$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: onhCLB3gV3HdQhsHYazqCSyNdZ/2h865cbuFqj2YlvA= Subject key identifier: DF:B7:3B:75:AA:6C:07:EB:44:4D:28:20:44:97:97:CC:6F:E3:47:86 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 45D54605DF4CE8387DA9C1FEB1EAE27DC881680A Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 08 Jun 2025 19:44:11 +0000 ROA not before: Sun 08 Jun 2025 19:39:11 +0000 ROA not after: Sun 07 Jun 2026 19:44:11 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffd0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:d5:46:05:df:4c:e8:38:7d:a9:c1:fe:b1:ea:e2:7d:c8:81:68:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jun 8 19:39:11 2025 GMT Not After : Jun 7 19:44:11 2026 GMT Subject: CN=DFB73B75AA6C07EB444D2820449797CC6FE34786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:dc:e2:ce:14:6a:d6:1d:5d:fc:06:54:9a:91: f7:f4:bb:ef:e3:07:4b:5c:87:71:06:93:ba:97:10: 55:a9:01:37:ba:a9:e2:a7:a9:1f:ea:08:48:52:80: c8:a6:11:3b:35:84:cb:b1:e4:ed:42:ad:2c:40:85: 38:e0:78:d6:e1:23:c0:14:80:84:fb:2b:91:fe:b8: b0:6c:e4:22:3f:f6:da:b7:b9:ba:a2:62:6c:56:96: 47:b1:c7:84:f4:22:46:24:3d:8c:19:87:ad:72:5a: 87:b0:24:6f:e9:0c:60:17:1b:6b:9e:e8:0e:96:5b: 1b:78:43:ff:62:f7:aa:28:3d:d3:f8:e8:8c:99:72: 55:9b:c1:8e:8d:7e:14:cd:0c:7f:19:26:95:a8:da: 8d:49:bb:8d:69:a0:2e:b5:24:35:59:23:79:72:a1: 11:da:bc:ca:b8:00:05:90:38:2f:b1:df:4f:a6:1d: e7:84:d8:d8:46:34:c6:68:2d:ab:f0:72:85:dd:84: 66:dd:a0:70:49:cc:24:22:07:b0:c4:c6:26:02:b9: 14:3a:53:13:03:fb:04:b0:28:ef:e6:f7:78:a4:d9: 61:fb:8b:73:7c:0b:fb:9a:bc:1f:37:25:c9:a6:7f: fb:d1:29:a2:4a:6a:3b:bd:77:74:55:f6:ea:0d:5f: ff:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B7:3B:75:AA:6C:07:EB:44:4D:28:20:44:97:97:CC:6F:E3:47:86 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffd0::/48 Signature Algorithm: sha256WithRSAEncryption 33:4e:ea:44:ad:87:1d:f3:fd:f4:90:5b:75:83:ae:9f:bc:82: f9:1e:47:ac:fb:52:e2:b7:7e:b1:19:bd:ab:01:89:e6:c9:4e: 42:79:0b:e7:1b:c7:63:e6:ff:22:71:eb:5d:50:24:45:31:66: e5:1c:5a:42:ad:c7:91:61:b3:27:b9:17:d2:da:07:7f:e5:78: 25:b3:39:76:39:cc:04:90:d9:43:f5:1c:28:b1:1d:0f:c0:5e: 41:c5:3e:85:ae:65:84:aa:15:fa:db:43:79:cf:cb:90:ba:df: 57:d6:df:7a:7b:81:48:d1:e0:84:8c:5e:e5:39:88:b3:d3:ad: 29:ba:1c:25:15:52:a9:5a:90:a8:38:b5:87:15:59:1e:98:1b: d9:4f:de:15:97:c5:46:16:73:49:80:44:5e:e4:f2:23:ae:f2: 85:86:4a:05:26:dc:ee:1a:c1:fa:32:6d:55:0a:23:50:1d:ab: cc:00:39:c4:48:71:0e:47:54:f6:9f:25:e3:20:00:6e:d2:f5: c0:0f:cf:16:62:07:ca:14:ac:b2:81:31:87:fb:ee:87:d4:e9: b1:50:79:66:7a:e8:10:94:73:5f:be:55:fe:e6:85:80:cf:fa: e6:3f:cd:c0:54:6e:70:53:00:9d:dc:3d:ae:e1:3a:8d:73:90: 6d:e4:8f:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIURdVGBd9M6Dh9qcH+serifciBaAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNTA2MDgxOTM5MTFaFw0yNjA2MDcxOTQ0MTFaMDMxMTAvBgNV BAMTKERGQjczQjc1QUE2QzA3RUI0NDREMjgyMDQ0OTc5N0NDNkZFMzQ3ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk3OLOFGrWHV38BlSakff0u+/j B0tch3EGk7qXEFWpATe6qeKnqR/qCEhSgMimETs1hMux5O1CrSxAhTjgeNbhI8AU gIT7K5H+uLBs5CI/9tq3ubqiYmxWlkexx4T0IkYkPYwZh61yWoewJG/pDGAXG2ue 6A6WWxt4Q/9i96ooPdP46IyZclWbwY6NfhTNDH8ZJpWo2o1Ju41poC61JDVZI3ly oRHavMq4AAWQOC+x30+mHeeE2NhGNMZoLavwcoXdhGbdoHBJzCQiB7DExiYCuRQ6 UxMD+wSwKO/m93ik2WH7i3N8C/uavB83Jcmmf/vRKaJKaju9d3RV9uoNX//TAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQU37c7dapsB+tETSggRJeXzG/jR4YwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/9AwDQYJKoZIhvcNAQELBQADggEBADNO6kSthx3z/fSQ W3WDrp+8gvkeR6z7UuK3frEZvasBiebJTkJ5C+cbx2Pm/yJx611QJEUxZuUcWkKt x5Fhsye5F9LaB3/leCWzOXY5zASQ2UP1HCixHQ/AXkHFPoWuZYSqFfrbQ3nPy5C6 31fW33p7gUjR4ISMXuU5iLPTrSm6HCUVUqlakKg4tYcVWR6YG9lP3hWXxUYWc0mA RF7k8iOu8oWGSgUm3O4awfoybVUKI1Adq8wAOcRIcQ5HVPafJeMgAG7S9cAPzxZi B8oUrLKBMYf77ofU6bFQeWZ66BCUc1++Vf7mhYDP+uY/zcBUbnBTAJ3cPa7hOo1z kG3kj1k= -----END CERTIFICATE-----Generated at Sun Jun 15 17:32:13 2025 by rpki-client