$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3130342e3234352e392e302f32342d3234203d3e2034373835.roa File: 3130342e3234352e392e302f32342d3234203d3e2034373835.roa (raw, json) Hash identifier: GxhrfMYbrIorIZx7sAuAdXT2L2AlBHK6bwQj24J+2XM= Subject key identifier: D8:E0:00:BF:5D:93:63:5D:77:60:16:82:78:DF:D9:F7:82:83:BF:A9 Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Certificate serial: 5EEAE6DF462BE7A225F9A0DC1262555B756208D6 Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e392e302f32342d3234203d3e2034373835.roa Signing time: Sat 14 Sep 2024 01:22:24 +0000 ROA not before: Sat 14 Sep 2024 01:17:24 +0000 ROA not after: Sat 13 Sep 2025 01:22:24 +0000 asID: 4785 IP address blocks: 104.245.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 08:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ea:e6:df:46:2b:e7:a2:25:f9:a0:dc:12:62:55:5b:75:62:08:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524 Validity Not Before: Sep 14 01:17:24 2024 GMT Not After : Sep 13 01:22:24 2025 GMT Subject: CN=D8E000BF5D93635D7760168278DFD9F78283BFA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b0:fe:b1:bb:18:59:16:a4:99:d1:02:0a:9b: 84:6f:2c:7b:18:43:6a:76:66:e3:e0:a6:1a:c7:6c: 49:fc:5b:db:f3:9e:bd:b1:f5:6d:ea:b1:14:d6:71: 57:b3:25:b9:a4:7e:3c:64:38:d4:ca:47:c4:b7:81: 1a:5d:56:0a:ec:03:7b:9a:a3:3d:b0:29:cf:6f:fd: 2d:43:84:b7:3b:e3:2c:20:8f:4a:fd:6b:c6:d6:06: 67:67:8d:31:56:f4:dd:df:40:80:e9:63:3c:a6:ab: 61:91:cd:2b:9d:a5:06:20:bc:7a:1d:71:c3:73:cf: 50:7f:29:c6:a9:a3:13:40:4c:ad:77:3b:62:06:27: 23:31:c5:20:c8:90:bb:21:69:64:41:ae:31:73:08: 20:a7:d5:ec:3c:74:b5:20:7c:44:4b:07:9b:44:a3: 62:2e:1d:75:3b:6e:48:c6:bd:6b:47:44:61:66:01: 46:66:06:41:2a:7a:cb:0c:c0:f5:4a:13:ba:a6:2c: 6c:34:de:7c:f3:b6:dc:26:f5:b1:c0:ec:60:aa:4c: d9:b1:fd:16:c8:48:08:5d:30:db:35:50:76:e4:ff: 7f:39:bd:fa:a9:af:76:db:26:8f:d0:77:e8:95:a1: 05:11:56:2a:ad:08:5b:8a:e8:91:9a:ac:d2:d6:5e: 9d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E0:00:BF:5D:93:63:5D:77:60:16:82:78:DF:D9:F7:82:83:BF:A9 X509v3 Authority Key Identifier: keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e392e302f32342d3234203d3e2034373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.245.9.0/24 Signature Algorithm: sha256WithRSAEncryption 75:8d:37:45:47:62:4c:66:fc:5c:8d:8a:bd:40:b4:c1:bf:b0: fb:82:db:ea:ea:2a:2b:ac:2e:5e:d7:83:cf:97:3a:b9:d9:9f: f9:c6:03:9e:9c:b5:32:77:e2:81:36:a8:c0:c8:d6:33:7f:a5: 60:8c:c3:11:25:a5:84:97:c6:8c:91:e8:25:56:70:f0:86:02: d7:c0:b2:a9:60:34:80:99:4a:ab:62:78:03:23:20:20:77:41: 89:98:9b:be:b7:5a:6b:17:e8:e9:fc:6b:1b:fd:a3:aa:46:7e: 3e:9a:b3:a2:3e:8d:35:34:b1:a8:fa:a0:8a:c2:83:ba:a0:06: 26:ab:a0:07:be:60:b9:52:3e:4d:9d:43:5d:3e:f9:16:42:f8: f8:a5:2c:3d:2f:90:44:e2:20:d0:ab:7c:2b:93:fb:0b:94:cf: 4a:a8:46:af:9c:a0:40:f0:26:e0:30:b5:5d:2e:96:89:52:70: 1a:f8:57:f3:54:15:b9:2e:18:95:48:75:1e:3f:38:69:c3:a0: 3c:34:9d:77:71:b7:2c:2b:f2:a4:2e:6d:c6:ce:45:73:d6:f9: 20:d5:8b:88:3b:10:d6:2e:07:85:fe:d4:25:99:b9:b3:19:7e: fd:c8:7a:81:ce:47:db:fc:a2:cc:c1:fc:a8:65:40:38:cd:09: 42:51:6c:0b -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUXurm30Yr56Il+aDcEmJVW3ViCNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjU1NWM3NGRiNTI4N2Q0MDc3ZmJiMjczYTViNWE1YzJk MjhjMTU4YjY1YjgxNGM1MjQwHhcNMjQwOTE0MDExNzI0WhcNMjUwOTEzMDEyMjI0 WjAzMTEwLwYDVQQDEyhEOEUwMDBCRjVEOTM2MzVENzc2MDE2ODI3OERGRDlGNzgy ODNCRkE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLD+sbsYWRak mdECCpuEbyx7GENqdmbj4KYax2xJ/Fvb8569sfVt6rEU1nFXsyW5pH48ZDjUykfE t4EaXVYK7AN7mqM9sCnPb/0tQ4S3O+MsII9K/WvG1gZnZ40xVvTd30CA6WM8pqth kc0rnaUGILx6HXHDc89QfynGqaMTQEytdztiBicjMcUgyJC7IWlkQa4xcwggp9Xs PHS1IHxESwebRKNiLh11O25Ixr1rR0RhZgFGZgZBKnrLDMD1ShO6pixsNN5887bc JvWxwOxgqkzZsf0WyEgIXTDbNVB25P9/Ob36qa922yaP0HfolaEFEVYqrQhbiuiR mqzS1l6dYQIDAQABo4ICXDCCAlgwHQYDVR0OBBYEFNjgAL9dk2Ndd2AWgnjf2feC g7+pMB8GA1UdIwQYMBaAFNusYe/4DDFYBLz9orz3PBmmJI2ZMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNDYvREJBQzYxRUZGODBDMzE1ODA0QkNGREEyQkNGNzNDMTlBNjI0OEQ5 OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThm NmMtZDZjOTFiMGI4NDE1LzU0YzAzNmM1LWUyMGEtNGJhMS04NTE2LTVhYjNhMzU2 ZGJmZC82NTU1Yzc0ZGI1Mjg3ZDQwNzdmYmIyNzNhNWI1YTVjMmQyOGMxNThiNjVi ODE0YzUyNC5jZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNDYvMzEzMDM0MmUzMjM0MzUyZTM5MmUz MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABo9QkwDQYJ KoZIhvcNAQELBQADggEBAHWNN0VHYkxm/FyNir1AtMG/sPuC2+rqKiusLl7Xg8+X OrnZn/nGA56ctTJ34oE2qMDI1jN/pWCMwxElpYSXxoyR6CVWcPCGAtfAsqlgNICZ SqtieAMjICB3QYmYm763WmsX6On8axv9o6pGfj6as6I+jTU0saj6oIrCg7qgBiar oAe+YLlSPk2dQ10++RZC+PilLD0vkETiINCrfCuT+wuUz0qoRq+coEDwJuAwtV0u lolScBr4V/NUFbkuGJVIdR4/OGnDoDw0nXdxtywr8qQubcbORXPW+SDVi4g7ENYu B4X+1CWZubMZfv3IeoHOR9v8oszB/KhlQDjNCUJRbAs= -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:22 2024 by rpki-client on console-fra.rpki-client.org