$ rpki-client -vvf rpki.roa.net/rrdp/xTom/52/323630343a656234303a363a3a2f34382d3438203d3e203535313538.roa File: 323630343a656234303a363a3a2f34382d3438203d3e203535313538.roa (raw, json) Hash identifier: OYdmJbmvYOajzS/4jIkl1VnoVntRakYkyR5U+69qNDY= Subject key identifier: 98:F9:26:1C:7D:D0:37:61:BA:4D:14:3C:91:96:6C:74:9B:48:E7:4F Certificate issuer: /CN=0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf Certificate serial: 1A215ADC162A28394C197A5BABF5EFCDAE308B9C Authority key identifier: 09:D2:A9:DA:8F:06:5F:99:59:AE:9C:CB:05:DF:D5:0B:23:A8:BE:F9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/52/323630343a656234303a363a3a2f34382d3438203d3e203535313538.roa Signing time: Sat 16 Aug 2025 01:48:18 +0000 ROA not before: Sat 16 Aug 2025 01:43:18 +0000 ROA not after: Sat 15 Aug 2026 01:48:18 +0000 asID: 55158 IP address blocks: 2604:eb40:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.crl rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/589c840d-5406-45bd-ac1d-d77b3c5c3780.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/589c840d-5406-45bd-ac1d-d77b3c5c3780.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 22:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:21:5a:dc:16:2a:28:39:4c:19:7a:5b:ab:f5:ef:cd:ae:30:8b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf Validity Not Before: Aug 16 01:43:18 2025 GMT Not After : Aug 15 01:48:18 2026 GMT Subject: CN=98F9261C7DD03761BA4D143C91966C749B48E74F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d1:16:9e:15:2a:64:fc:78:b0:ba:d7:2e:29: bf:81:e6:78:7b:d5:45:b1:fb:f1:d6:52:6a:8a:36: 16:26:2c:1f:19:fb:73:eb:23:2e:b3:9d:41:9a:c9: 1f:44:c4:c6:bf:94:2f:41:70:cb:29:3b:4b:08:66: 5c:c3:ea:4b:3f:58:c6:2c:23:a2:ca:a1:c9:ff:ca: 5f:6c:9e:4e:27:ef:01:12:00:f2:15:dd:3f:89:ac: a0:15:ed:16:e8:e3:73:3e:46:56:09:01:5a:bf:7c: de:f4:4f:f2:60:46:b8:ad:a7:47:0d:19:ec:71:55: f4:be:4d:a2:a0:d3:ae:d6:35:33:c2:f6:8b:c6:90: 53:62:ac:ab:60:e8:4c:fc:1b:f2:70:c7:98:d0:50: 17:1d:c1:82:55:12:a1:85:65:50:96:6c:59:f5:c7: ea:ef:7e:72:bc:51:db:ff:d5:04:0f:9c:f8:74:ce: 9d:31:fb:7b:b5:f9:d0:2c:3d:3c:63:e7:73:92:e2: 4f:68:81:80:2f:d7:d8:c2:9c:4c:6b:54:bf:72:e8: cb:e1:b2:05:0a:d7:62:f6:0b:62:f3:3e:bd:2b:7c: b1:fb:27:15:ca:a4:aa:f1:2e:ee:14:ce:cf:93:10: 08:5a:95:d4:04:df:21:2d:3f:1b:67:ba:b8:f3:d6: f1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F9:26:1C:7D:D0:37:61:BA:4D:14:3C:91:96:6C:74:9B:48:E7:4F X509v3 Authority Key Identifier: keyid:09:D2:A9:DA:8F:06:5F:99:59:AE:9C:CB:05:DF:D5:0B:23:A8:BE:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/52/323630343a656234303a363a3a2f34382d3438203d3e203535313538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:eb40:6::/48 Signature Algorithm: sha256WithRSAEncryption 76:f0:eb:1e:bd:29:c2:ed:a5:6c:11:28:75:f8:86:2a:2a:33: 5f:18:c2:a8:cd:6c:0e:60:5e:83:c3:bb:dc:5b:1e:f3:03:5e: ea:b7:16:87:02:5e:d2:db:fb:a7:99:02:12:43:52:23:47:68: c1:80:2e:b5:2c:6b:18:87:41:83:c8:c5:05:ce:a9:1d:c5:53: 28:7c:a7:58:22:bc:ec:a3:cf:57:7a:22:92:6b:2f:e4:b5:66: 83:0c:6f:22:73:29:5e:28:0b:ef:b4:b6:5d:fd:ca:4d:4f:1d: 8e:e3:41:81:b2:46:ba:15:1a:76:6d:8b:c9:cc:c9:2b:4e:85: e2:b8:ce:94:09:da:e7:7a:d8:df:1f:de:19:85:53:da:97:1b: 9c:cd:61:a0:59:ca:ee:7a:c3:ac:0a:97:af:70:a1:3c:49:e8: a8:6d:95:b5:e9:fd:c7:9e:66:92:7e:3b:81:09:e3:c8:75:44: ef:ec:1f:e4:26:a8:7c:0d:60:d5:63:3e:fd:44:e1:f3:a9:3f: 7b:e3:6a:e5:c4:c0:04:a9:d1:ce:86:d7:39:1b:4b:c7:00:6d: d0:4b:51:62:d1:69:9c:82:df:a4:00:3d:9a:e5:72:50:3f:0c: d2:3e:fa:4e:b2:6b:17:5c:ba:a6:39:3f:7b:34:ed:9e:dc:11: cd:c3:d8:6f -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUGiFa3BYqKDlMGXpbq/Xvza4wi5wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGRhNjVlZjBlYjYzYzg3ODlkYWJkYTM5OTUxYWYxMDA3 NzFkOWVlMTMwNDU1OGZkYmYwHhcNMjUwODE2MDE0MzE4WhcNMjYwODE1MDE0ODE4 WjAzMTEwLwYDVQQDEyg5OEY5MjYxQzdERDAzNzYxQkE0RDE0M0M5MTk2NkM3NDlC NDhFNzRGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytEWnhUqZPx4 sLrXLim/geZ4e9VFsfvx1lJqijYWJiwfGftz6yMus51BmskfRMTGv5QvQXDLKTtL CGZcw+pLP1jGLCOiyqHJ/8pfbJ5OJ+8BEgDyFd0/iaygFe0W6ONzPkZWCQFav3ze 9E/yYEa4radHDRnscVX0vk2ioNOu1jUzwvaLxpBTYqyrYOhM/BvycMeY0FAXHcGC VRKhhWVQlmxZ9cfq735yvFHb/9UED5z4dM6dMft7tfnQLD08Y+dzkuJPaIGAL9fY wpxMa1S/cujL4bIFCtdi9gti8z69K3yx+ycVyqSq8S7uFM7PkxAIWpXUBN8hLT8b Z7q489bxDQIDAQABo4ICZTCCAmEwHQYDVR0OBBYEFJj5Jhx90Ddhuk0UPJGWbHSb SOdPMB8GA1UdIwQYMBaAFAnSqdqPBl+ZWa6cywXf1QsjqL75MA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTIvMDlEMkE5REE4RjA2NUY5OTU5QUU5Q0NCMDVERkQ1MEIyM0E4QkVG OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjLzU4OWM4NDBkLTU0MDYtNDViZC1hYzFkLWQ3N2IzYzVj Mzc4MC8wZGE2NWVmMGViNjNjODc4OWRhYmRhMzk5NTFhZjEwMDc3MWQ5ZWUxMzA0 NTU4ZmRiZi5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTIvMzIzNjMwMzQzYTY1NjIzNDMwM2Ez NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzMTM1Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAm BOtAAAYwDQYJKoZIhvcNAQELBQADggEBAHbw6x69KcLtpWwRKHX4hioqM18YwqjN bA5gXoPDu9xbHvMDXuq3FocCXtLb+6eZAhJDUiNHaMGALrUsaxiHQYPIxQXOqR3F Uyh8p1givOyjz1d6IpJrL+S1ZoMMbyJzKV4oC++0tl39yk1PHY7jQYGyRroVGnZt i8nMyStOheK4zpQJ2ud62N8f3hmFU9qXG5zNYaBZyu56w6wKl69woTxJ6KhtlbXp /ceeZpJ+O4EJ48h1RO/sH+QmqHwNYNVjPv1E4fOpP3vjauXEwASp0c6G1zkbS8cA bdBLUWLRaZyC36QAPZrlclA/DNI++k6yaxdcuqY5P3s07Z7cEc3D2G8= -----END CERTIFICATE-----Generated at Sun Aug 24 08:32:12 2025 by rpki-client