$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a623030623a3a2f34382d3438203d3e20323035373839.roa File: 326131313a663263303a623030623a3a2f34382d3438203d3e20323035373839.roa (raw, json) Hash identifier: tOaIT6qTvs/T2L2c3rEpmXq3gx7f0jW4s/J1R0UAbuM= Subject key identifier: 80:6B:6D:B5:B2:5E:FB:99:D3:FE:7C:9C:3F:99:F3:EE:08:F6:E3:D1 Certificate issuer: /CN=B88A94DCA09E3A653C06F478434DC7C8F21E0518 Certificate serial: 0F8993F5C8CCEB1B0AA45F5C2445F03BF5FC03DB Authority key identifier: B8:8A:94:DC:A0:9E:3A:65:3C:06:F4:78:43:4D:C7:C8:F2:1E:05:18 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a623030623a3a2f34382d3438203d3e20323035373839.roa Signing time: Sun 08 Jun 2025 19:47:04 +0000 ROA not before: Sun 08 Jun 2025 19:42:04 +0000 ROA not after: Sun 07 Jun 2026 19:47:04 +0000 asID: 205789 IP address blocks: 2a11:f2c0:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 16:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:89:93:f5:c8:cc:eb:1b:0a:a4:5f:5c:24:45:f0:3b:f5:fc:03:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B88A94DCA09E3A653C06F478434DC7C8F21E0518 Validity Not Before: Jun 8 19:42:04 2025 GMT Not After : Jun 7 19:47:04 2026 GMT Subject: CN=806B6DB5B25EFB99D3FE7C9C3F99F3EE08F6E3D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b2:cd:6a:56:e1:5f:2b:ef:5f:95:18:94:20: f5:f7:06:50:e9:1c:1e:eb:44:6b:f1:86:c7:85:53: f4:dd:77:05:3b:de:bc:fa:79:61:f1:fd:f2:d5:b8: 4f:87:68:2e:f8:ab:5a:84:48:79:f7:1d:e0:5e:40: 80:2b:0f:bb:4c:c7:47:33:cf:e0:ef:53:e0:2b:a7: 9d:16:93:75:8e:66:11:6c:1e:35:91:17:6a:6d:1d: 16:ec:04:21:c2:1a:c8:d2:ba:8c:97:6c:1b:6b:1e: 48:b0:0f:2d:c9:db:02:0f:f7:f3:31:6c:6b:3f:a8: e1:d1:40:6e:8c:17:da:22:e7:f3:94:90:a2:65:03: c6:bf:e4:d3:5b:fd:de:6f:d0:c8:42:ef:11:ed:1b: 6f:14:64:62:3a:5b:70:37:d3:32:ce:b2:0b:4c:dd: 73:31:cc:31:d0:ea:ef:02:35:b0:2b:6d:2c:2a:37: e0:c6:21:79:60:8d:be:4a:5b:a1:37:87:6f:e0:94: 74:9f:30:e9:79:4e:6c:6e:22:b6:84:fc:b4:67:39: 70:60:0f:81:1c:d2:8d:d9:22:73:11:f4:71:4b:67: 19:41:09:87:37:46:a8:75:c9:27:e6:1e:50:35:b7: 4d:97:48:5c:58:ae:ae:85:20:c6:b7:59:02:24:f0: 10:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:6B:6D:B5:B2:5E:FB:99:D3:FE:7C:9C:3F:99:F3:EE:08:F6:E3:D1 X509v3 Authority Key Identifier: keyid:B8:8A:94:DC:A0:9E:3A:65:3C:06:F4:78:43:4D:C7:C8:F2:1E:05:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a623030623a3a2f34382d3438203d3e20323035373839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 19:d6:4e:53:e9:b2:9b:91:34:1d:4c:0d:72:7a:fe:b6:c5:4d: 20:f2:94:56:f1:56:9b:f5:df:f2:b2:69:f6:c8:b7:a2:a1:5a: e3:45:3f:ba:6a:a8:90:d8:71:e5:6d:f1:58:9f:a6:ac:25:11: 92:43:67:37:91:05:ef:7b:58:40:9e:cc:d6:4d:11:14:15:43: 46:6c:8e:a2:14:d7:a0:c9:e6:19:f2:29:d8:14:eb:78:49:f8: da:f4:bc:f7:f9:57:25:fa:f4:a2:e6:57:c5:73:52:d3:b1:78: 26:e8:9e:3f:e1:68:e2:50:de:d7:01:ab:3a:e5:d6:0a:1e:c3: ed:d0:f4:db:a7:9d:db:15:26:d0:56:08:80:34:86:47:0b:40: 36:44:19:f1:60:71:6d:4d:66:0c:64:40:ed:e6:bd:a5:fd:53: 29:22:75:70:ac:0c:70:18:63:81:ff:5a:ff:05:f7:3d:42:01: cb:93:cf:a3:16:52:25:0c:ed:b1:50:cf:a7:03:48:c9:2e:a6: fa:f4:29:e5:45:8c:86:ae:ce:de:4a:2c:b1:6e:d9:3d:06:d3: b1:f4:71:f9:0c:7e:d6:53:aa:8c:51:14:b1:6c:65:a0:bc:62: bc:e7:0e:33:10:d2:97:f0:9f:5c:e0:19:56:cc:6f:75:e1:9e: e5:b1:5f:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUD4mT9cjM6xsKpF9cJEXwO/X8A9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg4QTk0RENBMDlFM0E2NTNDMDZGNDc4NDM0REM3QzhG MjFFMDUxODAeFw0yNTA2MDgxOTQyMDRaFw0yNjA2MDcxOTQ3MDRaMDMxMTAvBgNV BAMTKDgwNkI2REI1QjI1RUZCOTlEM0ZFN0M5QzNGOTlGM0VFMDhGNkUzRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpss1qVuFfK+9flRiUIPX3BlDp HB7rRGvxhseFU/TddwU73rz6eWHx/fLVuE+HaC74q1qESHn3HeBeQIArD7tMx0cz z+DvU+Arp50Wk3WOZhFsHjWRF2ptHRbsBCHCGsjSuoyXbBtrHkiwDy3J2wIP9/Mx bGs/qOHRQG6MF9oi5/OUkKJlA8a/5NNb/d5v0MhC7xHtG28UZGI6W3A30zLOsgtM 3XMxzDHQ6u8CNbArbSwqN+DGIXlgjb5KW6E3h2/glHSfMOl5TmxuIraE/LRnOXBg D4Ec0o3ZInMR9HFLZxlBCYc3Rqh1ySfmHlA1t02XSFxYrq6FIMa3WQIk8BC5AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUgGtttbJe+5nT/nycP5nz7gj249EwHwYDVR0j BBgwFoAUuIqU3KCeOmU8BvR4Q03HyPIeBRgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzBhNDYzN2RmNWJhNzQzZmVhMWI0ODJiZTgyMzU4MThmLzAv Qjg4QTk0RENBMDlFM0E2NTNDMDZGNDc4NDM0REM3QzhGMjFFMDUxOC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9CODhBOTREQ0EwOUUzQTY1M0MwNkY0Nzg0MzREQzdD OEYyMUUwNTE4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8wYTQ2 MzdkZjViYTc0M2ZlYTFiNDgyYmU4MjM1ODE4Zi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjIzMDMwNjIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMwMzUzNzM4Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLAsAswDQYJKoZIhvcNAQELBQADggEBABnWTlPpspuRNB1M DXJ6/rbFTSDylFbxVpv13/KyafbIt6KhWuNFP7pqqJDYceVt8VifpqwlEZJDZzeR Be97WECezNZNERQVQ0ZsjqIU16DJ5hnyKdgU63hJ+Nr0vPf5VyX69KLmV8VzUtOx eCbonj/haOJQ3tcBqzrl1goew+3Q9NunndsVJtBWCIA0hkcLQDZEGfFgcW1NZgxk QO3mvaX9UykidXCsDHAYY4H/Wv8F9z1CAcuTz6MWUiUM7bFQz6cDSMkupvr0KeVF jIauzt5KLLFu2T0G07H0cfkMftZTqoxRFLFsZaC8YrznDjMQ0pfwn1zgGVbMb3Xh nuWxXyo= -----END CERTIFICATE-----Generated at Sun Jun 15 07:51:31 2025 by rpki-client