$ rpki-client -vvf rpki.roa.net/rrdp/xTom/45/323630343a653863303a3a2f33322d3438203d3e2036323333.roa File: 323630343a653863303a3a2f33322d3438203d3e2036323333.roa (raw, json) Hash identifier: iWD8356EEIUhNs0mW2GYjJUZJBkDGBNUnzvFCkgErYU= Subject key identifier: CF:FE:F3:9F:E8:D1:C5:63:6C:E7:E8:B3:E3:98:49:AB:E5:E7:DC:7C Certificate issuer: /CN=4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4 Certificate serial: 0AF1D2DF7B4860C43FED4846A53B1299536F1F1D Authority key identifier: 89:38:CD:F8:AE:C6:24:08:9C:1D:95:31:0F:AC:37:47:4C:0E:89:06 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/45/323630343a653863303a3a2f33322d3438203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:28 +0000 ROA not before: Sat 16 Aug 2025 01:43:28 +0000 ROA not after: Sat 15 Aug 2026 01:48:28 +0000 asID: 6233 IP address blocks: 2604:e8c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.crl rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/42c9e997-747a-4107-89fb-7cab8903a586.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/42c9e997-747a-4107-89fb-7cab8903a586.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 00:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f1:d2:df:7b:48:60:c4:3f:ed:48:46:a5:3b:12:99:53:6f:1f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4 Validity Not Before: Aug 16 01:43:28 2025 GMT Not After : Aug 15 01:48:28 2026 GMT Subject: CN=CFFEF39FE8D1C5636CE7E8B3E39849ABE5E7DC7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:b5:69:0a:2f:39:08:07:41:b8:d6:bb:c8:20: 03:34:52:87:40:21:f8:75:e8:4d:bd:bc:7a:09:b2: ff:c9:4f:6f:59:0b:70:d8:43:bb:14:a2:be:c5:7b: b2:31:c6:7e:53:93:f1:af:2f:d0:eb:ba:00:0a:ac: 76:a2:7a:1e:1d:d8:b5:d3:7d:74:d8:3e:1f:6a:2c: cf:02:ac:cd:96:b0:e9:3a:b0:03:8e:74:54:8d:54: 23:ba:6e:b0:a0:36:82:a8:d5:67:7a:59:9b:1c:18: f3:ce:f4:3b:34:81:c3:31:59:b6:80:cc:3c:23:97: 02:3a:a4:e5:74:a2:11:0d:74:39:04:0b:c4:bb:21: 76:a0:d1:e1:c2:99:48:e4:26:86:bc:1f:83:61:8b: 13:2f:e4:5c:7d:14:48:72:e5:c6:67:a3:f9:3a:e4: bb:e1:0b:a2:6d:2d:be:56:1e:3d:21:1b:d5:6c:39: b0:dd:de:ae:17:c9:ca:88:ca:8c:a3:7e:e7:72:af: 51:26:43:21:76:0b:1f:95:8d:04:91:48:50:af:c6: c9:59:d2:3d:c9:f4:d8:76:68:63:0a:61:49:c7:fc: a5:fa:d5:6e:2f:1f:83:f5:2f:9b:d8:7d:a0:d4:50: 4a:a8:70:b4:9a:db:b9:44:b2:df:5d:5b:77:ba:f4: 43:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FE:F3:9F:E8:D1:C5:63:6C:E7:E8:B3:E3:98:49:AB:E5:E7:DC:7C X509v3 Authority Key Identifier: keyid:89:38:CD:F8:AE:C6:24:08:9C:1D:95:31:0F:AC:37:47:4C:0E:89:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/45/323630343a653863303a3a2f33322d3438203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:e8c0::/32 Signature Algorithm: sha256WithRSAEncryption 28:75:dc:37:98:21:34:cd:e8:31:7f:a4:cf:0d:69:67:fd:93: d1:50:8a:48:de:2b:7a:29:03:5a:b9:4d:42:62:df:a1:c6:c6: a6:87:55:d7:03:06:7e:f7:c2:5f:a0:29:fc:a2:65:f9:a9:50: 27:86:1b:9b:46:75:ae:f0:d8:b5:54:44:c1:cd:7f:47:fd:33: 4f:c3:05:c7:53:0f:f1:26:54:f5:1d:25:45:02:5a:0a:ea:80: 06:51:71:67:3e:b5:f0:40:c4:56:eb:34:b6:41:c9:09:cb:f7: 3e:1a:6f:3e:ae:09:2e:fb:4a:9b:cb:0e:d0:68:8a:fd:07:97: 20:2a:4f:be:3e:9d:64:09:04:b9:a3:26:49:06:6b:7e:88:12: 4b:54:2b:17:78:13:fb:32:43:04:4e:3a:53:d6:88:d2:68:1b: 70:ce:c7:5d:e6:cb:ec:db:b8:ba:19:92:4e:bc:7b:2a:f4:55: 24:d5:6d:00:31:0e:93:8d:8e:46:0f:aa:20:4e:27:ca:7f:2e: a3:d5:3e:d6:48:a0:be:46:ce:ff:3e:c9:49:35:c9:22:ff:44: b4:36:44:34:e4:b0:15:d0:09:36:6a:03:3f:b0:6f:7c:03:6f: 3c:af:a4:b6:ab:ca:a3:4b:28:85:f5:25:db:82:86:2d:ef:93: 6a:c4:3f:05 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUCvHS33tIYMQ/7UhGpTsSmVNvHx0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDI2M2EwOGI5YTA0NjNkNjBmZmI5MTQ0ZDFjMmNiOTU2 ZTM5YzZjNjhjODMzZDY0ZTQwHhcNMjUwODE2MDE0MzI4WhcNMjYwODE1MDE0ODI4 WjAzMTEwLwYDVQQDEyhDRkZFRjM5RkU4RDFDNTYzNkNFN0U4QjNFMzk4NDlBQkU1 RTdEQzdDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7VpCi85CAdB uNa7yCADNFKHQCH4dehNvbx6CbL/yU9vWQtw2EO7FKK+xXuyMcZ+U5Pxry/Q67oA Cqx2onoeHdi103102D4faizPAqzNlrDpOrADjnRUjVQjum6woDaCqNVnelmbHBjz zvQ7NIHDMVm2gMw8I5cCOqTldKIRDXQ5BAvEuyF2oNHhwplI5CaGvB+DYYsTL+Rc fRRIcuXGZ6P5OuS74QuibS2+Vh49IRvVbDmw3d6uF8nKiMqMo37ncq9RJkMhdgsf lY0EkUhQr8bJWdI9yfTYdmhjCmFJx/yl+tVuLx+D9S+b2H2g1FBKqHC0mtu5RLLf XVt3uvRD6wIDAQABo4ICXTCCAlkwHQYDVR0OBBYEFM/+85/o0cVjbOfos+OYSavl 59x8MB8GA1UdIwQYMBaAFIk4zfiuxiQInB2VMQ+sN0dMDokGMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDUvODkzOENERjhBRUM2MjQwODlDMUQ5NTMxMEZBQzM3NDc0QzBFODkw Ni5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzQyYzllOTk3LTc0N2EtNDEwNy04OWZiLTdjYWI4OTAz YTU4Ni80MjYzYTA4YjlhMDQ2M2Q2MGZmYjkxNDRkMWMyY2I5NTZlMzljNmM2OGM4 MzNkNjRlNC5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDUvMzIzNjMwMzQzYTY1Mzg2MzMwM2Ez YTJmMzMzMjJkMzQzODIwM2QzZTIwMzYzMjMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAmBOjAMA0G CSqGSIb3DQEBCwUAA4IBAQAoddw3mCE0zegxf6TPDWln/ZPRUIpI3it6KQNauU1C Yt+hxsamh1XXAwZ+98JfoCn8omX5qVAnhhubRnWu8Ni1VETBzX9H/TNPwwXHUw/x JlT1HSVFAloK6oAGUXFnPrXwQMRW6zS2QckJy/c+Gm8+rgku+0qbyw7QaIr9B5cg Kk++Pp1kCQS5oyZJBmt+iBJLVCsXeBP7MkMETjpT1ojSaBtwzsdd5svs27i6GZJO vHsq9FUk1W0AMQ6TjY5GD6ogTifKfy6j1T7WSKC+Rs7/PslJNcki/0S0NkQ05LAV 0Ak2agM/sG98A288r6S2q8qjSyiF9SXbgoYt75NqxD8F -----END CERTIFICATE-----Generated at Sun Aug 24 03:57:44 2025 by rpki-client