$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32312d3234203d3e20393439.roa File: 3134322e3134372e38382e302f32312d3234203d3e20393439.roa (raw, json) Hash identifier: 7kLebjxjj8bDZhH97mL0NhhYPLU3LGJ6JEojV7/KLOY= Subject key identifier: 21:AD:7A:37:57:AA:AF:E2:B9:6E:F9:F0:FB:07:C5:B7:5A:3D:C0:22 Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 16AD5F7B1CD3BEE99449D6F32A1AAA36D33E65D8 Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32312d3234203d3e20393439.roa Signing time: Sat 16 Aug 2025 01:48:19 +0000 ROA not before: Sat 16 Aug 2025 01:43:19 +0000 ROA not after: Sat 15 Aug 2026 01:48:19 +0000 asID: 949 IP address blocks: 142.147.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 00:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ad:5f:7b:1c:d3:be:e9:94:49:d6:f3:2a:1a:aa:36:d3:3e:65:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Aug 16 01:43:19 2025 GMT Not After : Aug 15 01:48:19 2026 GMT Subject: CN=21AD7A3757AAAFE2B96EF9F0FB07C5B75A3DC022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b9:f0:d0:1e:09:7a:eb:92:dd:66:72:fb:0b: 6f:16:b2:27:b2:dd:02:b6:49:cf:9f:fc:55:25:f4: 9f:42:cb:ea:af:b7:5d:66:5e:2e:2f:97:87:f2:7f: 80:f0:8c:aa:4f:8a:2a:05:46:14:08:d0:a6:75:93: c9:57:6f:e5:7f:e3:3c:e9:e7:09:e2:e8:97:ae:49: bf:d2:2e:04:7c:91:44:ac:15:e2:57:9e:45:74:ce: 75:9e:67:90:0c:fd:8e:51:b2:14:6c:32:5a:d5:d0: 9f:a0:e5:80:b6:a5:b0:0a:7f:7b:ca:21:39:84:7e: be:ad:80:2d:56:c8:1a:d9:8a:f4:cb:39:9f:fc:63: 14:3e:9c:a2:dd:30:88:97:c1:5a:fa:49:f7:90:86: 47:d2:96:68:4b:d4:d2:09:89:a2:72:ee:81:ed:97: 3c:18:da:a3:75:72:d8:5e:62:3e:bb:27:da:d2:9f: d3:e4:b6:33:ce:c1:fd:97:89:c9:33:a7:31:34:02: 62:cd:22:c6:3b:6e:1f:00:b3:00:d5:96:91:a7:df: e1:d5:79:18:66:29:85:c3:6f:5f:c2:44:86:6d:38: 66:cf:56:f7:4f:87:1c:07:79:46:a6:46:fb:ec:da: 73:96:6f:df:cf:98:3f:6a:65:af:ac:80:27:c3:c7: a5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AD:7A:37:57:AA:AF:E2:B9:6E:F9:F0:FB:07:C5:B7:5A:3D:C0:22 X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32312d3234203d3e20393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.147.88.0/21 Signature Algorithm: sha256WithRSAEncryption 53:ec:2d:9e:51:8b:36:b7:21:69:2f:df:51:6f:1a:87:00:83: 19:ff:fe:12:85:0d:39:36:b2:3a:16:2f:cd:49:4b:8f:77:cf: 76:99:8f:91:25:2a:20:9d:c4:7f:74:07:d5:48:5c:26:4d:70: ea:23:6e:4e:58:5b:27:20:1b:13:38:02:32:4e:55:e0:51:ce: a1:3e:08:6c:d1:76:8b:89:cb:ee:af:0f:78:1f:66:12:bd:49: d0:af:2c:da:65:5e:ea:e4:32:42:9c:a1:2e:3d:c2:e0:eb:b0: 0c:98:0f:35:1f:cb:9f:53:cc:b6:ba:11:37:6e:f3:5e:93:c8: 0d:36:26:7e:c7:d4:15:84:a7:cd:b0:67:95:9a:f2:ac:29:5b: 17:77:c8:63:c6:20:ba:8d:25:1d:45:b7:0a:c2:7b:e5:e1:48: d2:3d:a8:db:84:84:4b:08:8b:c3:b4:ba:1a:60:46:47:e4:fb: df:53:08:d6:0e:71:35:68:34:e7:b7:4b:67:b2:4e:f9:80:68: b3:a8:d2:10:dd:70:11:ec:3d:5c:9b:8c:45:ab:da:88:cd:9d: 6f:df:8e:93:3d:81:12:fa:5a:b1:4c:da:66:59:9f:7b:3d:30: a7:1f:83:0b:ad:0b:9a:c1:42:62:f6:c9:ef:06:aa:07:d0:28: da:ae:1f:28 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUFq1fexzTvumUSdbzKhqqNtM+ZdgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjUwODE2MDE0MzE5WhcNMjYwODE1MDE0ODE5 WjAzMTEwLwYDVQQDEygyMUFEN0EzNzU3QUFBRkUyQjk2RUY5RjBGQjA3QzVCNzVB M0RDMDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Lnw0B4JeuuS 3WZy+wtvFrInst0CtknPn/xVJfSfQsvqr7ddZl4uL5eH8n+A8IyqT4oqBUYUCNCm dZPJV2/lf+M86ecJ4uiXrkm/0i4EfJFErBXiV55FdM51nmeQDP2OUbIUbDJa1dCf oOWAtqWwCn97yiE5hH6+rYAtVsga2Yr0yzmf/GMUPpyi3TCIl8Fa+kn3kIZH0pZo S9TSCYmicu6B7Zc8GNqjdXLYXmI+uyfa0p/T5LYzzsH9l4nJM6cxNAJizSLGO24f ALMA1ZaRp9/h1XkYZimFw29fwkSGbThmz1b3T4ccB3lGpkb77Npzlm/fz5g/amWv rIAnw8el7QIDAQABo4ICXDCCAlgwHQYDVR0OBBYEFCGtejdXqq/iuW758PsHxbda PcAiMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzEzNDMyMmUzMTM0MzcyZTM4Mzgy ZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOOk1gwDQYJ KoZIhvcNAQELBQADggEBAFPsLZ5Riza3IWkv31FvGocAgxn//hKFDTk2sjoWL81J S493z3aZj5ElKiCdxH90B9VIXCZNcOojbk5YWycgGxM4AjJOVeBRzqE+CGzRdouJ y+6vD3gfZhK9SdCvLNplXurkMkKcoS49wuDrsAyYDzUfy59TzLa6ETdu816TyA02 Jn7H1BWEp82wZ5Wa8qwpWxd3yGPGILqNJR1FtwrCe+XhSNI9qNuEhEsIi8O0uhpg Rkfk+99TCNYOcTVoNOe3S2eyTvmAaLOo0hDdcBHsPVybjEWr2ojNnW/fjpM9gRL6 WrFM2mZZn3s9MKcfgwutC5rBQmL2ye8GqgfQKNquHyg= -----END CERTIFICATE-----Generated at Sun Aug 24 04:08:50 2025 by rpki-client