$ rpki-client -vvf rpki.roa.net/rrdp/xTom/44/323630353a336134303a343a3a2f34382d3438203d3e20323031313036.roa File: 323630353a336134303a343a3a2f34382d3438203d3e20323031313036.roa (raw, json) Hash identifier: QJiJAvZ9RjO6+SVqAcPaHB0JMXrWegoOev/9M4nuhM8= Subject key identifier: A5:60:DE:CC:1D:68:8A:45:AD:AE:C7:BA:82:4A:79:C0:2E:8C:2B:7E Certificate issuer: /CN=73516995116535a22de5a23000d3e7814baad6490837f37731 Certificate serial: 7ECB674044675621967D895EBF3C8302E4E59EF4 Authority key identifier: 0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/44/323630353a336134303a343a3a2f34382d3438203d3e20323031313036.roa Signing time: Wed 02 Jul 2025 16:24:23 +0000 ROA not before: Wed 02 Jul 2025 16:19:23 +0000 ROA not after: Wed 01 Jul 2026 16:24:23 +0000 asID: 201106 IP address blocks: 2605:3a40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 25 Jul 2025 12:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:cb:67:40:44:67:56:21:96:7d:89:5e:bf:3c:83:02:e4:e5:9e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73516995116535a22de5a23000d3e7814baad6490837f37731 Validity Not Before: Jul 2 16:19:23 2025 GMT Not After : Jul 1 16:24:23 2026 GMT Subject: CN=A560DECC1D688A45ADAEC7BA824A79C02E8C2B7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ba:1a:0c:c9:f0:7a:55:fa:36:42:0e:28:78: 2c:7b:88:03:30:69:c8:ed:47:0d:b3:be:42:8f:30: e3:9a:0e:66:b7:23:e3:ae:e6:43:3d:94:30:21:e4: 5d:fe:f7:eb:31:1b:07:60:34:0d:cf:cd:71:30:a0: 47:c1:4c:a5:1b:be:c5:25:0f:a3:fd:e3:e8:e2:1f: 23:f3:d3:07:de:30:21:a8:08:32:b0:cd:12:01:ec: 84:73:b6:34:d3:cd:6f:a6:32:75:94:f8:53:b7:a0: ff:b1:fb:6e:3f:49:68:e1:0d:d2:4c:ee:2a:aa:08: 7b:5a:33:f3:b9:17:be:0c:4f:1d:a9:92:9c:d3:ed: 41:15:91:5e:97:23:90:82:8b:12:a3:62:e7:18:10: 73:1e:4b:19:b7:c4:73:56:e5:cc:7f:73:90:e2:90: ba:af:56:7c:22:3f:07:d4:53:e2:71:19:47:f1:dd: bb:b1:d9:26:68:79:be:13:93:9f:7d:ea:76:5c:ef: 67:a5:b9:1e:ba:00:63:49:55:8e:31:92:09:fb:b8: 93:5a:b6:70:32:0d:b6:32:9f:2a:4b:30:ee:4c:64: d2:c5:2d:1a:74:31:a9:3f:68:7f:40:ae:ae:ec:6f: 17:c1:6d:89:d3:b4:4c:4b:02:cc:a1:09:11:95:27: a6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:60:DE:CC:1D:68:8A:45:AD:AE:C7:BA:82:4A:79:C0:2E:8C:2B:7E X509v3 Authority Key Identifier: keyid:0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/44/323630353a336134303a343a3a2f34382d3438203d3e20323031313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:3a40:4::/48 Signature Algorithm: sha256WithRSAEncryption 5e:c8:f7:8b:d9:ce:b1:2c:47:ab:51:7e:d8:d0:c5:8d:d4:88: b6:53:6f:8c:23:1a:c4:69:18:33:2b:3b:2e:b0:bf:51:c1:f2: 8d:59:fa:89:c5:9a:ab:79:09:05:57:0b:30:80:ec:cd:a4:35: 94:d2:25:b8:98:a3:26:65:12:df:1b:a5:30:d6:a9:a7:fe:01: e2:f6:69:23:ef:c4:0a:99:6d:ab:6a:fc:b1:85:12:6f:cd:7d: dc:ae:7d:46:46:d4:22:2d:2f:cb:b1:37:57:45:70:b3:f1:5c: df:c2:73:ac:f3:c4:84:19:45:29:75:71:f8:30:42:49:92:f6: 8d:f5:63:9b:b9:94:a5:d9:a9:d0:e8:25:09:d7:0a:66:5a:91: 23:a8:75:16:03:b1:2c:a2:73:f1:8b:0c:d2:4e:15:7c:0a:6b: 1b:d2:39:92:bf:5e:c8:d7:7c:dd:6a:19:bc:0c:13:4b:28:95: 1c:d6:ac:b0:42:35:29:7b:6c:2c:cd:d9:0f:ca:50:e6:73:6a: ce:0e:1b:bd:6b:52:bb:5d:d7:66:92:b0:2f:2c:1e:a2:41:50: cd:5e:a6:32:25:98:06:cb:fc:09:f5:25:5c:33:54:a7:7c:cc: 06:64:bb:48:8b:64:d2:ef:66:e3:55:c9:45:fe:31:56:f5:cc: 73:86:6f:59 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIUfstnQERnViGWfYlevzyDAuTlnvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzM1MTY5OTUxMTY1MzVhMjJkZTVhMjMwMDBkM2U3ODE0 YmFhZDY0OTA4MzdmMzc3MzEwHhcNMjUwNzAyMTYxOTIzWhcNMjYwNzAxMTYyNDIz WjAzMTEwLwYDVQQDEyhBNTYwREVDQzFENjg4QTQ1QURBRUM3QkE4MjRBNzlDMDJF OEMyQjdFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuroaDMnwelX6 NkIOKHgse4gDMGnI7UcNs75CjzDjmg5mtyPjruZDPZQwIeRd/vfrMRsHYDQNz81x MKBHwUylG77FJQ+j/ePo4h8j89MH3jAhqAgysM0SAeyEc7Y0081vpjJ1lPhTt6D/ sftuP0lo4Q3STO4qqgh7WjPzuRe+DE8dqZKc0+1BFZFelyOQgosSo2LnGBBzHksZ t8RzVuXMf3OQ4pC6r1Z8Ij8H1FPicRlH8d27sdkmaHm+E5Offep2XO9npbkeugBj SVWOMZIJ+7iTWrZwMg22Mp8qSzDuTGTSxS0adDGpP2h/QK6u7G8XwW2J07RMSwLM oQkRlSembwIDAQABo4ICZzCCAmMwHQYDVR0OBBYEFKVg3swdaIpFra7HuoJKecAu jCt+MB8GA1UdIwQYMBaAFA/TRf1UFRF5URNgm6SvX/9gBBr8MA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDQvMEZEMzQ1RkQ1NDE1MTE3OTUxMTM2MDlCQTRBRjVGRkY2MDA0MUFG Qy5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzQ2ZTAxMTEtZmFmYi00MzBmLWI3 NzgtZDIwNGNmY2Q5OWE4L2ExOGYxZGRiLTJkNmUtNDkxYy1iZjY1LWYzMmY5OGRi YzU2OS83MzUxNjk5NTExNjUzNWEyMmRlNWEyMzAwMGQzZTc4MTRiYWFkNjQ5MDgz N2YzNzczMS5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDQvMzIzNjMwMzUzYTMzNjEzNDMwM2Ez NDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMTMxMzAzNi5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH ACYFOkAABDANBgkqhkiG9w0BAQsFAAOCAQEAXsj3i9nOsSxHq1F+2NDFjdSItlNv jCMaxGkYMys7LrC/UcHyjVn6icWaq3kJBVcLMIDszaQ1lNIluJijJmUS3xulMNap p/4B4vZpI+/ECpltq2r8sYUSb8193K59RkbUIi0vy7E3V0Vws/Fc38JzrPPEhBlF KXVx+DBCSZL2jfVjm7mUpdmp0OglCdcKZlqRI6h1FgOxLKJz8YsM0k4VfAprG9I5 kr9eyNd83WoZvAwTSyiVHNassEI1KXtsLM3ZD8pQ5nNqzg4bvWtSu13XZpKwLywe okFQzV6mMiWYBsv8CfUlXDNUp3zMBmS7SItk0u9m41XJRf4xVvXMc4ZvWQ== -----END CERTIFICATE-----Generated at Fri Jul 25 01:30:09 2025 by rpki-client