$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/326131313a663263303a666330303a3a2f34302d3430203d3e20323032303736.roa File: 326131313a663263303a666330303a3a2f34302d3430203d3e20323032303736.roa (raw, json) Hash identifier: rxzc3BrYti6kxmXubVnEFiS+UC7vkumI3P6AvUB5lwM= Subject key identifier: 9C:67:6C:AF:F2:56:FC:5C:4B:FA:A7:B2:81:4B:F1:0E:3A:22:81:71 Certificate issuer: /CN=1ABB08D41A5A6974320D97887769A15BA6B7EF71 Certificate serial: 2C4EF91DE364D534952F193E3896B1D183C8C2C9 Authority key identifier: 1A:BB:08:D4:1A:5A:69:74:32:0D:97:88:77:69:A1:5B:A6:B7:EF:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1ABB08D41A5A6974320D97887769A15BA6B7EF71.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/326131313a663263303a666330303a3a2f34302d3430203d3e20323032303736.roa Signing time: Sun 08 Jun 2025 19:47:24 +0000 ROA not before: Sun 08 Jun 2025 19:42:24 +0000 ROA not after: Sun 07 Jun 2026 19:47:24 +0000 asID: 202076 IP address blocks: 2a11:f2c0:fc00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/1ABB08D41A5A6974320D97887769A15BA6B7EF71.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/1ABB08D41A5A6974320D97887769A15BA6B7EF71.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1ABB08D41A5A6974320D97887769A15BA6B7EF71.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 02 Jul 2025 00:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:4e:f9:1d:e3:64:d5:34:95:2f:19:3e:38:96:b1:d1:83:c8:c2:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ABB08D41A5A6974320D97887769A15BA6B7EF71 Validity Not Before: Jun 8 19:42:24 2025 GMT Not After : Jun 7 19:47:24 2026 GMT Subject: CN=9C676CAFF256FC5C4BFAA7B2814BF10E3A228171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b6:10:06:dc:17:d7:34:9a:1e:81:4f:7b:1a: e3:80:c7:0a:32:2e:9d:41:7f:62:a8:1b:e7:a2:83: 8c:ef:3f:ab:ef:18:45:ae:73:17:0d:b5:c6:04:ca: ab:ea:3e:ec:d0:7b:35:1b:6c:e3:0c:0a:01:58:ab: c0:ea:26:33:4f:5e:71:65:23:ee:ac:a8:94:2f:5a: 3f:a1:a9:b8:9c:d9:20:ab:75:9c:c5:f1:ad:f0:04: 73:4e:63:a1:a3:f9:b6:c6:6e:35:2e:29:08:bf:6a: 10:ee:8b:8d:c0:96:ec:e6:58:ec:59:ea:ef:fd:83: 3d:5b:ad:2a:77:20:a4:dd:83:76:36:a7:f7:ef:85: 56:01:47:bf:cc:18:39:d0:22:f4:ce:38:b6:d8:ee: 61:be:99:44:0b:dd:30:62:af:ee:fc:54:5e:77:eb: 1b:fb:a8:69:3f:9e:bb:1e:a0:c3:77:ba:70:7f:71: c8:4a:e9:6d:86:73:0e:e0:56:83:62:a8:d0:1d:85: be:b9:7d:17:00:be:f7:f4:6f:06:48:85:a5:6c:8b: 88:ab:f9:f5:fe:21:c1:d5:3a:ba:da:89:c2:2f:3a: a0:49:18:d9:86:52:ca:3b:f5:e2:35:26:cc:e3:46: 2e:62:44:c5:ea:bb:89:e9:d9:a4:0d:28:4e:9f:70: a1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:67:6C:AF:F2:56:FC:5C:4B:FA:A7:B2:81:4B:F1:0E:3A:22:81:71 X509v3 Authority Key Identifier: keyid:1A:BB:08:D4:1A:5A:69:74:32:0D:97:88:77:69:A1:5B:A6:B7:EF:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/1ABB08D41A5A6974320D97887769A15BA6B7EF71.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1ABB08D41A5A6974320D97887769A15BA6B7EF71.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/326131313a663263303a666330303a3a2f34302d3430203d3e20323032303736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 83:bb:df:57:99:8e:fb:01:fc:c8:e2:11:30:f1:ef:7a:6b:78: 5b:c5:8e:e9:ae:bf:57:90:94:c9:03:02:79:b3:d3:73:69:dc: 2a:7e:66:b5:95:3c:c4:38:6c:06:7f:d2:c4:b4:70:a1:ce:eb: fc:7b:82:7b:77:c4:26:5b:87:2c:73:4b:b3:e7:a9:9d:f9:0e: 37:e3:68:7c:f1:cb:6a:3b:da:47:1c:24:d8:99:7a:69:a3:f2: fa:9b:89:e6:e7:f7:de:a5:05:0a:50:b1:78:59:14:f4:3a:6f: 90:41:dc:4b:ec:62:5e:80:25:b2:80:c2:9d:bb:5d:68:4d:f6: d0:84:14:53:87:6a:20:88:36:55:bc:54:f8:3a:51:7d:1c:ec: c2:05:06:ae:ca:99:00:87:65:4a:79:a4:d5:d5:08:37:09:a9: 64:87:1e:0d:96:4c:af:1c:04:1f:53:a8:a7:8e:1e:da:b4:e9: ea:b6:cf:41:16:94:42:93:dd:ad:af:54:c5:74:fc:29:01:d9: d2:96:86:f6:6c:9b:68:c2:50:c5:1d:d1:d9:a2:c9:d5:8e:11: 64:c3:34:3b:51:71:ca:f7:ac:65:30:59:c7:3d:ca:22:ef:c4: 53:8f:4e:78:60:db:de:0c:11:04:7c:35:53:28:42:cd:d0:f8: 8d:fa:4a:7b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIULE75HeNk1TSVLxk+OJax0YPIwskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFCQjA4RDQxQTVBNjk3NDMyMEQ5Nzg4Nzc2OUExNUJB NkI3RUY3MTAeFw0yNTA2MDgxOTQyMjRaFw0yNjA2MDcxOTQ3MjRaMDMxMTAvBgNV BAMTKDlDNjc2Q0FGRjI1NkZDNUM0QkZBQTdCMjgxNEJGMTBFM0EyMjgxNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsthAG3BfXNJoegU97GuOAxwoy Lp1Bf2KoG+eig4zvP6vvGEWucxcNtcYEyqvqPuzQezUbbOMMCgFYq8DqJjNPXnFl I+6sqJQvWj+hqbic2SCrdZzF8a3wBHNOY6Gj+bbGbjUuKQi/ahDui43AluzmWOxZ 6u/9gz1brSp3IKTdg3Y2p/fvhVYBR7/MGDnQIvTOOLbY7mG+mUQL3TBir+78VF53 6xv7qGk/nrseoMN3unB/cchK6W2Gcw7gVoNiqNAdhb65fRcAvvf0bwZIhaVsi4ir +fX+IcHVOrraicIvOqBJGNmGUso79eI1JszjRi5iRMXqu4np2aQNKE6fcKEfAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUnGdsr/JW/FxL+qeygUvxDjoigXEwHwYDVR0j BBgwFoAUGrsI1BpaaXQyDZeId2mhW6a373EwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhX2IzZGE1Nzg1ZjBjODQxYWM4ZGQ4MTViNzM1NDYyM2RmLzAv MUFCQjA4RDQxQTVBNjk3NDMyMEQ5Nzg4Nzc2OUExNUJBNkI3RUY3MS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8xQUJCMDhENDFBNUE2OTc0MzIwRDk3ODg3NzY5QTE1 QkE2QjdFRjcxLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV9iM2Rh NTc4NWYwYzg0MWFjOGRkODE1YjczNTQ2MjNkZi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2MzMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMjMwMzIzMDM3MzYu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQ MA4EAgACMAgDBgAqEfLA/DANBgkqhkiG9w0BAQsFAAOCAQEAg7vfV5mO+wH8yOIR MPHvemt4W8WO6a6/V5CUyQMCebPTc2ncKn5mtZU8xDhsBn/SxLRwoc7r/HuCe3fE JluHLHNLs+epnfkON+NofPHLajvaRxwk2Jl6aaPy+puJ5uf33qUFClCxeFkU9Dpv kEHcS+xiXoAlsoDCnbtdaE320IQUU4dqIIg2VbxU+DpRfRzswgUGrsqZAIdlSnmk 1dUINwmpZIceDZZMrxwEH1Oop44e2rTp6rbPQRaUQpPdra9UxXT8KQHZ0paG9myb aMJQxR3R2aLJ1Y4RZMM0O1FxyvesZTBZxz3KIu/EU49OeGDb3gwRBHw1UyhCzdD4 jfpKew== -----END CERTIFICATE-----Generated at Tue Jul 1 16:09:07 2025 by rpki-client