$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_64832611ba064d6b8f9c2b7c73fbd84b/0/326131313a663263303a666666373a3a2f34382d3438203d3e20323039323435.roa File: 326131313a663263303a666666373a3a2f34382d3438203d3e20323039323435.roa (raw, json) Hash identifier: Fb1/PRkI0lrTKbp777DJ9P81eGra7/CB0uA9Vm+bs1w= Subject key identifier: 3F:99:80:E4:58:5F:F2:2B:A0:E6:4F:1A:1E:FC:3F:1E:D7:B8:99:D7 Certificate issuer: /CN=5ABE2F609996476AAFE146BC5A72429B0B205FC0 Certificate serial: 4DDF66EC6855D96D57D64A7FC2BBB29E547FD683 Authority key identifier: 5A:BE:2F:60:99:96:47:6A:AF:E1:46:BC:5A:72:42:9B:0B:20:5F:C0 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/5ABE2F609996476AAFE146BC5A72429B0B205FC0.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_64832611ba064d6b8f9c2b7c73fbd84b/0/326131313a663263303a666666373a3a2f34382d3438203d3e20323039323435.roa Signing time: Sun 08 Jun 2025 19:46:06 +0000 ROA not before: Sun 08 Jun 2025 19:41:06 +0000 ROA not after: Sun 07 Jun 2026 19:46:06 +0000 asID: 209245 IP address blocks: 2a11:f2c0:fff7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_64832611ba064d6b8f9c2b7c73fbd84b/0/5ABE2F609996476AAFE146BC5A72429B0B205FC0.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_64832611ba064d6b8f9c2b7c73fbd84b/0/5ABE2F609996476AAFE146BC5A72429B0B205FC0.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/5ABE2F609996476AAFE146BC5A72429B0B205FC0.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 17 Jun 2025 01:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:df:66:ec:68:55:d9:6d:57:d6:4a:7f:c2:bb:b2:9e:54:7f:d6:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ABE2F609996476AAFE146BC5A72429B0B205FC0 Validity Not Before: Jun 8 19:41:06 2025 GMT Not After : Jun 7 19:46:06 2026 GMT Subject: CN=3F9980E4585FF22BA0E64F1A1EFC3F1ED7B899D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:10:03:80:06:f0:13:90:43:b4:70:a3:f8: 26:be:1d:69:bb:c0:f4:b1:29:d3:6f:a7:4d:da:e2: 57:56:92:09:6f:16:45:56:64:36:98:ed:4a:0b:b7: 83:35:19:ef:aa:a0:58:0e:3a:62:c9:54:fd:ee:09: fa:9c:7c:76:fe:ed:5e:18:b8:58:31:97:c7:b0:93: 0e:f4:2f:fa:6f:59:fe:3c:bd:81:d6:16:60:ed:18: bc:8c:1a:55:23:b6:69:bd:d6:8a:eb:a9:da:d6:83: 7b:fd:a4:96:6a:0a:0f:e2:36:06:62:6d:44:b7:84: f9:1f:f3:ba:26:78:a1:06:d8:05:99:ff:00:62:7e: 09:e5:c1:79:72:2a:9b:5b:98:c7:77:a0:f5:f9:51: 54:4c:b3:fb:ca:d1:45:0d:87:e8:24:f5:4b:4e:64: 09:74:34:5f:8a:08:b0:4e:42:bd:35:c5:2d:db:ea: 56:b9:58:3d:f7:90:77:0d:04:2f:d5:5c:70:84:00: 71:90:dd:9b:73:3e:0c:63:bc:c3:61:57:26:ce:9e: 80:6c:f6:84:d9:2b:10:d5:22:9a:b2:88:74:98:1d: 3a:b4:da:eb:0e:07:8d:f2:47:0b:07:25:d7:27:3a: 64:e7:db:53:b1:25:53:33:3f:15:77:79:a9:5f:d1: 85:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:99:80:E4:58:5F:F2:2B:A0:E6:4F:1A:1E:FC:3F:1E:D7:B8:99:D7 X509v3 Authority Key Identifier: keyid:5A:BE:2F:60:99:96:47:6A:AF:E1:46:BC:5A:72:42:9B:0B:20:5F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_64832611ba064d6b8f9c2b7c73fbd84b/0/5ABE2F609996476AAFE146BC5A72429B0B205FC0.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/5ABE2F609996476AAFE146BC5A72429B0B205FC0.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_64832611ba064d6b8f9c2b7c73fbd84b/0/326131313a663263303a666666373a3a2f34382d3438203d3e20323039323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:fff7::/48 Signature Algorithm: sha256WithRSAEncryption 72:86:35:50:4a:7c:dc:38:ab:29:f8:52:da:b5:44:7a:d7:0c: d2:5a:a0:9d:91:0b:a7:70:97:88:e7:2d:71:04:42:3b:b8:a3: 58:f3:bd:06:85:03:bf:a1:b2:2e:2e:d3:a0:8b:11:cb:49:9f: 29:f0:01:56:69:c8:2f:6b:07:c3:39:56:34:a1:ec:3d:5a:6a: 9b:f2:97:1c:4b:55:16:75:40:50:1f:a8:d8:7f:ee:a1:9a:70: 3e:d8:20:c8:90:08:31:1e:ac:5a:ac:00:a5:20:f3:1c:bd:f6: 14:48:19:7a:45:6f:76:bf:43:6f:5e:bf:e9:53:1f:3b:5c:60: 4e:be:15:d1:b9:3d:79:48:c1:d3:82:9b:99:b6:4e:f3:66:19: 74:b0:80:8c:08:6a:34:53:ed:f0:2f:e2:14:b0:a2:44:08:58: 4a:80:2c:6c:1e:2c:9a:b8:40:9e:6c:cf:83:3a:62:9b:be:d8: bb:46:98:89:eb:7f:a6:91:22:06:f2:81:05:95:2b:8f:ab:0d: 04:56:0c:9b:65:57:f3:23:47:0e:b5:f8:f5:ca:af:90:32:68: bc:e7:24:8e:e7:64:58:1d:a7:f6:92:05:3a:d0:aa:17:dd:ec: a2:12:d6:1a:fd:85:ff:3c:fc:8d:4f:d1:9a:2b:11:68:90:63: ca:0d:b6:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUTd9m7GhV2W1X1kp/wruynlR/1oMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCRTJGNjA5OTk2NDc2QUFGRTE0NkJDNUE3MjQyOUIw QjIwNUZDMDAeFw0yNTA2MDgxOTQxMDZaFw0yNjA2MDcxOTQ2MDZaMDMxMTAvBgNV BAMTKDNGOTk4MEU0NTg1RkYyMkJBMEU2NEYxQTFFRkMzRjFFRDdCODk5RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw1xADgAbwE5BDtHCj+Ca+HWm7 wPSxKdNvp03a4ldWkglvFkVWZDaY7UoLt4M1Ge+qoFgOOmLJVP3uCfqcfHb+7V4Y uFgxl8ewkw70L/pvWf48vYHWFmDtGLyMGlUjtmm91orrqdrWg3v9pJZqCg/iNgZi bUS3hPkf87omeKEG2AWZ/wBifgnlwXlyKptbmMd3oPX5UVRMs/vK0UUNh+gk9UtO ZAl0NF+KCLBOQr01xS3b6la5WD33kHcNBC/VXHCEAHGQ3ZtzPgxjvMNhVybOnoBs 9oTZKxDVIpqyiHSYHTq02usOB43yRwsHJdcnOmTn21OxJVMzPxV3ealf0YXPAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUP5mA5Fhf8iug5k8aHvw/Hte4mdcwHwYDVR0j BBgwFoAUWr4vYJmWR2qv4Ua8WnJCmwsgX8AwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzY0ODMyNjExYmEwNjRkNmI4ZjljMmI3YzczZmJkODRiLzAv NUFCRTJGNjA5OTk2NDc2QUFGRTE0NkJDNUE3MjQyOUIwQjIwNUZDMC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy81QUJFMkY2MDk5OTY0NzZBQUZFMTQ2QkM1QTcyNDI5 QjBCMjA1RkMwLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV82NDgz MjYxMWJhMDY0ZDZiOGY5YzJiN2M3M2ZiZDg0Yi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY2MzczYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMwMzkzMjM0MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA//cwDQYJKoZIhvcNAQELBQADggEBAHKGNVBKfNw4qyn4 Utq1RHrXDNJaoJ2RC6dwl4jnLXEEQju4o1jzvQaFA7+hsi4u06CLEctJnynwAVZp yC9rB8M5VjSh7D1aapvylxxLVRZ1QFAfqNh/7qGacD7YIMiQCDEerFqsAKUg8xy9 9hRIGXpFb3a/Q29ev+lTHztcYE6+FdG5PXlIwdOCm5m2TvNmGXSwgIwIajRT7fAv 4hSwokQIWEqALGweLJq4QJ5sz4M6Ypu+2LtGmInrf6aRIgbygQWVK4+rDQRWDJtl V/MjRw61+PXKr5AyaLznJI7nZFgdp/aSBTrQqhfd7KIS1hr9hf88/I1P0ZorEWiQ Y8oNtuQ= -----END CERTIFICATE-----Generated at Mon Jun 16 14:42:38 2025 by rpki-client