$ rpki-client -vvf rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e2036323333.roa File: 323630353a3963303a3a2f33322d3438203d3e2036323333.roa (raw, json) Hash identifier: JIElMZpdDDO6J9PegSorWtMpeWGpahBdBL1h7VsxmEg= Subject key identifier: 5D:A8:6C:BD:43:AC:3E:14:22:3A:E8:3A:73:3A:AB:2B:81:C1:CB:58 Certificate issuer: /CN=e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450 Certificate serial: 0C9DF8942EBBFC893CE625098651DB459A86A7D6 Authority key identifier: 51:30:79:D4:CF:FB:FD:F8:10:24:CA:1B:48:CA:B7:7B:D5:16:66:57 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e2036323333.roa Signing time: Sat 16 Aug 2025 01:48:29 +0000 ROA not before: Sat 16 Aug 2025 01:43:29 +0000 ROA not after: Sat 15 Aug 2026 01:48:29 +0000 asID: 6233 IP address blocks: 2605:9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.crl rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 29 Oct 2025 19:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:9d:f8:94:2e:bb:fc:89:3c:e6:25:09:86:51:db:45:9a:86:a7:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450 Validity Not Before: Aug 16 01:43:29 2025 GMT Not After : Aug 15 01:48:29 2026 GMT Subject: CN=5DA86CBD43AC3E14223AE83A733AAB2B81C1CB58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:09:15:7b:d5:ab:0a:7d:1b:ee:60:92:b7:da: 27:6b:5b:da:b0:88:5c:43:db:49:fb:a7:72:95:75: fd:88:15:c7:8d:0a:29:bb:c0:30:d2:8e:94:4e:81: 7d:b3:29:3a:5d:f4:72:4c:af:c4:14:25:6e:0e:6d: 73:3b:0d:e1:4f:00:0b:61:0a:69:2b:c8:da:fb:14: 6f:7e:dc:63:fc:67:8e:7f:9a:4c:68:77:50:90:cf: a3:96:9d:24:d5:f1:3c:9e:55:ab:6f:da:d7:7e:3c: 22:93:e3:8d:20:b0:b8:92:a2:f3:fc:a2:ea:be:7a: 25:96:b5:89:f4:28:52:96:98:c1:bd:b3:c2:bc:70: 3d:db:08:bc:23:ae:82:67:7e:2f:8d:5a:18:55:f6: 3e:b3:45:0e:fb:1d:67:12:c9:63:78:4d:e8:a4:5f: d1:e2:e0:fd:6f:cf:5b:be:4b:90:1f:2d:5e:03:f5: 88:bc:a1:86:da:41:da:79:5a:c4:0c:d8:dd:db:0b: f9:35:1a:fa:ac:ad:b0:e2:23:83:f4:e0:d4:9a:04: b2:d0:37:85:6b:08:7f:1d:dc:60:20:b0:23:2c:90: 68:56:26:eb:20:73:42:fe:10:a3:33:28:e6:3e:2a: 47:46:d7:e0:77:30:63:bb:aa:46:24:d8:28:77:dd: 57:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A8:6C:BD:43:AC:3E:14:22:3A:E8:3A:73:3A:AB:2B:81:C1:CB:58 X509v3 Authority Key Identifier: keyid:51:30:79:D4:CF:FB:FD:F8:10:24:CA:1B:48:CA:B7:7B:D5:16:66:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/51/513079D4CFFBFDF81024CA1B48CAB77BD5166657.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/dab76c6b-0e86-4a03-a59a-f3fc77dbba62/e9fac14672122bddfc7a1278980d695c609d5eaeedb0df2450.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/51/323630353a3963303a3a2f33322d3438203d3e2036323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9c0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:82:33:b8:22:c9:5f:a9:5e:d2:17:40:66:62:85:28:4a:a7: e4:4d:53:e7:4c:70:7a:49:dc:2f:bc:21:5d:f7:ca:14:f5:24: d0:87:7b:b4:8f:8d:32:91:d2:41:98:cb:24:89:c2:19:b7:e9: 5d:ca:80:eb:30:e4:62:7b:0a:d8:28:87:da:9d:18:68:d3:08: 21:fc:d7:8b:24:62:30:5c:5b:71:ff:07:3a:94:55:a8:cd:e4: b6:af:9c:72:3e:ed:09:fb:9a:33:9f:f3:e2:e5:dc:be:e3:9f: 48:db:71:08:7a:df:41:7b:55:e8:8f:2e:56:a5:9b:0c:23:08: 45:8f:af:2f:80:f4:1a:dd:7e:ad:5c:e7:a4:b9:97:0f:b4:e2: 5d:7f:9e:5a:ae:29:b0:43:55:d5:ea:9a:6b:03:9d:da:54:46: c2:0d:66:66:ea:fc:30:44:44:3e:b0:58:49:e5:ee:1b:d6:fc: 12:b1:ac:bd:18:4f:9d:f4:51:8d:89:84:fc:03:e1:6f:25:16: 37:66:0e:59:b5:e4:b7:7a:ed:ec:01:9c:20:4c:f4:d6:6f:9c: 79:e0:d8:b1:82:27:92:8b:84:7f:56:52:13:0c:75:7e:7d:be: a7:f4:c4:2d:d2:da:1f:31:88:32:87:e5:7f:bb:0d:c1:fb:bf: 26:14:d5:3a -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIUDJ34lC67/Ik85iUJhlHbRZqGp9YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZTlmYWMxNDY3MjEyMmJkZGZjN2ExMjc4OTgwZDY5NWM2 MDlkNWVhZWVkYjBkZjI0NTAwHhcNMjUwODE2MDE0MzI5WhcNMjYwODE1MDE0ODI5 WjAzMTEwLwYDVQQDEyg1REE4NkNCRDQzQUMzRTE0MjIzQUU4M0E3MzNBQUIyQjgx QzFDQjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AkVe9WrCn0b 7mCSt9ona1vasIhcQ9tJ+6dylXX9iBXHjQopu8Aw0o6UToF9syk6XfRyTK/EFCVu Dm1zOw3hTwALYQppK8ja+xRvftxj/GeOf5pMaHdQkM+jlp0k1fE8nlWrb9rXfjwi k+ONILC4kqLz/KLqvnollrWJ9ChSlpjBvbPCvHA92wi8I66CZ34vjVoYVfY+s0UO +x1nEsljeE3opF/R4uD9b89bvkuQHy1eA/WIvKGG2kHaeVrEDNjd2wv5NRr6rK2w 4iOD9ODUmgSy0DeFawh/HdxgILAjLJBoVibrIHNC/hCjMyjmPipHRtfgdzBju6pG JNgod91XkwIDAQABo4ICWzCCAlcwHQYDVR0OBBYEFF2obL1DrD4UIjroOnM6qyuB wctYMB8GA1UdIwQYMBaAFFEwedTP+/34ECTKG0jKt3vVFmZXMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTEvNTEzMDc5RDRDRkZCRkRGODEwMjRDQTFCNDhDQUI3N0JENTE2NjY1 Ny5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjL2RhYjc2YzZiLTBlODYtNGEwMy1hNTlhLWYzZmM3N2Ri YmE2Mi9lOWZhYzE0NjcyMTIyYmRkZmM3YTEyNzg5ODBkNjk1YzYwOWQ1ZWFlZWRi MGRmMjQ1MC5jZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTEvMzIzNjMwMzUzYTM5NjMzMDNhM2Ey ZjMzMzIyZDM0MzgyMDNkM2UyMDM2MzIzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJgUJwDANBgkq hkiG9w0BAQsFAAOCAQEAbYIzuCLJX6le0hdAZmKFKEqn5E1T50xwekncL7whXffK FPUk0Id7tI+NMpHSQZjLJInCGbfpXcqA6zDkYnsK2CiH2p0YaNMIIfzXiyRiMFxb cf8HOpRVqM3ktq+ccj7tCfuaM5/z4uXcvuOfSNtxCHrfQXtV6I8uVqWbDCMIRY+v L4D0Gt1+rVznpLmXD7TiXX+eWq4psENV1eqaawOd2lRGwg1mZur8MEREPrBYSeXu G9b8ErGsvRhPnfRRjYmE/APhbyUWN2YOWbXkt3rt7AGcIEz01m+ceeDYsYInkouE f1ZSEwx1fn2+p/TELdLaHzGIMoflf7sNwfu/JhTVOg== -----END CERTIFICATE-----Generated at Wed Oct 29 10:08:47 2025 by rpki-client