$ rpki-client -vvf rpki.roa.net/rrdp/xTom/44/32332e3134352e34382e302f32342d3234203d3e20323031313036.roa File: 32332e3134352e34382e302f32342d3234203d3e20323031313036.roa (raw, json) Hash identifier: x9bUZiBzI11huUftDzGbjm53xfQdHsA7lKwmnqSwvo8= Subject key identifier: 7D:22:75:7C:9A:9C:05:03:B9:7B:2B:3E:32:50:A8:18:10:48:2B:D5 Certificate issuer: /CN=73516995116535a22de5a23000d3e7814baad6490837f37731 Certificate serial: 78BF9D8059F7CE51C4751EC4E8368AC7FB6AC67F Authority key identifier: 0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/44/32332e3134352e34382e302f32342d3234203d3e20323031313036.roa Signing time: Wed 02 Jul 2025 16:24:23 +0000 ROA not before: Wed 02 Jul 2025 16:19:23 +0000 ROA not after: Wed 01 Jul 2026 16:24:23 +0000 asID: 201106 IP address blocks: 23.145.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 23:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:bf:9d:80:59:f7:ce:51:c4:75:1e:c4:e8:36:8a:c7:fb:6a:c6:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73516995116535a22de5a23000d3e7814baad6490837f37731 Validity Not Before: Jul 2 16:19:23 2025 GMT Not After : Jul 1 16:24:23 2026 GMT Subject: CN=7D22757C9A9C0503B97B2B3E3250A81810482BD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d5:28:23:fa:8a:2b:9d:b2:2e:08:c2:73:0e: 58:8b:be:ac:38:d1:5f:61:3d:b0:28:5d:e8:15:6e: 79:f7:24:45:25:1b:d0:b9:25:40:d5:57:70:23:3e: d0:4f:91:99:91:4b:47:21:50:7e:a4:c5:f9:23:34: d4:d4:cb:86:90:30:ff:ce:cf:ef:dc:9f:ee:a6:0b: 35:d4:88:e3:cd:6e:12:99:53:ea:bf:46:42:80:54: be:49:64:0b:e8:50:01:b7:59:aa:e0:fa:6f:c3:7a: 33:69:3c:0e:25:b7:a9:76:4a:76:5f:95:20:f7:f8: 20:3c:c7:1f:89:a1:72:ef:c0:78:84:7e:dd:46:d0: 12:d3:29:cb:f4:06:e7:ba:6e:20:ec:83:a2:a7:29: 5e:f4:c7:c5:23:0b:dd:9d:26:e5:3b:49:b6:70:ff: 68:11:59:e4:a4:98:01:a2:7c:81:22:81:1a:d9:e6: 94:41:c2:da:ab:66:87:e7:5b:42:6a:2d:05:c3:79: 6c:4d:f1:20:85:62:58:99:87:9b:40:1f:42:58:6d: 75:42:52:c6:ba:c6:2b:92:bd:56:3b:3c:2a:3f:86: 24:38:4f:5e:3e:85:73:af:4f:81:5e:14:1a:fd:3b: 94:0f:92:ea:20:68:47:ea:95:f3:6b:ba:b6:67:1a: ab:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:22:75:7C:9A:9C:05:03:B9:7B:2B:3E:32:50:A8:18:10:48:2B:D5 X509v3 Authority Key Identifier: keyid:0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/44/32332e3134352e34382e302f32342d3234203d3e20323031313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.145.48.0/24 Signature Algorithm: sha256WithRSAEncryption 03:11:d2:14:f2:f3:1c:3b:54:0a:8c:60:c9:b9:c1:54:94:52: f8:6a:b7:3f:57:81:25:24:fa:e1:7d:20:2c:40:d4:e8:e3:39: 06:e5:ad:c1:d5:d1:9a:fd:58:df:f7:50:c9:f9:68:73:3c:dd: 1d:72:cc:ea:30:a5:bb:1b:dd:74:b4:83:c2:24:92:9c:a4:9e: 7d:8a:5f:c3:f4:53:47:83:1f:ea:e1:d4:62:95:39:8a:4b:9e: 90:f0:46:fd:67:48:2f:cd:68:02:b6:d2:f1:df:1a:6e:d5:cd: bc:fd:b9:75:dd:48:16:f0:e6:d8:98:6e:eb:d0:13:77:3e:8a: 74:4e:86:d7:2a:34:1d:35:8f:94:12:b4:69:39:ba:3d:af:43: c1:9a:a7:f1:7e:3f:a8:67:fa:d5:f7:b4:8e:2a:7d:16:c3:38: bd:50:e3:8f:8d:df:a3:2a:64:ad:dd:d9:e8:a9:84:3f:ad:aa: 3e:f8:c6:bc:29:a5:aa:e0:5d:b1:7a:37:9e:e7:01:3e:94:7e: a1:7c:40:2c:35:51:3d:26:44:5b:da:48:42:21:01:ea:46:85: 65:77:43:cd:44:92:99:a3:c1:ed:15:21:db:46:c7:de:9d:0f: 93:d3:49:28:f6:a7:e4:00:61:a9:b6:84:25:bb:0c:13:ef:c0: ee:fd:8c:4c -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUeL+dgFn3zlHEdR7E6DaKx/tqxn8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzM1MTY5OTUxMTY1MzVhMjJkZTVhMjMwMDBkM2U3ODE0 YmFhZDY0OTA4MzdmMzc3MzEwHhcNMjUwNzAyMTYxOTIzWhcNMjYwNzAxMTYyNDIz WjAzMTEwLwYDVQQDEyg3RDIyNzU3QzlBOUMwNTAzQjk3QjJCM0UzMjUwQTgxODEw NDgyQkQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9UoI/qKK52y LgjCcw5Yi76sONFfYT2wKF3oFW559yRFJRvQuSVA1VdwIz7QT5GZkUtHIVB+pMX5 IzTU1MuGkDD/zs/v3J/upgs11IjjzW4SmVPqv0ZCgFS+SWQL6FABt1mq4Ppvw3oz aTwOJbepdkp2X5Ug9/ggPMcfiaFy78B4hH7dRtAS0ynL9Abnum4g7IOipyle9MfF IwvdnSblO0m2cP9oEVnkpJgBonyBIoEa2eaUQcLaq2aH51tCai0Fw3lsTfEghWJY mYebQB9CWG11QlLGusYrkr1WOzwqP4YkOE9ePoVzr0+BXhQa/TuUD5LqIGhH6pXz a7q2ZxqrLwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH0idXyanAUDuXsrPjJQqBgQ SCvVMB8GA1UdIwQYMBaAFA/TRf1UFRF5URNgm6SvX/9gBBr8MA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDQvMEZEMzQ1RkQ1NDE1MTE3OTUxMTM2MDlCQTRBRjVGRkY2MDA0MUFG Qy5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzQ2ZTAxMTEtZmFmYi00MzBmLWI3 NzgtZDIwNGNmY2Q5OWE4L2ExOGYxZGRiLTJkNmUtNDkxYy1iZjY1LWYzMmY5OGRi YzU2OS83MzUxNjk5NTExNjUzNWEyMmRlNWEyMzAwMGQzZTc4MTRiYWFkNjQ5MDgz N2YzNzczMS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDQvMzIzMzJlMzEzNDM1MmUzNDM4MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDMxMzEzMDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF5Ew MA0GCSqGSIb3DQEBCwUAA4IBAQADEdIU8vMcO1QKjGDJucFUlFL4arc/V4ElJPrh fSAsQNTo4zkG5a3B1dGa/Vjf91DJ+WhzPN0dcszqMKW7G910tIPCJJKcpJ59il/D 9FNHgx/q4dRilTmKS56Q8Eb9Z0gvzWgCttLx3xpu1c28/bl13UgW8ObYmG7r0BN3 Pop0TobXKjQdNY+UErRpObo9r0PBmqfxfj+oZ/rV97SOKn0Wwzi9UOOPjd+jKmSt 3dnoqYQ/rao++Ma8KaWq4F2xejee5wE+lH6hfEAsNVE9JkRb2khCIQHqRoVld0PN RJKZo8HtFSHbRsfenQ+T00ko9qfkAGGptoQluwwT78Du/YxM -----END CERTIFICATE-----Generated at Sat Jul 5 05:35:42 2025 by rpki-client