$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: fW3/1bM6uuAVh4/BqcyWFGfZeggD1zO77SW4GWfaw4U= Subject key identifier: F1:85:F8:8A:0A:71:A1:6C:DE:7F:20:36:89:05:9E:95:8A:94:C0:6D Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 5E6EDD470AE71B7FDA4E12532DB1BEC77F50B4E0 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 08 Jun 2025 19:44:19 +0000 ROA not before: Sun 08 Jun 2025 19:39:19 +0000 ROA not after: Sun 07 Jun 2026 19:44:19 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffdc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:6e:dd:47:0a:e7:1b:7f:da:4e:12:53:2d:b1:be:c7:7f:50:b4:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jun 8 19:39:19 2025 GMT Not After : Jun 7 19:44:19 2026 GMT Subject: CN=F185F88A0A71A16CDE7F203689059E958A94C06D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:08:87:2d:d2:7e:4a:d9:4d:40:9e:68:e7:08: 5b:72:27:69:e9:9a:7d:7f:af:55:71:fd:4d:60:85: d6:88:e1:d1:91:3e:1e:83:ae:db:1d:11:4c:a2:d4: a2:42:e1:9b:64:85:18:b1:c4:cb:f3:b6:fe:b4:2a: 58:52:85:2c:fb:e2:df:03:e7:36:60:39:85:07:02: 41:02:8b:8a:c1:0a:c5:be:6f:ca:24:78:41:8b:f2: 43:f1:d2:51:2d:15:06:b1:ec:be:42:91:27:e7:ba: 27:19:87:7f:3e:ab:68:00:bc:33:49:14:f6:41:95: ad:d4:3a:ed:05:84:b8:e0:7b:ca:84:8f:48:77:ca: 2e:bc:16:41:d0:79:14:9a:84:18:d4:32:a6:d9:12: d5:ef:b8:f4:48:3a:3e:b1:32:db:ee:93:06:68:4d: 1c:9c:04:3c:be:83:f6:17:1e:f7:c3:d7:0f:52:be: 09:2e:49:4a:09:64:9b:ae:c6:8e:5c:d3:46:1f:b6: 63:0d:45:a3:94:28:88:b4:68:73:b0:b5:0d:40:32: 91:1f:4b:61:f4:be:c3:01:98:45:7a:8d:59:eb:a3: 03:b4:6a:4d:33:a3:08:82:a2:56:c5:4d:6d:43:4b: d9:65:a4:7c:79:64:94:81:e1:4a:1e:44:ff:74:9d: c4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:85:F8:8A:0A:71:A1:6C:DE:7F:20:36:89:05:9E:95:8A:94:C0:6D X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffdc::/48 Signature Algorithm: sha256WithRSAEncryption a1:0a:a8:94:a0:90:f1:2d:57:02:d8:20:fc:68:e8:55:67:23: 22:a1:c6:f8:51:e1:9a:e8:2e:bb:7a:10:08:41:1d:05:6f:63: a8:03:66:c0:e5:c7:16:58:6f:72:7b:af:6f:c1:61:21:fd:ac: 48:7c:3d:7f:49:18:31:94:57:ee:d7:26:db:42:ba:71:eb:0c: 17:32:49:79:6e:6b:7d:ef:6b:bb:e1:be:41:66:73:34:27:89: e0:6d:ad:db:f7:41:7f:98:e4:ea:fd:09:4d:00:0e:37:ed:18: 42:d5:ff:95:4a:f2:e6:65:84:d9:18:71:80:ca:77:20:a7:16: 48:c9:51:c8:5e:ea:19:7b:b5:84:27:b6:a4:82:43:00:6a:f9: 73:e1:3a:0e:05:26:fc:e4:d9:94:2c:68:ec:e7:e2:b9:80:47: de:01:91:1c:d2:41:be:6c:3d:b5:f5:4d:d9:e0:91:55:00:17: a3:76:66:b6:59:2b:0b:20:0d:d3:23:95:c0:95:0d:67:2a:b9: 43:2f:52:d5:72:1f:3f:fd:85:c7:f6:67:3c:96:60:28:95:a2: 1e:81:76:fb:08:0a:bd:d2:22:9e:c4:dc:d2:7b:4e:6d:9d:6a: 74:5d:4e:a2:e2:8b:b8:d2:ae:7d:66:50:14:9f:6d:8b:6f:8c: 82:c8:68:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUXm7dRwrnG3/aThJTLbG+x39QtOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNTA2MDgxOTM5MTlaFw0yNjA2MDcxOTQ0MTlaMDMxMTAvBgNV BAMTKEYxODVGODhBMEE3MUExNkNERTdGMjAzNjg5MDU5RTk1OEE5NEMwNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYCIct0n5K2U1AnmjnCFtyJ2np mn1/r1Vx/U1ghdaI4dGRPh6DrtsdEUyi1KJC4ZtkhRixxMvztv60KlhShSz74t8D 5zZgOYUHAkECi4rBCsW+b8okeEGL8kPx0lEtFQax7L5CkSfnuicZh38+q2gAvDNJ FPZBla3UOu0FhLjge8qEj0h3yi68FkHQeRSahBjUMqbZEtXvuPRIOj6xMtvukwZo TRycBDy+g/YXHvfD1w9SvgkuSUoJZJuuxo5c00YftmMNRaOUKIi0aHOwtQ1AMpEf S2H0vsMBmEV6jVnrowO0ak0zowiColbFTW1DS9llpHx5ZJSB4UoeRP90ncTBAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQU8YX4igpxoWzefyA2iQWelYqUwG0wHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0NjMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/9wwDQYJKoZIhvcNAQELBQADggEBAKEKqJSgkPEtVwLY IPxo6FVnIyKhxvhR4ZroLrt6EAhBHQVvY6gDZsDlxxZYb3J7r2/BYSH9rEh8PX9J GDGUV+7XJttCunHrDBcySXlua33va7vhvkFmczQnieBtrdv3QX+Y5Or9CU0ADjft GELV/5VK8uZlhNkYcYDKdyCnFkjJUche6hl7tYQntqSCQwBq+XPhOg4FJvzk2ZQs aOzn4rmAR94BkRzSQb5sPbX1TdngkVUAF6N2ZrZZKwsgDdMjlcCVDWcquUMvUtVy Hz/9hcf2ZzyWYCiVoh6BdvsICr3SIp7E3NJ7Tm2danRdTqLii7jSrn1mUBSfbYtv jILIaIc= -----END CERTIFICATE-----Generated at Sun Jun 15 23:18:23 2025 by rpki-client