$ rpki-client -vvf rpki.roa.net/rrdp/xTom/44/32332e3134352e34382e302f32342d3234203d3e2036323333.roa File: 32332e3134352e34382e302f32342d3234203d3e2036323333.roa (raw, json) Hash identifier: uXlZzQb/GMdt3YEz3sY/MFEPmz9iBW5IVTfYvD/qs/Q= Subject key identifier: B6:AB:35:EE:B0:FC:8D:1B:A7:7C:98:08:A1:85:DA:CD:AB:FA:FF:5B Certificate issuer: /CN=73516995116535a22de5a23000d3e7814baad6490837f37731 Certificate serial: 1A96DF81B4AD9D735E4DC25FC55FF430D4F9C345 Authority key identifier: 0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/44/32332e3134352e34382e302f32342d3234203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:18 +0000 ROA not before: Sat 16 Aug 2025 01:43:18 +0000 ROA not after: Sat 15 Aug 2026 01:48:18 +0000 asID: 6233 IP address blocks: 23.145.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 20:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:96:df:81:b4:ad:9d:73:5e:4d:c2:5f:c5:5f:f4:30:d4:f9:c3:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73516995116535a22de5a23000d3e7814baad6490837f37731 Validity Not Before: Aug 16 01:43:18 2025 GMT Not After : Aug 15 01:48:18 2026 GMT Subject: CN=B6AB35EEB0FC8D1BA77C9808A185DACDABFAFF5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:8c:c3:bb:0b:25:dc:66:9a:3c:1d:b0:71: db:f1:c3:e1:62:da:80:96:6f:a7:76:00:71:a5:53: 81:90:9c:11:50:7c:7b:df:7a:5f:2d:59:b4:74:90: 11:82:41:8d:d0:82:ee:a8:fb:ff:ba:23:86:ca:de: 57:b9:ae:50:42:16:13:4e:cb:ae:d9:4f:73:53:dd: 4e:2c:59:af:7d:e4:c6:74:41:b7:b5:35:78:8b:51: 6d:f9:7d:3a:18:10:99:32:d4:e1:ca:f3:46:60:2d: f0:52:2f:ed:82:3c:44:09:73:0f:82:70:3a:52:fa: 16:b2:d4:a6:9c:d2:1d:06:af:66:fc:aa:56:61:5f: 68:df:e6:c4:11:89:37:c9:ba:cc:b5:60:87:71:63: 2e:7d:ac:c7:f5:a8:a3:f8:db:99:db:22:96:3b:e2: 68:7e:b8:9d:4b:48:48:3d:ca:9c:ef:23:df:93:2c: 48:70:a0:ed:1e:b9:0c:34:9a:8c:17:59:2d:ad:43: 77:aa:20:31:e9:1c:50:56:18:10:7d:fa:39:c5:24: 22:8c:09:6b:a1:c9:9f:66:08:3b:8e:f6:01:2f:15: 4b:45:6f:88:22:4f:5c:a3:54:69:c4:e6:b9:72:16: 82:e9:ba:5f:99:96:d8:16:c9:a4:ed:04:a4:ac:1c: 18:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:AB:35:EE:B0:FC:8D:1B:A7:7C:98:08:A1:85:DA:CD:AB:FA:FF:5B X509v3 Authority Key Identifier: keyid:0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/44/32332e3134352e34382e302f32342d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.145.48.0/24 Signature Algorithm: sha256WithRSAEncryption 85:5f:25:cd:83:ff:bb:30:80:3d:c2:0d:04:57:02:db:6b:13: 7e:25:dc:16:5d:fd:33:be:d0:85:45:2e:a4:00:88:8e:df:e3: 6f:e6:cf:6b:33:88:10:37:cc:74:b1:47:9d:f0:73:a5:07:2f: c6:ca:18:4d:04:fa:14:8d:3f:75:ea:8d:f9:91:57:48:ca:44: 18:4e:e0:04:ba:59:db:77:ed:47:89:37:e6:05:1d:19:e2:68: 73:ba:61:79:50:43:8d:1f:d4:3d:ec:44:a9:ba:e8:35:34:09: 48:8f:4e:c6:de:d2:7f:4c:02:55:a7:b0:07:48:eb:64:ec:2d: 1d:e4:78:e0:31:22:e7:c5:9b:85:c2:78:5a:16:83:fd:76:8e: 21:c9:35:fe:6d:9e:aa:74:b1:61:8d:1d:7e:d4:ba:48:86:fe: fb:1a:ce:99:9b:28:6f:00:d9:87:64:47:02:10:26:22:eb:2e: 20:6f:50:96:15:d2:09:99:30:e5:26:e4:9a:a3:0f:9b:30:6b: c5:88:d4:d3:ed:72:34:9e:44:92:ee:79:f2:9b:f4:dd:39:eb: ff:bd:ba:e7:95:b1:fb:99:35:d0:53:56:2d:79:5b:c2:62:5e: 8d:d7:a1:53:e7:61:39:58:20:fc:52:dd:09:a6:84:c7:74:da: d0:66:6b:54 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUGpbfgbStnXNeTcJfxV/0MNT5w0UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzM1MTY5OTUxMTY1MzVhMjJkZTVhMjMwMDBkM2U3ODE0 YmFhZDY0OTA4MzdmMzc3MzEwHhcNMjUwODE2MDE0MzE4WhcNMjYwODE1MDE0ODE4 WjAzMTEwLwYDVQQDEyhCNkFCMzVFRUIwRkM4RDFCQTc3Qzk4MDhBMTg1REFDREFC RkFGRjVCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt46Mw7sLJdxm mjwdsHHb8cPhYtqAlm+ndgBxpVOBkJwRUHx733pfLVm0dJARgkGN0ILuqPv/uiOG yt5Xua5QQhYTTsuu2U9zU91OLFmvfeTGdEG3tTV4i1Ft+X06GBCZMtThyvNGYC3w Ui/tgjxECXMPgnA6UvoWstSmnNIdBq9m/KpWYV9o3+bEEYk3ybrMtWCHcWMufazH 9aij+NuZ2yKWO+JofridS0hIPcqc7yPfkyxIcKDtHrkMNJqMF1ktrUN3qiAx6RxQ VhgQffo5xSQijAlrocmfZgg7jvYBLxVLRW+IIk9co1RpxOa5chaC6bpfmZbYFsmk 7QSkrBwYFwIDAQABo4ICXDCCAlgwHQYDVR0OBBYEFLarNe6w/I0bp3yYCKGF2s2r +v9bMB8GA1UdIwQYMBaAFA/TRf1UFRF5URNgm6SvX/9gBBr8MA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDQvMEZEMzQ1RkQ1NDE1MTE3OTUxMTM2MDlCQTRBRjVGRkY2MDA0MUFG Qy5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzQ2ZTAxMTEtZmFmYi00MzBmLWI3 NzgtZDIwNGNmY2Q5OWE4L2ExOGYxZGRiLTJkNmUtNDkxYy1iZjY1LWYzMmY5OGRi YzU2OS83MzUxNjk5NTExNjUzNWEyMmRlNWEyMzAwMGQzZTc4MTRiYWFkNjQ5MDgz N2YzNzczMS5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDQvMzIzMzJlMzEzNDM1MmUzNDM4MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMjMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAXkTAwDQYJ KoZIhvcNAQELBQADggEBAIVfJc2D/7swgD3CDQRXAttrE34l3BZd/TO+0IVFLqQA iI7f42/mz2sziBA3zHSxR53wc6UHL8bKGE0E+hSNP3XqjfmRV0jKRBhO4AS6Wdt3 7UeJN+YFHRniaHO6YXlQQ40f1D3sRKm66DU0CUiPTsbe0n9MAlWnsAdI62TsLR3k eOAxIufFm4XCeFoWg/12jiHJNf5tnqp0sWGNHX7UukiG/vsazpmbKG8A2YdkRwIQ JiLrLiBvUJYV0gmZMOUm5JqjD5swa8WI1NPtcjSeRJLuefKb9N056/+9uueVsfuZ NdBTVi15W8JiXo3XoVPnYTlYIPxS3QmmhMd02tBma1Q= -----END CERTIFICATE-----Generated at Sun Aug 24 05:12:55 2025 by rpki-client