$ rpki-client -vvf rpki.roa.net/rrdp/xTom/54/32332e3133392e3232342e302f32342d3234203d3e203632353939.roa File: 32332e3133392e3232342e302f32342d3234203d3e203632353939.roa (raw, json) Hash identifier: aMDk5M+bc1frV0ppgn/NfzktLrif6fzryiE5H3//RU8= Subject key identifier: 92:FE:1A:47:73:70:21:E2:DF:B7:4C:BA:34:29:AD:81:7F:C4:B2:98 Certificate issuer: /CN=d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42 Certificate serial: 7592C34387158954809955E58203F55384237790 Authority key identifier: 0E:90:97:02:72:65:2A:8C:17:A1:AC:6D:8E:2C:F8:3A:D2:2A:C7:06 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/54/32332e3133392e3232342e302f32342d3234203d3e203632353939.roa Signing time: Thu 07 Aug 2025 17:10:01 +0000 ROA not before: Thu 07 Aug 2025 17:05:01 +0000 ROA not after: Thu 06 Aug 2026 17:10:01 +0000 asID: 62599 IP address blocks: 23.139.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/54/0E90970272652A8C17A1AC6D8E2CF83AD22AC706.crl rsync://rpki.roa.net/rrdp/xTom/54/0E90970272652A8C17A1AC6D8E2CF83AD22AC706.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/71effefa-6381-4c3d-8487-95f07e37a7cf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/71effefa-6381-4c3d-8487-95f07e37a7cf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 02:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:92:c3:43:87:15:89:54:80:99:55:e5:82:03:f5:53:84:23:77:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42 Validity Not Before: Aug 7 17:05:01 2025 GMT Not After : Aug 6 17:10:01 2026 GMT Subject: CN=92FE1A47737021E2DFB74CBA3429AD817FC4B298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e0:db:70:bb:ff:1d:e1:d6:48:0c:02:b4:7f: b9:87:9f:63:c4:c4:3d:64:c5:b6:a4:c7:32:50:e9: 7a:b4:45:77:cc:d5:63:9c:1a:0f:ff:ff:7c:15:e3: 18:6b:f9:08:f4:f8:ad:7c:d8:18:0f:90:73:18:55: c7:2f:db:5f:48:40:c1:3c:13:7b:23:b2:7a:e2:31: 8a:05:e0:5e:ad:3a:f7:5d:7d:54:19:96:84:c1:61: ab:31:a4:94:de:ac:af:78:a2:7d:ac:7e:04:73:12: ef:71:a4:0f:fb:b3:cf:84:47:cc:ff:c5:c0:58:52: a0:16:93:14:92:c5:c0:fd:15:bd:4c:71:c5:6d:0e: 14:d4:b4:2d:7f:98:5b:5c:0c:6d:33:f3:c9:b7:14: a5:f9:fd:fb:5b:da:e8:ba:63:2d:0a:db:e8:2c:12: 3b:e1:fc:12:bb:c5:94:8b:c8:63:8a:37:ed:8f:ec: 23:b7:07:7b:26:48:a9:e1:22:4b:b0:26:c5:ca:79: 38:aa:6a:ea:ca:77:6f:9c:f3:a3:33:ca:89:a2:8b: 9d:42:c6:e7:69:1b:60:8d:85:ba:7d:9c:ee:96:5d: a3:3d:9a:5d:83:90:13:cd:bf:6e:d6:5b:a2:64:a9: bd:17:37:66:f0:ba:c9:11:80:83:dc:2b:d1:ea:e6: be:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:FE:1A:47:73:70:21:E2:DF:B7:4C:BA:34:29:AD:81:7F:C4:B2:98 X509v3 Authority Key Identifier: keyid:0E:90:97:02:72:65:2A:8C:17:A1:AC:6D:8E:2C:F8:3A:D2:2A:C7:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/54/0E90970272652A8C17A1AC6D8E2CF83AD22AC706.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/71effefa-6381-4c3d-8487-95f07e37a7cf/d8fe564b26a7ed856ddf151dda0d94b5c8517b447f97512c42.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/54/32332e3133392e3232342e302f32342d3234203d3e203632353939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.139.224.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:c5:88:da:05:6e:97:3f:b5:17:07:5a:ee:69:d2:0c:88:27: 24:23:b9:c5:00:a9:09:5e:03:c0:ce:50:78:86:17:86:a1:5f: 60:6f:2b:95:a2:89:4c:6c:4c:ef:1d:cd:ab:16:d5:96:82:a4: 95:ad:0f:cd:cb:b6:3b:73:75:6c:1e:59:89:d6:2d:e2:52:37: e2:15:8a:9e:f6:2f:04:5e:f9:3a:47:8b:e0:0c:79:47:a8:7a: 81:9e:6c:da:4c:fe:3d:e2:1d:e2:c0:0f:51:06:ce:ed:f8:37: 58:e6:2f:46:d2:f1:cb:09:58:a1:b2:44:12:bf:0f:3b:8d:14: 3c:41:c5:9d:eb:40:e1:ba:7a:6b:bd:bc:6e:30:2e:b4:d3:f6: a5:32:3c:e7:64:e7:32:80:25:ba:ec:a6:a1:3e:75:74:bc:5b: 94:d7:d4:7c:53:b2:f7:3e:91:04:d1:fe:38:89:dc:bc:b7:9f: 13:0b:48:78:45:1b:40:33:08:e9:d4:52:b5:e0:ff:3c:e8:a6: 3f:b4:29:75:33:7e:d9:d2:3e:12:5b:da:86:65:89:3e:be:58: 16:e3:d3:b9:ac:30:06:f9:ea:f3:8d:dd:1f:50:c6:02:a9:eb: 67:04:11:a0:ce:4a:e3:78:0c:55:89:2e:d0:6f:25:cf:e4:0b: fa:ac:33:5e -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUdZLDQ4cViVSAmVXlggP1U4Qjd5AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDhmZTU2NGIyNmE3ZWQ4NTZkZGYxNTFkZGEwZDk0YjVj ODUxN2I0NDdmOTc1MTJjNDIwHhcNMjUwODA3MTcwNTAxWhcNMjYwODA2MTcxMDAx WjAzMTEwLwYDVQQDEyg5MkZFMUE0NzczNzAyMUUyREZCNzRDQkEzNDI5QUQ4MTdG QzRCMjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeDbcLv/HeHW SAwCtH+5h59jxMQ9ZMW2pMcyUOl6tEV3zNVjnBoP//98FeMYa/kI9PitfNgYD5Bz GFXHL9tfSEDBPBN7I7J64jGKBeBerTr3XX1UGZaEwWGrMaSU3qyveKJ9rH4EcxLv caQP+7PPhEfM/8XAWFKgFpMUksXA/RW9THHFbQ4U1LQtf5hbXAxtM/PJtxSl+f37 W9roumMtCtvoLBI74fwSu8WUi8hjijftj+wjtwd7Jkip4SJLsCbFynk4qmrqyndv nPOjM8qJooudQsbnaRtgjYW6fZzull2jPZpdg5ATzb9u1luiZKm9Fzdm8LrJEYCD 3CvR6ua+5wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJL+GkdzcCHi37dMujQprYF/ xLKYMB8GA1UdIwQYMBaAFA6QlwJyZSqMF6GsbY4s+DrSKscGMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL3Jwa2kucm9hLm5ldC9ycmRw L3hUb20vNTQvMEU5MDk3MDI3MjY1MkE4QzE3QTFBQzZEOEUyQ0Y4M0FEMjJBQzcw Ni5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFj Y2UtMTM3MjI3ZTk3MWFjLzcxZWZmZWZhLTYzODEtNGMzZC04NDg3LTk1ZjA3ZTM3 YTdjZi9kOGZlNTY0YjI2YTdlZDg1NmRkZjE1MWRkYTBkOTRiNWM4NTE3YjQ0N2Y5 NzUxMmM0Mi5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzov L3Jwa2kucm9hLm5ldC9ycmRwL3hUb20vNTQvMzIzMzJlMzEzMzM5MmUzMjMyMzQy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMyMzUzOTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAF4vg MA0GCSqGSIb3DQEBCwUAA4IBAQA+xYjaBW6XP7UXB1ruadIMiCckI7nFAKkJXgPA zlB4hheGoV9gbyuVoolMbEzvHc2rFtWWgqSVrQ/Ny7Y7c3VsHlmJ1i3iUjfiFYqe 9i8EXvk6R4vgDHlHqHqBnmzaTP494h3iwA9RBs7t+DdY5i9G0vHLCVihskQSvw87 jRQ8QcWd60DhunprvbxuMC600/alMjznZOcygCW67KahPnV0vFuU19R8U7L3PpEE 0f44idy8t58TC0h4RRtAMwjp1FK14P886KY/tCl1M37Z0j4SW9qGZYk+vlgW49O5 rDAG+erzjd0fUMYCqetnBBGgzkrjeAxViS7QbyXP5Av6rDNe -----END CERTIFICATE-----Generated at Sun Aug 10 04:50:13 2025 by rpki-client