$ rpki-client -vvf rpki.roa.net/rrdp/xTom/52/323630343a656234303a3a2f33322d3438203d3e20393439.roa File: 323630343a656234303a3a2f33322d3438203d3e20393439.roa (raw, json) Hash identifier: lxNMXhJ8PunKxGuPGw3R8gcSCkFgqwiA/ZtMzbITXpo= Subject key identifier: 41:3B:3C:79:D2:85:D3:80:93:1F:A8:B5:CD:81:D9:49:16:5E:92:4E Certificate issuer: /CN=0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf Certificate serial: 5CE1E06FD46A4D6CA402C71CB4E205DC5DCDDB7C Authority key identifier: 09:D2:A9:DA:8F:06:5F:99:59:AE:9C:CB:05:DF:D5:0B:23:A8:BE:F9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/52/323630343a656234303a3a2f33322d3438203d3e20393439.roa Signing time: Sat 16 Aug 2025 01:48:18 +0000 ROA not before: Sat 16 Aug 2025 01:43:18 +0000 ROA not after: Sat 15 Aug 2026 01:48:18 +0000 asID: 949 IP address blocks: 2604:eb40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.crl rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/589c840d-5406-45bd-ac1d-d77b3c5c3780.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/589c840d-5406-45bd-ac1d-d77b3c5c3780.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 22:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e1:e0:6f:d4:6a:4d:6c:a4:02:c7:1c:b4:e2:05:dc:5d:cd:db:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf Validity Not Before: Aug 16 01:43:18 2025 GMT Not After : Aug 15 01:48:18 2026 GMT Subject: CN=413B3C79D285D380931FA8B5CD81D949165E924E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ce:54:72:9f:ec:7f:a8:68:3c:19:2e:5e:96: cd:e2:4b:f3:78:0a:09:e8:36:d5:f9:2a:9b:4e:92: 69:53:95:39:4d:83:0a:59:7f:ba:7a:83:b4:c3:69: fc:e7:51:4b:4a:bd:86:e9:16:72:8c:61:6c:fb:92: 1f:95:28:fd:84:47:75:6b:7d:4e:e1:31:ac:66:ed: 5a:6f:cd:da:a5:e0:36:94:6b:6e:1c:73:4b:2e:5c: b3:7f:88:88:63:36:98:00:ae:bf:43:f9:28:37:22: 8e:be:2e:f2:63:9e:ae:4a:c0:3b:24:15:f8:7f:dd: 49:18:a4:9e:55:f5:32:54:b4:c6:0a:07:ca:6d:c7: 9d:d2:52:1b:de:c1:53:d6:b4:d2:e6:e8:47:12:a4: f4:b3:c4:e8:cd:38:29:1f:aa:0b:b8:fa:03:b4:31: a8:b4:40:85:24:2d:e6:82:96:cb:40:c7:97:46:61: 83:01:45:d5:43:02:00:8b:f6:b3:2d:dc:76:6c:1d: 26:64:8c:cd:ee:46:2a:c5:ff:02:69:bb:2e:cd:6e: 0b:23:b7:c5:8d:9e:8c:3e:83:51:c6:f7:b6:77:e7: 93:a1:df:11:30:6b:89:2a:bc:a3:b7:c3:6b:f7:db: 61:f9:f3:68:5d:4c:2d:c2:fc:e4:15:65:3c:b5:67: b4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3B:3C:79:D2:85:D3:80:93:1F:A8:B5:CD:81:D9:49:16:5E:92:4E X509v3 Authority Key Identifier: keyid:09:D2:A9:DA:8F:06:5F:99:59:AE:9C:CB:05:DF:D5:0B:23:A8:BE:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/52/323630343a656234303a3a2f33322d3438203d3e20393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:eb40::/32 Signature Algorithm: sha256WithRSAEncryption 5c:c7:69:80:f5:e7:ba:a8:8b:e1:39:89:5e:eb:2e:a3:a4:8b: 15:82:54:0a:6b:4e:65:2a:9e:30:83:9d:b8:2f:34:2b:de:98: 22:f3:d6:7d:e1:64:b1:72:20:86:eb:2e:51:c2:92:3e:bd:ad: 56:2e:0d:ca:28:3f:24:0f:2f:31:06:0a:2c:4f:a6:fb:54:34: 6c:37:29:e3:e8:32:13:05:4a:30:2d:c3:f5:1e:12:62:a2:87: e7:50:34:4d:42:9e:f4:bd:a7:5b:fb:c2:a9:79:b8:63:9b:29: ef:46:d3:6a:fc:8e:f0:78:7d:be:f5:0e:44:0b:17:4e:e4:f7: 93:bd:c4:cd:bd:7a:45:81:5b:45:f0:55:8b:dd:9d:7e:1c:80: 2a:12:3e:2a:9e:d4:c8:34:c1:35:ac:ed:32:01:6c:6f:b7:2c: 9d:cb:16:7c:96:25:86:eb:e9:e6:79:53:f8:22:24:97:7b:5e: 57:8f:2b:75:dc:61:fb:f7:33:fc:b4:6d:a4:25:4f:98:ba:25: af:23:22:bb:3b:0a:20:bb:09:5e:08:14:55:8e:81:cd:f2:54: 60:6a:ef:6a:5c:1e:8e:f8:6f:b5:fe:67:27:b8:ed:89:a5:e6: f8:5a:45:c6:eb:f5:03:2b:ae:7d:3f:d8:bb:0b:59:de:15:42: 11:0f:80:02 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIUXOHgb9RqTWykAscctOIF3F3N23wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGRhNjVlZjBlYjYzYzg3ODlkYWJkYTM5OTUxYWYxMDA3 NzFkOWVlMTMwNDU1OGZkYmYwHhcNMjUwODE2MDE0MzE4WhcNMjYwODE1MDE0ODE4 WjAzMTEwLwYDVQQDEyg0MTNCM0M3OUQyODVEMzgwOTMxRkE4QjVDRDgxRDk0OTE2 NUU5MjRFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi85Ucp/sf6ho PBkuXpbN4kvzeAoJ6DbV+SqbTpJpU5U5TYMKWX+6eoO0w2n851FLSr2G6RZyjGFs +5IflSj9hEd1a31O4TGsZu1ab83apeA2lGtuHHNLLlyzf4iIYzaYAK6/Q/koNyKO vi7yY56uSsA7JBX4f91JGKSeVfUyVLTGCgfKbced0lIb3sFT1rTS5uhHEqT0s8To zTgpH6oLuPoDtDGotECFJC3mgpbLQMeXRmGDAUXVQwIAi/azLdx2bB0mZIzN7kYq xf8CabsuzW4LI7fFjZ6MPoNRxve2d+eTod8RMGuJKryjt8Nr99th+fNoXUwtwvzk FWU8tWe0EwIDAQABo4ICWzCCAlcwHQYDVR0OBBYEFEE7PHnShdOAkx+otc2B2UkW XpJOMB8GA1UdIwQYMBaAFAnSqdqPBl+ZWa6cywXf1QsjqL75MA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTIvMDlEMkE5REE4RjA2NUY5OTU5QUU5Q0NCMDVERkQ1MEIyM0E4QkVG OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjLzU4OWM4NDBkLTU0MDYtNDViZC1hYzFkLWQ3N2IzYzVj Mzc4MC8wZGE2NWVmMGViNjNjODc4OWRhYmRhMzk5NTFhZjEwMDc3MWQ5ZWUxMzA0 NTU4ZmRiZi5jZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTIvMzIzNjMwMzQzYTY1NjIzNDMwM2Ez YTJmMzMzMjJkMzQzODIwM2QzZTIwMzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJgTrQDANBgkq hkiG9w0BAQsFAAOCAQEAXMdpgPXnuqiL4TmJXusuo6SLFYJUCmtOZSqeMIOduC80 K96YIvPWfeFksXIghusuUcKSPr2tVi4Nyig/JA8vMQYKLE+m+1Q0bDcp4+gyEwVK MC3D9R4SYqKH51A0TUKe9L2nW/vCqXm4Y5sp70bTavyO8Hh9vvUORAsXTuT3k73E zb16RYFbRfBVi92dfhyAKhI+Kp7UyDTBNaztMgFsb7csncsWfJYlhuvp5nlT+CIk l3teV48rddxh+/cz/LRtpCVPmLolryMiuzsKILsJXggUVY6BzfJUYGrvalwejvhv tf5nJ7jtiaXm+FpFxuv1AyuufT/YuwtZ3hVCEQ+AAg== -----END CERTIFICATE-----Generated at Sun Aug 24 05:42:57 2025 by rpki-client