$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32342d3234203d3e2036323333.roa File: 3134322e3134372e38382e302f32342d3234203d3e2036323333.roa (raw, json) Hash identifier: BCi+oWVmoqOCXPGYoNN5Gsw3cvawNSr67DTbvpk/4oI= Subject key identifier: D0:2B:85:57:57:78:9C:4B:4B:48:E3:D8:5C:42:6D:6B:76:BB:71:5F Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 61116E2DBF6E29FF9B05D9ABDFD9D7331880C05B Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32342d3234203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:21 +0000 ROA not before: Sat 16 Aug 2025 01:43:21 +0000 ROA not after: Sat 15 Aug 2026 01:48:21 +0000 asID: 6233 IP address blocks: 142.147.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 00:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:11:6e:2d:bf:6e:29:ff:9b:05:d9:ab:df:d9:d7:33:18:80:c0:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Aug 16 01:43:21 2025 GMT Not After : Aug 15 01:48:21 2026 GMT Subject: CN=D02B855757789C4B4B48E3D85C426D6B76BB715F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:82:04:20:52:b0:77:d0:28:4b:29:b5:0c:06: 9f:55:e3:08:84:7d:41:af:1c:2f:78:d5:88:7d:6e: 69:df:ed:8f:a8:5a:e0:69:0a:8f:28:f6:60:85:c2: ed:bf:a7:95:f2:19:5f:6e:5e:b6:00:b2:3a:63:64: 7d:d2:d2:b3:79:98:b9:64:ad:13:f1:50:fe:13:49: 8d:e5:58:f2:c4:1e:db:cb:05:a5:1e:b8:30:a1:0a: ef:80:c3:de:06:a1:ef:2a:e7:ee:4b:0d:c9:ad:f8: 1a:9d:2c:32:d1:0d:a7:52:18:ad:41:a2:60:cb:c0: ac:30:1e:04:fa:6f:b8:05:17:93:03:1e:56:32:ab: 42:18:51:16:3c:ca:bb:03:92:2a:33:50:56:b5:37: e0:b3:f9:99:20:0c:d9:c2:71:df:77:78:b5:a2:7d: 56:5b:8b:96:58:22:5b:71:ad:bc:f6:6a:0b:24:0a: 9b:3b:e7:41:68:c3:d6:95:04:d9:36:a3:33:3f:ae: 2e:e1:00:1e:c5:5b:9f:8e:ed:a0:80:74:87:57:a0: cc:e6:30:00:96:b9:67:f8:61:18:e0:6a:b1:c5:27: 4c:b2:98:02:13:f8:57:86:45:99:df:52:0f:68:38: 57:96:81:40:58:f5:46:47:0a:c3:25:08:dc:b0:a7: d8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:2B:85:57:57:78:9C:4B:4B:48:E3:D8:5C:42:6D:6B:76:BB:71:5F X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32342d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.147.88.0/24 Signature Algorithm: sha256WithRSAEncryption 08:57:12:ac:52:a9:86:b8:a9:7b:0e:58:a3:92:63:13:34:48: 67:00:9a:d2:d7:fd:14:25:84:18:f0:59:b0:8e:46:60:50:ef: 30:96:7b:b0:05:fb:47:f2:3c:92:5b:2f:30:85:54:ce:af:4c: 7d:c7:02:02:f9:5c:57:45:44:79:51:23:45:c3:30:b3:05:f0: 12:3f:54:f3:b6:f2:f3:6a:f2:94:0b:5b:42:af:29:f7:15:4b: 6a:05:8a:26:fd:a0:98:a1:47:a8:78:d6:99:c1:43:9a:cb:dc: 7d:e8:95:0d:8e:98:f5:c2:4b:a2:0e:a9:24:2c:b8:32:0e:ff: ce:5a:42:61:43:10:2a:1a:2b:0c:e0:ad:02:f3:b3:11:d1:09: c9:8d:91:af:0d:87:76:5d:11:e8:29:52:0f:05:3c:ea:5b:49: 13:fa:64:4a:c6:1b:67:23:a7:3b:af:03:73:bb:f6:e0:e5:87: 09:74:2b:62:bd:27:23:eb:5f:98:3e:e5:8c:9d:fc:1d:86:21: f2:9e:2a:67:34:0b:5e:5a:ee:80:85:1f:8c:6e:cf:67:5f:cc: c2:1f:24:9c:8f:fb:75:4c:21:09:70:d8:14:c6:2b:54:2b:04: 86:70:ed:7f:97:fe:07:fb:dd:ee:14:9b:34:db:ac:f2:d9:af: aa:98:3d:6b -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUYRFuLb9uKf+bBdmr39nXMxiAwFswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjUwODE2MDE0MzIxWhcNMjYwODE1MDE0ODIx WjAzMTEwLwYDVQQDEyhEMDJCODU1NzU3Nzg5QzRCNEI0OEUzRDg1QzQyNkQ2Qjc2 QkI3MTVGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1YIEIFKwd9Ao Sym1DAafVeMIhH1BrxwveNWIfW5p3+2PqFrgaQqPKPZghcLtv6eV8hlfbl62ALI6 Y2R90tKzeZi5ZK0T8VD+E0mN5VjyxB7bywWlHrgwoQrvgMPeBqHvKufuSw3Jrfga nSwy0Q2nUhitQaJgy8CsMB4E+m+4BReTAx5WMqtCGFEWPMq7A5IqM1BWtTfgs/mZ IAzZwnHfd3i1on1WW4uWWCJbca289moLJAqbO+dBaMPWlQTZNqMzP64u4QAexVuf ju2ggHSHV6DM5jAAlrln+GEY4GqxxSdMspgCE/hXhkWZ31IPaDhXloFAWPVGRwrD JQjcsKfYewIDAQABo4ICXjCCAlowHQYDVR0OBBYEFNArhVdXeJxLS0jj2FxCbWt2 u3FfMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzEzNDMyMmUzMTM0MzcyZTM4Mzgy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAI6TWDAN BgkqhkiG9w0BAQsFAAOCAQEACFcSrFKphripew5Yo5JjEzRIZwCa0tf9FCWEGPBZ sI5GYFDvMJZ7sAX7R/I8klsvMIVUzq9MfccCAvlcV0VEeVEjRcMwswXwEj9U87by 82rylAtbQq8p9xVLagWKJv2gmKFHqHjWmcFDmsvcfeiVDY6Y9cJLog6pJCy4Mg7/ zlpCYUMQKhorDOCtAvOzEdEJyY2Rrw2Hdl0R6ClSDwU86ltJE/pkSsYbZyOnO68D c7v24OWHCXQrYr0nI+tfmD7ljJ38HYYh8p4qZzQLXlrugIUfjG7PZ1/Mwh8knI/7 dUwhCXDYFMYrVCsEhnDtf5f+B/vd7hSbNNus8tmvqpg9aw== -----END CERTIFICATE-----Generated at Sun Aug 24 04:07:27 2025 by rpki-client