$ rpki-client -vvf rpki.roa.net/rrdp/xTom/54/323630343a653034303a3a2f33322d3438203d3e20393439.roa File: 323630343a653034303a3a2f33322d3438203d3e20393439.roa (raw, json) Hash identifier: iXfj2zkeKxyW481izim0ILvlPX92QHffH91jozS9TaQ= Subject key identifier: 4C:81:45:37:03:55:F6:75:31:13:23:6B:12:B4:EC:D8:3C:16:F6:E1 Certificate issuer: /CN=d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42 Certificate serial: 4712762EE90DBD04527853ACEA190AC5A78A4F47 Authority key identifier: 0E:90:97:02:72:65:2A:8C:17:A1:AC:6D:8E:2C:F8:3A:D2:2A:C7:06 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/54/323630343a653034303a3a2f33322d3438203d3e20393439.roa Signing time: Sat 16 Aug 2025 01:48:21 +0000 ROA not before: Sat 16 Aug 2025 01:43:21 +0000 ROA not after: Sat 15 Aug 2026 01:48:21 +0000 asID: 949 IP address blocks: 2604:e040::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/54/0E90970272652A8C17A1AC6D8E2CF83AD22AC706.crl rsync://rpki.roa.net/rrdp/xTom/54/0E90970272652A8C17A1AC6D8E2CF83AD22AC706.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/71effefa-6381-4c3d-8487-95f07e37a7cf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/71effefa-6381-4c3d-8487-95f07e37a7cf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 29 Oct 2025 02:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:12:76:2e:e9:0d:bd:04:52:78:53:ac:ea:19:0a:c5:a7:8a:4f:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42 Validity Not Before: Aug 16 01:43:21 2025 GMT Not After : Aug 15 01:48:21 2026 GMT Subject: CN=4C8145370355F6753113236B12B4ECD83C16F6E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f8:36:c8:33:c4:92:72:eb:08:d7:38:e7:b0: 39:ac:f6:ae:f2:61:7e:fb:3c:9d:2e:fc:64:d1:34: a7:b2:28:ab:e5:d4:d5:dc:c0:38:7f:ad:bf:54:27: 0d:b5:73:72:2e:75:dc:1b:47:34:df:d9:2b:9c:80: 9e:26:c1:3e:51:03:55:6d:1b:cd:af:e3:24:2f:1c: a0:d9:4a:37:27:80:b7:b4:4f:7a:4c:d5:1d:59:11: 00:3c:4b:9a:7c:4a:0a:59:a4:9d:2d:25:bb:df:0c: cb:37:9d:43:f4:a9:0b:5c:3c:e2:97:43:fe:fc:ba: cf:32:50:f9:8a:6c:84:c8:1e:27:5b:8e:8c:0b:a8: 2a:c3:c9:cb:b5:c9:ce:71:3d:22:83:91:e0:f1:cc: 8b:59:df:eb:58:43:b9:47:05:1e:89:6a:93:c2:8d: ca:26:6d:a1:f5:bd:5b:a1:e3:81:99:3e:c7:46:4a: c2:c6:51:90:0d:00:6d:bc:92:28:70:23:2f:b1:2c: 7a:3b:60:a0:d8:dc:b0:9e:2d:cd:f0:d9:e8:26:74: 4d:c0:c9:3f:88:86:73:56:f1:6f:c8:fc:1a:e5:47: ba:9a:38:d5:0a:af:fb:b3:e4:6a:93:d8:01:f5:be: f6:b1:ef:dd:d2:d4:04:6c:82:2a:7a:0a:97:00:1e: e7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:81:45:37:03:55:F6:75:31:13:23:6B:12:B4:EC:D8:3C:16:F6:E1 X509v3 Authority Key Identifier: keyid:0E:90:97:02:72:65:2A:8C:17:A1:AC:6D:8E:2C:F8:3A:D2:2A:C7:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/54/0E90970272652A8C17A1AC6D8E2CF83AD22AC706.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/54/323630343a653034303a3a2f33322d3438203d3e20393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:e040::/32 Signature Algorithm: sha256WithRSAEncryption 52:48:4c:16:38:22:05:2b:7a:34:1c:48:ec:eb:7b:4c:ac:45: 74:3b:13:2e:e8:5e:dd:33:a3:f3:e8:95:f4:20:91:81:23:98: b4:fa:49:52:12:d9:b5:b7:2a:0b:f1:e5:49:2a:36:d7:b8:b2: 39:d1:dc:49:eb:9e:55:30:a1:ce:f7:93:ff:e3:98:3d:7f:34: 3f:be:fc:2a:70:fc:12:c4:24:c6:89:8d:0d:39:0d:e8:c6:59: 19:37:79:87:03:03:68:13:08:76:34:ff:97:ec:ab:af:a9:ab: 97:fd:72:ec:10:16:42:1b:ff:cf:53:bf:a8:b8:31:d3:a4:87: 26:2c:5b:1b:fc:a2:d1:da:80:5b:23:94:13:37:af:a6:65:b1: 94:a4:a8:e8:77:62:5c:e2:61:0d:fc:8d:f0:c2:b0:71:84:34: 7d:14:97:91:c7:96:06:9c:cf:16:d0:0b:44:9e:d8:ac:95:a5: 2e:aa:51:11:a3:84:76:3d:ab:96:7e:47:eb:4a:60:84:75:7d: 9d:80:23:d3:fa:0a:f8:0e:e8:e9:b4:2f:0d:b0:a5:ee:d0:8a: e0:37:a9:91:37:a2:56:32:d3:c3:90:64:70:0b:cf:3c:7a:cd: 28:e5:03:07:2a:4a:08:bd:16:15:ad:fa:8a:8e:37:34:89:94: a5:8d:dd:2d -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIURxJ2LukNvQRSeFOs6hkKxaeKT0cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDhmZTU2NGIyNmE3ZWQ4NTZkZGYxNTFkZGEwZDk0YjVj ODUxN2I0NDdmOTc1MTJjNDIwHhcNMjUwODE2MDE0MzIxWhcNMjYwODE1MDE0ODIx WjAzMTEwLwYDVQQDEyg0QzgxNDUzNzAzNTVGNjc1MzExMzIzNkIxMkI0RUNEODND MTZGNkUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfg2yDPEknLr CNc457A5rPau8mF++zydLvxk0TSnsiir5dTV3MA4f62/VCcNtXNyLnXcG0c039kr nICeJsE+UQNVbRvNr+MkLxyg2Uo3J4C3tE96TNUdWREAPEuafEoKWaSdLSW73wzL N51D9KkLXDzil0P+/LrPMlD5imyEyB4nW46MC6gqw8nLtcnOcT0ig5Hg8cyLWd/r WEO5RwUeiWqTwo3KJm2h9b1boeOBmT7HRkrCxlGQDQBtvJIocCMvsSx6O2Cg2Nyw ni3N8NnoJnRNwMk/iIZzVvFvyPwa5Ue6mjjVCq/7s+Rqk9gB9b72se/d0tQEbIIq egqXAB7nYwIDAQABo4ICWzCCAlcwHQYDVR0OBBYEFEyBRTcDVfZ1MRMjaxK07Ng8 FvbhMB8GA1UdIwQYMBaAFA6QlwJyZSqMF6GsbY4s+DrSKscGMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTQvMEU5MDk3MDI3MjY1MkE4QzE3QTFBQzZEOEUyQ0Y4M0FEMjJBQzcw Ni5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjLzcxZWZmZWZhLTYzODEtNGMzZC04NDg3LTk1ZjA3ZTM3 YTdjZi9kOGZlNTY0YjI2YTdlZDg1NmRkZjE1MWRkYTBkOTRiNWM4NTE3YjQ0N2Y5 NzUxMmM0Mi5jZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzALhlZyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTQvMzIzNjMwMzQzYTY1MzAzNDMwM2Ez YTJmMzMzMjJkMzQzODIwM2QzZTIwMzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJgTgQDANBgkq hkiG9w0BAQsFAAOCAQEAUkhMFjgiBSt6NBxI7Ot7TKxFdDsTLuhe3TOj8+iV9CCR gSOYtPpJUhLZtbcqC/HlSSo217iyOdHcSeueVTChzveT/+OYPX80P778KnD8EsQk xomNDTkN6MZZGTd5hwMDaBMIdjT/l+yrr6mrl/1y7BAWQhv/z1O/qLgx06SHJixb G/yi0dqAWyOUEzevpmWxlKSo6HdiXOJhDfyN8MKwcYQ0fRSXkceWBpzPFtALRJ7Y rJWlLqpREaOEdj2rln5H60pghHV9nYAj0/oK+A7o6bQvDbCl7tCK4DepkTeiVjLT w5BkcAvPPHrNKOUDBypKCL0WFa36io43NImUpY3dLQ== -----END CERTIFICATE-----Generated at Tue Oct 28 16:13:38 2025 by rpki-client