$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3130342e3234352e31342e302f32342d3234203d3e2036323333.roa File: 3130342e3234352e31342e302f32342d3234203d3e2036323333.roa (raw, json) Hash identifier: ZWLxz/UMof5CXOQxQiQYlJX05GocBRX3n7pyJMgwDaw= Subject key identifier: 2C:60:96:8C:EA:0B:19:02:F5:CD:AB:A0:56:CA:5C:3A:69:34:F2:A5 Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 3B857489FDE4E93BF36C9E1E7A118B94C03348F3 Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e31342e302f32342d3234203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:21 +0000 ROA not before: Sat 16 Aug 2025 01:43:21 +0000 ROA not after: Sat 15 Aug 2026 01:48:21 +0000 asID: 6233 IP address blocks: 104.245.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 30 Oct 2025 04:15:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:85:74:89:fd:e4:e9:3b:f3:6c:9e:1e:7a:11:8b:94:c0:33:48:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Aug 16 01:43:21 2025 GMT Not After : Aug 15 01:48:21 2026 GMT Subject: CN=2C60968CEA0B1902F5CDABA056CA5C3A6934F2A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:72:6b:ec:e8:a2:01:d7:05:15:51:d7:c2:74: fb:08:9c:17:b2:05:8d:a9:06:54:eb:73:e0:14:da: ed:89:f1:f5:6c:6f:4e:31:f8:d6:49:e9:47:db:4f: 65:8b:b8:03:ba:dd:2d:8c:3d:85:68:36:1f:f2:5a: e2:3c:c4:66:96:73:dc:87:6f:05:b2:9f:62:6a:20: ff:1f:9d:9c:cb:3d:38:28:ed:bf:60:df:38:56:4c: 87:e9:25:8d:5c:8a:eb:37:32:47:d5:74:aa:c7:d5: 35:03:70:e1:95:fd:bc:bc:4c:b2:c9:36:c7:99:b4: 93:61:40:eb:28:e8:e0:33:fd:ee:d7:8b:de:18:98: 60:b6:b3:a9:97:5d:9e:bb:a2:ea:c0:91:21:5c:4f: 54:e9:cf:65:97:21:01:3a:c4:47:0a:f1:a8:36:a5: 3d:a2:b7:9d:df:9a:de:62:f0:80:0a:22:d1:7b:ea: 88:45:bd:e8:d7:7a:4b:d6:31:db:13:74:3d:47:a4: 9a:77:10:e3:fd:2d:3e:13:1b:68:21:7f:f1:70:d8: 8d:10:b1:3a:3e:29:df:48:28:f4:0c:49:24:05:97: 31:8f:0a:89:f5:ec:87:7e:0b:21:aa:03:b1:09:23: 61:96:9a:c9:84:d6:83:07:ba:6a:cf:46:de:67:9c: 78:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:60:96:8C:EA:0B:19:02:F5:CD:AB:A0:56:CA:5C:3A:69:34:F2:A5 X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e31342e302f32342d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.245.14.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:1d:52:85:8a:2b:0e:c1:be:44:3e:44:21:44:20:1e:56:cf: e6:69:45:c4:b2:eb:d8:ca:74:35:39:6b:bc:d2:35:3f:ab:eb: e8:5d:b9:62:2b:8d:0b:94:d2:7b:95:42:05:23:45:27:a3:95: a9:63:9b:ee:82:1b:5e:0d:39:1a:11:97:2a:fa:00:7e:3a:ba: 48:be:a0:fb:9f:13:23:b2:c8:62:1c:a6:11:f5:7f:34:96:13: 24:7d:88:d4:18:17:1b:2b:af:30:15:cc:2d:33:12:b1:04:59: 3d:5d:df:66:94:a8:9c:6a:ca:66:e8:d2:b2:ee:f5:93:05:4a: fb:62:f0:62:42:c5:d2:4a:c8:df:e6:e6:93:d7:e8:74:b1:bb: ac:de:1f:b0:80:dc:c3:a9:02:5a:ff:f4:c8:e2:4f:6c:7c:2f: fc:66:b6:4e:89:a3:12:96:e4:d3:36:f5:28:50:8b:85:ab:3e: 26:12:90:b0:12:12:6a:1e:62:21:b9:04:a4:39:1c:2b:7a:77: 1f:aa:e2:9c:7d:0f:79:c3:2d:9c:58:8d:07:06:43:07:92:b7: fb:c8:d3:79:02:28:9b:23:ff:f5:a1:12:30:d7:4a:82:78:db: 3e:8e:3f:86:08:3e:2b:a9:61:a5:d3:e6:34:04:22:fa:da:f6: f4:2f:5f:84 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUO4V0if3k6TvzbJ4eehGLlMAzSPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjUwODE2MDE0MzIxWhcNMjYwODE1MDE0ODIx WjAzMTEwLwYDVQQDEygyQzYwOTY4Q0VBMEIxOTAyRjVDREFCQTA1NkNBNUMzQTY5 MzRGMkE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3Jr7OiiAdcF FVHXwnT7CJwXsgWNqQZU63PgFNrtifH1bG9OMfjWSelH209li7gDut0tjD2FaDYf 8lriPMRmlnPch28Fsp9iaiD/H52cyz04KO2/YN84VkyH6SWNXIrrNzJH1XSqx9U1 A3Dhlf28vEyyyTbHmbSTYUDrKOjgM/3u14veGJhgtrOpl12eu6LqwJEhXE9U6c9l lyEBOsRHCvGoNqU9ored35reYvCACiLRe+qIRb3o13pL1jHbE3Q9R6SadxDj/S0+ ExtoIX/xcNiNELE6PinfSCj0DEkkBZcxjwqJ9eyHfgshqgOxCSNhlprJhNaDB7pq z0beZ5x4twIDAQABo4ICXjCCAlowHQYDVR0OBBYEFCxglozqCxkC9c2roFbKXDpp NPKlMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzEzMDM0MmUzMjM0MzUyZTMxMzQy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGj1DjAN BgkqhkiG9w0BAQsFAAOCAQEAHB1ShYorDsG+RD5EIUQgHlbP5mlFxLLr2Mp0NTlr vNI1P6vr6F25YiuNC5TSe5VCBSNFJ6OVqWOb7oIbXg05GhGXKvoAfjq6SL6g+58T I7LIYhymEfV/NJYTJH2I1BgXGyuvMBXMLTMSsQRZPV3fZpSonGrKZujSsu71kwVK +2LwYkLF0krI3+bmk9fodLG7rN4fsIDcw6kCWv/0yOJPbHwv/Ga2TomjEpbk0zb1 KFCLhas+JhKQsBISah5iIbkEpDkcK3p3H6rinH0PecMtnFiNBwZDB5K3+8jTeQIo myP/9aESMNdKgnjbPo4/hgg+K6lhpdPmNAQi+tr29C9fhA== -----END CERTIFICATE-----Generated at Wed Oct 29 05:49:58 2025 by rpki-client