$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/326131313a663263303a666665303a3a2f34342d3434203d3e20323038303531.roa File: 326131313a663263303a666665303a3a2f34342d3434203d3e20323038303531.roa (raw, json) Hash identifier: tFJBYIhXxfWIXiULV/y0FG2z1kGnNqMQG/QFmAkPW/4= Subject key identifier: 54:4B:E1:C4:F4:73:11:9F:98:AF:17:AE:6F:F9:68:BE:AF:5C:1C:E9 Certificate issuer: /CN=DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1 Certificate serial: 7B6D024021AB118608570EDF198E3AFE706CED19 Authority key identifier: DC:2D:34:FE:0F:8C:90:B2:A8:CA:EC:47:27:D6:BA:31:B9:8D:25:D1 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/326131313a663263303a666665303a3a2f34342d3434203d3e20323038303531.roa Signing time: Sun 08 Jun 2025 19:44:40 +0000 ROA not before: Sun 08 Jun 2025 19:39:40 +0000 ROA not after: Sun 07 Jun 2026 19:44:40 +0000 asID: 208051 IP address blocks: 2a11:f2c0:ffe0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 09 Jun 2025 17:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:6d:02:40:21:ab:11:86:08:57:0e:df:19:8e:3a:fe:70:6c:ed:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1 Validity Not Before: Jun 8 19:39:40 2025 GMT Not After : Jun 7 19:44:40 2026 GMT Subject: CN=544BE1C4F473119F98AF17AE6FF968BEAF5C1CE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:82:16:b4:9d:36:39:96:07:9c:90:28:31:2e: 2c:00:81:96:a9:2e:1b:11:37:82:2e:2e:4c:34:91: 71:df:b6:20:87:2e:c5:28:f8:3b:b8:da:dd:2b:5a: 74:3d:6b:33:6d:08:c3:2e:4a:23:47:37:7c:fb:1b: 9e:5a:48:fa:5f:de:f7:0c:81:b3:61:6d:96:c6:26: 79:f5:84:2e:d9:af:7e:47:c4:9f:98:1a:33:90:69: ff:81:d0:2e:85:c8:4c:d9:23:24:76:96:03:5b:3d: e6:da:b6:76:02:aa:80:a1:b0:19:ba:ff:90:73:49: 16:51:ff:83:04:95:5d:5a:e7:cf:71:2c:a7:73:ed: 2a:9f:31:bd:e9:3c:dc:5d:61:10:15:86:ea:40:a4: 91:fa:bf:8d:4c:84:d5:14:a5:da:ee:62:87:ad:04: 76:b5:bb:40:93:b7:94:f8:b0:99:c0:8c:7b:ad:86: 54:54:c2:e7:68:3f:17:eb:13:29:ee:e9:9e:13:10: 6b:bd:07:10:b1:ac:d9:40:ba:f7:4c:96:b2:9d:6e: 14:74:46:79:83:08:0d:d2:b9:65:71:ac:c9:8d:6f: a6:72:a8:07:64:dd:5b:c4:31:3f:75:0b:c2:fb:db: 05:27:91:b9:6c:99:1b:3f:70:09:aa:89:de:13:a4: 32:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4B:E1:C4:F4:73:11:9F:98:AF:17:AE:6F:F9:68:BE:AF:5C:1C:E9 X509v3 Authority Key Identifier: keyid:DC:2D:34:FE:0F:8C:90:B2:A8:CA:EC:47:27:D6:BA:31:B9:8D:25:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/326131313a663263303a666665303a3a2f34342d3434203d3e20323038303531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffe0::/44 Signature Algorithm: sha256WithRSAEncryption 0b:46:b9:75:36:c2:33:f6:77:30:ba:17:3b:2d:9f:9d:e7:3b: cb:e4:16:ca:4b:0f:97:f7:6e:b9:9b:e6:4e:96:86:5f:0c:19: 08:0f:25:7a:15:12:6c:c0:e9:45:78:2c:7d:40:d2:2f:66:c3: 0c:27:fe:52:f4:40:67:39:78:3e:78:3c:af:72:a5:e4:90:ad: fa:6c:fd:1a:0f:33:a2:4d:42:29:7c:94:ba:d4:0f:04:5b:73: a0:d5:4f:5d:ce:df:7f:e0:5e:11:5a:a9:f7:3d:1e:6e:bc:92: 9e:77:01:c9:2c:9b:cb:ff:87:58:61:b8:26:ab:4b:43:58:de: 11:59:86:65:77:21:51:04:0b:54:37:07:b9:47:6a:b2:72:62: 84:8e:93:c3:11:8d:93:1f:5c:74:d5:23:cf:46:d8:38:69:3c: cb:63:2a:d9:09:9b:89:11:9d:b7:6b:5a:bd:f3:1c:c2:17:20: b1:fd:93:30:02:77:da:58:84:00:8f:b9:11:be:e0:40:ae:7b: a7:f1:cd:30:c5:1f:cb:68:0b:bc:ef:89:b5:39:10:9d:44:97: 1f:c5:01:f1:9f:6f:cc:5e:ed:9e:f5:f9:eb:d1:e2:fe:a9:ef: 38:dc:12:1f:b9:e9:8b:24:16:52:38:00:23:60:42:a1:d9:6e: 39:71:28:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUe20CQCGrEYYIVw7fGY46/nBs7RkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMyRDM0RkUwRjhDOTBCMkE4Q0FFQzQ3MjdENkJBMzFC OThEMjVEMTAeFw0yNTA2MDgxOTM5NDBaFw0yNjA2MDcxOTQ0NDBaMDMxMTAvBgNV BAMTKDU0NEJFMUM0RjQ3MzExOUY5OEFGMTdBRTZGRjk2OEJFQUY1QzFDRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOgha0nTY5lgeckCgxLiwAgZap LhsRN4IuLkw0kXHftiCHLsUo+Du42t0rWnQ9azNtCMMuSiNHN3z7G55aSPpf3vcM gbNhbZbGJnn1hC7Zr35HxJ+YGjOQaf+B0C6FyEzZIyR2lgNbPebatnYCqoChsBm6 /5BzSRZR/4MElV1a589xLKdz7SqfMb3pPNxdYRAVhupApJH6v41MhNUUpdruYoet BHa1u0CTt5T4sJnAjHuthlRUwudoPxfrEynu6Z4TEGu9BxCxrNlAuvdMlrKdbhR0 RnmDCA3SuWVxrMmNb6ZyqAdk3VvEMT91C8L72wUnkblsmRs/cAmqid4TpDLLAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUVEvhxPRzEZ+Yrxeub/lovq9cHOkwHwYDVR0j BBgwFoAU3C00/g+MkLKoyuxHJ9a6MbmNJdEwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzVjNTUyMmJhNjlmZTQ3ZDJiNjNjN2I2NTMxYTI0NGY4LzAv REMyRDM0RkUwRjhDOTBCMkE4Q0FFQzQ3MjdENkJBMzFCOThEMjVEMS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9EQzJEMzRGRTBGOEM5MEIyQThDQUVDNDcyN0Q2QkEz MUI5OEQyNUQxLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV81YzU1 MjJiYTY5ZmU0N2QyYjYzYzdiNjUzMWEyNDRmOC8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY1MzAzYTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMjMwMzgzMDM1MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwQqEfLA/+AwDQYJKoZIhvcNAQELBQADggEBAAtGuXU2wjP2dzC6 Fzstn53nO8vkFspLD5f3brmb5k6Whl8MGQgPJXoVEmzA6UV4LH1A0i9mwwwn/lL0 QGc5eD54PK9ypeSQrfps/RoPM6JNQil8lLrUDwRbc6DVT13O33/gXhFaqfc9Hm68 kp53Acksm8v/h1hhuCarS0NY3hFZhmV3IVEEC1Q3B7lHarJyYoSOk8MRjZMfXHTV I89G2DhpPMtjKtkJm4kRnbdrWr3zHMIXILH9kzACd9pYhACPuRG+4ECue6fxzTDF H8toC7zvibU5EJ1Elx/FAfGfb8xe7Z71+evR4v6p7zjcEh+56YskFlI4ACNgQqHZ bjlxKH8= -----END CERTIFICATE-----Generated at Mon Jun 9 00:17:41 2025 by rpki-client