$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a666666643a3a2f34382d3438203d3e20323035373839.roa File: 326131313a663263303a666666643a3a2f34382d3438203d3e20323035373839.roa (raw, json) Hash identifier: nMLfH1nYsI5mPwv+N0MEzTUVq1YFB35SCmO/3EjXxsg= Subject key identifier: 1C:6C:6F:EB:CE:3F:8C:C0:61:98:D5:49:45:72:1D:32:7E:9D:C0:7A Certificate issuer: /CN=B88A94DCA09E3A653C06F478434DC7C8F21E0518 Certificate serial: 5B21B519C78B094E9C1668DC2A35E075BBF20854 Authority key identifier: B8:8A:94:DC:A0:9E:3A:65:3C:06:F4:78:43:4D:C7:C8:F2:1E:05:18 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a666666643a3a2f34382d3438203d3e20323035373839.roa Signing time: Sun 08 Jun 2025 19:47:00 +0000 ROA not before: Sun 08 Jun 2025 19:42:00 +0000 ROA not after: Sun 07 Jun 2026 19:47:00 +0000 asID: 205789 IP address blocks: 2a11:f2c0:fffd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 16:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:21:b5:19:c7:8b:09:4e:9c:16:68:dc:2a:35:e0:75:bb:f2:08:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B88A94DCA09E3A653C06F478434DC7C8F21E0518 Validity Not Before: Jun 8 19:42:00 2025 GMT Not After : Jun 7 19:47:00 2026 GMT Subject: CN=1C6C6FEBCE3F8CC06198D54945721D327E9DC07A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:20:9c:f1:30:28:79:b9:b6:cf:bd:e0:2b:de: 6a:9a:98:51:20:e7:08:85:b9:33:c1:ea:e5:49:49: ae:2f:ce:0b:c6:a9:cf:29:28:e9:a0:7d:92:a1:97: 9a:84:c1:32:89:75:9b:b6:76:75:d2:9e:86:62:64: 0b:0d:43:e7:35:bb:54:ff:e1:70:46:ab:2a:a7:77: 64:b3:83:ef:28:14:42:1f:fa:53:a7:09:7c:a1:a4: 7b:f6:db:58:1a:6a:6f:ed:a5:fb:16:a4:09:f6:6d: 5a:86:20:ec:e0:b7:9f:59:ec:c8:77:f1:bb:78:5a: 32:6d:df:28:15:01:ef:2e:43:e2:89:80:ec:18:67: f2:4c:48:41:7e:85:0c:ea:21:be:54:75:78:6c:84: fd:6b:76:82:64:54:6d:a2:b6:e9:ca:5b:b4:83:cc: 05:d9:35:a8:d6:b8:2f:f7:8b:8b:d2:15:21:98:95: 4d:8a:8c:af:1a:da:77:bf:6b:da:d1:66:1e:43:49: 97:a6:e3:01:f0:8e:15:65:8c:8e:03:8b:d0:aa:56: fd:3e:ce:c8:a8:cd:40:7e:b6:9c:de:84:6a:39:4f: 2c:8c:4c:8a:a0:05:ce:38:90:42:4d:e4:6a:cc:d3: 28:8f:24:1e:61:05:a2:8b:06:bd:2e:8a:77:3c:ae: fa:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6C:6F:EB:CE:3F:8C:C0:61:98:D5:49:45:72:1D:32:7E:9D:C0:7A X509v3 Authority Key Identifier: keyid:B8:8A:94:DC:A0:9E:3A:65:3C:06:F4:78:43:4D:C7:C8:F2:1E:05:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a666666643a3a2f34382d3438203d3e20323035373839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:fffd::/48 Signature Algorithm: sha256WithRSAEncryption 87:fb:c1:69:a6:e3:96:85:49:ed:71:3f:54:09:86:c7:43:76: ab:b6:34:a8:90:8f:ea:0c:7e:42:5f:60:48:2c:91:b0:8c:52: 1d:8f:65:8e:8f:a6:80:4a:6a:a2:e8:9c:db:20:6e:3b:cf:45: 9d:85:3e:16:4e:bc:41:80:60:cb:11:57:fe:c3:ca:17:70:31: 9e:ef:07:85:93:8b:f8:94:ba:e7:85:d7:33:db:e5:3b:62:84: 8e:95:3d:49:9d:8d:38:95:ce:cb:dc:2d:23:41:8f:6d:be:0b: 87:1a:e1:82:9b:14:c9:7a:b0:a3:3c:f0:a3:11:ed:e1:6a:85: b5:6b:bb:50:4f:ea:45:8b:c6:0d:1e:a3:57:bf:7a:f1:63:a4: 5a:ed:5d:70:da:11:5c:75:22:32:3c:7b:cc:90:57:c0:40:d6: a7:51:f1:c6:25:2b:76:a6:e3:93:28:e9:4e:7b:ae:65:49:43: c2:4d:a0:cb:ed:22:ed:01:50:24:27:a7:2b:ba:1c:f3:6f:a9: 3d:7e:b7:3c:26:9b:4d:62:de:5a:5d:54:35:2d:bb:02:42:e8: f3:ec:f2:5b:34:0e:6f:73:04:8f:32:7d:0b:64:dc:c1:e6:0d: 85:b6:12:c5:03:19:6f:69:a5:9d:09:f2:26:4b:46:aa:b4:f2: cf:a2:54:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUWyG1GceLCU6cFmjcKjXgdbvyCFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg4QTk0RENBMDlFM0E2NTNDMDZGNDc4NDM0REM3QzhG MjFFMDUxODAeFw0yNTA2MDgxOTQyMDBaFw0yNjA2MDcxOTQ3MDBaMDMxMTAvBgNV BAMTKDFDNkM2RkVCQ0UzRjhDQzA2MTk4RDU0OTQ1NzIxRDMyN0U5REMwN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjIJzxMCh5ubbPveAr3mqamFEg 5wiFuTPB6uVJSa4vzgvGqc8pKOmgfZKhl5qEwTKJdZu2dnXSnoZiZAsNQ+c1u1T/ 4XBGqyqnd2Szg+8oFEIf+lOnCXyhpHv221gaam/tpfsWpAn2bVqGIOzgt59Z7Mh3 8bt4WjJt3ygVAe8uQ+KJgOwYZ/JMSEF+hQzqIb5UdXhshP1rdoJkVG2itunKW7SD zAXZNajWuC/3i4vSFSGYlU2KjK8a2ne/a9rRZh5DSZem4wHwjhVljI4Di9CqVv0+ zsiozUB+tpzehGo5TyyMTIqgBc44kEJN5GrM0yiPJB5hBaKLBr0uinc8rvqRAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUHGxv684/jMBhmNVJRXIdMn6dwHowHwYDVR0j BBgwFoAUuIqU3KCeOmU8BvR4Q03HyPIeBRgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzBhNDYzN2RmNWJhNzQzZmVhMWI0ODJiZTgyMzU4MThmLzAv Qjg4QTk0RENBMDlFM0E2NTNDMDZGNDc4NDM0REM3QzhGMjFFMDUxOC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9CODhBOTREQ0EwOUUzQTY1M0MwNkY0Nzg0MzREQzdD OEYyMUUwNTE4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8wYTQ2 MzdkZjViYTc0M2ZlYTFiNDgyYmU4MjM1ODE4Zi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY2NjQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMwMzUzNzM4Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA//0wDQYJKoZIhvcNAQELBQADggEBAIf7wWmm45aFSe1x P1QJhsdDdqu2NKiQj+oMfkJfYEgskbCMUh2PZY6PpoBKaqLonNsgbjvPRZ2FPhZO vEGAYMsRV/7DyhdwMZ7vB4WTi/iUuueF1zPb5TtihI6VPUmdjTiVzsvcLSNBj22+ C4ca4YKbFMl6sKM88KMR7eFqhbVru1BP6kWLxg0eo1e/evFjpFrtXXDaEVx1IjI8 e8yQV8BA1qdR8cYlK3am45Mo6U57rmVJQ8JNoMvtIu0BUCQnpyu6HPNvqT1+tzwm m01i3lpdVDUtuwJC6PPs8ls0Dm9zBI8yfQtk3MHmDYW2EsUDGW9ppZ0J8iZLRqq0 8s+iVII= -----END CERTIFICATE-----Generated at Sun Jun 15 07:52:06 2025 by rpki-client