$ rpki-client -vvf rpki.roa.net/rrdp/xTom/45/323630343a653863303a3a2f33322d3438203d3e20393439.roa File: 323630343a653863303a3a2f33322d3438203d3e20393439.roa (raw, json) Hash identifier: 0cNTecmkjnUfzOo0lDUBgluK59dvsGew1EUUhyFgyIw= Subject key identifier: 61:8C:DC:D5:CC:12:F5:01:8E:B5:D3:40:4F:1E:BF:F4:6F:A6:29:60 Certificate issuer: /CN=4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4 Certificate serial: 0D41F41334F08FB57497B1A56373E31E79C211BA Authority key identifier: 89:38:CD:F8:AE:C6:24:08:9C:1D:95:31:0F:AC:37:47:4C:0E:89:06 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/45/323630343a653863303a3a2f33322d3438203d3e20393439.roa Signing time: Sat 14 Sep 2024 01:22:34 +0000 ROA not before: Sat 14 Sep 2024 01:17:34 +0000 ROA not after: Sat 13 Sep 2025 01:22:34 +0000 asID: 949 IP address blocks: 2604:e8c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.crl rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/42c9e997-747a-4107-89fb-7cab8903a586.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/42c9e997-747a-4107-89fb-7cab8903a586.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 09:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:41:f4:13:34:f0:8f:b5:74:97:b1:a5:63:73:e3:1e:79:c2:11:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4 Validity Not Before: Sep 14 01:17:34 2024 GMT Not After : Sep 13 01:22:34 2025 GMT Subject: CN=618CDCD5CC12F5018EB5D3404F1EBFF46FA62960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:99:bd:dc:de:6b:00:5d:36:29:0b:65:bf:cb: 39:46:43:8c:67:9e:9d:28:ea:ce:bf:de:69:e7:14: a0:6a:9e:72:5c:ec:65:75:2e:8f:6a:fd:b4:29:58: ac:8c:4c:ac:c8:e5:83:5d:34:aa:2b:38:df:33:db: 40:e0:85:da:be:eb:da:a3:32:5c:24:fe:a0:61:07: fc:35:b4:26:43:ee:ee:ee:58:e2:b6:86:2c:68:bb: 62:dd:cb:12:7c:cd:ab:5e:de:65:49:0e:4a:df:4b: 0b:5a:17:d6:2e:89:96:b9:30:59:6e:12:72:8f:ca: 84:33:fa:41:d6:74:dd:c5:20:a1:ec:89:01:a4:cc: da:43:f5:2f:1c:7c:53:76:53:90:bc:4d:eb:2d:28: c9:1a:94:ad:04:b2:bd:62:6b:40:28:53:e5:fa:1e: 42:88:92:a9:51:37:d3:d4:bb:08:e6:f1:a5:48:f3: 0e:36:8d:63:33:22:12:d6:68:9e:1b:17:67:20:d0: 15:21:c3:b0:04:8b:a9:e4:b3:e8:55:a2:d6:59:ec: 5e:32:41:f9:60:ad:94:af:5d:94:83:07:40:31:11: 43:bc:67:94:98:83:d9:ab:4f:04:a7:f7:20:8e:09: 7a:a4:63:f5:41:f3:94:d1:73:1b:31:70:36:73:89: cf:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8C:DC:D5:CC:12:F5:01:8E:B5:D3:40:4F:1E:BF:F4:6F:A6:29:60 X509v3 Authority Key Identifier: keyid:89:38:CD:F8:AE:C6:24:08:9C:1D:95:31:0F:AC:37:47:4C:0E:89:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/45/8938CDF8AEC624089C1D95310FAC37474C0E8906.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/42c9e997-747a-4107-89fb-7cab8903a586/4263a08b9a0463d60ffb9144d1c2cb956e39c6c68c833d64e4.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/45/323630343a653863303a3a2f33322d3438203d3e20393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:e8c0::/32 Signature Algorithm: sha256WithRSAEncryption 46:7e:d3:20:8f:de:05:c3:cb:f7:44:b6:f6:a6:2d:ee:05:c1: f6:ee:c5:48:72:fc:d3:f8:6e:63:40:5e:c7:1e:d8:9b:37:0e: 6f:f0:ee:0f:5f:eb:e9:96:bd:ba:61:70:27:df:a3:d2:98:c9: 40:d3:0d:15:cc:e9:90:8f:99:fd:3a:80:14:17:49:21:dd:28: 39:14:43:73:d1:36:83:df:19:68:90:7f:e6:de:43:ad:19:27: 07:ea:4d:72:13:c0:56:f9:ae:a0:b6:4e:19:07:4e:61:e4:32: a5:b4:cb:9e:d9:ff:f3:93:f7:70:d7:75:f9:63:ca:62:cf:57: 8a:e4:27:e1:1d:e6:e0:45:7f:d7:13:31:c9:3e:d4:ec:1b:a5: 98:e7:48:9f:18:cf:44:3d:cc:81:ed:6c:34:8d:cc:ff:d2:e0: bc:b6:d6:0e:dd:7f:51:df:15:12:8c:4a:a7:4e:26:21:50:5f: 36:80:d4:8f:9f:ee:f1:cc:82:9b:30:fa:35:25:ea:2d:f9:aa: f0:66:44:59:fe:e3:f1:a0:35:dd:14:59:01:c8:20:af:a0:ee: e7:70:74:8b:a5:71:c9:e0:c3:f4:4f:fa:63:c9:60:69:bd:ec: df:17:68:08:cb:a1:43:6c:5d:d4:92:6e:78:28:db:9a:c3:ce: 9f:83:17:28 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIUDUH0EzTwj7V0l7GlY3PjHnnCEbowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDI2M2EwOGI5YTA0NjNkNjBmZmI5MTQ0ZDFjMmNiOTU2 ZTM5YzZjNjhjODMzZDY0ZTQwHhcNMjQwOTE0MDExNzM0WhcNMjUwOTEzMDEyMjM0 WjAzMTEwLwYDVQQDEyg2MThDRENENUNDMTJGNTAxOEVCNUQzNDA0RjFFQkZGNDZG QTYyOTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpm93N5rAF02 KQtlv8s5RkOMZ56dKOrOv95p5xSgap5yXOxldS6Pav20KVisjEysyOWDXTSqKzjf M9tA4IXavuvaozJcJP6gYQf8NbQmQ+7u7ljitoYsaLti3csSfM2rXt5lSQ5K30sL WhfWLomWuTBZbhJyj8qEM/pB1nTdxSCh7IkBpMzaQ/UvHHxTdlOQvE3rLSjJGpSt BLK9YmtAKFPl+h5CiJKpUTfT1LsI5vGlSPMONo1jMyIS1mieGxdnINAVIcOwBIup 5LPoVaLWWexeMkH5YK2Ur12UgwdAMRFDvGeUmIPZq08Ep/cgjgl6pGP1QfOU0XMb MXA2c4nPEwIDAQABo4ICWzCCAlcwHQYDVR0OBBYEFGGM3NXMEvUBjrXTQE8ev/Rv pilgMB8GA1UdIwQYMBaAFIk4zfiuxiQInB2VMQ+sN0dMDokGMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDUvODkzOENERjhBRUM2MjQwODlDMUQ5NTMxMEZBQzM3NDc0QzBFODkw Ni5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzQyYzllOTk3LTc0N2EtNDEwNy04OWZiLTdjYWI4OTAz YTU4Ni80MjYzYTA4YjlhMDQ2M2Q2MGZmYjkxNDRkMWMyY2I5NTZlMzljNmM2OGM4 MzNkNjRlNC5jZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDUvMzIzNjMwMzQzYTY1Mzg2MzMwM2Ez YTJmMzMzMjJkMzQzODIwM2QzZTIwMzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJgTowDANBgkq hkiG9w0BAQsFAAOCAQEARn7TII/eBcPL90S29qYt7gXB9u7FSHL80/huY0Bexx7Y mzcOb/DuD1/r6Za9umFwJ9+j0pjJQNMNFczpkI+Z/TqAFBdJId0oORRDc9E2g98Z aJB/5t5DrRknB+pNchPAVvmuoLZOGQdOYeQypbTLntn/85P3cNd1+WPKYs9XiuQn 4R3m4EV/1xMxyT7U7BulmOdInxjPRD3Mge1sNI3M/9LgvLbWDt1/Ud8VEoxKp04m IVBfNoDUj5/u8cyCmzD6NSXqLfmq8GZEWf7j8aA13RRZAcggr6Du53B0i6VxyeDD 9E/6Y8lgab3s3xdoCMuhQ2xd1JJueCjbmsPOn4MXKA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org