$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa File: 326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa (raw, json) Hash identifier: SZhn4FgWqY4qggdiI6TrYJUIT99auk+OFjrgNv4awjA= Subject key identifier: C9:E8:5F:98:0B:39:21:63:46:F7:53:3A:7A:FC:9B:7B:05:E3:71:30 Certificate issuer: /CN=1D570B984E9C5E382B0A879AA21F6518621F059F Certificate serial: 1121C4A7AE7E88DBE800C9959C1B79F5A83BA04C Authority key identifier: 1D:57:0B:98:4E:9C:5E:38:2B:0A:87:9A:A2:1F:65:18:62:1F:05:9F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa Signing time: Sun 08 Jun 2025 19:43:18 +0000 ROA not before: Sun 08 Jun 2025 19:38:18 +0000 ROA not after: Sun 07 Jun 2026 19:43:18 +0000 asID: 216055 IP address blocks: 2a11:f2c0:ffc8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 Aug 2025 20:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:21:c4:a7:ae:7e:88:db:e8:00:c9:95:9c:1b:79:f5:a8:3b:a0:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D570B984E9C5E382B0A879AA21F6518621F059F Validity Not Before: Jun 8 19:38:18 2025 GMT Not After : Jun 7 19:43:18 2026 GMT Subject: CN=C9E85F980B39216346F7533A7AFC9B7B05E37130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e7:eb:f8:88:90:8a:1d:15:37:f0:33:73:d0: be:f8:de:7b:b4:c3:25:91:cb:7a:65:b9:8c:6d:f6: 41:c9:60:86:ea:a4:e3:6c:6f:fa:5f:ba:87:ac:c9: 84:72:a7:ac:33:1b:01:03:57:7d:78:72:75:ca:d7: 38:4d:d3:e4:b6:78:24:3f:df:69:5f:e7:69:17:76: 42:e0:51:6b:9d:d1:08:59:fd:a8:4e:93:ef:12:4c: 97:50:43:35:1e:ca:2e:0e:c5:00:4c:2a:f4:b7:b7: 52:26:6e:cf:d1:b7:8c:40:a1:5c:9e:d7:cb:67:c9: 17:8a:9d:45:de:bd:f2:8f:0d:64:94:95:b8:ca:69: a8:84:12:81:c2:e3:95:9d:8b:6b:66:a4:23:10:23: 37:6a:e5:4f:72:77:43:d6:eb:99:d3:39:5e:44:31: e2:73:6d:73:4b:e5:95:c3:ce:85:40:da:0c:a7:a8: 33:63:df:45:20:4f:c5:55:ff:eb:81:de:5d:2c:03: 86:7a:47:ea:2d:f7:b1:c1:39:55:21:ba:7b:eb:c6: c1:e7:91:8c:4a:27:8a:7f:6b:90:38:50:cf:6e:23: c5:b5:8f:6a:76:4a:67:91:9c:ff:a8:2a:a9:57:9e: 3c:40:3c:be:46:c9:63:c3:4d:c7:9e:4e:06:39:e6: f0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E8:5F:98:0B:39:21:63:46:F7:53:3A:7A:FC:9B:7B:05:E3:71:30 X509v3 Authority Key Identifier: keyid:1D:57:0B:98:4E:9C:5E:38:2B:0A:87:9A:A2:1F:65:18:62:1F:05:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc8::/48 Signature Algorithm: sha256WithRSAEncryption 6f:d1:0f:dd:a3:2f:37:05:40:92:8d:9c:ef:fe:b0:ec:ba:3d: 47:4e:87:fb:f2:bf:29:2d:07:c1:e7:4b:b7:5e:70:64:1a:ea: fc:53:2e:9e:ca:4b:7a:7c:0e:7f:63:f7:71:4c:32:7b:cc:0b: e7:43:9d:59:27:ff:82:ba:36:52:1a:13:c5:e0:8e:7c:0e:81: a9:16:64:e5:81:22:af:bd:98:a2:84:b7:26:bb:e6:26:4e:17: 2a:68:f9:cb:c9:5e:4a:e2:7a:35:f4:37:89:53:33:0b:06:61: 33:f9:19:91:aa:0e:ca:81:66:5d:84:e2:51:60:ae:e7:73:b9: b5:ea:0d:80:e7:68:44:bd:8a:5e:af:bb:a8:f4:1e:4a:26:f0: 6a:d8:91:91:91:2d:c5:8f:4d:5a:63:cc:c0:97:f7:96:1f:48: 89:30:94:69:8c:49:8f:02:ed:67:ec:55:24:7c:40:22:7f:f0: 01:db:a5:0d:c5:3c:0e:1a:30:c8:cf:15:1d:7d:7b:3b:67:ea: 63:53:0b:9a:3b:b5:36:e7:9e:84:70:17:d3:0f:b7:d8:2e:07: f8:01:3a:63:5d:bc:c6:41:f3:f6:30:38:0a:d1:86:3c:dd:03: d5:0e:88:bd:78:86:2d:87:80:ee:b9:af:f6:de:02:31:2c:26: 8b:79:09:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUESHEp65+iNvoAMmVnBt59ag7oEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ1NzBCOTg0RTlDNUUzODJCMEE4NzlBQTIxRjY1MTg2 MjFGMDU5RjAeFw0yNTA2MDgxOTM4MThaFw0yNjA2MDcxOTQzMThaMDMxMTAvBgNV BAMTKEM5RTg1Rjk4MEIzOTIxNjM0NkY3NTMzQTdBRkM5QjdCMDVFMzcxMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj5+v4iJCKHRU38DNz0L743nu0 wyWRy3pluYxt9kHJYIbqpONsb/pfuoesyYRyp6wzGwEDV314cnXK1zhN0+S2eCQ/ 32lf52kXdkLgUWud0QhZ/ahOk+8STJdQQzUeyi4OxQBMKvS3t1Imbs/Rt4xAoVye 18tnyReKnUXevfKPDWSUlbjKaaiEEoHC45Wdi2tmpCMQIzdq5U9yd0PW65nTOV5E MeJzbXNL5ZXDzoVA2gynqDNj30UgT8VV/+uB3l0sA4Z6R+ot97HBOVUhunvrxsHn kYxKJ4p/a5A4UM9uI8W1j2p2SmeRnP+oKqlXnjxAPL5GyWPDTceeTgY55vDHAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUyehfmAs5IWNG91M6evybewXjcTAwHwYDVR0j BBgwFoAUHVcLmE6cXjgrCoeaoh9lGGIfBZ8wDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzRkNWMzMDlhZTExYTQ0OWVhODQwN2FjZTFmNzkwMWYwLzAv MUQ1NzBCOTg0RTlDNUUzODJCMEE4NzlBQTIxRjY1MTg2MjFGMDU5Ri5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8xRDU3MEI5ODRFOUM1RTM4MkIwQTg3OUFBMjFGNjUx ODYyMUYwNTlGLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV80ZDVj MzA5YWUxMWE0NDllYTg0MDdhY2UxZjc5MDFmMC8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzgzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzYzMDM1MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8gwDQYJKoZIhvcNAQELBQADggEBAG/RD92jLzcFQJKN nO/+sOy6PUdOh/vyvyktB8HnS7decGQa6vxTLp7KS3p8Dn9j93FMMnvMC+dDnVkn /4K6NlIaE8XgjnwOgakWZOWBIq+9mKKEtya75iZOFypo+cvJXkriejX0N4lTMwsG YTP5GZGqDsqBZl2E4lFgrudzubXqDYDnaES9il6vu6j0Hkom8GrYkZGRLcWPTVpj zMCX95YfSIkwlGmMSY8C7WfsVSR8QCJ/8AHbpQ3FPA4aMMjPFR19eztn6mNTC5o7 tTbnnoRwF9MPt9guB/gBOmNdvMZB8/YwOArRhjzdA9UOiL14hi2HgO65r/beAjEs Jot5Cd8= -----END CERTIFICATE-----Generated at Wed Aug 6 11:11:37 2025 by rpki-client