$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a616361303a3a2f34342d3438203d3e20323132323435.roa File: 326131313a663263303a616361303a3a2f34342d3438203d3e20323132323435.roa (raw, json) Hash identifier: CCNk9XY2QHD/b3jWZi363Jj900j75CnbAukUts4RWyQ= Subject key identifier: 22:42:21:23:10:20:C6:4A:EF:C8:AB:C2:38:D6:94:25:3F:8A:5F:87 Certificate issuer: /CN=970AD94C83244100A97F9186D53DADAB07995EE9 Certificate serial: 0F644AF7CE2F86A2759480C3FAF29C248C07A699 Authority key identifier: 97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a616361303a3a2f34342d3438203d3e20323132323435.roa Signing time: Sun 08 Jun 2025 19:45:46 +0000 ROA not before: Sun 08 Jun 2025 19:40:46 +0000 ROA not after: Sun 07 Jun 2026 19:45:46 +0000 asID: 212245 IP address blocks: 2a11:f2c0:aca0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 04:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:64:4a:f7:ce:2f:86:a2:75:94:80:c3:fa:f2:9c:24:8c:07:a6:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=970AD94C83244100A97F9186D53DADAB07995EE9 Validity Not Before: Jun 8 19:40:46 2025 GMT Not After : Jun 7 19:45:46 2026 GMT Subject: CN=224221231020C64AEFC8ABC238D694253F8A5F87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:66:9c:8c:3f:c1:df:28:3a:87:62:81:93:63: bb:dd:95:7f:83:29:f4:c3:cf:65:6e:57:5c:9f:c1: a8:dd:b7:ad:d9:69:d6:34:47:1a:74:d9:8c:17:c8: b1:0d:ce:fa:a8:73:96:5b:e7:5c:21:c6:ca:3e:48: b0:03:f7:52:82:59:87:fd:9e:77:59:44:b8:4a:7e: 5d:6f:ea:c3:7d:21:55:14:8e:74:af:e0:08:d2:ec: 82:3a:86:6d:e8:94:6c:36:30:92:41:7a:44:d0:1e: a0:b1:14:80:a6:83:4e:b4:a1:98:92:53:3a:9b:65: 96:a8:93:58:d2:50:8b:32:9b:ff:94:fe:20:13:d9: f8:c3:05:6d:b1:1c:4c:49:69:4e:13:8a:59:61:ab: 93:04:68:e1:84:96:0c:f2:63:11:1a:c1:c5:ab:e8: 0b:2d:d4:f0:04:a9:88:e5:dc:b2:a9:c9:d6:9e:54: 24:01:7f:f6:88:ad:db:24:45:52:03:cd:55:e7:ab: 2a:a8:58:ea:20:b9:31:f6:03:b7:0a:8d:39:ed:fb: 93:cd:46:d8:72:58:5e:e2:37:2b:4a:18:f0:ea:03: ba:9d:aa:31:e9:65:01:b2:ea:6b:a3:c5:ea:ec:92: b7:40:e6:17:6e:db:5b:92:3c:9d:9f:29:a3:3a:eb: 06:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:42:21:23:10:20:C6:4A:EF:C8:AB:C2:38:D6:94:25:3F:8A:5F:87 X509v3 Authority Key Identifier: keyid:97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a616361303a3a2f34342d3438203d3e20323132323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:aca0::/44 Signature Algorithm: sha256WithRSAEncryption 23:0c:78:93:5d:87:e3:3a:0b:bc:bd:1e:ec:54:44:3e:98:1e: cc:4a:25:bf:35:24:f4:ee:dc:1c:75:fa:14:b8:2e:14:6a:ef: 6e:24:db:94:de:73:65:0f:28:ea:ae:b6:ff:ad:0c:32:1f:31: 73:59:02:bf:75:11:f7:6a:06:9b:90:6b:4c:6c:68:8e:2d:8d: 9c:20:d7:84:6e:d1:92:02:45:ad:14:56:4c:d7:ae:61:56:e7: 73:5f:75:71:9b:97:ba:e7:76:0f:a0:a6:ea:6a:c8:8b:e9:ec: a2:e5:30:33:c5:79:71:50:24:e7:c9:88:50:4b:e6:77:9d:ef: 9a:1e:ea:5f:b1:6a:b6:6b:e1:ac:e8:cd:f6:c8:5f:36:05:4f: f6:bf:c3:93:bb:56:81:36:48:ed:2f:e7:cf:5f:3f:98:33:77: 55:a3:dd:1f:ac:ab:be:20:65:e2:a2:53:7c:cb:49:2f:67:42: 2a:59:72:df:e9:7b:e3:b8:ef:97:dc:b2:07:77:a6:af:a9:79: f3:c8:a4:ec:ee:38:21:df:ee:7e:71:92:ba:d9:b5:69:5f:de: 50:71:34:02:ab:4c:71:59:76:fc:23:cb:4d:ed:a3:23:b5:ce: 11:0b:44:ce:28:54:e0:c8:3f:0e:0e:3b:db:2a:60:6f:94:ae: a0:e5:32:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUD2RK984vhqJ1lIDD+vKcJIwHppkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIw Nzk5NUVFOTAeFw0yNTA2MDgxOTQwNDZaFw0yNjA2MDcxOTQ1NDZaMDMxMTAvBgNV BAMTKDIyNDIyMTIzMTAyMEM2NEFFRkM4QUJDMjM4RDY5NDI1M0Y4QTVGODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ZpyMP8HfKDqHYoGTY7vdlX+D KfTDz2VuV1yfwajdt63ZadY0Rxp02YwXyLENzvqoc5Zb51whxso+SLAD91KCWYf9 nndZRLhKfl1v6sN9IVUUjnSv4AjS7II6hm3olGw2MJJBekTQHqCxFICmg060oZiS UzqbZZaok1jSUIsym/+U/iAT2fjDBW2xHExJaU4Tillhq5MEaOGElgzyYxEawcWr 6Ast1PAEqYjl3LKpydaeVCQBf/aIrdskRVIDzVXnqyqoWOoguTH2A7cKjTnt+5PN RthyWF7iNytKGPDqA7qdqjHpZQGy6mujxerskrdA5hdu21uSPJ2fKaM66wY9AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUIkIhIxAgxkrvyKvCONaUJT+KX4cwHwYDVR0j BBgwFoAUlwrZTIMkQQCpf5GG1T2tqweZXukwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzlkODM5Y2EwYTU1ZTQyYTQ5ZDEwZGUwNzFmNDY1OThiLzAv OTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIwNzk5NUVFOS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy85NzBBRDk0QzgzMjQ0MTAwQTk3RjkxODZENTNEQURB QjA3OTk1RUU5LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV85ZDgz OWNhMGE1NWU0MmE0OWQxMGRlMDcxZjQ2NTk4Yi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjE2MzYxMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMjMxMzIzMjM0MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwQqEfLArKAwDQYJKoZIhvcNAQELBQADggEBACMMeJNdh+M6C7y9 HuxURD6YHsxKJb81JPTu3Bx1+hS4LhRq724k25Tec2UPKOqutv+tDDIfMXNZAr91 EfdqBpuQa0xsaI4tjZwg14Ru0ZICRa0UVkzXrmFW53NfdXGbl7rndg+gpupqyIvp 7KLlMDPFeXFQJOfJiFBL5ned75oe6l+xarZr4azozfbIXzYFT/a/w5O7VoE2SO0v 589fP5gzd1Wj3R+sq74gZeKiU3zLSS9nQipZct/pe+O475fcsgd3pq+pefPIpOzu OCHf7n5xkrrZtWlf3lBxNAKrTHFZdvwjy03toyO1zhELRM4oVODIPw4OO9sqYG+U rqDlMlY= -----END CERTIFICATE-----Generated at Sun Jun 15 13:16:16 2025 by rpki-client