$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: Kgbp0+Zk4p3tpOkyAtCJ3HEWdnZBbzm3NgMcGrByxQs= Subject key identifier: BF:1F:94:A7:07:5F:FA:26:37:CD:09:B2:4B:A3:05:C7:C0:74:DA:99 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 097545076552AA9419263F3ECF5E6F71E0DEFDA2 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 08 Jun 2025 19:44:27 +0000 ROA not before: Sun 08 Jun 2025 19:39:27 +0000 ROA not after: Sun 07 Jun 2026 19:44:27 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffd1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:75:45:07:65:52:aa:94:19:26:3f:3e:cf:5e:6f:71:e0:de:fd:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jun 8 19:39:27 2025 GMT Not After : Jun 7 19:44:27 2026 GMT Subject: CN=BF1F94A7075FFA2637CD09B24BA305C7C074DA99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d2:9a:84:6c:10:b5:e2:b0:a7:03:13:17:64: 92:4b:4a:11:9e:70:79:5c:9a:a4:cb:24:57:20:54: 93:ed:7f:97:c7:d6:34:40:b5:23:32:84:64:31:67: 34:39:01:d6:b9:42:f0:c1:2f:83:d0:92:95:eb:c0: f1:ad:ec:f6:ff:ad:db:f4:2b:eb:4c:df:43:99:88: 34:b8:f7:17:c8:88:91:77:5e:d1:8c:b2:b1:8b:98: 90:ce:4c:82:b5:9d:78:e0:9a:c3:a7:b2:6c:94:56: f8:fb:30:3a:58:15:b1:26:c7:c9:81:ec:07:56:d1: 14:89:61:b3:1d:a5:e0:49:22:76:45:a1:ba:77:4b: 53:4b:d6:0f:c3:1e:ab:95:68:a7:21:c5:7c:d3:fa: 40:7b:7b:f0:e3:82:f7:47:dc:3b:79:16:65:c3:6b: 5c:51:31:dd:2b:af:b6:cf:a8:41:23:fb:60:e5:1d: bd:04:67:a5:3b:16:e5:27:5a:35:b1:0a:35:b5:c5: 34:29:dd:94:bb:2f:9e:49:97:fb:72:e0:37:60:bd: 07:72:fc:a5:d9:9e:9c:0d:b9:1b:3e:3c:80:f7:1f: ed:a1:d2:76:29:6b:e1:5c:34:35:67:a6:2a:3e:2c: e3:19:8e:19:20:3d:21:f1:b6:8f:f1:b8:e1:d7:50: 8f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:1F:94:A7:07:5F:FA:26:37:CD:09:B2:4B:A3:05:C7:C0:74:DA:99 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffd1::/48 Signature Algorithm: sha256WithRSAEncryption 26:5e:a5:22:3c:60:b3:b9:a6:b6:1d:67:4d:65:97:45:62:b8: b7:85:c4:1e:43:7c:1b:0d:6d:63:a6:0a:2d:e9:cd:57:ca:83: b1:b9:d6:13:28:6e:6d:64:3c:92:1a:23:09:99:d1:88:23:c1: 6d:48:16:32:d1:e0:84:57:35:90:ee:c2:4c:6d:c7:33:3d:fc: b9:92:0d:4e:1c:e5:4a:1f:44:39:15:62:b6:7c:34:0c:c7:9c: 45:88:83:8a:75:e2:e9:b7:b2:3b:33:37:25:8b:a0:a0:da:22: 87:9c:40:94:41:eb:6d:02:eb:5f:2b:35:4c:80:49:8a:1a:40: 2c:10:5f:e6:d3:00:fd:cd:9c:db:53:2e:7a:12:00:65:dd:f7: bf:df:f0:00:6a:70:25:43:bd:dd:f3:40:a4:cc:43:40:4c:1b: 51:56:cd:7e:74:42:a5:37:98:3f:5d:27:d0:05:69:7f:5a:ea: 6f:a8:ba:65:78:92:bd:3f:29:19:bb:d7:c2:4c:eb:d9:a9:55: a5:cf:a1:9c:56:06:2b:02:7c:80:b8:3f:95:46:6e:45:fd:30: 5d:88:91:8f:74:16:6c:27:19:29:0a:98:03:bc:41:40:2f:cb: 80:79:ba:8e:1b:a9:ad:86:e9:d7:01:0b:b8:62:ef:08:32:68: 69:fd:01:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUCXVFB2VSqpQZJj8+z15vceDe/aIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNTA2MDgxOTM5MjdaFw0yNjA2MDcxOTQ0MjdaMDMxMTAvBgNV BAMTKEJGMUY5NEE3MDc1RkZBMjYzN0NEMDlCMjRCQTMwNUM3QzA3NERBOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS0pqEbBC14rCnAxMXZJJLShGe cHlcmqTLJFcgVJPtf5fH1jRAtSMyhGQxZzQ5Ada5QvDBL4PQkpXrwPGt7Pb/rdv0 K+tM30OZiDS49xfIiJF3XtGMsrGLmJDOTIK1nXjgmsOnsmyUVvj7MDpYFbEmx8mB 7AdW0RSJYbMdpeBJInZFobp3S1NL1g/DHquVaKchxXzT+kB7e/DjgvdH3Dt5FmXD a1xRMd0rr7bPqEEj+2DlHb0EZ6U7FuUnWjWxCjW1xTQp3ZS7L55Jl/ty4DdgvQdy /KXZnpwNuRs+PID3H+2h0nYpa+FcNDVnpio+LOMZjhkgPSHxto/xuOHXUI8PAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUvx+Upwdf+iY3zQmyS6MFx8B02pkwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0MzEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/9EwDQYJKoZIhvcNAQELBQADggEBACZepSI8YLO5prYd Z01ll0ViuLeFxB5DfBsNbWOmCi3pzVfKg7G51hMobm1kPJIaIwmZ0YgjwW1IFjLR 4IRXNZDuwkxtxzM9/LmSDU4c5UofRDkVYrZ8NAzHnEWIg4p14um3sjszNyWLoKDa IoecQJRB620C618rNUyASYoaQCwQX+bTAP3NnNtTLnoSAGXd97/f8ABqcCVDvd3z QKTMQ0BMG1FWzX50QqU3mD9dJ9AFaX9a6m+oumV4kr0/KRm718JM69mpVaXPoZxW BisCfIC4P5VGbkX9MF2IkY90FmwnGSkKmAO8QUAvy4B5uo4bqa2G6dcBC7hi7wgy aGn9AWk= -----END CERTIFICATE-----Generated at Sun Jun 15 16:41:12 2025 by rpki-client