$ rpki-client -vvf rpki.roa.net/rrdp/xTom/44/323630353a336134303a353a3a2f34382d3438203d3e203437353533.roa File: 323630353a336134303a353a3a2f34382d3438203d3e203437353533.roa (raw, json) Hash identifier: CrLSbNYhWqShKQZS+rblnI/KGAZSrgP87MDYyLQTzkw= Subject key identifier: EA:5C:FC:24:CB:DE:96:51:03:8C:06:93:B9:4B:E3:41:01:7F:7D:BE Certificate issuer: /CN=73516995116535a22de5a23000d3e7814baad6490837f37731 Certificate serial: 5282208148609C6B99B591867A71591ED963B49E Authority key identifier: 0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/44/323630353a336134303a353a3a2f34382d3438203d3e203437353533.roa Signing time: Wed 02 Jul 2025 16:24:23 +0000 ROA not before: Wed 02 Jul 2025 16:19:23 +0000 ROA not after: Wed 01 Jul 2026 16:24:23 +0000 asID: 47553 IP address blocks: 2605:3a40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Jul 2025 19:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:82:20:81:48:60:9c:6b:99:b5:91:86:7a:71:59:1e:d9:63:b4:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73516995116535a22de5a23000d3e7814baad6490837f37731 Validity Not Before: Jul 2 16:19:23 2025 GMT Not After : Jul 1 16:24:23 2026 GMT Subject: CN=EA5CFC24CBDE9651038C0693B94BE341017F7DBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ae:7f:c3:1a:05:22:bd:ae:79:ec:ec:65:df: 55:08:09:cf:77:22:2d:05:9d:b7:b3:6b:e6:73:af: ad:2a:80:34:00:1b:2e:d4:76:05:03:64:f1:cf:71: 4c:91:e4:85:b4:37:e9:c5:29:47:6d:f4:79:cb:19: bd:d8:31:44:69:1e:64:ec:5e:80:dd:c8:1a:96:f8: cb:51:19:c4:e5:9b:59:58:75:bc:3e:c2:04:29:69: 9d:27:19:f7:15:47:9c:95:f8:9e:6a:c3:19:d6:80: c8:03:b8:f3:05:d6:91:8d:af:69:69:f8:2a:e2:30: 24:6e:fd:9e:ba:6f:93:be:2b:1c:a0:a2:f2:bd:da: 20:e1:86:5b:f8:c9:93:10:b2:d6:e5:cd:67:3c:ff: 9f:3d:10:2e:ba:3f:b9:b7:00:62:e6:99:e1:55:63: 76:4e:15:d8:6e:f6:3a:17:1b:a7:c2:04:dd:82:33: 57:2f:bf:1d:ee:f9:d0:4c:d0:21:25:44:ba:a8:11: 61:37:8d:1a:85:52:a8:84:f3:a6:55:81:0e:06:6e: 97:2d:c8:e8:d2:b2:19:17:0b:d3:70:34:71:8f:a6: 11:a0:0a:b4:8c:a1:44:12:aa:91:1e:50:c2:f7:29: e1:0d:95:2c:5c:1a:5c:fd:f1:01:f9:a3:af:fe:ea: 19:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:5C:FC:24:CB:DE:96:51:03:8C:06:93:B9:4B:E3:41:01:7F:7D:BE X509v3 Authority Key Identifier: keyid:0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/44/323630353a336134303a353a3a2f34382d3438203d3e203437353533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:3a40:5::/48 Signature Algorithm: sha256WithRSAEncryption 70:3a:91:ce:7a:97:d7:0d:7c:42:b7:bd:43:2d:25:cd:cc:c4: 15:a7:f2:53:a0:f5:60:c4:2a:f1:d3:49:15:5f:fb:fb:82:5d: 07:18:e3:fc:1b:fa:7e:51:b8:6a:84:2c:93:49:f1:78:7d:46: 5c:c4:2c:db:a9:b7:c9:48:6e:5d:2f:1d:8b:63:1c:25:a9:37: f5:90:c6:97:36:04:76:45:10:af:40:48:06:6d:a5:78:b5:3c: 2d:9e:8a:f6:2e:cc:ae:ce:45:1c:fe:01:c5:00:20:97:cc:dd: c8:72:44:f5:14:f9:b6:b4:53:a3:b5:c7:19:19:ad:34:64:54: a8:92:d9:32:e8:9f:62:19:27:08:94:15:ec:e0:10:f6:88:d9: c4:ad:21:3b:82:c1:ef:20:8c:6f:e7:ef:6e:16:71:a9:51:ee: 07:2f:cf:62:c9:6b:6e:a1:de:2b:54:f6:67:30:99:79:25:d1: 7b:79:1a:13:9e:d6:55:4b:32:e6:e3:9d:f4:ea:89:56:cf:cd: a6:4f:4f:7f:44:26:e5:50:8a:13:0b:a0:85:21:96:47:6b:bc: bc:66:c7:f7:1e:42:ef:01:df:f1:81:4a:a5:8c:4a:4a:02:b0: 93:1b:8f:0c:03:b2:bb:71:9a:08:78:41:c8:7e:9d:43:75:ea: 3c:a2:41:c8 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUUoIggUhgnGuZtZGGenFZHtljtJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzM1MTY5OTUxMTY1MzVhMjJkZTVhMjMwMDBkM2U3ODE0 YmFhZDY0OTA4MzdmMzc3MzEwHhcNMjUwNzAyMTYxOTIzWhcNMjYwNzAxMTYyNDIz WjAzMTEwLwYDVQQDEyhFQTVDRkMyNENCREU5NjUxMDM4QzA2OTNCOTRCRTM0MTAx N0Y3REJFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArq5/wxoFIr2u eezsZd9VCAnPdyItBZ23s2vmc6+tKoA0ABsu1HYFA2Txz3FMkeSFtDfpxSlHbfR5 yxm92DFEaR5k7F6A3cgalvjLURnE5ZtZWHW8PsIEKWmdJxn3FUeclfieasMZ1oDI A7jzBdaRja9pafgq4jAkbv2eum+TviscoKLyvdog4YZb+MmTELLW5c1nPP+fPRAu uj+5twBi5pnhVWN2ThXYbvY6FxunwgTdgjNXL78d7vnQTNAhJUS6qBFhN40ahVKo hPOmVYEOBm6XLcjo0rIZFwvTcDRxj6YRoAq0jKFEEqqRHlDC9ynhDZUsXBpc/fEB +aOv/uoZ6QIDAQABo4ICZTCCAmEwHQYDVR0OBBYEFOpc/CTL3pZRA4wGk7lL40EB f32+MB8GA1UdIwQYMBaAFA/TRf1UFRF5URNgm6SvX/9gBBr8MA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDQvMEZEMzQ1RkQ1NDE1MTE3OTUxMTM2MDlCQTRBRjVGRkY2MDA0MUFG Qy5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzQ2ZTAxMTEtZmFmYi00MzBmLWI3 NzgtZDIwNGNmY2Q5OWE4L2ExOGYxZGRiLTJkNmUtNDkxYy1iZjY1LWYzMmY5OGRi YzU2OS83MzUxNjk5NTExNjUzNWEyMmRlNWEyMzAwMGQzZTc4MTRiYWFkNjQ5MDgz N2YzNzczMS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDQvMzIzNjMwMzUzYTMzNjEzNDMwM2Ez NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzczNTM1MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAm BTpAAAUwDQYJKoZIhvcNAQELBQADggEBAHA6kc56l9cNfEK3vUMtJc3MxBWn8lOg 9WDEKvHTSRVf+/uCXQcY4/wb+n5RuGqELJNJ8Xh9RlzELNupt8lIbl0vHYtjHCWp N/WQxpc2BHZFEK9ASAZtpXi1PC2eivYuzK7ORRz+AcUAIJfM3chyRPUU+ba0U6O1 xxkZrTRkVKiS2TLon2IZJwiUFezgEPaI2cStITuCwe8gjG/n724WcalR7gcvz2LJ a26h3itU9mcwmXkl0Xt5GhOe1lVLMubjnfTqiVbPzaZPT39EJuVQihMLoIUhlkdr vLxmx/ceQu8B3/GBSqWMSkoCsJMbjwwDsrtxmgh4Qch+nUN16jyiQcg= -----END CERTIFICATE-----Generated at Sat Jul 26 20:06:37 2025 by rpki-client