$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32312d3234203d3e2036323333.roa File: 3134322e3134372e38382e302f32312d3234203d3e2036323333.roa (raw, json) Hash identifier: baOkVQ4Fu39sqOE4WkwENI6hAHyphw/VMqYBY32mIK0= Subject key identifier: 6A:BB:11:34:58:03:5A:9C:C7:0C:CF:3C:66:5B:03:4E:51:E3:D1:C3 Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 3938D42BD772B21D1D5C0F1746377C944F694048 Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32312d3234203d3e2036323333.roa Signing time: Thu 12 Oct 2023 16:10:39 +0000 ROA not before: Thu 12 Oct 2023 16:05:39 +0000 ROA not after: Thu 10 Oct 2024 16:10:39 +0000 asID: 6233 IP address blocks: 142.147.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 02 Jun 2024 17:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:38:d4:2b:d7:72:b2:1d:1d:5c:0f:17:46:37:7c:94:4f:69:40:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Oct 12 16:05:39 2023 GMT Not After : Oct 10 16:10:39 2024 GMT Subject: CN=6ABB113458035A9CC70CCF3C665B034E51E3D1C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b9:d0:ac:83:d3:49:a2:0c:41:07:f6:9e:f1: 4b:aa:39:63:d2:30:e6:35:8d:05:7f:f1:56:77:f0: 96:ca:fb:f2:ee:25:3d:80:d1:7b:28:cb:ce:1a:b1: ee:38:b8:af:cb:82:39:d2:43:19:4e:d7:a6:92:ac: 9a:f2:98:00:dd:85:5e:f3:06:6f:5d:71:e9:02:13: e3:8d:ea:e3:9f:7f:44:99:70:46:18:63:54:08:29: 5e:b5:eb:e2:e4:4e:f5:6a:bf:6b:24:62:42:56:1e: 3e:fa:8e:b5:d7:52:23:8c:45:39:68:b9:76:35:66: 92:ce:05:bd:87:9c:19:df:bc:7d:2f:45:e1:d6:2a: a2:89:e1:a0:b8:67:25:b0:59:15:21:c4:2d:87:58: b4:e3:52:9f:77:df:e2:0e:6e:d8:a6:6b:8d:cb:c8: e2:1c:28:2b:92:25:84:ef:9a:f1:54:c2:aa:59:a4: 71:92:9b:ed:0b:24:ca:0b:97:c1:d5:52:b3:f0:a4: e0:2b:bf:60:fa:a4:24:70:a1:9d:9e:2c:0f:41:5b: 5a:16:c7:a1:03:dc:57:bc:bb:2f:7e:59:ea:07:66: ba:02:ba:a9:d7:da:50:a4:48:46:4a:43:9b:0d:fc: 18:f8:4b:71:66:eb:ae:e8:ba:cd:4a:14:61:d6:c3: 24:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:BB:11:34:58:03:5A:9C:C7:0C:CF:3C:66:5B:03:4E:51:E3:D1:C3 X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3134322e3134372e38382e302f32312d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.147.88.0/21 Signature Algorithm: sha256WithRSAEncryption a4:58:30:50:d0:6e:e9:9a:cb:ef:a3:a8:cf:af:86:03:c2:2a: 59:d3:60:c7:60:c5:c7:ab:8d:72:16:28:7b:bb:14:d6:cb:5b: 52:76:81:b7:f0:b0:78:de:03:10:e5:58:71:69:1c:73:28:21: c5:af:fa:8b:58:cf:5a:38:d9:3a:01:ec:f3:2a:5f:32:ad:30: 36:83:c6:7a:62:bf:5d:72:05:48:78:83:be:ea:a1:b5:97:78: f4:45:84:ea:f8:67:db:d6:59:00:cb:3a:2e:94:37:72:fe:6f: ed:a2:f1:17:54:0f:04:9c:14:1f:e8:20:34:3e:69:79:62:8f: 83:e0:22:56:86:81:ae:36:be:b4:eb:15:57:a8:84:3f:85:7d: 8b:20:0b:a5:a4:71:22:30:24:d9:70:65:4a:7f:7e:81:25:8a: 1b:6f:2d:99:d1:90:12:9e:fd:e0:3d:39:3d:f0:a2:31:7c:19: 0c:27:59:23:32:e2:02:11:91:18:f2:36:8c:8b:bc:65:a4:47: a8:39:f9:0f:1b:27:5f:20:c7:4c:f7:8f:ad:2f:29:2d:77:3d: 61:50:13:1d:4a:60:f0:7a:8b:0f:13:af:71:b9:11:75:b7:74: 86:ec:82:c1:88:14:59:67:cf:86:10:fd:3e:70:84:d4:bb:5a: 17:45:a4:ef -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUOTjUK9dysh0dXA8XRjd8lE9pQEgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjMxMDEyMTYwNTM5WhcNMjQxMDEwMTYxMDM5 WjAzMTEwLwYDVQQDEyg2QUJCMTEzNDU4MDM1QTlDQzcwQ0NGM0M2NjVCMDM0RTUx RTNEMUMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnbnQrIPTSaIM QQf2nvFLqjlj0jDmNY0Ff/FWd/CWyvvy7iU9gNF7KMvOGrHuOLivy4I50kMZTtem kqya8pgA3YVe8wZvXXHpAhPjjerjn39EmXBGGGNUCCletevi5E71ar9rJGJCVh4+ +o6111IjjEU5aLl2NWaSzgW9h5wZ37x9L0Xh1iqiieGguGclsFkVIcQth1i041Kf d9/iDm7YpmuNy8jiHCgrkiWE75rxVMKqWaRxkpvtCyTKC5fB1VKz8KTgK79g+qQk cKGdniwPQVtaFsehA9xXvLsvflnqB2a6Arqp19pQpEhGSkObDfwY+EtxZuuu6LrN ShRh1sMkgwIDAQABo4ICXjCCAlowHQYDVR0OBBYEFGq7ETRYA1qcxwzPPGZbA05R 49HDMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzEzNDMyMmUzMTM0MzcyZTM4Mzgy ZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA46TWDAN BgkqhkiG9w0BAQsFAAOCAQEApFgwUNBu6ZrL76Ooz6+GA8IqWdNgx2DFx6uNchYo e7sU1stbUnaBt/CweN4DEOVYcWkccyghxa/6i1jPWjjZOgHs8ypfMq0wNoPGemK/ XXIFSHiDvuqhtZd49EWE6vhn29ZZAMs6LpQ3cv5v7aLxF1QPBJwUH+ggND5peWKP g+AiVoaBrja+tOsVV6iEP4V9iyALpaRxIjAk2XBlSn9+gSWKG28tmdGQEp794D05 PfCiMXwZDCdZIzLiAhGRGPI2jIu8ZaRHqDn5DxsnXyDHTPePrS8pLXc9YVATHUpg 8HqLDxOvcbkRdbd0huyCwYgUWWfPhhD9PnCE1LtaF0Wk7w== -----END CERTIFICATE-----Generated at Sat Jun 1 17:23:27 2024 by rpki-client on console-fra.rpki-client.org