$ rpki-client -vvf rpki.roa.net/rrdp/xTom/53/323630343a653463303a3131303a3a2f34342d3438203d3e203230343733.roa File: 323630343a653463303a3131303a3a2f34342d3438203d3e203230343733.roa (raw, json) Hash identifier: TCcn0Y+BfTRByqvYafvKOIuV1D0e6Ui8goXdVFQHQp0= Subject key identifier: 35:31:81:FD:F1:7D:49:F6:4E:A4:0E:4B:B7:8C:DE:D8:9A:44:3B:9B Certificate issuer: /CN=81dade47ef565a67c33494e667d03d4da7cff1739b027c640b Certificate serial: 357493D99E25E514896A97F39E440C7C1722BFD1 Authority key identifier: 74:E3:B9:E1:6E:92:C5:1A:89:79:AD:B5:A7:31:DD:E2:D5:EA:E9:6C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/53/323630343a653463303a3131303a3a2f34342d3438203d3e203230343733.roa Signing time: Thu 12 Mar 2026 11:56:13 +0000 ROA not before: Thu 12 Mar 2026 11:51:13 +0000 ROA not after: Thu 11 Mar 2027 11:56:13 +0000 asID: 20473 IP address blocks: 2604:e4c0:110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.crl rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/b5ae183e-a402-4c1a-b464-670472e82b72.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/b5ae183e-a402-4c1a-b464-670472e82b72.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:74:93:d9:9e:25:e5:14:89:6a:97:f3:9e:44:0c:7c:17:22:bf:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81dade47ef565a67c33494e667d03d4da7cff1739b027c640b Validity Not Before: Mar 12 11:51:13 2026 GMT Not After : Mar 11 11:56:13 2027 GMT Subject: CN=353181FDF17D49F64EA40E4BB78CDED89A443B9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b1:80:66:b8:be:28:35:85:46:a5:c0:89:69: 16:8c:5c:62:e0:b2:06:ae:a7:c8:a3:ef:94:a9:77: dd:28:e1:6b:b0:df:95:83:9a:76:20:f5:a4:e3:73: 94:61:7b:0c:68:1b:a3:de:bd:73:e7:55:6e:49:41: 71:c7:86:67:84:df:c2:d4:a4:00:3f:f1:35:96:49: 87:02:a2:c2:1e:61:a6:db:14:bd:47:e6:a5:0e:5b: a5:9d:4a:1a:0e:30:1a:59:80:41:2a:b7:ae:5a:65: 36:e5:cc:c4:f9:ee:90:84:42:f4:0e:7f:d5:45:67: e3:c0:1f:2a:57:e7:89:e6:91:4d:0f:9c:dd:ba:87: 85:a2:95:6a:b7:4d:87:da:f4:29:8c:13:66:6e:a5: 06:1d:d9:28:ad:70:fe:4e:ba:f3:3f:dd:fb:b8:57: 09:4b:7d:3b:19:67:81:23:54:0f:11:31:44:b0:06: 4e:3d:da:a8:92:a0:89:ab:c9:ac:dd:63:43:25:58: 81:5c:62:0a:40:a9:0f:f9:bb:a3:df:af:3a:7d:4a: 76:44:d8:b9:c9:c8:4a:05:a2:75:07:08:a7:ec:44: 7d:23:ce:56:fa:8a:c6:d7:64:7c:99:79:3f:94:8a: 26:69:7b:68:66:ed:3c:f2:2c:c5:30:ee:61:1d:e8: 3a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:31:81:FD:F1:7D:49:F6:4E:A4:0E:4B:B7:8C:DE:D8:9A:44:3B:9B X509v3 Authority Key Identifier: keyid:74:E3:B9:E1:6E:92:C5:1A:89:79:AD:B5:A7:31:DD:E2:D5:EA:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/53/323630343a653463303a3131303a3a2f34342d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:e4c0:110::/44 Signature Algorithm: sha256WithRSAEncryption 70:34:0c:f3:70:2b:29:61:1a:41:54:ae:2b:ed:be:4a:2c:fb: 41:3e:98:7e:01:53:80:e3:eb:44:ac:07:14:7e:f8:2b:7b:e7: fe:c8:63:82:6e:10:59:2a:c0:e2:73:1e:fe:4b:39:f4:56:61: 09:62:44:fe:d9:c3:4b:e1:36:0e:48:50:0f:d0:66:42:92:f9: 8d:0c:f6:1c:9d:69:f6:71:7f:41:e2:60:7e:e1:cd:0b:38:07: 78:b8:ac:f2:b6:42:48:22:a4:05:d8:f7:92:48:b2:b5:78:cb: 82:e5:37:e5:9b:ba:d4:22:88:37:be:06:96:86:4c:7e:94:65: 94:70:e6:9d:0c:2d:45:e9:63:6b:cb:43:46:45:07:13:aa:d2: 65:18:6a:d9:b1:b6:a6:36:5c:21:3a:cc:6b:f4:c1:24:54:cb: 08:34:b9:ec:71:88:05:04:11:5f:ba:74:97:a0:8e:29:32:76: 3a:ee:bc:c2:45:b5:81:16:c4:e7:cc:50:43:69:01:8f:ff:80: 0d:d5:aa:1c:a7:8d:2d:e3:30:90:81:35:80:11:50:5f:42:f2: d9:43:9b:3c:4e:75:41:47:5d:df:b0:86:67:fb:b2:de:72:cc: 1a:c9:58:bb:00:87:a7:51:7b:7c:da:d9:c9:13:cc:da:b0:90: f4:64:7e:a1 -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIUNXST2Z4l5RSJapfznkQMfBciv9EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODFkYWRlNDdlZjU2NWE2N2MzMzQ5NGU2NjdkMDNkNGRh N2NmZjE3MzliMDI3YzY0MGIwHhcNMjYwMzEyMTE1MTEzWhcNMjcwMzExMTE1NjEz WjAzMTEwLwYDVQQDEygzNTMxODFGREYxN0Q0OUY2NEVBNDBFNEJCNzhDREVEODlB NDQzQjlCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLGAZri+KDWF RqXAiWkWjFxi4LIGrqfIo++UqXfdKOFrsN+Vg5p2IPWk43OUYXsMaBuj3r1z51Vu SUFxx4ZnhN/C1KQAP/E1lkmHAqLCHmGm2xS9R+alDlulnUoaDjAaWYBBKreuWmU2 5czE+e6QhEL0Dn/VRWfjwB8qV+eJ5pFND5zduoeFopVqt02H2vQpjBNmbqUGHdko rXD+TrrzP937uFcJS307GWeBI1QPETFEsAZOPdqokqCJq8ms3WNDJViBXGIKQKkP +buj3686fUp2RNi5ychKBaJ1Bwin7ER9I85W+orG12R8mXk/lIomaXtoZu088izF MO5hHeg6KwIDAQABo4ICaTCCAmUwHQYDVR0OBBYEFDUxgf3xfUn2TqQOS7eM3tia RDubMB8GA1UdIwQYMBaAFHTjueFuksUaiXmttacx3eLV6ulsMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTMvNzRFM0I5RTE2RTkyQzUxQTg5NzlBREI1QTczMURERTJENUVBRTk2 Qy5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjL2I1YWUxODNlLWE0MDItNGMxYS1iNDY0LTY3MDQ3MmU4 MmI3Mi84MWRhZGU0N2VmNTY1YTY3YzMzNDk0ZTY2N2QwM2Q0ZGE3Y2ZmMTczOWIw MjdjNjQwYi5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTMvMzIzNjMwMzQzYTY1MzQ2MzMwM2Ez MTMxMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMjMwMzQzNzMzLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJgTkwAEQMA0GCSqGSIb3DQEBCwUAA4IBAQBwNAzzcCspYRpBVK4r7b5KLPtB Pph+AVOA4+tErAcUfvgre+f+yGOCbhBZKsDicx7+Szn0VmEJYkT+2cNL4TYOSFAP 0GZCkvmNDPYcnWn2cX9B4mB+4c0LOAd4uKzytkJIIqQF2PeSSLK1eMuC5Tflm7rU Iog3vgaWhkx+lGWUcOadDC1F6WNry0NGRQcTqtJlGGrZsbamNlwhOsxr9MEkVMsI NLnscYgFBBFfunSXoI4pMnY67rzCRbWBFsTnzFBDaQGP/4AN1aocp40t4zCQgTWA EVBfQvLZQ5s8TnVBR13fsIZn+7LecswayVi7AIenUXt82tnJE8zasJD0ZH6h -----END CERTIFICATE-----Generated at Thu Mar 26 09:25:43 2026 by rpki-client