6XDRlomNDT1sk0TPdE8zW+zjtaz/Ovmks dHZc1SLzEtAfy/6cVI3gEouxNS0xFZ2L2FnyESyV0UkfZbpYhaRDaQTOXkocxl79 0uV6Epa9mWMLsyO+JTd1m+x1lstEjPyRZT3GpXBFKjp0x5W3OiZ1p9xoExZT9eqS sp8Tjjo0qET/E8q+JrtrOMnrny0AfF8rMZAD+G0KXNYdvpG1yNzhApH07lx9mZVf 1hA28It2hW3fh4qgyIisiuJZyJZ974oZRy+Xz4Xr08+BjDVVd27dLGwGyuVBzgGj qPC9nWHZBXxX6FSMzuRPL7LznSECAwEAAaOCAegwggHkMB0GA1UdDgQWBBTgtlIl X131BX9gkla3RNk9JZWarzAfBgNVHSMEGDAWgBRcbOOHM3iGmJ+zw9TmGGo3C3KN UDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzYzLzVDNkNFMzg3MzM3ODg2OTg5RkIzQzNENEU2 MTg2QTM3MEI3MjhENTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1hHempoek40aHBpZnM4UFU1aGhxTnd0eWpWQS5j ZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNjMvMzEzMDMzMmUzMTM2MzkyZTM5MzIyZTMwMmYzMjMz MmQzMjM0MjAzZDNlMjAzODM4MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWepXDANBgkqhkiG9w0B AQsFAAOCAQEAAVcShmkyhHkzCbfGycD5REUGHkeYdGwlC95IaG82FPLT3iDEj5uy aAwyjTDAWan+Ni1ptq1fuR+mXxKxrZ/7a14SYhElwFNjx/yOA+g+s0HmyEZuLNE6 Wz+y5JKd4IDgcc+TdsOgODpHRD65MdwiNEy6CYOWgR9HT1EsQy+gLOLQLx3MGUqd X5hgaAxod9Sbb7qSSl0g0xGVsh+wpoBBbVGDqxKGKAfKXMcWjeIdz0aRRQoHow0k luPTBxjuc3GRoW2HasBbF4V/a8Yc++BlIDeXrVX/fbw5ulsgMKuhg0dGTQUFf+SB bQey8LnE68Rc9PV9GJ21v5mx0/05pvSZQQ== -----END CERTIFICATE-----Generated at Sat Apr 18 03:52:28 2026 by rpki-client