$ rpki-client -vvf rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e20393439.roa File: 323630353a3963303a3a2f33322d3438203d3e20393439.roa (raw, json) Hash identifier: 0QIJCL2ufm85ZXekBSetCodGWOg6ej2+lx5svWIEz0M= Subject key identifier: B7:31:D7:E0:A7:39:9C:DC:53:7F:15:A3:66:F1:0E:81:75:8F:BB:CA Certificate issuer: /CN=e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450 Certificate serial: 4ACAABBB5F89DC36B356F56A7D2C8517BDC385F5 Authority key identifier: 51:30:79:D4:CF:FB:FD:F8:10:24:CA:1B:48:CA:B7:7B:D5:16:66:57 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e20393439.roa Signing time: Sat 16 Aug 2025 01:48:29 +0000 ROA not before: Sat 16 Aug 2025 01:43:29 +0000 ROA not after: Sat 15 Aug 2026 01:48:29 +0000 asID: 949 IP address blocks: 2605:9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.crl rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 20:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ca:ab:bb:5f:89:dc:36:b3:56:f5:6a:7d:2c:85:17:bd:c3:85:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450 Validity Not Before: Aug 16 01:43:29 2025 GMT Not After : Aug 15 01:48:29 2026 GMT Subject: CN=B731D7E0A7399CDC537F15A366F10E81758FBBCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cf:23:99:5b:2a:89:f3:a7:0b:6d:0f:40:51: f5:26:af:67:f7:ab:6f:ff:be:e1:0e:86:d7:70:c5: 1a:1a:db:a1:f2:a0:6a:a8:ca:dd:43:ed:c1:12:18: 7c:a8:8e:e1:00:be:90:ed:f1:5e:72:19:80:60:c6: 3f:0e:e4:18:3c:49:3c:c6:28:e1:eb:15:0f:a7:6b: 31:00:26:38:b0:60:c4:d4:05:a3:2b:78:49:c5:49: 24:5a:a1:24:1e:57:da:fa:f6:89:51:f0:9b:05:d4: ac:32:f0:e0:df:7a:5f:16:01:ac:14:22:9b:84:18: ec:b9:3b:6a:10:5c:66:9b:c8:20:81:64:65:f2:17: 00:60:a4:b4:62:e9:61:33:4e:1c:45:6a:98:5c:c4: 35:23:0e:b7:1c:51:ef:47:55:4d:93:48:dd:11:67: 0c:7f:ee:1b:4a:dd:55:c8:64:a3:92:0f:5c:0f:d8: be:be:57:3f:a6:42:10:7b:66:bd:15:d8:27:1d:50: 22:af:35:c4:ff:b0:91:27:84:d4:0c:d2:a0:fb:89: 95:9f:ba:ec:3b:5c:be:22:e2:64:2c:8b:23:0c:02: b8:ff:f7:f2:f1:9b:ed:56:a9:46:58:07:53:eb:39: 6a:cb:45:5f:be:dd:4e:b9:dc:a3:50:87:ea:ef:df: dc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:31:D7:E0:A7:39:9C:DC:53:7F:15:A3:66:F1:0E:81:75:8F:BB:CA X509v3 Authority Key Identifier: keyid:51:30:79:D4:CF:FB:FD:F8:10:24:CA:1B:48:CA:B7:7B:D5:16:66:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e20393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9c0::/32 Signature Algorithm: sha256WithRSAEncryption 1f:5e:ac:8c:bb:1d:30:6b:f0:69:11:ef:4e:ef:07:d0:64:95: 15:53:05:f5:b4:02:c8:55:b2:bb:04:b1:e9:cb:37:e4:00:79: 94:73:18:b7:d9:00:56:e1:df:94:45:f4:07:83:7a:43:c0:a0: cd:52:05:a8:45:71:0d:19:08:5e:15:0e:9b:de:de:8b:ed:6b: c9:19:cd:31:b5:b3:63:3b:5d:4a:36:4d:5a:b1:ad:94:2f:d8: 55:4c:03:56:03:41:00:fb:e1:e9:50:4f:28:d7:40:c6:92:b1: 24:a8:92:67:a2:58:0c:d1:91:db:eb:0f:45:95:10:07:69:28: a7:1f:c9:91:da:8e:5a:9e:d6:e9:50:95:12:ee:b4:c5:69:49: ab:13:dc:08:8d:58:d1:b4:21:0f:c7:fb:ba:ff:d8:07:83:dd: 89:1a:a2:bf:1b:c8:b9:86:b0:29:0c:67:3e:51:cc:83:d7:2e: 31:d9:7c:b0:29:d8:0e:a8:0e:52:ae:e5:a7:12:77:f0:34:66: 04:c3:c1:68:03:76:ed:2e:17:f0:7a:13:47:92:ed:60:c9:8a: 43:85:90:3f:09:74:eb:a5:71:5f:04:24:11:55:6f:b6:25:4f: b4:d8:93:02:b7:23:6a:ab:f4:71:ce:82:13:76:3b:d1:f6:49: c9:a2:f0:73 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgIUSsqru1+J3DazVvVqfSyFF73DhfUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZTlmYWMxNDY3MjEyMmJkZGZjN2ExMjc4OTgwZDY5NWM2 MDlkNWVhZWVkYjBkZjI0NTAwHhcNMjUwODE2MDE0MzI5WhcNMjYwODE1MDE0ODI5 WjAzMTEwLwYDVQQDEyhCNzMxRDdFMEE3Mzk5Q0RDNTM3RjE1QTM2NkYxMEU4MTc1 OEZCQkNBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAps8jmVsqifOn C20PQFH1Jq9n96tv/77hDobXcMUaGtuh8qBqqMrdQ+3BEhh8qI7hAL6Q7fFechmA YMY/DuQYPEk8xijh6xUPp2sxACY4sGDE1AWjK3hJxUkkWqEkHlfa+vaJUfCbBdSs MvDg33pfFgGsFCKbhBjsuTtqEFxmm8gggWRl8hcAYKS0YulhM04cRWqYXMQ1Iw63 HFHvR1VNk0jdEWcMf+4bSt1VyGSjkg9cD9i+vlc/pkIQe2a9FdgnHVAirzXE/7CR J4TUDNKg+4mVn7rsO1y+IuJkLIsjDAK4//fy8ZvtVqlGWAdT6zlqy0Vfvt1Oudyj UIfq79/crQIDAQABo4ICWTCCAlUwHQYDVR0OBBYEFLcx1+CnOZzcU38Vo2bxDoF1 j7vKMB8GA1UdIwQYMBaAFFEwedTP+/34ECTKG0jKt3vVFmZXMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTEvNTEzMDc5RDRDRkZCRkRGODEwMjRDQTFCNDhDQUI3N0JENTE2NjY1 Ny5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjL2RhYjc2YzZiLTBlODYtNGEwMy1hNTlhLWYzZmM3N2Ri YmE2Mi9lOWZhYzE0NjcyMTIyYmRkZmM3YTEyNzg5ODBkNjk1YzYwOWQ1ZWFlZWRi MGRmMjQ1MC5jZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTEvMzIzNjMwMzUzYTM5NjMzMDNhM2Ey ZjMzMzIyZDM0MzgyMDNkM2UyMDM5MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACYFCcAwDQYJKoZI hvcNAQELBQADggEBAB9erIy7HTBr8GkR707vB9BklRVTBfW0AshVsrsEsenLN+QA eZRzGLfZAFbh35RF9AeDekPAoM1SBahFcQ0ZCF4VDpve3ovta8kZzTG1s2M7XUo2 TVqxrZQv2FVMA1YDQQD74elQTyjXQMaSsSSokmeiWAzRkdvrD0WVEAdpKKcfyZHa jlqe1ulQlRLutMVpSasT3AiNWNG0IQ/H+7r/2AeD3Ykaor8byLmGsCkMZz5RzIPX LjHZfLAp2A6oDlKu5acSd/A0ZgTDwWgDdu0uF/B6E0eS7WDJikOFkD8JdOulcV8E JBFVb7YlT7TYkwK3I2qr9HHOghN2O9H2Scmi8HM= -----END CERTIFICATE-----Generated at Sun Aug 24 03:54:45 2025 by rpki-client