$ rpki-client -vvf rpki.roa.net/rrdp/xTom/52/32332e3134342e3136302e302f32342d3234203d3e203332373237.roa File: 32332e3134342e3136302e302f32342d3234203d3e203332373237.roa (raw, json) Hash identifier: 4PYyqHgudJq8Vi/yzOkDgCunzmO8swrJSBCK7XhcPJ0= Subject key identifier: 43:DE:C7:28:EF:C6:6A:13:1E:B9:A4:98:5C:E6:3F:38:1F:5F:F4:BA Certificate issuer: /CN=0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf Certificate serial: 04D496641AF57BDEC0198F02BF63174914383262 Authority key identifier: 09:D2:A9:DA:8F:06:5F:99:59:AE:9C:CB:05:DF:D5:0B:23:A8:BE:F9 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/52/32332e3134342e3136302e302f32342d3234203d3e203332373237.roa Signing time: Sat 14 Sep 2024 01:22:32 +0000 ROA not before: Sat 14 Sep 2024 01:17:32 +0000 ROA not after: Sat 13 Sep 2025 01:22:32 +0000 asID: 32727 IP address blocks: 23.144.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.crl rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/589c840d-5406-45bd-ac1d-d77b3c5c3780.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/589c840d-5406-45bd-ac1d-d77b3c5c3780.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 06:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d4:96:64:1a:f5:7b:de:c0:19:8f:02:bf:63:17:49:14:38:32:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf Validity Not Before: Sep 14 01:17:32 2024 GMT Not After : Sep 13 01:22:32 2025 GMT Subject: CN=43DEC728EFC66A131EB9A4985CE63F381F5FF4BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:25:2a:e0:f2:31:ea:46:e3:d9:36:88:53: c5:8d:91:11:dd:8a:56:64:fd:af:66:cd:f9:c0:74: 44:3a:be:74:d0:37:48:f1:72:f4:0a:de:3b:2a:96: 2b:89:87:b1:df:f8:84:f8:e9:65:a7:72:f6:27:dc: f3:60:c1:d9:27:34:a5:48:57:25:3a:04:81:9c:f3: 61:10:2e:da:0c:6a:69:c6:50:af:7b:04:bc:58:61: 05:71:83:e3:dd:b6:b6:b1:82:77:af:70:fc:56:b3: 91:84:79:23:8f:33:43:ca:f7:c2:57:1f:5c:61:ef: 6a:d8:1e:38:6c:4f:d8:04:98:54:85:ba:29:f8:16: 93:5e:39:e8:3a:c7:2e:5c:c7:06:00:65:2a:7d:7f: 85:0e:ab:ca:47:ed:0e:18:6e:59:79:44:5e:aa:61: 49:35:e7:d5:dc:fc:e7:33:29:d9:c5:d6:12:5c:4b: db:0b:ef:cf:91:8d:31:7e:44:e2:d3:9d:39:96:9a: 24:c7:97:8c:33:6d:d1:6e:f5:a8:94:01:7a:a2:8a: d9:d0:f3:e3:20:df:51:12:85:63:84:b5:90:de:6a: 5f:91:45:b9:b6:24:e1:78:fc:5d:32:43:62:f6:ac: 74:e5:87:7d:e6:b6:eb:7c:5f:5e:00:1f:3d:20:d2: c2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DE:C7:28:EF:C6:6A:13:1E:B9:A4:98:5C:E6:3F:38:1F:5F:F4:BA X509v3 Authority Key Identifier: keyid:09:D2:A9:DA:8F:06:5F:99:59:AE:9C:CB:05:DF:D5:0B:23:A8:BE:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/52/09D2A9DA8F065F9959AE9CCB05DFD50B23A8BEF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/589c840d-5406-45bd-ac1d-d77b3c5c3780/0da65ef0eb63c8789dabda39951af100771d9ee1304558fdbf.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/52/32332e3134342e3136302e302f32342d3234203d3e203332373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.144.160.0/24 Signature Algorithm: sha256WithRSAEncryption a7:9e:b8:e2:f0:1e:bf:ff:71:ed:5e:51:e2:89:24:b8:88:04: a5:45:c1:13:57:1c:ba:6e:4e:fb:74:e7:ca:5b:81:75:a7:2a: a5:07:fe:d3:91:eb:c3:a0:01:6d:11:17:72:92:66:75:80:91: db:ca:f9:fe:19:63:79:0b:99:d2:12:d0:e7:f7:2f:9f:da:f9: 3f:bd:3a:76:88:ca:b6:21:c7:c0:46:82:6b:8b:f3:30:f1:56: a5:1a:42:81:ec:04:38:b9:bd:53:2f:b0:c1:9d:b1:e9:ce:50: a8:95:22:2f:9c:a1:08:3e:ce:43:37:b7:84:a8:fc:e9:2f:09: b2:ac:9f:3f:9f:ac:d1:0f:4f:81:5b:02:b7:b2:cf:c6:86:c8: cc:c8:0a:ee:96:ff:6b:63:ed:6b:be:a9:35:56:ab:05:fe:07: 7d:fc:00:22:cf:25:bf:85:2d:68:2c:0b:91:09:35:c0:bf:bf: f3:d0:35:41:da:5e:fd:99:31:81:39:af:27:4f:2b:46:4b:e6: f2:35:67:a5:9e:c9:79:4e:17:9b:5c:c8:a0:45:61:4c:d4:7d: ab:a7:d3:67:92:b7:f5:dd:6d:c2:3d:32:97:17:d2:6d:51:5a: f4:47:f9:f7:f9:d9:26:df:98:d0:c7:25:49:01:2d:5a:f4:5c: 6d:56:c2:f0 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUBNSWZBr1e97AGY8Cv2MXSRQ4MmIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGRhNjVlZjBlYjYzYzg3ODlkYWJkYTM5OTUxYWYxMDA3 NzFkOWVlMTMwNDU1OGZkYmYwHhcNMjQwOTE0MDExNzMyWhcNMjUwOTEzMDEyMjMy WjAzMTEwLwYDVQQDEyg0M0RFQzcyOEVGQzY2QTEzMUVCOUE0OTg1Q0U2M0YzODFG NUZGNEJBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0MlKuDyMepG 49k2iFPFjZER3YpWZP2vZs35wHREOr500DdI8XL0Ct47KpYriYex3/iE+Ollp3L2 J9zzYMHZJzSlSFclOgSBnPNhEC7aDGppxlCvewS8WGEFcYPj3ba2sYJ3r3D8VrOR hHkjjzNDyvfCVx9cYe9q2B44bE/YBJhUhbop+BaTXjnoOscuXMcGAGUqfX+FDqvK R+0OGG5ZeUReqmFJNefV3PznMynZxdYSXEvbC+/PkY0xfkTi0505lpokx5eMM23R bvWolAF6oorZ0PPjIN9REoVjhLWQ3mpfkUW5tiThePxdMkNi9qx05Yd95rbrfF9e AB89INLC8wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEPexyjvxmoTHrmkmFzmPzgf X/S6MB8GA1UdIwQYMBaAFAnSqdqPBl+ZWa6cywXf1QsjqL75MA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTIvMDlEMkE5REE4RjA2NUY5OTU5QUU5Q0NCMDVERkQ1MEIyM0E4QkVG OS5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjLzU4OWM4NDBkLTU0MDYtNDViZC1hYzFkLWQ3N2IzYzVj Mzc4MC8wZGE2NWVmMGViNjNjODc4OWRhYmRhMzk5NTFhZjEwMDc3MWQ5ZWUxMzA0 NTU4ZmRiZi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTIvMzIzMzJlMzEzNDM0MmUzMTM2MzAy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzMyMzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF5Cg MA0GCSqGSIb3DQEBCwUAA4IBAQCnnrji8B6//3HtXlHiiSS4iASlRcETVxy6bk77 dOfKW4F1pyqlB/7TkevDoAFtERdykmZ1gJHbyvn+GWN5C5nSEtDn9y+f2vk/vTp2 iMq2IcfARoJri/Mw8ValGkKB7AQ4ub1TL7DBnbHpzlColSIvnKEIPs5DN7eEqPzp LwmyrJ8/n6zRD0+BWwK3ss/GhsjMyArulv9rY+1rvqk1VqsF/gd9/AAizyW/hS1o LAuRCTXAv7/z0DVB2l79mTGBOa8nTytGS+byNWelnsl5ThebXMigRWFM1H2rp9Nn krf13W3CPTKXF9JtUVr0R/n3+dkm35jQxyVJAS1a9FxtVsLw -----END CERTIFICATE-----Generated at Fri Nov 22 08:14:00 2024 by rpki-client on console-ams.rpki-client.org