$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa File: 326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa (raw, json) Hash identifier: KUWIZJqj2P5+rqMCtyxvRjTojjJdo7mG970P3wqCh/c= Subject key identifier: B1:70:97:9F:E8:6F:FB:32:3E:37:79:A8:A7:13:E2:F9:1C:45:98:4A Certificate issuer: /CN=970AD94C83244100A97F9186D53DADAB07995EE9 Certificate serial: 78D84221A64492B9A7F6854AA323A849B93501E2 Authority key identifier: 97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa Signing time: Sun 08 Jun 2025 19:45:42 +0000 ROA not before: Sun 08 Jun 2025 19:40:42 +0000 ROA not after: Sun 07 Jun 2026 19:45:42 +0000 asID: 212245 IP address blocks: 2a11:f2c0:fff6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 22:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:d8:42:21:a6:44:92:b9:a7:f6:85:4a:a3:23:a8:49:b9:35:01:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=970AD94C83244100A97F9186D53DADAB07995EE9 Validity Not Before: Jun 8 19:40:42 2025 GMT Not After : Jun 7 19:45:42 2026 GMT Subject: CN=B170979FE86FFB323E3779A8A713E2F91C45984A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b8:6d:dc:ab:6a:94:f0:64:ee:96:fb:13:c1: 94:21:f4:78:1a:19:82:20:ad:f2:f7:3b:95:1a:bb: 96:df:ea:c4:36:dd:16:b3:21:d9:34:70:a1:cf:95: f6:bb:bd:59:f3:7c:32:60:bb:c1:2a:68:a4:79:bd: 8f:3b:30:55:b9:47:17:e1:3f:03:1e:75:ef:d3:cd: 37:96:65:0b:6b:1a:16:4d:d0:41:6e:0a:87:1d:ca: 5a:ff:3e:98:bb:1b:1d:6d:67:0d:88:06:0f:c0:03: d3:d1:9f:aa:44:3f:b3:1c:83:62:7c:0a:f8:49:b4: 72:28:c7:90:2e:86:bc:78:6c:82:85:c2:29:12:d2: 68:d6:56:59:8d:e0:af:d2:21:ff:b5:ff:ea:7e:9f: 93:42:32:d1:c2:25:f2:4c:2f:71:1d:73:4c:57:cc: 26:1e:b3:70:6d:10:fe:d8:8e:6f:f8:bc:5b:79:54: 86:cb:9f:a6:ff:e3:99:6f:e9:09:88:bc:ec:e8:b1: 49:78:b7:b1:bf:63:57:81:8f:0d:6a:0b:b4:2d:df: 03:71:57:23:7f:16:a6:61:05:f3:21:61:3b:e7:52: f3:f1:e5:b7:b8:e4:4c:04:02:53:49:c8:9e:69:71: 36:a9:26:fb:9f:79:ea:27:39:c6:81:52:d9:49:2e: 3d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:70:97:9F:E8:6F:FB:32:3E:37:79:A8:A7:13:E2:F9:1C:45:98:4A X509v3 Authority Key Identifier: keyid:97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:fff6::/48 Signature Algorithm: sha256WithRSAEncryption 66:21:01:6e:89:43:b5:22:cb:43:87:00:5a:cc:d9:dc:df:57: 68:ea:28:af:84:a3:9e:99:d1:d6:4d:59:74:62:c2:85:0b:b1: 2e:ff:38:9c:ed:f9:a5:ba:e4:4f:67:84:78:90:70:72:77:23: 13:29:fd:7b:2f:db:c9:2c:4a:fb:80:9d:0f:86:a4:b3:39:f3: 19:6e:46:23:b6:23:40:5c:a3:fc:1f:88:64:45:8f:66:ee:96: b0:7e:76:eb:72:df:41:b5:08:b1:74:59:b5:d2:fe:d1:51:25: 95:a3:5d:65:87:fa:f2:07:e6:72:c9:b2:37:95:3c:7c:f0:c9: 0f:27:3c:c4:94:8f:84:83:e3:6b:57:66:dc:95:90:f6:b3:fb: 3f:05:8a:f9:ea:61:98:bb:8f:13:58:75:c8:eb:71:6d:1e:26: 7f:54:4b:c1:7b:22:15:c0:fe:ee:e7:a8:77:79:47:b8:16:de: 97:b6:c2:7e:10:76:02:4c:8f:ad:48:0e:b5:ff:af:a2:ed:44: 83:31:de:cf:c9:d0:5b:26:c0:12:b8:2c:1c:78:52:d0:3a:1d: cc:6b:c1:59:65:b3:5f:9a:c3:84:a6:cc:7b:7c:30:8e:36:ce: d0:f3:c9:61:06:02:72:57:93:a5:87:cf:ee:9e:91:a8:e8:fa: 22:94:5f:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUeNhCIaZEkrmn9oVKoyOoSbk1AeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIw Nzk5NUVFOTAeFw0yNTA2MDgxOTQwNDJaFw0yNjA2MDcxOTQ1NDJaMDMxMTAvBgNV BAMTKEIxNzA5NzlGRTg2RkZCMzIzRTM3NzlBOEE3MTNFMkY5MUM0NTk4NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeuG3cq2qU8GTulvsTwZQh9Hga GYIgrfL3O5Uau5bf6sQ23RazIdk0cKHPlfa7vVnzfDJgu8EqaKR5vY87MFW5Rxfh PwMede/TzTeWZQtrGhZN0EFuCocdylr/Ppi7Gx1tZw2IBg/AA9PRn6pEP7Mcg2J8 CvhJtHIox5Auhrx4bIKFwikS0mjWVlmN4K/SIf+1/+p+n5NCMtHCJfJML3Edc0xX zCYes3BtEP7Yjm/4vFt5VIbLn6b/45lv6QmIvOzosUl4t7G/Y1eBjw1qC7Qt3wNx VyN/FqZhBfMhYTvnUvPx5be45EwEAlNJyJ5pcTapJvufeeonOcaBUtlJLj2dAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUsXCXn+hv+zI+N3mopxPi+RxFmEowHwYDVR0j BBgwFoAUlwrZTIMkQQCpf5GG1T2tqweZXukwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzlkODM5Y2EwYTU1ZTQyYTQ5ZDEwZGUwNzFmNDY1OThiLzAv OTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIwNzk5NUVFOS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy85NzBBRDk0QzgzMjQ0MTAwQTk3RjkxODZENTNEQURB QjA3OTk1RUU5LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV85ZDgz OWNhMGE1NWU0MmE0OWQxMGRlMDcxZjQ2NTk4Yi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY2MzYzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzIzMjM0MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA//YwDQYJKoZIhvcNAQELBQADggEBAGYhAW6JQ7Uiy0OH AFrM2dzfV2jqKK+Eo56Z0dZNWXRiwoULsS7/OJzt+aW65E9nhHiQcHJ3IxMp/Xsv 28ksSvuAnQ+GpLM58xluRiO2I0Bco/wfiGRFj2bulrB+duty30G1CLF0WbXS/tFR JZWjXWWH+vIH5nLJsjeVPHzwyQ8nPMSUj4SD42tXZtyVkPaz+z8FivnqYZi7jxNY dcjrcW0eJn9US8F7IhXA/u7nqHd5R7gW3pe2wn4QdgJMj61IDrX/r6LtRIMx3s/J 0FsmwBK4LBx4UtA6HcxrwVlls1+aw4SmzHt8MI42ztDzyWEGAnJXk6WHz+6ekajo +iKUX0M= -----END CERTIFICATE-----Generated at Tue Jul 1 12:55:13 2025 by rpki-client