$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3130342e3234352e31322e302f32342d3234203d3e2036323333.roa File: 3130342e3234352e31322e302f32342d3234203d3e2036323333.roa (raw, json) Hash identifier: XgEQDqckGRfEL8QiTRDOh1+DHEdKK9Jr8bCeRb2IXI8= Subject key identifier: 67:A5:40:FC:92:B5:A2:D3:3F:CE:13:58:A7:56:ED:66:D3:55:BC:D7 Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 21B4450DDE5A4A045C7C4C7523146C11AB6BB8A5 Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e31322e302f32342d3234203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:21 +0000 ROA not before: Sat 16 Aug 2025 01:43:21 +0000 ROA not after: Sat 15 Aug 2026 01:48:21 +0000 asID: 6233 IP address blocks: 104.245.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 00:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b4:45:0d:de:5a:4a:04:5c:7c:4c:75:23:14:6c:11:ab:6b:b8:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Aug 16 01:43:21 2025 GMT Not After : Aug 15 01:48:21 2026 GMT Subject: CN=67A540FC92B5A2D33FCE1358A756ED66D355BCD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:57:45:a1:da:c1:01:82:3a:de:c8:98:98:1d: 68:8e:b9:7e:fa:04:7e:62:34:24:65:cd:2c:99:31: 67:64:4d:47:b4:e5:5b:ba:ab:26:7b:27:51:c5:4e: 44:e5:8d:07:55:35:34:76:e8:67:36:f2:12:bc:27: f9:62:a7:2f:e3:25:60:c8:f6:7b:4e:22:35:b6:3e: 3d:3c:1b:38:0c:47:9e:a6:fa:93:8d:cc:ce:f7:7d: 27:0a:f8:42:10:2c:7f:af:f7:f3:c3:87:5b:00:a0: 31:2d:24:d9:b5:66:83:6a:ab:cc:f5:7b:e1:46:47: 3a:e2:7e:e6:a0:c3:16:ce:a6:5f:44:59:da:59:87: dc:55:98:c8:a3:84:98:b2:e3:58:bc:c2:61:6f:28: c9:b8:23:7b:00:e4:0e:1e:d1:fa:d2:36:bf:c8:59: 12:ff:5f:21:06:27:17:a8:1f:6f:c4:ad:a9:fc:0a: 04:22:9d:09:b2:4e:f5:e7:f6:88:d4:23:85:c7:ef: 49:e2:8d:7c:8c:9d:f1:37:02:e0:ac:1a:ff:dd:a9: ce:7f:55:53:00:85:92:ee:83:c8:76:e3:13:26:97: b9:d1:19:d6:14:5c:d3:0a:4a:7a:cf:86:2c:02:68: 11:90:43:86:35:c2:e4:22:ba:5a:78:01:bb:56:2a: bb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A5:40:FC:92:B5:A2:D3:3F:CE:13:58:A7:56:ED:66:D3:55:BC:D7 X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e31322e302f32342d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.245.12.0/24 Signature Algorithm: sha256WithRSAEncryption 56:ca:1e:69:54:2a:f5:79:30:c5:93:a8:7d:b5:43:ba:d8:f4: e8:d8:0f:4c:bb:5a:08:75:eb:6a:45:25:7b:dc:45:ef:e4:30: 92:29:2b:ff:4d:4f:ee:26:08:81:fd:92:8b:7e:96:ec:6c:17: 7d:8f:a5:37:61:31:51:50:7a:82:5b:88:ba:8a:b7:46:8d:45: 07:1d:73:fb:80:08:0c:c0:66:ee:67:98:25:51:fa:ae:19:2d: ff:cc:7d:52:4e:0c:25:3f:7a:bb:9d:e4:57:ee:0b:2e:c4:e8: 7f:40:3e:06:ab:16:68:da:4e:15:cc:ff:a4:6b:b6:08:f7:c1: 52:2f:6d:ae:a5:0c:43:62:60:0c:1d:82:d7:8e:b2:be:11:04: 9d:a0:09:41:48:77:fe:95:6d:d1:9a:ef:1c:eb:56:a3:9c:3c: 99:16:48:d6:48:a3:19:04:1d:19:4c:3c:98:a2:4d:4e:58:c5: cf:59:8e:7d:d8:96:40:8e:52:2b:e1:ce:64:7a:1a:7f:21:7d: 52:7b:1b:38:4e:5d:84:94:63:58:60:43:49:bb:b0:92:5c:2f: 0b:1f:9b:08:da:d0:2b:41:2a:d5:68:b7:84:21:63:33:1c:a9: c8:72:5f:6b:ae:d2:9a:b6:49:0a:10:ed:d2:a7:7a:25:36:49: 5f:40:0a:58 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUIbRFDd5aSgRcfEx1IxRsEatruKUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjUwODE2MDE0MzIxWhcNMjYwODE1MDE0ODIx WjAzMTEwLwYDVQQDEyg2N0E1NDBGQzkyQjVBMkQzM0ZDRTEzNThBNzU2RUQ2NkQz NTVCQ0Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoldFodrBAYI6 3siYmB1ojrl++gR+YjQkZc0smTFnZE1HtOVbuqsmeydRxU5E5Y0HVTU0duhnNvIS vCf5Yqcv4yVgyPZ7TiI1tj49PBs4DEeepvqTjczO930nCvhCECx/r/fzw4dbAKAx LSTZtWaDaqvM9XvhRkc64n7moMMWzqZfRFnaWYfcVZjIo4SYsuNYvMJhbyjJuCN7 AOQOHtH60ja/yFkS/18hBicXqB9vxK2p/AoEIp0Jsk715/aI1COFx+9J4o18jJ3x NwLgrBr/3anOf1VTAIWS7oPIduMTJpe50RnWFFzTCkp6z4YsAmgRkEOGNcLkIrpa eAG7Viq7+QIDAQABo4ICXjCCAlowHQYDVR0OBBYEFGelQPyStaLTP84TWKdW7WbT VbzXMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzEzMDM0MmUzMjM0MzUyZTMxMzIy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGj1DDAN BgkqhkiG9w0BAQsFAAOCAQEAVsoeaVQq9XkwxZOofbVDutj06NgPTLtaCHXrakUl e9xF7+Qwkikr/01P7iYIgf2Si36W7GwXfY+lN2ExUVB6gluIuoq3Ro1FBx1z+4AI DMBm7meYJVH6rhkt/8x9Uk4MJT96u53kV+4LLsTof0A+BqsWaNpOFcz/pGu2CPfB Ui9trqUMQ2JgDB2C146yvhEEnaAJQUh3/pVt0ZrvHOtWo5w8mRZI1kijGQQdGUw8 mKJNTljFz1mOfdiWQI5SK+HOZHoafyF9UnsbOE5dhJRjWGBDSbuwklwvCx+bCNrQ K0Eq1Wi3hCFjMxypyHJfa67SmrZJChDt0qd6JTZJX0AKWA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:39:22 2025 by rpki-client