$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: scCBjh8HfhV3GwKDOrHZF1YXj718at6+uNm0y/KBmOw= Subject key identifier: 13:42:CB:EE:9F:C4:5D:2C:19:42:86:B9:B6:92:05:DD:2F:7B:24:81 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 5A32266E8C57FE688A6DC2A7DBFAAEC0D8DD973F Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 08 Jun 2025 19:44:15 +0000 ROA not before: Sun 08 Jun 2025 19:39:15 +0000 ROA not after: Sun 07 Jun 2026 19:44:15 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffde::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:32:26:6e:8c:57:fe:68:8a:6d:c2:a7:db:fa:ae:c0:d8:dd:97:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jun 8 19:39:15 2025 GMT Not After : Jun 7 19:44:15 2026 GMT Subject: CN=1342CBEE9FC45D2C194286B9B69205DD2F7B2481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:89:74:33:82:ee:16:7e:94:2f:62:f4:07:7e: 58:2f:aa:d5:37:04:ce:6a:b5:d5:5c:eb:38:9b:7b: ab:41:f8:01:98:a1:d8:48:c9:cb:90:b9:62:eb:b2: 83:3c:55:c9:c4:9e:4c:37:31:dc:50:08:a3:62:70: 3f:e8:2d:b4:37:4a:5a:63:01:38:6b:91:96:d9:b0: f6:98:29:38:73:e0:c3:b9:85:b7:63:c7:ba:15:0e: 24:3a:86:a3:3a:57:e8:04:2d:fd:e7:99:bf:78:26: dc:e9:7f:23:72:94:68:e4:f9:3f:95:48:26:11:cb: 84:6e:86:da:94:dd:fc:ba:d2:ef:c2:43:98:ae:f8: f4:ea:b8:7d:79:d6:c3:88:af:21:39:33:d3:f5:46: 1d:c2:a1:f7:30:21:ca:a5:39:f1:43:d9:e3:fa:78: 0f:45:a7:b9:48:96:29:8b:0a:51:1c:47:48:70:99: 26:ad:1d:b4:01:29:e4:14:55:25:3f:e3:ea:f9:95: 6a:85:73:f9:de:6a:3b:40:ca:ba:bf:14:a1:8c:79: f4:2f:e7:4c:73:51:63:aa:85:7a:f6:58:be:e9:c8: 41:02:95:b9:26:40:e7:63:0c:6b:11:41:91:7a:60: 47:94:b3:04:d3:97:26:ca:26:46:78:a2:7f:ae:fc: 9f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:42:CB:EE:9F:C4:5D:2C:19:42:86:B9:B6:92:05:DD:2F:7B:24:81 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffde::/48 Signature Algorithm: sha256WithRSAEncryption 15:ef:4a:6f:8e:51:21:3e:80:14:82:be:41:16:04:af:b1:66: eb:70:31:92:e2:19:5f:5d:08:83:2a:d7:59:29:9e:ea:b2:08: 18:67:c7:74:c9:17:fe:78:64:92:79:54:c1:e0:51:dc:66:21: 46:e1:e1:48:4d:c5:22:e6:72:77:80:b2:90:89:4b:83:19:41: 62:2c:c1:5f:e9:c8:57:9c:70:ec:11:8d:d2:1b:a7:f1:c5:9c: 27:e8:8a:7a:f4:33:20:d2:bb:f3:93:b8:88:ee:17:ea:78:57: 2f:d3:2d:1c:7d:0c:6d:33:1f:83:17:f5:62:c8:83:e1:79:da: c3:86:03:4d:08:96:89:2e:61:25:a8:8d:cf:c7:f4:0d:7c:38: c7:0a:31:3f:55:a2:04:36:0b:bc:b6:4b:27:0f:cc:23:9a:96: c2:16:ad:02:0b:ff:6b:40:3f:97:b6:75:13:81:a5:4a:bb:d8: 6c:fe:1e:45:3f:4f:13:d3:86:68:a5:2b:22:a3:01:f8:87:fd: 54:ef:97:bb:99:2e:a2:3c:e6:9f:f2:30:8e:72:b0:a7:95:56: 88:75:d1:da:58:6c:84:ba:fe:1c:ee:8e:90:c3:92:8a:cb:03: cb:bb:3d:62:3c:f7:1a:1d:a1:1c:5c:99:9d:ce:67:b2:e1:86: 68:fe:07:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUWjImboxX/miKbcKn2/quwNjdlz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNTA2MDgxOTM5MTVaFw0yNjA2MDcxOTQ0MTVaMDMxMTAvBgNV BAMTKDEzNDJDQkVFOUZDNDVEMkMxOTQyODZCOUI2OTIwNUREMkY3QjI0ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjiXQzgu4WfpQvYvQHflgvqtU3 BM5qtdVc6zibe6tB+AGYodhIycuQuWLrsoM8VcnEnkw3MdxQCKNicD/oLbQ3Slpj AThrkZbZsPaYKThz4MO5hbdjx7oVDiQ6hqM6V+gELf3nmb94JtzpfyNylGjk+T+V SCYRy4RuhtqU3fy60u/CQ5iu+PTquH151sOIryE5M9P1Rh3CofcwIcqlOfFD2eP6 eA9Fp7lIlimLClEcR0hwmSatHbQBKeQUVSU/4+r5lWqFc/neajtAyrq/FKGMefQv 50xzUWOqhXr2WL7pyEEClbkmQOdjDGsRQZF6YEeUswTTlybKJkZ4on+u/J8tAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUE0LL7p/EXSwZQoa5tpIF3S97JIEwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0NjUzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/94wDQYJKoZIhvcNAQELBQADggEBABXvSm+OUSE+gBSC vkEWBK+xZutwMZLiGV9dCIMq11kpnuqyCBhnx3TJF/54ZJJ5VMHgUdxmIUbh4UhN xSLmcneAspCJS4MZQWIswV/pyFeccOwRjdIbp/HFnCfoinr0MyDSu/OTuIjuF+p4 Vy/TLRx9DG0zH4MX9WLIg+F52sOGA00IlokuYSWojc/H9A18OMcKMT9VogQ2C7y2 SycPzCOalsIWrQIL/2tAP5e2dROBpUq72Gz+HkU/TxPThmilKyKjAfiH/VTvl7uZ LqI85p/yMI5ysKeVVoh10dpYbIS6/hzujpDDkorLA8u7PWI89xodoRxcmZ3OZ7Lh hmj+B7A= -----END CERTIFICATE-----Generated at Sun Jun 15 23:16:43 2025 by rpki-client