$ rpki-client -vvf rpki.roa.net/rrdp/xTom/52/32332e3134342e3136302e302f32342d3234203d3e203332373237.roa File: 32332e3134342e3136302e302f32342d3234203d3e203332373237.roa (raw, json) Hash identifier: nv/mLyX2nVsa88Sfp2kWm57EuBorNnCenO2pgz5r36o= Subject key identifier: 3C:0D:A7:ED:5B:34:C0:6A:60:96:B7:E8:BC:92:6B:CA:E6:9F:E3:09 Certificate issuer: /CN=0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf Certificate serial: 3837AD55096B173A9C2064559CAEBACF3B95596D Authority key identifier: 09:D2:A9:DA:8F:06:5F:99:59:AE:9C:CB:05:DF:D5:0B:23:A8:BE:F9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/52/32332e3134342e3136302e302f32342d3234203d3e203332373237.roa Signing time: Sat 16 Aug 2025 01:48:18 +0000 ROA not before: Sat 16 Aug 2025 01:43:18 +0000 ROA not after: Sat 15 Aug 2026 01:48:18 +0000 asID: 32727 IP address blocks: 23.144.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.crl rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/589c840d-5406-45bd-ac1d-d77b3c5c3780.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/589c840d-5406-45bd-ac1d-d77b3c5c3780.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 22:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:37:ad:55:09:6b:17:3a:9c:20:64:55:9c:ae:ba:cf:3b:95:59:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf Validity Not Before: Aug 16 01:43:18 2025 GMT Not After : Aug 15 01:48:18 2026 GMT Subject: CN=3C0DA7ED5B34C06A6096B7E8BC926BCAE69FE309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fa:e1:51:26:b4:12:ee:17:71:6e:d1:64:7d: 69:8c:98:6d:18:f6:3a:d2:bc:73:1c:70:ed:c2:63: bc:42:93:00:ba:4c:8c:d4:69:a5:1b:68:fb:4f:00: fb:28:d5:bb:1f:ac:76:d3:f8:ce:ba:ce:85:fa:b0: 46:b2:f4:0a:4d:6c:b5:72:14:2c:b3:df:8c:d1:a0: 54:66:69:35:ad:f0:01:5a:56:eb:d8:f1:cd:0e:73: 14:c2:80:58:fa:08:da:0b:1b:3d:ad:88:d5:10:b8: ac:f6:cc:90:2b:da:0c:25:c4:0d:63:41:d4:c5:55: fe:28:f8:38:a6:a4:91:6b:65:64:51:8a:de:47:8c: 83:3f:c0:d9:9b:11:ac:88:fa:7b:77:7f:be:13:41: 9c:f9:d4:32:f9:8f:83:50:a7:0f:43:8a:14:91:b0: 56:5e:9a:2e:e3:86:5a:6d:39:e1:a9:1a:19:a5:65: 26:7f:12:c4:e6:63:7c:13:91:ac:d5:fb:1d:27:07: 5d:5c:d6:13:c0:03:a0:fe:4f:36:a6:9b:f8:8d:ec: f2:7b:5d:73:c6:ad:f1:18:b2:9d:e4:c2:06:ff:25: a5:95:ee:ba:8d:29:03:e3:fd:30:03:cd:98:c8:aa: 8e:e2:7c:e4:30:12:4e:4f:0b:65:48:aa:e8:ff:19: b2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:0D:A7:ED:5B:34:C0:6A:60:96:B7:E8:BC:92:6B:CA:E6:9F:E3:09 X509v3 Authority Key Identifier: keyid:09:D2:A9:DA:8F:06:5F:99:59:AE:9C:CB:05:DF:D5:0B:23:A8:BE:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/52/32332e3134342e3136302e302f32342d3234203d3e203332373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.144.160.0/24 Signature Algorithm: sha256WithRSAEncryption ab:7a:1f:89:96:7e:ad:57:20:47:16:6c:c1:af:de:ca:b1:ef: 64:8e:9c:e0:bc:ce:62:8e:fd:8d:3a:d3:65:88:7d:aa:40:80: 70:a6:91:a5:0a:1a:cd:f7:c9:4e:32:06:19:e5:e9:60:8c:ed: 91:14:8f:41:7d:44:d0:49:a1:81:23:17:0a:9d:65:87:bd:01: 53:33:c1:53:22:c0:8d:d9:f4:8b:e6:96:53:e6:8b:9f:42:cc: 2a:87:35:ea:f5:6f:a2:4e:d4:27:1a:cb:98:4e:cd:ee:cd:98: 44:4c:37:9d:d5:c1:c9:5d:e8:4f:21:04:78:69:a1:cc:c3:4e: 27:7f:ed:ec:34:78:cd:29:82:b9:f1:6d:1f:67:0a:4a:25:d2: d0:14:33:a6:6d:9c:5d:06:b9:7b:6e:93:b1:f5:f2:2a:f7:b4: 91:ba:84:b7:94:89:76:56:e0:c9:7a:d1:9a:9b:27:ee:fc:9b: a9:c1:83:12:13:2b:30:b2:89:fd:ca:e7:13:7d:11:a4:77:1c: b4:61:ce:a8:3b:9c:ab:b0:87:a0:27:a9:45:ad:fc:96:c7:8f: 05:74:db:2c:ae:88:7f:b7:71:7b:07:2b:57:a5:f5:5e:e2:fd: 5a:b4:84:79:3a:0c:3a:e6:fa:82:bf:68:ce:5a:55:41:af:1b: c6:da:ba:07 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUODetVQlrFzqcIGRVnK66zzuVWW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGRhNjVlZjBlYjYzYzg3ODlkYWJkYTM5OTUxYWYxMDA3 NzFkOWVlMTMwNDU1OGZkYmYwHhcNMjUwODE2MDE0MzE4WhcNMjYwODE1MDE0ODE4 WjAzMTEwLwYDVQQDEygzQzBEQTdFRDVCMzRDMDZBNjA5NkI3RThCQzkyNkJDQUU2 OUZFMzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvrhUSa0Eu4X cW7RZH1pjJhtGPY60rxzHHDtwmO8QpMAukyM1GmlG2j7TwD7KNW7H6x20/jOus6F +rBGsvQKTWy1chQss9+M0aBUZmk1rfABWlbr2PHNDnMUwoBY+gjaCxs9rYjVELis 9syQK9oMJcQNY0HUxVX+KPg4pqSRa2VkUYreR4yDP8DZmxGsiPp7d3++E0Gc+dQy +Y+DUKcPQ4oUkbBWXpou44ZabTnhqRoZpWUmfxLE5mN8E5Gs1fsdJwddXNYTwAOg /k82ppv4jezye11zxq3xGLKd5MIG/yWlle66jSkD4/0wA82YyKqO4nzkMBJOTwtl SKro/xmyCQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDwNp+1bNMBqYJa36LySa8rm n+MJMB8GA1UdIwQYMBaAFAnSqdqPBl+ZWa6cywXf1QsjqL75MA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTIvMDlEMkE5REE4RjA2NUY5OTU5QUU5Q0NCMDVERkQ1MEIyM0E4QkVG OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjLzU4OWM4NDBkLTU0MDYtNDViZC1hYzFkLWQ3N2IzYzVj Mzc4MC8wZGE2NWVmMGViNjNjODc4OWRhYmRhMzk5NTFhZjEwMDc3MWQ5ZWUxMzA0 NTU4ZmRiZi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTIvMzIzMzJlMzEzNDM0MmUzMTM2MzAy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzMyMzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF5Cg MA0GCSqGSIb3DQEBCwUAA4IBAQCreh+Jln6tVyBHFmzBr97Kse9kjpzgvM5ijv2N OtNliH2qQIBwppGlChrN98lOMgYZ5elgjO2RFI9BfUTQSaGBIxcKnWWHvQFTM8FT IsCN2fSL5pZT5oufQswqhzXq9W+iTtQnGsuYTs3uzZhETDed1cHJXehPIQR4aaHM w04nf+3sNHjNKYK58W0fZwpKJdLQFDOmbZxdBrl7bpOx9fIq97SRuoS3lIl2VuDJ etGamyfu/JupwYMSEyswson9yucTfRGkdxy0Yc6oO5yrsIegJ6lFrfyWx48FdNss roh/t3F7BytXpfVe4v1atIR5Ogw65vqCv2jOWlVBrxvG2roH -----END CERTIFICATE-----Generated at Sat Aug 23 23:47:38 2025 by rpki-client