$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3130342e3234352e382e302f32312d3234203d3e2036323333.roa File: 3130342e3234352e382e302f32312d3234203d3e2036323333.roa (raw, json) Hash identifier: toARjDv799USUlmcjzCD9e8PN8NqvuIHXY8whE+ZEs8= Subject key identifier: 20:74:85:E0:87:35:2E:FD:36:8E:8C:04:76:D8:C8:1F:92:3D:30:DF Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 788B464C84D6F80BBCFE3F8A49053EC00AC16C39 Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e382e302f32312d3234203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:19 +0000 ROA not before: Sat 16 Aug 2025 01:43:19 +0000 ROA not after: Sat 15 Aug 2026 01:48:19 +0000 asID: 6233 IP address blocks: 104.245.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 30 Oct 2025 04:15:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:8b:46:4c:84:d6:f8:0b:bc:fe:3f:8a:49:05:3e:c0:0a:c1:6c:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Aug 16 01:43:19 2025 GMT Not After : Aug 15 01:48:19 2026 GMT Subject: CN=207485E087352EFD368E8C0476D8C81F923D30DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:88:01:cf:cb:ca:5a:11:1f:81:12:87:9e:0c: 4e:84:03:ad:8c:41:4a:ee:1b:58:43:bc:70:04:90: 69:b7:77:0b:63:a7:f7:dc:ba:21:d8:28:28:23:00: 52:8f:a2:89:ba:be:13:9f:96:db:cb:13:82:e6:2d: d2:24:9d:98:db:d2:d8:24:59:5c:0f:1b:d8:9e:77: 87:a0:94:5c:da:e9:c8:97:9d:25:3e:97:fb:7a:48: bb:46:07:d3:8b:39:4a:d5:db:99:3f:08:dc:8a:27: 8f:b7:8e:7f:14:65:61:3a:71:d4:a0:91:81:5e:14: 3b:62:b5:f3:64:67:e1:53:2d:c9:f6:1f:73:87:14: 13:a9:b2:52:50:cf:51:5f:f8:3f:e3:af:f8:ec:49: 63:ac:6e:01:2b:17:7f:df:51:25:e0:68:f0:c1:73: 57:1c:fc:18:5e:d5:b5:31:5a:5c:6f:11:27:34:de: fc:4c:9c:39:f5:dd:2a:9f:42:f6:8d:59:c4:04:92: 18:f7:e6:61:f2:4f:b6:ae:2f:b2:8b:40:96:d5:cf: a4:e6:f0:5d:a7:cf:62:68:cb:1a:cc:be:0a:56:8f: 96:a4:6e:f4:4f:1d:97:3b:88:29:05:71:f3:f6:76: 23:0c:83:f4:b7:ca:4e:cb:14:c1:ae:ed:e9:f2:ce: 58:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:74:85:E0:87:35:2E:FD:36:8E:8C:04:76:D8:C8:1F:92:3D:30:DF X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e382e302f32312d3234203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.245.8.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:eb:f6:eb:18:55:51:8a:70:9f:eb:68:d3:b4:9e:fe:42:0a: 61:24:f6:bd:d8:ce:85:09:59:d9:8f:4c:2c:f9:fa:39:f9:76: d2:77:50:eb:a6:02:28:8f:87:c4:6f:e9:d5:20:3f:45:7f:01: 0d:41:91:1b:88:bd:61:0d:61:d1:79:3d:e5:b7:64:19:5c:07: 90:ef:9c:e4:20:fa:0b:9d:4f:f9:08:00:a5:15:f5:b5:90:fa: 02:83:90:0d:95:1e:2a:3d:2c:ec:ae:24:8d:99:27:8d:18:37: c5:b5:06:08:3e:5a:94:e2:1c:48:2e:4b:36:88:33:5a:5a:44: b0:6f:97:cb:41:c4:7f:2b:71:5f:bb:be:e0:1f:e1:86:2e:e0: 5a:a3:54:ce:c0:15:94:ca:61:80:a5:3d:8a:e6:b9:5e:a7:cc: 50:2e:c2:77:8f:f3:b6:2a:d9:66:26:4b:37:0b:50:1b:7e:89: 28:6f:ad:57:41:08:86:5b:02:12:57:a4:82:31:b9:4d:25:9d: 62:60:d9:4d:25:cb:56:ca:a0:dd:bb:04:5a:3e:90:14:40:88: 5e:9b:8d:3e:08:bd:7e:d3:a8:81:09:82:19:cd:e0:2f:ec:b5: c6:b9:5c:20:e2:e0:5d:b8:a3:74:fe:78:c2:a5:f2:dc:47:77: ab:2c:b4:ed -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUeItGTITW+Au8/j+KSQU+wArBbDkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjUwODE2MDE0MzE5WhcNMjYwODE1MDE0ODE5 WjAzMTEwLwYDVQQDEygyMDc0ODVFMDg3MzUyRUZEMzY4RThDMDQ3NkQ4QzgxRjky M0QzMERGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5IgBz8vKWhEf gRKHngxOhAOtjEFK7htYQ7xwBJBpt3cLY6f33Loh2CgoIwBSj6KJur4Tn5bbyxOC 5i3SJJ2Y29LYJFlcDxvYnneHoJRc2unIl50lPpf7eki7RgfTizlK1duZPwjciieP t45/FGVhOnHUoJGBXhQ7YrXzZGfhUy3J9h9zhxQTqbJSUM9RX/g/46/47EljrG4B Kxd/31El4GjwwXNXHPwYXtW1MVpcbxEnNN78TJw59d0qn0L2jVnEBJIY9+Zh8k+2 ri+yi0CW1c+k5vBdp89iaMsazL4KVo+WpG70Tx2XO4gpBXHz9nYjDIP0t8pOyxTB ru3p8s5YtwIDAQABo4ICXDCCAlgwHQYDVR0OBBYEFCB0heCHNS79No6MBHbYyB+S PTDfMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzEzMDM0MmUzMjM0MzUyZTM4MmUz MDJmMzIzMTJkMzIzNDIwM2QzZTIwMzYzMjMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANo9QgwDQYJ KoZIhvcNAQELBQADggEBACzr9usYVVGKcJ/raNO0nv5CCmEk9r3YzoUJWdmPTCz5 +jn5dtJ3UOumAiiPh8Rv6dUgP0V/AQ1BkRuIvWENYdF5PeW3ZBlcB5DvnOQg+gud T/kIAKUV9bWQ+gKDkA2VHio9LOyuJI2ZJ40YN8W1Bgg+WpTiHEguSzaIM1paRLBv l8tBxH8rcV+7vuAf4YYu4FqjVM7AFZTKYYClPYrmuV6nzFAuwneP87Yq2WYmSzcL UBt+iShvrVdBCIZbAhJXpIIxuU0lnWJg2U0ly1bKoN27BFo+kBRAiF6bjT4IvX7T qIEJghnN4C/stca5XCDi4F24o3T+eMKl8txHd6sstO0= -----END CERTIFICATE-----Generated at Wed Oct 29 05:49:59 2025 by rpki-client