$ rpki-client -vvf rpki.roa.net/rrdp/xTom/53/323630343a653463303a3132303a3a2f34342d3438203d3e203230343733.roa File: 323630343a653463303a3132303a3a2f34342d3438203d3e203230343733.roa (raw, json) Hash identifier: obM3yww/OYkdSvzLGv70CoTv61kkZZmjZhlrfmSg8rg= Subject key identifier: 6A:B2:74:21:A4:3D:73:55:97:04:38:6A:81:34:FD:74:8F:43:AD:38 Certificate issuer: /CN=81dade47ef565a67c33494e667d03d4da7cff1739b027c640b Certificate serial: 681B1440251F8ACA5E4F3BDE70F7D02604E5FA26 Authority key identifier: 74:E3:B9:E1:6E:92:C5:1A:89:79:AD:B5:A7:31:DD:E2:D5:EA:E9:6C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/53/323630343a653463303a3132303a3a2f34342d3438203d3e203230343733.roa Signing time: Thu 12 Mar 2026 11:56:13 +0000 ROA not before: Thu 12 Mar 2026 11:51:13 +0000 ROA not after: Thu 11 Mar 2027 11:56:13 +0000 asID: 20473 IP address blocks: 2604:e4c0:120::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.crl rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/b5ae183e-a402-4c1a-b464-670472e82b72.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/b5ae183e-a402-4c1a-b464-670472e82b72.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:1b:14:40:25:1f:8a:ca:5e:4f:3b:de:70:f7:d0:26:04:e5:fa:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81dade47ef565a67c33494e667d03d4da7cff1739b027c640b Validity Not Before: Mar 12 11:51:13 2026 GMT Not After : Mar 11 11:56:13 2027 GMT Subject: CN=6AB27421A43D73559704386A8134FD748F43AD38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:93:1b:d3:31:60:e5:9b:48:4e:18:92:3e:71: 8a:d7:87:96:0c:56:49:4b:a2:a3:76:85:aa:b0:99: 9f:34:80:4b:33:b3:74:ff:3d:9d:26:ce:a2:48:68: 59:02:4f:6f:2d:24:52:40:18:2f:86:33:63:74:c9: 12:5f:06:76:89:c1:21:da:4d:93:89:74:4a:44:ef: 5e:38:a1:de:ff:74:16:ff:42:65:58:03:94:c5:9f: f3:e3:43:35:10:98:50:70:76:29:89:6d:b1:d8:ef: d0:d1:8c:a2:9e:e0:6f:cc:95:4a:18:eb:cb:1e:5e: d7:7c:a2:46:a7:43:0e:73:11:43:50:b8:37:4f:99: 3e:49:2c:b4:11:97:d1:b2:6f:61:7a:22:c1:c1:8f: c8:f4:78:a3:51:ce:41:fc:3c:ad:e9:bb:8d:8e:d6: dd:43:9b:bf:19:95:ef:cf:1f:71:ff:5e:8e:5e:fb: fc:bc:c6:83:d2:e4:29:42:f8:e2:7b:24:1d:8b:24: 73:ab:cc:5d:be:73:a3:e6:6e:2d:06:99:6c:4d:eb: 41:32:da:8d:d5:a9:28:a5:6f:b7:76:a1:5b:30:6a: a3:f8:ad:40:5b:92:bc:49:4a:d9:0c:87:7c:39:2e: a5:6b:8e:c5:b0:24:6d:b9:2f:66:2a:8b:dc:79:06: cd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B2:74:21:A4:3D:73:55:97:04:38:6A:81:34:FD:74:8F:43:AD:38 X509v3 Authority Key Identifier: keyid:74:E3:B9:E1:6E:92:C5:1A:89:79:AD:B5:A7:31:DD:E2:D5:EA:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/53/323630343a653463303a3132303a3a2f34342d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:e4c0:120::/44 Signature Algorithm: sha256WithRSAEncryption 28:c9:f4:b4:4e:1d:24:37:cd:3a:6a:c9:9a:23:0e:25:2f:cc: 25:6e:7f:d1:85:40:2f:a3:bb:2c:45:8c:63:c0:3c:44:b2:c6: aa:ed:17:ad:c6:b7:d4:da:a5:8b:ae:30:be:33:bf:11:43:3e: e2:6b:c2:25:0b:e0:34:f3:e0:a5:04:0f:4e:37:4d:9a:71:d9: 03:35:a0:f5:5d:ce:82:fb:6f:90:01:ee:10:d5:88:a6:7b:e6: 6e:50:c4:4a:24:41:b9:a7:82:f7:0b:ae:6f:b1:52:e5:12:e6: 0e:18:68:3f:c8:20:79:e0:7e:00:1c:7a:2b:b9:52:96:f8:b3: 6b:be:a6:9b:c9:f6:4e:2b:4c:8b:0b:42:52:52:b4:0d:13:a5: 09:12:5b:42:4c:2d:68:e7:07:5e:15:1c:a9:9b:dd:ed:d4:80: 52:c6:2e:c2:30:9e:4b:23:44:10:2d:52:30:17:42:6b:d9:9b: 7f:cb:43:2c:b6:47:2c:ba:5c:a8:76:aa:f6:36:75:32:d8:73: 7c:bf:12:79:61:03:cd:a6:9c:f7:18:7a:2e:57:de:d3:80:1e: 2d:6c:df:df:cc:6e:34:36:db:ee:ac:57:a7:65:b6:1f:f4:0a: eb:c0:fb:79:7f:d1:e9:10:00:ea:5d:70:44:88:54:26:9c:47: 58:ef:7c:af -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIUaBsUQCUfispeTzvecPfQJgTl+iYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODFkYWRlNDdlZjU2NWE2N2MzMzQ5NGU2NjdkMDNkNGRh N2NmZjE3MzliMDI3YzY0MGIwHhcNMjYwMzEyMTE1MTEzWhcNMjcwMzExMTE1NjEz WjAzMTEwLwYDVQQDEyg2QUIyNzQyMUE0M0Q3MzU1OTcwNDM4NkE4MTM0RkQ3NDhG NDNBRDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJMb0zFg5ZtI ThiSPnGK14eWDFZJS6KjdoWqsJmfNIBLM7N0/z2dJs6iSGhZAk9vLSRSQBgvhjNj dMkSXwZ2icEh2k2TiXRKRO9eOKHe/3QW/0JlWAOUxZ/z40M1EJhQcHYpiW2x2O/Q 0YyinuBvzJVKGOvLHl7XfKJGp0MOcxFDULg3T5k+SSy0EZfRsm9heiLBwY/I9Hij Uc5B/Dyt6buNjtbdQ5u/GZXvzx9x/16OXvv8vMaD0uQpQvjieyQdiyRzq8xdvnOj 5m4tBplsTetBMtqN1akopW+3dqFbMGqj+K1AW5K8SUrZDId8OS6la47FsCRtuS9m KovceQbN/wIDAQABo4ICaTCCAmUwHQYDVR0OBBYEFGqydCGkPXNVlwQ4aoE0/XSP Q604MB8GA1UdIwQYMBaAFHTjueFuksUaiXmttacx3eLV6ulsMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTMvNzRFM0I5RTE2RTkyQzUxQTg5NzlBREI1QTczMURERTJENUVBRTk2 Qy5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjL2I1YWUxODNlLWE0MDItNGMxYS1iNDY0LTY3MDQ3MmU4 MmI3Mi84MWRhZGU0N2VmNTY1YTY3YzMzNDk0ZTY2N2QwM2Q0ZGE3Y2ZmMTczOWIw MjdjNjQwYi5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTMvMzIzNjMwMzQzYTY1MzQ2MzMwM2Ez MTMyMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMjMwMzQzNzMzLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJgTkwAEgMA0GCSqGSIb3DQEBCwUAA4IBAQAoyfS0Th0kN806asmaIw4lL8wl bn/RhUAvo7ssRYxjwDxEssaq7RetxrfU2qWLrjC+M78RQz7ia8IlC+A08+ClBA9O N02acdkDNaD1Xc6C+2+QAe4Q1Yime+ZuUMRKJEG5p4L3C65vsVLlEuYOGGg/yCB5 4H4AHHoruVKW+LNrvqabyfZOK0yLC0JSUrQNE6UJEltCTC1o5wdeFRypm93t1IBS xi7CMJ5LI0QQLVIwF0Jr2Zt/y0Mstkcsulyodqr2NnUy2HN8vxJ5YQPNppz3GHou V97TgB4tbN/fzG40NtvurFenZbYf9ArrwPt5f9HpEADqXXBEiFQmnEdY73yv -----END CERTIFICATE-----Generated at Thu Mar 26 09:25:42 2026 by rpki-client