$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3134322e3134372e38392e302f32342d3234203d3e2036323333.roa File: 3134322e3134372e38392e302f32342d3234203d3e2036323333.roa (raw, json) Hash identifier: aT+uZrC8MjUK0f1pXdDj3UAr44FEGYm2Xv5JMP1c4lw= Subject key identifier: 21:C9:78:6A:89:D5:EF:CA:11:B2:2F:85:07:CA:38:BA:F3:BD:62:23 Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 43A0A0E17A127E723A8309347F2FDD2A22D17951 Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3134322e3134372e38392e302f32342d3234203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:20 +0000 ROA not before: Sat 16 Aug 2025 01:43:20 +0000 ROA not after: Sat 15 Aug 2026 01:48:20 +0000 asID: 6233 IP address blocks: 142.147.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 00:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a0:a0:e1:7a:12:7e:72:3a:83:09:34:7f:2f:dd:2a:22:d1:79:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Aug 16 01:43:20 2025 GMT Not After : Aug 15 01:48:20 2026 GMT Subject: CN=21C9786A89D5EFCA11B22F8507CA38BAF3BD6223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:28:40:76:d5:14:b3:ff:09:e9:94:e2:9b:bf: 7d:62:e0:fa:e8:89:c2:d5:ce:75:0d:8e:81:ae:fe: a5:bc:2d:35:bc:65:e5:84:b1:86:df:c7:a4:8a:df: 0d:41:c3:3e:00:12:41:3b:b0:1e:a1:10:e1:58:13: 84:52:f2:26:93:62:2f:2a:cc:ef:a5:8a:5b:be:79: 5b:e0:df:ed:3f:59:0a:cf:a8:8b:f7:3f:1b:20:a7: 11:27:47:c2:29:8d:cf:e0:a0:37:d7:b5:14:1d:e1: 33:49:52:1c:3b:dd:6c:39:5e:9b:f5:68:68:33:38: 29:7f:fc:af:a9:67:26:cf:2c:b4:2f:85:75:ce:80: 17:73:47:68:05:40:2f:51:45:37:2b:9d:6c:0f:53: a6:87:0b:c0:f0:ba:40:a6:53:1c:0a:72:58:4b:56: 96:f4:ad:1f:ca:be:db:db:a5:4b:50:48:88:bc:8e: 18:7e:fd:54:31:be:60:06:f8:35:2b:c7:27:75:78: f6:b9:b5:83:44:e3:cc:97:55:c5:ef:6b:34:48:e4: 68:7e:27:9c:fa:a6:57:a9:cb:8e:46:6f:13:f0:0c: 29:78:03:4a:f4:ec:9f:a2:dc:88:a0:0a:2f:c4:96: 54:40:cf:cc:31:89:6c:b9:2f:78:ba:86:5d:d6:0f: a4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C9:78:6A:89:D5:EF:CA:11:B2:2F:85:07:CA:38:BA:F3:BD:62:23 X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3134322e3134372e38392e302f32342d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.147.89.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:9c:39:d9:c4:cc:d7:a0:ae:91:d4:b9:cd:f3:18:a7:c0:a3: 88:81:8d:a9:1c:a6:00:45:0b:8f:54:dc:78:d1:bf:ab:7a:d7: 47:b3:40:f9:62:0d:e1:a0:64:46:23:d3:d8:e9:4e:00:c0:a9: d6:6d:e2:06:9d:9c:d2:ed:ae:ff:b1:e7:25:75:0b:3a:ab:b0: 18:c6:fd:b3:94:5d:eb:61:41:9c:ea:71:e2:a8:d0:f7:95:23: 77:dd:99:ab:65:18:69:f9:91:77:10:5a:e0:3f:ea:9b:f4:21: df:4f:2f:8e:63:5c:b4:32:1b:47:c5:bf:7b:f0:d9:40:30:02: 94:88:db:78:79:18:ce:1c:24:cb:77:bd:98:8e:1f:b2:23:94: 39:96:d9:2b:1e:f8:05:af:3d:98:4e:d1:d7:f5:f7:7f:6a:29: 55:4b:89:cd:60:03:3b:85:94:58:d3:46:9c:c7:ad:e7:5a:69: 2b:92:3a:8a:f2:75:74:b2:c5:dc:bf:69:a6:0c:85:fb:49:71: ff:4d:a6:b9:16:e0:53:15:98:c2:1f:36:7c:58:35:93:5a:2e: 73:b1:cd:b3:2c:b2:b9:e9:dd:00:6b:f6:2d:12:3e:8b:01:a1: d0:ad:b3:d2:18:4e:a8:c0:e5:96:9a:39:eb:f8:52:26:04:c5: 31:31:25:b2 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUQ6Cg4XoSfnI6gwk0fy/dKiLReVEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjUwODE2MDE0MzIwWhcNMjYwODE1MDE0ODIw WjAzMTEwLwYDVQQDEygyMUM5Nzg2QTg5RDVFRkNBMTFCMjJGODUwN0NBMzhCQUYz QkQ2MjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqShAdtUUs/8J 6ZTim799YuD66InC1c51DY6Brv6lvC01vGXlhLGG38ekit8NQcM+ABJBO7AeoRDh WBOEUvImk2IvKszvpYpbvnlb4N/tP1kKz6iL9z8bIKcRJ0fCKY3P4KA317UUHeEz SVIcO91sOV6b9WhoMzgpf/yvqWcmzyy0L4V1zoAXc0doBUAvUUU3K51sD1OmhwvA 8LpAplMcCnJYS1aW9K0fyr7b26VLUEiIvI4Yfv1UMb5gBvg1K8cndXj2ubWDROPM l1XF72s0SORofiec+qZXqcuORm8T8AwpeANK9OyfotyIoAovxJZUQM/MMYlsuS94 uoZd1g+krQIDAQABo4ICXjCCAlowHQYDVR0OBBYEFCHJeGqJ1e/KEbIvhQfKOLrz vWIjMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzEzNDMyMmUzMTM0MzcyZTM4Mzky ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAI6TWTAN BgkqhkiG9w0BAQsFAAOCAQEAa5w52cTM16CukdS5zfMYp8CjiIGNqRymAEULj1Tc eNG/q3rXR7NA+WIN4aBkRiPT2OlOAMCp1m3iBp2c0u2u/7HnJXULOquwGMb9s5Rd 62FBnOpx4qjQ95Ujd92Zq2UYafmRdxBa4D/qm/Qh308vjmNctDIbR8W/e/DZQDAC lIjbeHkYzhwky3e9mI4fsiOUOZbZKx74Ba89mE7R1/X3f2opVUuJzWADO4WUWNNG nMet51ppK5I6ivJ1dLLF3L9ppgyF+0lx/02muRbgUxWYwh82fFg1k1ouc7HNsyyy uendAGv2LRI+iwGh0K2z0hhOqMDllpo56/hSJgTFMTElsg== -----END CERTIFICATE-----Generated at Sun Aug 24 04:07:26 2025 by rpki-client