$ rpki-client -vvf rpki.roa.net/rrdp/xTom/45/32332e3134322e3232342e302f32342d3234203d3e2036323333.roa File: 32332e3134322e3232342e302f32342d3234203d3e2036323333.roa (raw, json) Hash identifier: Vxc8O1weZZDDEGRU8DCWJEYXZTx+VbN42K5DCc2lwok= Subject key identifier: DF:64:FA:00:98:D0:3B:09:64:BF:0A:29:63:24:2A:B5:3E:0A:2F:05 Certificate issuer: /CN=4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4 Certificate serial: 088C12292FDED04909912F481A471C9BDCD05540 Authority key identifier: 89:38:CD:F8:AE:C6:24:08:9C:1D:95:31:0F:AC:37:47:4C:0E:89:06 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/45/32332e3134322e3232342e302f32342d3234203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:28 +0000 ROA not before: Sat 16 Aug 2025 01:43:28 +0000 ROA not after: Sat 15 Aug 2026 01:48:28 +0000 asID: 6233 IP address blocks: 23.142.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.crl rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/42c9e997-747a-4107-89fb-7cab8903a586.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/42c9e997-747a-4107-89fb-7cab8903a586.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 19:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:8c:12:29:2f:de:d0:49:09:91:2f:48:1a:47:1c:9b:dc:d0:55:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4 Validity Not Before: Aug 16 01:43:28 2025 GMT Not After : Aug 15 01:48:28 2026 GMT Subject: CN=DF64FA0098D03B0964BF0A2963242AB53E0A2F05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:89:36:34:d8:2c:8f:75:56:45:06:a1:97:01: a5:bc:ae:26:2b:bc:31:29:8b:23:ca:32:4f:55:37: d2:16:19:64:31:cc:9c:b2:1b:8d:d6:a8:75:71:08: 7e:5a:09:45:de:63:3d:18:0c:90:ac:09:55:d8:4f: 3c:1d:c9:e4:7e:4e:f8:a8:18:c5:2f:a3:67:7f:c0: c0:a9:d0:fc:81:7e:98:83:5c:da:43:5c:dd:10:12: ad:f6:03:11:c1:f8:da:40:21:23:4b:83:92:51:94: 62:12:46:f9:18:c8:da:c0:14:1b:68:27:fd:f8:3f: 0f:38:5f:2b:50:12:ab:be:43:23:7e:01:d1:20:f9: 63:40:8b:4e:ba:91:8c:e4:b7:cf:7a:d1:54:13:f4: 73:6a:da:09:86:7a:be:61:b5:a7:a1:1c:05:7a:12: 2f:df:0f:38:2b:a5:df:7b:00:a3:48:c5:98:b9:b6: ff:67:58:65:33:06:c8:4a:50:70:fe:1d:b3:37:0a: a5:83:1a:3a:53:f3:88:f2:c1:85:dd:93:0b:b1:33: 3a:35:fe:f7:a4:17:93:f2:85:01:bc:2f:bb:e5:a4: 4d:ab:07:68:eb:c8:a7:ac:46:b0:36:9f:88:5e:d3: 2b:18:09:2a:78:76:f3:66:7a:f3:37:10:1d:2c:8e: ad:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:64:FA:00:98:D0:3B:09:64:BF:0A:29:63:24:2A:B5:3E:0A:2F:05 X509v3 Authority Key Identifier: keyid:89:38:CD:F8:AE:C6:24:08:9C:1D:95:31:0F:AC:37:47:4C:0E:89:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/45/32332e3134322e3232342e302f32342d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.142.224.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:09:f6:b7:b8:3c:64:bc:ef:e3:b6:29:24:13:6e:6f:84:96: 08:44:ff:ea:63:7b:13:b5:38:c3:98:0b:ee:68:78:82:67:3d: e8:14:03:d3:90:48:95:f9:8a:bb:8e:b2:d2:83:80:0b:22:aa: 86:23:c1:d7:ef:9c:33:8f:b7:1f:21:45:28:14:da:1e:26:0b: 50:18:44:9c:ec:f3:92:f1:0f:b9:3c:53:85:77:db:6a:af:7a: 73:44:bf:63:9d:55:0b:03:1a:73:f8:e6:b4:36:45:f6:3f:31: 57:5b:6c:31:1a:bd:a8:3c:44:80:8f:5a:43:c8:d6:72:a2:a4: c6:d1:14:07:40:e3:b1:62:42:b2:b7:3f:c1:ff:12:03:af:9f: a7:68:ff:9e:80:9c:be:b1:42:ec:92:b4:06:60:93:a0:3f:6f: 5b:f8:d2:e9:43:c0:99:63:e9:88:f4:3f:84:59:57:88:a3:40: b7:71:ab:51:d3:ef:d2:aa:60:8f:58:c8:54:3e:18:76:9f:ff: cb:d7:99:ec:9f:19:bb:6c:fe:b4:ef:82:40:c1:ac:b6:07:81: 89:5b:f7:97:a7:a8:9e:d0:7e:b2:85:c6:cc:e5:96:11:52:0a: 0b:65:a7:4a:1f:c7:69:96:58:bf:bf:61:9c:d3:b8:8f:39:73: b9:60:27:b8 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCIwSKS/e0EkJkS9IGkccm9zQVUAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDI2M2EwOGI5YTA0NjNkNjBmZmI5MTQ0ZDFjMmNiOTU2 ZTM5YzZjNjhjODMzZDY0ZTQwHhcNMjUwODE2MDE0MzI4WhcNMjYwODE1MDE0ODI4 WjAzMTEwLwYDVQQDEyhERjY0RkEwMDk4RDAzQjA5NjRCRjBBMjk2MzI0MkFCNTNF MEEyRjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnok2NNgsj3VW RQahlwGlvK4mK7wxKYsjyjJPVTfSFhlkMcycshuN1qh1cQh+WglF3mM9GAyQrAlV 2E88Hcnkfk74qBjFL6Nnf8DAqdD8gX6Yg1zaQ1zdEBKt9gMRwfjaQCEjS4OSUZRi Ekb5GMjawBQbaCf9+D8POF8rUBKrvkMjfgHRIPljQItOupGM5LfPetFUE/RzatoJ hnq+YbWnoRwFehIv3w84K6XfewCjSMWYubb/Z1hlMwbISlBw/h2zNwqlgxo6U/OI 8sGF3ZMLsTM6Nf73pBeT8oUBvC+75aRNqwdo68inrEawNp+IXtMrGAkqeHbzZnrz NxAdLI6t2wIDAQABo4ICXjCCAlowHQYDVR0OBBYEFN9k+gCY0DsJZL8KKWMkKrU+ Ci8FMB8GA1UdIwQYMBaAFIk4zfiuxiQInB2VMQ+sN0dMDokGMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDUvODkzOENERjhBRUM2MjQwODlDMUQ5NTMxMEZBQzM3NDc0QzBFODkw Ni5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzQyYzllOTk3LTc0N2EtNDEwNy04OWZiLTdjYWI4OTAz YTU4Ni80MjYzYTA4YjlhMDQ2M2Q2MGZmYjkxNDRkMWMyY2I5NTZlMzljNmM2OGM4 MzNkNjRlNC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDUvMzIzMzJlMzEzNDMyMmUzMjMyMzQy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABeO4DAN BgkqhkiG9w0BAQsFAAOCAQEAfgn2t7g8ZLzv47YpJBNub4SWCET/6mN7E7U4w5gL 7mh4gmc96BQD05BIlfmKu46y0oOACyKqhiPB1++cM4+3HyFFKBTaHiYLUBhEnOzz kvEPuTxThXfbaq96c0S/Y51VCwMac/jmtDZF9j8xV1tsMRq9qDxEgI9aQ8jWcqKk xtEUB0DjsWJCsrc/wf8SA6+fp2j/noCcvrFC7JK0BmCToD9vW/jS6UPAmWPpiPQ/ hFlXiKNAt3GrUdPv0qpgj1jIVD4Ydp//y9eZ7J8Zu2z+tO+CQMGstgeBiVv3l6eo ntB+soXGzOWWEVIKC2WnSh/HaZZYv79hnNO4jzlzuWAnuA== -----END CERTIFICATE-----Generated at Wed Oct 22 10:31:42 2025 by rpki-client