$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: pRpvcvkpUIjn6KDjm+Ywf0niLgvvVoNWrBKMV64s3Gs= Subject key identifier: 87:27:4D:80:1A:E8:33:62:8F:37:EF:22:0F:3E:BA:B4:C8:47:F5:CA Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 764CAA6C3782D371E868471029A7E9B6687EE829 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 08 Jun 2025 19:44:06 +0000 ROA not before: Sun 08 Jun 2025 19:39:06 +0000 ROA not after: Sun 07 Jun 2026 19:44:06 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffdd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4c:aa:6c:37:82:d3:71:e8:68:47:10:29:a7:e9:b6:68:7e:e8:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jun 8 19:39:06 2025 GMT Not After : Jun 7 19:44:06 2026 GMT Subject: CN=87274D801AE833628F37EF220F3EBAB4C847F5CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e6:f8:84:54:f1:71:ef:cb:a9:14:1f:f2:4b: 48:ea:6d:ad:59:da:29:c4:9e:72:32:24:a2:de:c8: 6c:b2:04:7d:17:3a:10:29:ff:da:33:66:c9:e5:04: 15:7a:84:ff:db:f5:67:76:ce:e3:29:60:d7:a2:a4: a4:c9:c0:72:6e:53:16:70:8c:2d:3f:81:dc:c6:5a: 10:0b:c3:50:36:b9:91:0b:44:38:a2:02:c9:a2:33: f9:55:67:5b:9b:87:52:3a:65:f6:db:c1:05:5e:5e: 03:2b:c4:4d:84:c2:6b:25:74:0d:fe:d2:9d:b4:ea: 16:fb:cb:4f:1b:2b:3e:d9:74:e2:90:22:45:01:8d: bf:b7:56:9c:4d:e3:05:4c:8a:d0:c0:7d:d0:c5:94: bb:70:59:ff:45:80:e6:2e:82:5d:51:4b:58:09:b8: 81:73:78:46:0f:3e:61:5a:f9:65:f8:05:65:9f:ec: 40:be:ec:0e:fa:06:12:6b:89:33:5d:92:22:2f:cd: bf:89:b0:0f:52:6c:8d:c7:90:f6:33:3e:7a:b2:c2: ca:98:3c:e6:2d:05:fa:5f:dd:87:72:88:fe:ab:92: 39:4e:61:5c:02:25:3c:4d:c5:4d:fb:3b:4d:02:f1: b3:16:89:6f:b6:bf:fa:26:98:d6:7f:4f:f7:53:a0: 1b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:27:4D:80:1A:E8:33:62:8F:37:EF:22:0F:3E:BA:B4:C8:47:F5:CA X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffdd::/48 Signature Algorithm: sha256WithRSAEncryption 7b:94:be:c2:6c:63:0d:01:ae:ad:eb:aa:81:d8:63:e3:6d:09: 7e:6f:a4:8e:08:1c:68:33:44:d3:8c:c1:64:2f:af:20:3f:aa: ed:48:df:e8:f5:ee:27:a9:a8:86:7b:bd:01:3a:3f:4c:e1:ba: ca:09:44:16:07:63:e1:d1:52:6a:44:2d:67:36:8e:fe:57:c2: dd:78:e3:19:35:3e:ab:5e:f5:04:b8:f2:98:7e:c8:60:7b:3f: f4:52:ee:fa:50:21:c6:e1:71:0f:0a:07:90:d2:42:ea:cd:26: 08:a8:a3:bc:4a:bb:5f:fe:ba:bc:c5:ef:fb:2b:e0:ea:c7:0d: 5c:4b:38:1b:7f:b1:a0:41:1a:ec:80:31:e3:f2:43:87:25:62: 71:1b:9f:cf:a0:b6:76:e0:67:33:7f:cb:71:e2:44:bc:a5:f4: 72:66:13:5c:87:f0:90:58:0c:45:b3:28:f9:91:df:2f:71:ee: 26:30:40:54:8c:24:18:79:b7:71:d1:fe:5b:05:cf:66:95:3c: 52:bd:6b:05:fe:3b:ae:fd:2b:1b:ab:8d:ce:eb:71:4d:b5:ed: c4:4a:93:0f:56:93:6d:90:4a:0d:ee:08:a0:90:e4:b2:ac:e6: 08:72:64:4d:89:1f:5a:1b:55:71:23:13:d2:03:d3:cb:77:6e: 9e:94:9c:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUdkyqbDeC03HoaEcQKafptmh+6CkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNTA2MDgxOTM5MDZaFw0yNjA2MDcxOTQ0MDZaMDMxMTAvBgNV BAMTKDg3Mjc0RDgwMUFFODMzNjI4RjM3RUYyMjBGM0VCQUI0Qzg0N0Y1Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu5viEVPFx78upFB/yS0jqba1Z 2inEnnIyJKLeyGyyBH0XOhAp/9ozZsnlBBV6hP/b9Wd2zuMpYNeipKTJwHJuUxZw jC0/gdzGWhALw1A2uZELRDiiAsmiM/lVZ1ubh1I6ZfbbwQVeXgMrxE2EwmsldA3+ 0p206hb7y08bKz7ZdOKQIkUBjb+3VpxN4wVMitDAfdDFlLtwWf9FgOYugl1RS1gJ uIFzeEYPPmFa+WX4BWWf7EC+7A76BhJriTNdkiIvzb+JsA9SbI3HkPYzPnqywsqY POYtBfpf3YdyiP6rkjlOYVwCJTxNxU37O00C8bMWiW+2v/ommNZ/T/dToBsxAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUhydNgBroM2KPN+8iDz66tMhH9cowHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0NjQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/90wDQYJKoZIhvcNAQELBQADggEBAHuUvsJsYw0Brq3r qoHYY+NtCX5vpI4IHGgzRNOMwWQvryA/qu1I3+j17iepqIZ7vQE6P0zhusoJRBYH Y+HRUmpELWc2jv5Xwt144xk1Pqte9QS48ph+yGB7P/RS7vpQIcbhcQ8KB5DSQurN Jgioo7xKu1/+urzF7/sr4OrHDVxLOBt/saBBGuyAMePyQ4clYnEbn8+gtnbgZzN/ y3HiRLyl9HJmE1yH8JBYDEWzKPmR3y9x7iYwQFSMJBh5t3HR/lsFz2aVPFK9awX+ O679Kxurjc7rcU217cRKkw9Wk22QSg3uCKCQ5LKs5ghyZE2JH1obVXEjE9ID08t3 bp6UnNs= -----END CERTIFICATE-----Generated at Sun Jun 15 23:13:28 2025 by rpki-client