$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/326131313a663263303a666663633a3a2f34382d3438203d3e20323135373638.roa File: 326131313a663263303a666663633a3a2f34382d3438203d3e20323135373638.roa (raw, json) Hash identifier: 40KX5Azg+QOWUNYOrdl6IsWrdX+iJJgcObJYGtl3Q6w= Subject key identifier: 90:7F:5A:A9:57:C4:7E:CA:81:E0:8F:E3:09:51:B1:DC:C8:39:3C:34 Certificate issuer: /CN=AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439 Certificate serial: 77DB9EA68FF952C7D5CD82B31E3864CDCD08A74D Authority key identifier: AF:5A:EE:5A:C3:83:5D:AD:FF:52:DC:E6:BE:76:F9:83:2B:C3:D4:39 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/326131313a663263303a666663633a3a2f34382d3438203d3e20323135373638.roa Signing time: Sun 08 Jun 2025 19:43:52 +0000 ROA not before: Sun 08 Jun 2025 19:38:52 +0000 ROA not after: Sun 07 Jun 2026 19:43:52 +0000 asID: 215768 IP address blocks: 2a11:f2c0:ffcc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:db:9e:a6:8f:f9:52:c7:d5:cd:82:b3:1e:38:64:cd:cd:08:a7:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439 Validity Not Before: Jun 8 19:38:52 2025 GMT Not After : Jun 7 19:43:52 2026 GMT Subject: CN=907F5AA957C47ECA81E08FE30951B1DCC8393C34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f2:2a:b7:a7:d2:13:8b:cf:bd:f6:bc:b6:1f: 97:41:d6:6c:1c:f2:1e:ad:f4:cb:29:13:80:23:01: 08:ca:f8:bc:76:15:ce:cf:e8:8b:4e:0f:99:44:e7: 23:e6:c5:d3:3d:98:0f:ae:08:63:81:e4:88:d9:e1: b1:c6:b5:3e:d5:da:e4:e0:62:be:90:0f:d5:b5:c6: 16:93:8e:ca:a1:59:17:ad:5b:6c:08:45:7b:ef:dd: d6:fb:f2:9d:cf:30:56:65:5d:0b:f4:23:f3:82:36: a7:fb:88:4c:0b:7b:11:2f:7b:d2:70:2d:6a:de:87: 00:97:39:72:2e:ef:16:ee:e6:63:34:cb:94:97:bc: 93:3b:ef:4a:15:bf:17:5b:6d:fe:87:2e:00:e2:65: 12:45:11:28:09:6e:38:26:5c:c6:d2:66:43:c8:a1: 9a:50:f7:c2:62:c0:24:fe:43:c1:08:d5:66:56:5d: 12:c9:99:af:26:b3:ba:b9:6d:04:b6:97:df:db:fc: 01:f9:08:24:3c:53:e8:41:38:b6:c8:d3:94:04:1b: f7:ed:65:27:e8:4b:c0:7b:12:a7:30:aa:ab:e0:ac: d0:f8:78:30:90:82:1f:84:01:f0:e5:4e:86:c7:0a: 48:95:a5:46:60:b0:2b:40:f2:87:95:0f:a6:46:61: df:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:7F:5A:A9:57:C4:7E:CA:81:E0:8F:E3:09:51:B1:DC:C8:39:3C:34 X509v3 Authority Key Identifier: keyid:AF:5A:EE:5A:C3:83:5D:AD:FF:52:DC:E6:BE:76:F9:83:2B:C3:D4:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/326131313a663263303a666663633a3a2f34382d3438203d3e20323135373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffcc::/48 Signature Algorithm: sha256WithRSAEncryption 7e:1d:01:24:83:7d:59:0e:9f:c1:86:3a:42:67:f0:63:4f:bf: f3:dd:49:41:83:cf:c0:dc:05:1b:83:54:4c:25:eb:3b:70:5d: 14:0d:b4:9d:36:6e:0a:9d:02:83:fe:34:37:2c:18:21:3f:15: 48:e3:e0:b8:b9:24:7c:77:38:39:bc:c1:40:43:23:5d:ee:f2: 98:90:1d:9d:ac:44:48:e2:0b:39:82:f5:75:c5:67:86:51:94: c4:25:51:9e:e6:09:ad:34:93:01:79:d1:a5:49:28:e5:01:bf: ee:90:9a:7a:4c:46:dc:26:86:63:8f:19:71:2d:29:fc:31:2b: d8:6f:c9:de:e0:88:3c:7f:30:b4:d0:ab:60:3e:0e:cb:e9:3c: 1d:e2:56:e9:1c:50:30:2d:9b:9b:58:a7:c0:11:f0:cb:ad:65: a3:42:f0:91:46:46:7d:21:61:fe:06:7a:8a:54:a3:7c:69:bd: c6:a2:d3:df:29:32:26:ff:85:c7:bc:f0:13:01:b7:ba:0e:46: 74:25:ed:ce:a8:7a:d9:ff:26:77:f6:72:de:b7:e6:ec:e8:30: d9:77:e5:3b:75:e4:75:6f:5c:ec:ea:65:35:fc:fe:0b:39:bd: 3d:01:9b:f4:70:2c:f6:50:71:1c:f7:52:48:91:56:89:3e:61: f8:87:62:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUd9uepo/5UsfVzYKzHjhkzc0Ip00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1QUVFNUFDMzgzNURBREZGNTJEQ0U2QkU3NkY5ODMy QkMzRDQzOTAeFw0yNTA2MDgxOTM4NTJaFw0yNjA2MDcxOTQzNTJaMDMxMTAvBgNV BAMTKDkwN0Y1QUE5NTdDNDdFQ0E4MUUwOEZFMzA5NTFCMURDQzgzOTNDMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa8iq3p9ITi8+99ry2H5dB1mwc 8h6t9MspE4AjAQjK+Lx2Fc7P6ItOD5lE5yPmxdM9mA+uCGOB5IjZ4bHGtT7V2uTg Yr6QD9W1xhaTjsqhWRetW2wIRXvv3db78p3PMFZlXQv0I/OCNqf7iEwLexEve9Jw LWrehwCXOXIu7xbu5mM0y5SXvJM770oVvxdbbf6HLgDiZRJFESgJbjgmXMbSZkPI oZpQ98JiwCT+Q8EI1WZWXRLJma8ms7q5bQS2l9/b/AH5CCQ8U+hBOLbI05QEG/ft ZSfoS8B7EqcwqqvgrND4eDCQgh+EAfDlTobHCkiVpUZgsCtA8oeVD6ZGYd/9AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUkH9aqVfEfsqB4I/jCVGx3Mg5PDQwHwYDVR0j BBgwFoAUr1ruWsODXa3/Utzmvnb5gyvD1DkwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhX2E4NDA1ZWI1M2RlNDQ2YTk5NGQyMWYzYzI3ZWEzZjk4LzAv QUY1QUVFNUFDMzgzNURBREZGNTJEQ0U2QkU3NkY5ODMyQkMzRDQzOS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9BRjVBRUU1QUMzODM1REFERkY1MkRDRTZCRTc2Rjk4 MzJCQzNENDM5LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV9hODQw NWViNTNkZTQ0NmE5OTRkMjFmM2MyN2VhM2Y5OC8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzNjMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzNzM2Mzgu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8wwDQYJKoZIhvcNAQELBQADggEBAH4dASSDfVkOn8GG OkJn8GNPv/PdSUGDz8DcBRuDVEwl6ztwXRQNtJ02bgqdAoP+NDcsGCE/FUjj4Li5 JHx3ODm8wUBDI13u8piQHZ2sREjiCzmC9XXFZ4ZRlMQlUZ7mCa00kwF50aVJKOUB v+6QmnpMRtwmhmOPGXEtKfwxK9hvyd7giDx/MLTQq2A+DsvpPB3iVukcUDAtm5tY p8AR8MutZaNC8JFGRn0hYf4GeopUo3xpvcai098pMib/hce88BMBt7oORnQl7c6o etn/Jnf2ct635uzoMNl35Tt15HVvXOzqZTX8/gs5vT0Bm/RwLPZQcRz3UkiRVok+ YfiHYm0= -----END CERTIFICATE-----Generated at Sun Jun 15 20:45:33 2025 by rpki-client