$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa File: 326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa (raw, json) Hash identifier: hqgaxXhgaM7AiSsPcNwqghRTi61TSIKXFax/zJU7ecI= Subject key identifier: 2E:F0:EA:31:A4:E6:DA:0A:0E:B9:12:A2:6C:56:35:6D:E6:DC:FB:2F Certificate issuer: /CN=C2724A29EF989A4340933B8130B402DD4627A501 Certificate serial: 0CC0038A5D86A7794148653A50A289AFA2A545C7 Authority key identifier: C2:72:4A:29:EF:98:9A:43:40:93:3B:81:30:B4:02:DD:46:27:A5:01 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/C2724A29EF989A4340933B8130B402DD4627A501.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa Signing time: Sun 08 Jun 2025 19:42:09 +0000 ROA not before: Sun 08 Jun 2025 19:37:09 +0000 ROA not after: Sun 07 Jun 2026 19:42:09 +0000 asID: 198805 IP address blocks: 2a11:f2c0:ffc3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/C2724A29EF989A4340933B8130B402DD4627A501.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/C2724A29EF989A4340933B8130B402DD4627A501.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/C2724A29EF989A4340933B8130B402DD4627A501.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 01:25:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c0:03:8a:5d:86:a7:79:41:48:65:3a:50:a2:89:af:a2:a5:45:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2724A29EF989A4340933B8130B402DD4627A501 Validity Not Before: Jun 8 19:37:09 2025 GMT Not After : Jun 7 19:42:09 2026 GMT Subject: CN=2EF0EA31A4E6DA0A0EB912A26C56356DE6DCFB2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:b1:06:f0:e1:4f:a1:9f:38:9a:e0:33:d6:1e: 60:da:40:55:9d:50:d2:e9:77:df:9c:14:b0:78:a5: 7f:e6:68:68:c1:29:9d:95:2b:92:e6:12:e6:a0:a9: aa:0f:33:1d:77:b4:c6:27:65:bb:41:36:95:53:09: 9c:82:5b:a6:d6:36:f4:04:f1:4c:47:30:2f:44:3f: 0d:6b:65:22:70:7a:94:56:9f:84:4d:6a:30:0b:51: 5c:36:2e:c2:09:b5:ee:8f:c1:61:61:8f:42:40:70: ac:59:33:54:d6:2b:f5:84:89:6a:d2:17:3f:7b:ed: 60:62:36:58:c9:59:44:17:3e:7a:67:2a:e5:10:a4: 52:19:1f:77:e0:ec:87:7f:a9:a2:ca:df:0f:e0:82: c8:32:75:04:6a:00:47:24:64:6a:25:a2:60:c1:1b: 97:cb:07:f1:4e:69:49:0c:3c:bd:d1:33:cd:0b:fa: 10:bc:7d:1c:eb:33:d3:91:6c:be:a6:ca:f5:b1:7b: 0f:54:bd:50:0d:85:aa:fe:69:bf:87:42:74:de:59: 0c:3e:50:54:3a:7a:93:64:a1:6b:d6:cf:af:11:16: f4:56:75:49:6a:be:dd:a4:1d:36:82:0a:00:70:83: 8a:87:49:a9:22:08:97:77:b5:ff:7d:bc:9d:ef:b6: 1f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F0:EA:31:A4:E6:DA:0A:0E:B9:12:A2:6C:56:35:6D:E6:DC:FB:2F X509v3 Authority Key Identifier: keyid:C2:72:4A:29:EF:98:9A:43:40:93:3B:81:30:B4:02:DD:46:27:A5:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/C2724A29EF989A4340933B8130B402DD4627A501.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/C2724A29EF989A4340933B8130B402DD4627A501.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc3::/48 Signature Algorithm: sha256WithRSAEncryption 51:1d:fe:a2:ad:45:b6:68:c2:57:41:af:17:a8:01:19:d6:6e: d3:0f:59:e8:f9:de:1a:e8:f0:c0:dc:d7:5c:c8:57:7d:88:37: 82:82:73:3a:69:02:f5:b6:f9:0b:5d:e9:43:07:4a:1e:73:de: 35:c8:e0:ce:b9:53:50:20:63:90:00:0e:17:c1:e4:56:18:5f: 34:ec:c4:85:29:05:9a:81:d7:d1:8c:1d:43:b0:fd:64:e9:5f: ae:c1:1e:22:90:90:eb:77:a8:70:d6:78:31:41:f9:90:03:31: 66:d8:45:03:a6:09:a4:40:31:80:01:de:92:fb:a1:85:bd:57: 16:9b:c6:c8:96:49:15:a9:f1:79:91:b4:ae:7a:50:5a:32:87: 4b:11:40:66:4c:29:ac:7d:b2:e1:f6:6b:61:f1:57:1d:03:26: 87:8a:e3:32:27:5a:a8:a5:0b:67:e1:ec:f4:94:08:1a:c2:33: 10:88:84:f4:41:34:e6:51:df:a0:8f:35:9c:b3:d4:87:29:1f: a6:6e:c8:4d:ea:30:3a:8e:ff:46:2a:a1:cb:bb:e8:7b:b2:bd: 3c:00:03:6f:65:de:94:02:8f:ca:c4:a8:59:b0:e0:8b:7a:63: ea:8f:d1:68:86:8e:ac:d2:9c:51:f9:bc:53:94:06:d5:a3:9e: b8:4a:ec:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUDMADil2Gp3lBSGU6UKKJr6KlRccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI3MjRBMjlFRjk4OUE0MzQwOTMzQjgxMzBCNDAyREQ0 NjI3QTUwMTAeFw0yNTA2MDgxOTM3MDlaFw0yNjA2MDcxOTQyMDlaMDMxMTAvBgNV BAMTKDJFRjBFQTMxQTRFNkRBMEEwRUI5MTJBMjZDNTYzNTZERTZEQ0ZCMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKsQbw4U+hnzia4DPWHmDaQFWd UNLpd9+cFLB4pX/maGjBKZ2VK5LmEuagqaoPMx13tMYnZbtBNpVTCZyCW6bWNvQE 8UxHMC9EPw1rZSJwepRWn4RNajALUVw2LsIJte6PwWFhj0JAcKxZM1TWK/WEiWrS Fz977WBiNljJWUQXPnpnKuUQpFIZH3fg7Id/qaLK3w/ggsgydQRqAEckZGolomDB G5fLB/FOaUkMPL3RM80L+hC8fRzrM9ORbL6myvWxew9UvVANhar+ab+HQnTeWQw+ UFQ6epNkoWvWz68RFvRWdUlqvt2kHTaCCgBwg4qHSakiCJd3tf99vJ3vth+9AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQULvDqMaTm2goOuRKibFY1bebc+y8wHwYDVR0j BBgwFoAUwnJKKe+YmkNAkzuBMLQC3UYnpQEwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzhiODNlNjMxMjc5ZjRjNjlhNTNmYWIyNTBiYmU2OWRiLzAv QzI3MjRBMjlFRjk4OUE0MzQwOTMzQjgxMzBCNDAyREQ0NjI3QTUwMS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9DMjcyNEEyOUVGOTg5QTQzNDA5MzNCODEzMEI0MDJE RDQ2MjdBNTAxLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV84Yjgz ZTYzMTI3OWY0YzY5YTUzZmFiMjUwYmJlNjlkYi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM5MzgzODMwMzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8MwDQYJKoZIhvcNAQELBQADggEBAFEd/qKtRbZowldB rxeoARnWbtMPWej53hro8MDc11zIV32IN4KCczppAvW2+Qtd6UMHSh5z3jXI4M65 U1AgY5AADhfB5FYYXzTsxIUpBZqB19GMHUOw/WTpX67BHiKQkOt3qHDWeDFB+ZAD MWbYRQOmCaRAMYAB3pL7oYW9VxabxsiWSRWp8XmRtK56UFoyh0sRQGZMKax9suH2 a2HxVx0DJoeK4zInWqilC2fh7PSUCBrCMxCIhPRBNOZR36CPNZyz1IcpH6ZuyE3q MDqO/0Yqocu76HuyvTwAA29l3pQCj8rEqFmw4It6Y+qP0WiGjqzSnFH5vFOUBtWj nrhK7J0= -----END CERTIFICATE-----Generated at Sun Jun 15 12:08:47 2025 by rpki-client