$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/323630343a613834303a3a2f33322d3438203d3e2036323333.roa File: 323630343a613834303a3a2f33322d3438203d3e2036323333.roa (raw, json) Hash identifier: Mf5gXsV5PRib7AVVwIkxxgFhj69g5VGRz8OqCc0DkIw= Subject key identifier: CE:E4:E4:46:69:D7:70:6F:1E:F4:81:AE:50:EF:1F:40:47:D1:50:69 Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 40C2E1BC5E21B731419E61B991BB7BD24D1AAEC0 Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/323630343a613834303a3a2f33322d3438203d3e2036323333.roa Signing time: Thu 12 Oct 2023 16:10:38 +0000 ROA not before: Thu 12 Oct 2023 16:05:38 +0000 ROA not after: Thu 10 Oct 2024 16:10:38 +0000 asID: 6233 IP address blocks: 2604:a840::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 May 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c2:e1:bc:5e:21:b7:31:41:9e:61:b9:91:bb:7b:d2:4d:1a:ae:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Oct 12 16:05:38 2023 GMT Not After : Oct 10 16:10:38 2024 GMT Subject: CN=CEE4E44669D7706F1EF481AE50EF1F4047D15069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d2:dc:fb:72:64:7a:ce:f5:a2:d9:14:f5:14: 48:54:d2:b0:e5:50:a3:82:47:59:76:53:d0:47:20: 13:0f:5e:95:d9:66:5a:8d:c2:b4:4d:0c:76:aa:44: fa:3f:82:b8:87:13:2c:a2:76:22:4e:ec:d2:ed:18: 71:d7:8a:dd:03:8e:94:7a:d7:13:a1:f7:af:0e:03: b2:d5:6d:fe:ac:03:60:3a:83:f5:f4:10:12:1c:d7: 15:61:9c:f8:02:1e:63:ab:6f:e1:18:2a:66:4d:7f: 5f:90:96:90:21:45:22:00:b6:8c:eb:b9:81:0d:96: f2:7e:71:66:a8:7b:64:22:16:df:be:6f:df:d9:cf: 79:63:8a:73:c4:43:eb:05:91:d9:3e:7b:f2:63:0c: 49:20:71:92:ee:0a:e5:86:f8:e5:f3:05:39:88:30: 5d:32:f0:78:5e:5a:91:1d:6e:09:0e:90:d9:cc:df: c6:ba:8d:3a:ff:37:37:8e:33:75:ba:57:d0:3d:8d: 77:7f:3a:95:c9:8c:ec:be:10:82:1a:b3:1a:2a:f0: 0a:3c:64:9c:b8:ce:52:3f:9e:87:de:07:84:a1:0c: 57:18:a0:fc:ed:33:bc:15:9e:3a:d7:04:7e:41:7a: f2:18:bd:3a:c5:64:1d:0a:10:83:5b:a6:b2:75:24: c4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E4:E4:46:69:D7:70:6F:1E:F4:81:AE:50:EF:1F:40:47:D1:50:69 X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/323630343a613834303a3a2f33322d3438203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:a840::/32 Signature Algorithm: sha256WithRSAEncryption 71:a2:ff:c6:8e:5c:9f:09:69:5d:03:b4:53:77:60:50:49:9b: 54:d9:d3:6a:1e:7f:e9:c4:2d:a7:a9:d6:d2:c1:d8:6e:61:8b: 9e:4d:66:b1:24:b3:7b:33:0e:b7:fe:ea:24:32:13:5c:17:77: e1:e9:85:25:ba:11:46:30:8c:22:1e:ef:6e:5a:a8:ff:ea:81: 87:a5:97:40:4d:b2:e8:a4:46:b1:c5:ad:7e:d4:40:79:80:7a: 44:e0:e4:51:d3:26:aa:72:c9:96:d2:00:62:68:27:42:8a:42: 39:08:9e:6b:04:86:e5:e8:13:93:d8:c1:a5:fb:8f:ba:59:90: 91:2a:48:30:4e:69:2c:95:fa:b7:5b:14:6e:0c:f6:80:a8:a5: 8f:80:f7:02:41:44:f5:ff:b6:d8:a3:0d:e1:75:4f:2b:de:11: 97:20:3f:56:55:02:5c:19:65:8f:09:22:56:be:6c:4e:e2:1c: ee:f7:5a:03:90:52:83:b7:d6:6a:e4:75:01:e6:f2:3d:f6:ec: 61:f9:43:da:69:70:be:b4:42:f5:94:27:17:de:a2:de:83:43: 06:5c:3b:ca:f1:0c:9a:a5:66:33:3d:4b:69:dd:97:f5:14:cc: 71:72:b4:7c:f8:be:bb:52:4f:8a:0e:94:5c:a0:9a:5e:40:01: 24:a6:e1:cf -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUQMLhvF4htzFBnmG5kbt70k0arsAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjMxMDEyMTYwNTM4WhcNMjQxMDEwMTYxMDM4 WjAzMTEwLwYDVQQDEyhDRUU0RTQ0NjY5RDc3MDZGMUVGNDgxQUU1MEVGMUY0MDQ3 RDE1MDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNLc+3Jkes71 otkU9RRIVNKw5VCjgkdZdlPQRyATD16V2WZajcK0TQx2qkT6P4K4hxMsonYiTuzS 7Rhx14rdA46UetcTofevDgOy1W3+rANgOoP19BASHNcVYZz4Ah5jq2/hGCpmTX9f kJaQIUUiALaM67mBDZbyfnFmqHtkIhbfvm/f2c95Y4pzxEPrBZHZPnvyYwxJIHGS 7grlhvjl8wU5iDBdMvB4XlqRHW4JDpDZzN/Guo06/zc3jjN1ulfQPY13fzqVyYzs vhCCGrMaKvAKPGScuM5SP56H3geEoQxXGKD87TO8FZ461wR+QXryGL06xWQdChCD W6aydSTEXwIDAQABo4ICXTCCAlkwHQYDVR0OBBYEFM7k5EZp13BvHvSBrlDvH0BH 0VBpMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzIzNjMwMzQzYTYxMzgzNDMwM2Ez YTJmMzMzMjJkMzQzODIwM2QzZTIwMzYzMjMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAmBKhAMA0G CSqGSIb3DQEBCwUAA4IBAQBxov/GjlyfCWldA7RTd2BQSZtU2dNqHn/pxC2nqdbS wdhuYYueTWaxJLN7Mw63/uokMhNcF3fh6YUluhFGMIwiHu9uWqj/6oGHpZdATbLo pEaxxa1+1EB5gHpE4ORR0yaqcsmW0gBiaCdCikI5CJ5rBIbl6BOT2MGl+4+6WZCR KkgwTmkslfq3WxRuDPaAqKWPgPcCQUT1/7bYow3hdU8r3hGXID9WVQJcGWWPCSJW vmxO4hzu91oDkFKDt9Zq5HUB5vI99uxh+UPaaXC+tEL1lCcX3qLeg0MGXDvK8Qya pWYzPUtp3Zf1FMxxcrR8+L67Uk+KDpRcoJpeQAEkpuHP -----END CERTIFICATE-----Generated at Sun May 19 21:36:29 2024 by rpki-client on console-fra.rpki-client.org