$ rpki-client -vvf rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3a2f33392d3339203d3e20323130343634.roa File: 326131343a373538333a3a2f33392d3339203d3e20323130343634.roa (raw, json) Hash identifier: MjDlqyLqXAPlx4G6jj/eAEcU/aLYqdD8Oi3UpDW5w0M= Subject key identifier: 78:EA:9D:3D:42:EE:F7:DF:24:6D:20:FC:80:7D:1B:11:0A:43:10:13 Certificate issuer: /CN=A609E97AC39E3F53678C0C9422F89947B6146002 Certificate serial: 0DFD6B96C3881CB51A998027D497530C50909852 Authority key identifier: A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject info access: rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3a2f33392d3339203d3e20323130343634.roa Signing time: Fri 17 Oct 2025 11:02:41 +0000 ROA not before: Fri 17 Oct 2025 10:57:41 +0000 ROA not after: Fri 16 Oct 2026 11:02:41 +0000 asID: 210464 IP address blocks: 2a14:7583::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 09:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:fd:6b:96:c3:88:1c:b5:1a:99:80:27:d4:97:53:0c:50:90:98:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A609E97AC39E3F53678C0C9422F89947B6146002 Validity Not Before: Oct 17 10:57:41 2025 GMT Not After : Oct 16 11:02:41 2026 GMT Subject: CN=78EA9D3D42EEF7DF246D20FC807D1B110A431013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0e:42:41:fb:b5:37:d7:c2:fa:ef:8a:73:9b: c8:ee:69:32:71:be:01:8b:93:d8:7a:9f:02:79:74: 08:17:f4:dd:26:d9:c2:20:8d:e9:14:c9:9b:51:e4: ea:85:5c:ba:52:aa:8c:d3:7a:b4:f2:d4:a1:81:a8: 32:63:24:5e:ae:95:8e:7c:2d:86:50:58:28:2d:2f: 78:c8:85:5b:32:16:b0:44:ca:08:3f:d0:25:5b:37: 90:70:93:e6:aa:84:8b:31:54:74:0f:51:10:ca:b2: fd:72:78:86:c4:ba:06:2f:24:3a:1a:e4:22:ce:10: 51:37:fd:1b:d8:9f:c9:f5:37:ac:16:be:e8:dd:15: 86:37:60:eb:d4:c1:c6:a5:50:b5:15:7d:3a:4f:de: 62:89:3f:07:af:b0:50:39:8d:3e:f6:96:de:cf:57: 07:64:c9:15:94:0a:5b:d5:3b:58:16:2a:92:84:d5: 75:a5:ca:21:9a:06:90:05:a0:dd:26:19:61:35:cd: 8f:99:0b:37:20:2d:11:14:81:a3:94:26:1f:d3:41: e4:b9:93:51:2f:22:b5:05:50:55:a2:06:c2:29:a2: da:0c:fd:d4:a3:de:e4:fc:0a:54:9f:70:e7:5a:ca: 2b:3b:ab:fb:28:87:2c:f7:8f:c0:d5:5e:d0:4f:33: 18:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:EA:9D:3D:42:EE:F7:DF:24:6D:20:FC:80:7D:1B:11:0A:43:10:13 X509v3 Authority Key Identifier: keyid:A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject Information Access: Signed Object - URI:rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3a2f33392d3339203d3e20323130343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583::/39 Signature Algorithm: sha256WithRSAEncryption 62:f4:4e:dc:3f:7f:c2:f9:a3:1b:b2:58:2a:04:d2:e9:75:42: 8c:fc:8e:0c:24:ef:56:58:bf:ed:d0:03:f5:c1:7c:65:48:6d: 5b:82:aa:4a:ca:d2:89:e9:ed:dd:ad:c3:52:42:f6:ce:c9:bf: 9b:b1:42:1b:ea:7a:f9:dc:ba:66:d8:e2:6f:f2:88:f1:59:a1: 73:7d:16:a6:00:06:d9:ff:66:83:42:76:3f:60:ed:e3:7a:81: 54:f7:17:c3:a4:f3:22:52:db:d1:6e:a1:72:e4:e1:97:47:50: 68:dd:94:87:59:34:c0:2c:a0:1b:c2:e7:3b:10:f0:be:ed:3d: 42:23:f8:8c:d3:3a:b0:be:74:da:cb:81:5f:c2:34:77:7d:d4: fd:92:3a:d6:31:6e:c8:43:2e:3a:65:dd:77:ff:e3:0f:31:6b: 0e:a1:70:cc:17:cd:6f:a0:2f:7a:f7:b1:34:0f:47:bf:70:95: da:ae:fd:59:6a:fa:63:47:9e:f9:18:b0:3b:7f:ca:7f:94:58: 84:82:1c:1d:eb:2d:73:5a:6a:43:6f:df:57:a7:84:9b:c2:a8: 93:51:c7:c4:2b:60:3e:af:be:ce:a5:42:7d:51:dc:e7:73:34: 03:e3:f0:60:32:e2:33:f3:f1:82:7b:3f:f2:02:f8:a3:05:72: 57:06:71:36 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUDf1rlsOIHLUamYAn1JdTDFCQmFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdC NjE0NjAwMjAeFw0yNTEwMTcxMDU3NDFaFw0yNjEwMTYxMTAyNDFaMDMxMTAvBgNV BAMTKDc4RUE5RDNENDJFRUY3REYyNDZEMjBGQzgwN0QxQjExMEE0MzEwMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3DkJB+7U318L674pzm8juaTJx vgGLk9h6nwJ5dAgX9N0m2cIgjekUyZtR5OqFXLpSqozTerTy1KGBqDJjJF6ulY58 LYZQWCgtL3jIhVsyFrBEygg/0CVbN5Bwk+aqhIsxVHQPURDKsv1yeIbEugYvJDoa 5CLOEFE3/RvYn8n1N6wWvujdFYY3YOvUwcalULUVfTpP3mKJPwevsFA5jT72lt7P VwdkyRWUClvVO1gWKpKE1XWlyiGaBpAFoN0mGWE1zY+ZCzcgLREUgaOUJh/TQeS5 k1EvIrUFUFWiBsIpotoM/dSj3uT8ClSfcOdayis7q/sohyz3j8DVXtBPMxjFAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUeOqdPULu998kbSD8gH0bEQpDEBMwHwYDVR0j BBgwFoAUpgnpesOeP1NnjAyUIviZR7YUYAIwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraS5hdnNpc3AuY29tL3JlcG8vQVZTSVNQ LzAvQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdCNjE0NjAwMi5jcmww gZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5w YWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQyOTkt YjA3OS0zMDllZDk3ZjM4MjQvMC9BNjA5RTk3QUMzOUUzRjUzNjc4QzBDOTQyMkY4 OTk0N0I2MTQ2MDAyLmNlcjB8BggrBgEFBQcBCwRwMG4wbAYIKwYBBQUHMAuGYHJz eW5jOi8vcnBraS5hdnNpc3AuY29tL3JlcG8vQVZTSVNQLzAvMzI2MTMxMzQzYTM3 MzUzODMzM2EzYTJmMzMzOTJkMzMzOTIwM2QzZTIwMzIzMTMwMzQzNjM0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIA AjAIAwYBKhR1gwAwDQYJKoZIhvcNAQELBQADggEBAGL0Ttw/f8L5oxuyWCoE0ul1 Qoz8jgwk71ZYv+3QA/XBfGVIbVuCqkrK0onp7d2tw1JC9s7Jv5uxQhvqevncumbY 4m/yiPFZoXN9FqYABtn/ZoNCdj9g7eN6gVT3F8Ok8yJS29FuoXLk4ZdHUGjdlIdZ NMAsoBvC5zsQ8L7tPUIj+IzTOrC+dNrLgV/CNHd91P2SOtYxbshDLjpl3Xf/4w8x aw6hcMwXzW+gL3r3sTQPR79wldqu/Vlq+mNHnvkYsDt/yn+UWISCHB3rLXNaakNv 31enhJvCqJNRx8QrYD6vvs6lQn1R3OdzNAPj8GAy4jPz8YJ7P/IC+KMFclcGcTY= -----END CERTIFICATE-----Generated at Tue Oct 21 01:55:20 2025 by rpki-client