$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa File: 326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa (raw, json) Hash identifier: MlubGqxKcu9/AdY4j4/cMK0ZlCKeMWkqNbhfRk1N6mE= Subject key identifier: C8:72:07:AB:3C:17:09:77:ED:C3:38:CE:EA:B3:71:33:87:32:5D:8E Certificate issuer: /CN=B8222A845C0CDC59E8D369AE23E116CDDEA08777 Certificate serial: 038F1D625CDF87AC364F9C726D871400A730FA53 Authority key identifier: B8:22:2A:84:5C:0C:DC:59:E8:D3:69:AE:23:E1:16:CD:DE:A0:87:77 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa Signing time: Sun 08 Jun 2025 19:43:04 +0000 ROA not before: Sun 08 Jun 2025 19:38:04 +0000 ROA not after: Sun 07 Jun 2026 19:43:04 +0000 asID: 216141 IP address blocks: 2a11:f2c0:ffc7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 23:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:8f:1d:62:5c:df:87:ac:36:4f:9c:72:6d:87:14:00:a7:30:fa:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8222A845C0CDC59E8D369AE23E116CDDEA08777 Validity Not Before: Jun 8 19:38:04 2025 GMT Not After : Jun 7 19:43:04 2026 GMT Subject: CN=C87207AB3C170977EDC338CEEAB3713387325D8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:30:12:23:4a:b8:09:a6:48:0b:04:7e:90:89: 52:bd:c4:1d:c2:6a:c2:78:97:ea:3d:fc:82:4c:86: 73:16:91:48:c7:76:43:39:dc:82:45:a8:14:fa:98: 56:34:ac:7d:1e:88:7e:ea:65:4d:6d:d7:48:55:7c: ae:f1:c6:23:1c:9b:75:d4:66:bc:16:22:39:90:b1: 05:05:49:bb:2b:8b:bb:c3:83:13:a5:97:4b:59:8d: 12:5b:1e:6a:07:e8:f4:2b:10:9a:82:f2:0a:58:2d: ea:92:fe:c4:b4:8f:ae:02:e6:69:93:a3:4f:5e:4c: 2c:f7:5a:54:d3:89:e5:61:5a:17:e4:2d:2b:cd:b1: f7:b4:ed:8d:f5:3f:65:95:4d:21:ee:a8:2f:52:2b: e5:93:ee:9f:43:49:d7:73:c1:a6:1a:e8:98:c5:67: c3:0f:b6:57:bf:fb:c4:f9:41:5e:25:8a:7e:7c:73: 10:83:40:59:b5:9a:70:a5:d6:6c:3d:bb:86:33:ad: ea:9e:60:ad:0e:cc:f8:bb:58:27:ac:51:be:19:5f: 36:f7:f1:68:27:53:4f:d5:05:2b:2f:e2:20:6d:e3: 51:1b:b5:37:c8:8f:40:79:cd:dc:b8:87:92:c2:67: 6b:29:9c:d5:87:9a:fd:40:77:3a:a2:ba:ca:f2:4d: df:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:72:07:AB:3C:17:09:77:ED:C3:38:CE:EA:B3:71:33:87:32:5D:8E X509v3 Authority Key Identifier: keyid:B8:22:2A:84:5C:0C:DC:59:E8:D3:69:AE:23:E1:16:CD:DE:A0:87:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc7::/48 Signature Algorithm: sha256WithRSAEncryption 14:aa:c2:ad:82:68:8c:0d:fc:3a:d0:94:35:ad:ad:67:f2:af: 42:6d:d0:b7:0d:ff:d1:68:9c:4f:27:fe:1f:18:0f:94:91:a9: a0:bc:1e:1a:99:49:df:8f:57:b3:96:c5:0c:60:48:59:2b:a5: 18:4f:86:0e:f1:bf:d6:95:24:5d:45:91:ee:3e:6c:6a:7b:de: 50:39:e5:76:61:bc:1c:a6:9c:a6:6a:1a:a9:c9:05:1b:86:9e: a1:c4:5d:44:91:b6:72:48:81:a1:77:3e:bd:fa:c8:a7:90:6a: 1a:7c:df:a3:65:5a:95:cb:b4:2d:72:cb:87:42:ba:9c:ed:1f: 29:31:be:66:83:9d:5b:33:03:dc:8b:f9:67:bd:b8:6c:3e:3e: 73:26:5e:af:9d:d2:6a:10:78:2d:01:c6:e2:5b:e6:ac:c3:3c: 56:b9:45:dd:53:2e:58:7b:b5:62:0d:5a:02:a3:e9:46:75:12: 8d:c8:1b:6a:5d:89:24:7c:1f:cf:56:91:ce:ee:06:86:9f:f3: 8a:19:5c:0c:0c:a7:44:9c:dc:d2:b2:75:ce:7c:c4:e0:2f:00: bd:d7:88:b3:b5:1b:d0:14:52:1f:e5:f4:66:c1:d2:c8:2d:5a: bd:29:98:5d:6d:0a:8c:78:29:ad:c6:6f:d3:3e:57:33:d4:40: bb:e1:ba:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUA48dYlzfh6w2T5xybYcUAKcw+lMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjgyMjJBODQ1QzBDREM1OUU4RDM2OUFFMjNFMTE2Q0RE RUEwODc3NzAeFw0yNTA2MDgxOTM4MDRaFw0yNjA2MDcxOTQzMDRaMDMxMTAvBgNV BAMTKEM4NzIwN0FCM0MxNzA5NzdFREMzMzhDRUVBQjM3MTMzODczMjVEOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0MBIjSrgJpkgLBH6QiVK9xB3C asJ4l+o9/IJMhnMWkUjHdkM53IJFqBT6mFY0rH0eiH7qZU1t10hVfK7xxiMcm3XU ZrwWIjmQsQUFSbsri7vDgxOll0tZjRJbHmoH6PQrEJqC8gpYLeqS/sS0j64C5mmT o09eTCz3WlTTieVhWhfkLSvNsfe07Y31P2WVTSHuqC9SK+WT7p9DSddzwaYa6JjF Z8MPtle/+8T5QV4lin58cxCDQFm1mnCl1mw9u4YzreqeYK0OzPi7WCesUb4ZXzb3 8WgnU0/VBSsv4iBt41EbtTfIj0B5zdy4h5LCZ2spnNWHmv1AdzqiusryTd+FAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUyHIHqzwXCXftwzjO6rNxM4cyXY4wHwYDVR0j BBgwFoAUuCIqhFwM3Fno02muI+EWzd6gh3cwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzA5ODBlMjYyZjA4MTQ5MDk5OWRkMGQ1ZTIyOWU5Y2ZhLzAv QjgyMjJBODQ1QzBDREM1OUU4RDM2OUFFMjNFMTE2Q0RERUEwODc3Ny5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9CODIyMkE4NDVDMENEQzU5RThEMzY5QUUyM0UxMTZD RERFQTA4Nzc3LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8wOTgw ZTI2MmYwODE0OTA5OTlkZDBkNWUyMjllOWNmYS8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzczYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzYzMTM0MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8cwDQYJKoZIhvcNAQELBQADggEBABSqwq2CaIwN/DrQ lDWtrWfyr0Jt0LcN/9FonE8n/h8YD5SRqaC8HhqZSd+PV7OWxQxgSFkrpRhPhg7x v9aVJF1Fke4+bGp73lA55XZhvBymnKZqGqnJBRuGnqHEXUSRtnJIgaF3Pr36yKeQ ahp836NlWpXLtC1yy4dCupztHykxvmaDnVszA9yL+We9uGw+PnMmXq+d0moQeC0B xuJb5qzDPFa5Rd1TLlh7tWINWgKj6UZ1Eo3IG2pdiSR8H89Wkc7uBoaf84oZXAwM p0Sc3NKydc58xOAvAL3XiLO1G9AUUh/l9GbB0sgtWr0pmF1tCox4Ka3Gb9M+VzPU QLvhuk4= -----END CERTIFICATE-----Generated at Tue Jul 1 09:13:16 2025 by rpki-client