$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa File: 326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa (raw, json) Hash identifier: k/wmSIsicW6bIEYBgom+wqdJSOY7iu6zbHSV4HudHUM= Subject key identifier: 8D:D3:DA:F4:D5:E8:FC:67:1E:E4:19:0E:7E:94:49:C4:72:57:06:60 Certificate issuer: /CN=B8222A845C0CDC59E8D369AE23E116CDDEA08777 Certificate serial: 1237A3823F42392E2F71A28A9749ECCB29748303 Authority key identifier: B8:22:2A:84:5C:0C:DC:59:E8:D3:69:AE:23:E1:16:CD:DE:A0:87:77 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa Signing time: Sun 07 Jul 2024 19:18:08 +0000 ROA not before: Sun 07 Jul 2024 19:13:08 +0000 ROA not after: Sun 06 Jul 2025 19:18:08 +0000 asID: 216141 IP address blocks: 2a11:f2c0:ffc7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 18 Apr 2025 16:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:37:a3:82:3f:42:39:2e:2f:71:a2:8a:97:49:ec:cb:29:74:83:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8222A845C0CDC59E8D369AE23E116CDDEA08777 Validity Not Before: Jul 7 19:13:08 2024 GMT Not After : Jul 6 19:18:08 2025 GMT Subject: CN=8DD3DAF4D5E8FC671EE4190E7E9449C472570660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:eb:7e:de:3c:19:fc:1b:d5:ba:ff:f7:53:14: 93:dc:a8:07:03:4d:65:4f:c0:c5:fd:1c:51:cd:9c: 6d:8f:69:91:bf:61:ef:a3:ec:8e:13:9a:61:00:f9: 1d:87:b4:a7:12:61:98:33:3c:b7:6a:32:8d:46:ab: 29:bc:72:df:7e:f2:02:ee:73:5b:a0:64:00:df:75: a0:c7:f4:fd:1f:63:fe:cc:94:9a:26:74:ae:d1:6d: 1f:d8:e8:b0:62:0e:c2:ad:33:d7:1e:2e:9f:f6:2a: d6:3c:fb:04:6a:c3:eb:1b:82:f9:12:e7:b6:82:2f: 41:d0:27:1a:38:5e:be:e7:70:3f:7f:be:28:45:96: ab:6b:3a:89:3f:47:39:bd:2f:65:7d:8e:6a:43:5d: 90:28:f7:0b:79:e0:1b:91:31:b2:89:e9:91:76:01: a3:09:07:81:b5:a5:67:71:70:eb:82:c9:48:d3:2a: 0b:7c:20:ab:fb:99:a6:ef:2d:7c:6d:c2:6f:03:8c: 5b:12:11:51:22:b5:18:0b:da:f6:26:77:1b:00:77: 8e:8f:bc:6f:90:61:43:72:ce:87:56:7c:82:13:77: 0a:e8:1f:32:4f:dc:43:c6:bb:01:08:6a:db:aa:9f: fe:3e:96:c1:1e:0a:e7:8e:85:08:5c:cd:66:9a:b0: 25:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D3:DA:F4:D5:E8:FC:67:1E:E4:19:0E:7E:94:49:C4:72:57:06:60 X509v3 Authority Key Identifier: keyid:B8:22:2A:84:5C:0C:DC:59:E8:D3:69:AE:23:E1:16:CD:DE:A0:87:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc7::/48 Signature Algorithm: sha256WithRSAEncryption 8c:75:8a:af:55:9b:01:f2:37:4d:bd:5c:81:9e:f1:89:b6:a0: 49:fd:2d:02:71:1b:de:d2:00:e6:95:46:3e:66:1c:b9:78:e2: 48:e7:05:62:51:4e:11:bc:14:a0:fe:54:dc:7e:01:58:2b:41: bc:b3:6c:f1:a3:0f:b7:fb:15:a9:21:e8:80:9e:66:39:4c:36: 5c:3f:0b:32:7b:f0:29:0c:0c:fc:9a:87:39:b1:18:cd:fa:5b: f5:b0:3b:97:9d:6d:52:40:6b:7f:b8:ce:50:bf:a0:28:b5:66: 94:05:f5:14:91:a8:d9:34:99:9b:1e:52:a1:65:02:a9:b7:5f: 5c:9f:92:03:5d:59:ec:0a:91:4d:a6:0f:3a:00:99:af:2f:e1: 64:90:c9:a7:fd:cc:b2:fb:07:8c:5d:22:33:f1:f9:bb:38:e5: e1:1e:76:60:9c:d1:af:81:e5:14:9e:a0:83:e6:b7:4f:b6:92: 99:20:d8:9c:38:81:4e:30:ec:02:71:2f:c0:6a:b5:7f:20:15: d0:5f:be:23:96:1c:31:1b:f9:5a:5a:5e:2e:ac:1c:93:ee:50: 1e:e9:b1:c0:81:02:3a:d2:e8:05:ee:96:a5:08:b4:ba:5e:79: 45:2b:9d:47:2f:b0:61:8b:0d:fb:74:5f:e7:bc:e4:25:6a:75: 69:ee:5e:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUEjejgj9COS4vcaKKl0nsyyl0gwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjgyMjJBODQ1QzBDREM1OUU4RDM2OUFFMjNFMTE2Q0RE RUEwODc3NzAeFw0yNDA3MDcxOTEzMDhaFw0yNTA3MDYxOTE4MDhaMDMxMTAvBgNV BAMTKDhERDNEQUY0RDVFOEZDNjcxRUU0MTkwRTdFOTQ0OUM0NzI1NzA2NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq637ePBn8G9W6//dTFJPcqAcD TWVPwMX9HFHNnG2PaZG/Ye+j7I4TmmEA+R2HtKcSYZgzPLdqMo1Gqym8ct9+8gLu c1ugZADfdaDH9P0fY/7MlJomdK7RbR/Y6LBiDsKtM9ceLp/2KtY8+wRqw+sbgvkS 57aCL0HQJxo4Xr7ncD9/vihFlqtrOok/Rzm9L2V9jmpDXZAo9wt54BuRMbKJ6ZF2 AaMJB4G1pWdxcOuCyUjTKgt8IKv7mabvLXxtwm8DjFsSEVEitRgL2vYmdxsAd46P vG+QYUNyzodWfIITdwroHzJP3EPGuwEIatuqn/4+lsEeCueOhQhczWaasCUrAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUjdPa9NXo/Gce5BkOfpRJxHJXBmAwHwYDVR0j BBgwFoAUuCIqhFwM3Fno02muI+EWzd6gh3cwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzA5ODBlMjYyZjA4MTQ5MDk5OWRkMGQ1ZTIyOWU5Y2ZhLzAv QjgyMjJBODQ1QzBDREM1OUU4RDM2OUFFMjNFMTE2Q0RERUEwODc3Ny5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9CODIyMkE4NDVDMENEQzU5RThEMzY5QUUyM0UxMTZD RERFQTA4Nzc3LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8wOTgw ZTI2MmYwODE0OTA5OTlkZDBkNWUyMjllOWNmYS8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzczYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzYzMTM0MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8cwDQYJKoZIhvcNAQELBQADggEBAIx1iq9VmwHyN029 XIGe8Ym2oEn9LQJxG97SAOaVRj5mHLl44kjnBWJRThG8FKD+VNx+AVgrQbyzbPGj D7f7Fakh6ICeZjlMNlw/CzJ78CkMDPyahzmxGM36W/WwO5edbVJAa3+4zlC/oCi1 ZpQF9RSRqNk0mZseUqFlAqm3X1yfkgNdWewKkU2mDzoAma8v4WSQyaf9zLL7B4xd IjPx+bs45eEedmCc0a+B5RSeoIPmt0+2kpkg2Jw4gU4w7AJxL8BqtX8gFdBfviOW HDEb+VpaXi6sHJPuUB7pscCBAjrS6AXulqUItLpeeUUrnUcvsGGLDft0X+e85CVq dWnuXqQ= -----END CERTIFICATE-----Generated at Fri Apr 18 02:04:09 2025 by rpki-client