$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_014b9208b5464ff1aeac1fc829ad0343/0/326131313a663263303a666663343a3a2f34382d3438203d3e20323136333733.roa File: 326131313a663263303a666663343a3a2f34382d3438203d3e20323136333733.roa (raw, json) Hash identifier: xLWCJHNLCLVjAtvqpCjDn5+j/rYj7eZA++BRYmvAk0s= Subject key identifier: 3A:57:C5:62:39:BD:B4:98:FF:1F:E5:8E:3F:98:3E:F5:0C:65:C2:38 Certificate issuer: /CN=067DBC6BCF0F9582DF78366389AEAF5965565EF5 Certificate serial: 29A3AE936B7D036DAAD32F6995CA75BBA77D133D Authority key identifier: 06:7D:BC:6B:CF:0F:95:82:DF:78:36:63:89:AE:AF:59:65:56:5E:F5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/067DBC6BCF0F9582DF78366389AEAF5965565EF5.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_014b9208b5464ff1aeac1fc829ad0343/0/326131313a663263303a666663343a3a2f34382d3438203d3e20323136333733.roa Signing time: Sun 07 Jul 2024 19:14:46 +0000 ROA not before: Sun 07 Jul 2024 19:09:46 +0000 ROA not after: Sun 06 Jul 2025 19:14:46 +0000 asID: 216373 IP address blocks: 2a11:f2c0:ffc4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_014b9208b5464ff1aeac1fc829ad0343/0/067DBC6BCF0F9582DF78366389AEAF5965565EF5.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_014b9208b5464ff1aeac1fc829ad0343/0/067DBC6BCF0F9582DF78366389AEAF5965565EF5.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/067DBC6BCF0F9582DF78366389AEAF5965565EF5.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 07:56:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a3:ae:93:6b:7d:03:6d:aa:d3:2f:69:95:ca:75:bb:a7:7d:13:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=067DBC6BCF0F9582DF78366389AEAF5965565EF5 Validity Not Before: Jul 7 19:09:46 2024 GMT Not After : Jul 6 19:14:46 2025 GMT Subject: CN=3A57C56239BDB498FF1FE58E3F983EF50C65C238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:73:63:5e:55:22:d2:e0:7c:cc:c4:39:4d:f3: 7b:ac:50:8d:2e:be:3d:1e:57:37:54:5c:cc:e6:aa: 8c:42:0a:30:f9:69:46:c1:d8:82:86:2b:55:40:b3: 00:b5:54:9c:0a:22:97:0b:ad:84:ad:17:fa:8f:b5: ad:ad:02:02:a4:80:0c:f1:37:78:6b:73:94:8c:be: 84:6c:f7:7d:96:b7:8f:dc:65:b1:78:43:74:52:76: 85:ea:1d:f9:80:54:b2:10:d2:ba:c9:fb:4e:45:fa: d1:09:ac:30:67:05:08:d9:2b:af:f9:37:8a:d2:79: 9a:51:c1:83:84:c3:20:b3:a9:89:0b:d9:17:cb:05: 23:6c:b7:83:3e:be:6f:a4:14:d5:ba:9a:6b:64:57: e4:84:28:83:cc:8a:87:85:f8:fb:42:a5:17:b9:b2: 1c:f1:3f:da:5a:7f:03:cf:f5:25:61:11:90:d8:df: e8:5a:9e:be:63:03:02:d9:27:d6:58:7d:49:53:9c: 14:fc:27:fb:85:bb:ee:65:ed:bc:52:b3:6e:06:0e: 8a:82:c4:8a:25:d7:eb:29:c2:3e:f0:f0:02:bf:0a: eb:5f:5d:d5:b2:e7:a5:c8:2c:d9:eb:95:38:4c:92: 09:1d:c5:ef:13:64:db:b7:cf:00:c9:02:97:d3:ce: 31:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:57:C5:62:39:BD:B4:98:FF:1F:E5:8E:3F:98:3E:F5:0C:65:C2:38 X509v3 Authority Key Identifier: keyid:06:7D:BC:6B:CF:0F:95:82:DF:78:36:63:89:AE:AF:59:65:56:5E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_014b9208b5464ff1aeac1fc829ad0343/0/067DBC6BCF0F9582DF78366389AEAF5965565EF5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/067DBC6BCF0F9582DF78366389AEAF5965565EF5.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_014b9208b5464ff1aeac1fc829ad0343/0/326131313a663263303a666663343a3a2f34382d3438203d3e20323136333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc4::/48 Signature Algorithm: sha256WithRSAEncryption 36:40:a5:c7:cf:d8:5c:38:6d:ee:eb:52:6a:6b:c6:b2:b1:0c: a7:d8:7c:c1:43:04:aa:a6:af:de:6e:10:0f:c0:1c:14:06:51: d5:d7:21:80:c7:5b:9f:b2:36:95:5f:86:be:a3:fc:d5:b7:df: 52:8a:7e:bf:b0:11:10:6d:1b:1a:1f:71:c1:79:9e:f6:9e:ff: fa:af:0f:b6:e5:4a:14:95:37:93:63:24:77:bc:10:ee:90:ed: 91:20:67:ec:22:64:ce:72:5b:a2:da:97:06:41:7b:ea:56:11: 91:5d:ac:59:68:18:1b:f0:76:91:43:02:3c:7c:14:b9:b1:27: c3:e3:7f:ee:75:22:93:6b:0a:a6:af:8a:29:8f:da:cb:07:93: 30:2a:c6:89:08:3b:91:1a:85:80:20:dc:a3:36:0c:39:87:cf: e8:6c:d5:f1:21:25:5a:b4:fc:87:ed:fd:19:33:df:70:46:06: bc:06:7c:7d:e9:15:b2:9f:82:8b:03:7f:a3:c0:b0:8d:eb:b2: 73:97:95:18:ae:e0:2c:6e:9f:ef:15:74:fb:f1:26:98:a6:bc: 29:dc:23:de:b7:7b:1b:76:6b:f2:ef:93:9d:a8:d5:93:28:fb: 13:91:48:f7:72:69:56:64:fe:3f:8c:cc:e2:e0:57:d6:7b:d3: 50:97:50:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUKaOuk2t9A22q0y9plcp1u6d9Ez0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDY3REJDNkJDRjBGOTU4MkRGNzgzNjYzODlBRUFGNTk2 NTU2NUVGNTAeFw0yNDA3MDcxOTA5NDZaFw0yNTA3MDYxOTE0NDZaMDMxMTAvBgNV BAMTKDNBNTdDNTYyMzlCREI0OThGRjFGRTU4RTNGOTgzRUY1MEM2NUMyMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnc2NeVSLS4HzMxDlN83usUI0u vj0eVzdUXMzmqoxCCjD5aUbB2IKGK1VAswC1VJwKIpcLrYStF/qPta2tAgKkgAzx N3hrc5SMvoRs932Wt4/cZbF4Q3RSdoXqHfmAVLIQ0rrJ+05F+tEJrDBnBQjZK6/5 N4rSeZpRwYOEwyCzqYkL2RfLBSNst4M+vm+kFNW6mmtkV+SEKIPMioeF+PtCpRe5 shzxP9pafwPP9SVhEZDY3+hanr5jAwLZJ9ZYfUlTnBT8J/uFu+5l7bxSs24GDoqC xIol1+spwj7w8AK/CutfXdWy56XILNnrlThMkgkdxe8TZNu3zwDJApfTzjHPAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUOlfFYjm9tJj/H+WOP5g+9QxlwjgwHwYDVR0j BBgwFoAUBn28a88PlYLfeDZjia6vWWVWXvUwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzAxNGI5MjA4YjU0NjRmZjFhZWFjMWZjODI5YWQwMzQzLzAv MDY3REJDNkJDRjBGOTU4MkRGNzgzNjYzODlBRUFGNTk2NTU2NUVGNS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8wNjdEQkM2QkNGMEY5NTgyREY3ODM2NjM4OUFFQUY1 OTY1NTY1RUY1LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8wMTRi OTIwOGI1NDY0ZmYxYWVhYzFmYzgyOWFkMDM0My8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzYzMzM3MzMu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8QwDQYJKoZIhvcNAQELBQADggEBADZApcfP2Fw4be7r UmprxrKxDKfYfMFDBKqmr95uEA/AHBQGUdXXIYDHW5+yNpVfhr6j/NW331KKfr+w ERBtGxofccF5nvae//qvD7blShSVN5NjJHe8EO6Q7ZEgZ+wiZM5yW6LalwZBe+pW EZFdrFloGBvwdpFDAjx8FLmxJ8Pjf+51IpNrCqaviimP2ssHkzAqxokIO5EahYAg 3KM2DDmHz+hs1fEhJVq0/Ift/Rkz33BGBrwGfH3pFbKfgosDf6PAsI3rsnOXlRiu 4Cxun+8VdPvxJpimvCncI963ext2a/Lvk52o1ZMo+xORSPdyaVZk/j+MzOLgV9Z7 01CXUOQ= -----END CERTIFICATE-----Generated at Sat Apr 5 21:19:08 2025 by rpki-client