$ rpki-client -vvf rpki.roa.net/rrdp/xTom/53/323630343a653463303a3132303a3a2f34342d3438203d3e203230343733.roa File: 323630343a653463303a3132303a3a2f34342d3438203d3e203230343733.roa (raw, json) Hash identifier: +k+mOUkZP8WH8MqH7BjPHZPTzUxFl+ZCEwarJomGTe0= Subject key identifier: 99:50:E2:34:39:F1:17:FE:5C:DC:31:B7:91:5E:66:76:61:4C:E7:13 Certificate issuer: /CN=81dade47ef565a67c33494e667d03d4da7cff1739b027c640b Certificate serial: 29E231D5B13FBEA74BE231794E8E845E4DAA73E0 Authority key identifier: 74:E3:B9:E1:6E:92:C5:1A:89:79:AD:B5:A7:31:DD:E2:D5:EA:E9:6C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/53/323630343a653463303a3132303a3a2f34342d3438203d3e203230343733.roa Signing time: Thu 10 Apr 2025 11:54:06 +0000 ROA not before: Thu 10 Apr 2025 11:49:06 +0000 ROA not after: Thu 09 Apr 2026 11:54:06 +0000 asID: 20473 IP address blocks: 2604:e4c0:120::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.crl rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/b5ae183e-a402-4c1a-b464-670472e82b72.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/b5ae183e-a402-4c1a-b464-670472e82b72.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:e2:31:d5:b1:3f:be:a7:4b:e2:31:79:4e:8e:84:5e:4d:aa:73:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81dade47ef565a67c33494e667d03d4da7cff1739b027c640b Validity Not Before: Apr 10 11:49:06 2025 GMT Not After : Apr 9 11:54:06 2026 GMT Subject: CN=9950E23439F117FE5CDC31B7915E6676614CE713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:54:64:9b:1b:ba:19:be:0d:da:97:2b:9f:ed: c0:2e:b8:52:bf:3a:7f:54:96:e0:9a:8d:13:58:96: ef:de:f1:8c:b0:f2:26:b5:61:82:e2:dc:c3:00:9f: 1a:25:29:54:28:e2:a5:eb:53:95:ea:f7:81:14:7d: 06:9d:56:97:be:3d:46:b0:eb:9a:3d:fe:bb:14:fe: 11:99:e2:fe:f8:86:1e:0f:91:57:21:d2:4c:80:fb: 0c:7f:6f:58:b9:7d:6e:27:d1:58:60:12:13:ec:c5: a9:09:30:76:0e:f0:82:bb:90:51:93:02:34:c5:a1: 2d:c8:5d:6c:49:cd:b4:79:e5:ee:74:4a:f7:c4:1b: 4e:24:14:97:f4:4c:21:c1:7c:a0:3c:97:9f:31:32: 03:4d:c0:95:37:f6:d6:45:09:2e:c2:1c:96:79:9e: 10:bf:56:f3:49:b3:eb:48:ac:e7:e7:13:92:67:1c: bf:2c:39:48:15:93:24:58:21:e1:88:ac:79:21:7b: 12:8e:ea:18:60:13:9c:ec:ba:e6:85:43:f9:34:39: e0:9c:30:f8:1e:2a:7b:29:49:c2:ba:94:7e:ba:52: 23:2f:60:7a:bd:7c:55:0d:42:ff:ec:a7:df:84:e3: db:2d:41:58:a9:95:d5:d3:cd:25:26:18:50:ea:f2: a0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:50:E2:34:39:F1:17:FE:5C:DC:31:B7:91:5E:66:76:61:4C:E7:13 X509v3 Authority Key Identifier: keyid:74:E3:B9:E1:6E:92:C5:1A:89:79:AD:B5:A7:31:DD:E2:D5:EA:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/53/323630343a653463303a3132303a3a2f34342d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2604:e4c0:120::/44 Signature Algorithm: sha256WithRSAEncryption 2c:b2:50:fc:d3:52:db:a3:a4:2a:55:25:2f:4a:42:1e:d3:9b: d7:a8:53:c4:f7:62:f6:d7:92:a3:bd:a5:2b:00:18:f0:ef:1a: 20:63:8e:4f:57:ab:1a:9a:44:ec:00:1b:30:51:4f:d3:74:a1: 3d:62:66:f6:07:80:9d:1c:32:c4:15:b6:15:01:49:4b:5e:6f: 9e:7c:b1:0e:a5:a2:f7:d6:93:3d:61:91:89:41:9c:ee:db:00: 43:9e:a8:fe:5c:cb:bd:0c:a6:95:e1:ef:0e:ef:c3:bf:66:47: 69:5b:28:30:19:aa:a9:8d:3e:bb:e4:63:6e:6b:9c:2b:2c:31: d0:f7:48:9c:d1:a5:f6:33:15:e3:60:4a:01:10:09:37:ba:fb: 72:0a:04:e1:04:cb:04:7e:7d:db:87:79:4f:f6:fd:1b:8b:6d: 75:47:5e:01:f9:16:24:35:01:22:6d:e4:33:34:87:d7:98:b8: d9:5b:dd:eb:e8:91:1d:f7:4f:22:70:e0:5b:d9:51:14:b6:5a: bf:44:c3:f5:38:81:85:bc:c6:b9:df:06:65:2e:1b:64:4a:8b: 27:7a:e7:70:d6:0f:9e:89:a9:6a:5c:0e:c3:d9:12:b7:35:b3: 92:45:d0:85:20:21:b9:50:88:b1:d0:54:81:c0:c9:31:54:2e: ed:2f:16:ff -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIUKeIx1bE/vqdL4jF5To6EXk2qc+AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODFkYWRlNDdlZjU2NWE2N2MzMzQ5NGU2NjdkMDNkNGRh N2NmZjE3MzliMDI3YzY0MGIwHhcNMjUwNDEwMTE0OTA2WhcNMjYwNDA5MTE1NDA2 WjAzMTEwLwYDVQQDEyg5OTUwRTIzNDM5RjExN0ZFNUNEQzMxQjc5MTVFNjY3NjYx NENFNzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFRkmxu6Gb4N 2pcrn+3ALrhSvzp/VJbgmo0TWJbv3vGMsPImtWGC4tzDAJ8aJSlUKOKl61OV6veB FH0GnVaXvj1GsOuaPf67FP4RmeL++IYeD5FXIdJMgPsMf29YuX1uJ9FYYBIT7MWp CTB2DvCCu5BRkwI0xaEtyF1sSc20eeXudEr3xBtOJBSX9EwhwXygPJefMTIDTcCV N/bWRQkuwhyWeZ4Qv1bzSbPrSKzn5xOSZxy/LDlIFZMkWCHhiKx5IXsSjuoYYBOc 7LrmhUP5NDngnDD4Hip7KUnCupR+ulIjL2B6vXxVDUL/7KffhOPbLUFYqZXV080l JhhQ6vKgcQIDAQABo4ICaTCCAmUwHQYDVR0OBBYEFJlQ4jQ58Rf+XNwxt5FeZnZh TOcTMB8GA1UdIwQYMBaAFHTjueFuksUaiXmttacx3eLV6ulsMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTMvNzRFM0I5RTE2RTkyQzUxQTg5NzlBREI1QTczMURERTJENUVBRTk2 Qy5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjL2I1YWUxODNlLWE0MDItNGMxYS1iNDY0LTY3MDQ3MmU4 MmI3Mi84MWRhZGU0N2VmNTY1YTY3YzMzNDk0ZTY2N2QwM2Q0ZGE3Y2ZmMTczOWIw MjdjNjQwYi5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTMvMzIzNjMwMzQzYTY1MzQ2MzMwM2Ez MTMyMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMjMwMzQzNzMzLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcEJgTkwAEgMA0GCSqGSIb3DQEBCwUAA4IBAQAsslD801Lbo6QqVSUvSkIe05vX qFPE92L215KjvaUrABjw7xogY45PV6samkTsABswUU/TdKE9Ymb2B4CdHDLEFbYV AUlLXm+efLEOpaL31pM9YZGJQZzu2wBDnqj+XMu9DKaV4e8O78O/ZkdpWygwGaqp jT675GNua5wrLDHQ90ic0aX2MxXjYEoBEAk3uvtyCgThBMsEfn3bh3lP9v0bi211 R14B+RYkNQEibeQzNIfXmLjZW93r6JEd908icOBb2VEUtlq/RMP1OIGFvMa53wZl LhtkSosneudw1g+eialqXA7D2RK3NbOSRdCFICG5UIix0FSBwMkxVC7tLxb/ -----END CERTIFICATE-----Generated at Sat Apr 26 19:23:17 2025 by rpki-client