$ rpki-client -vvf rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3830303a3a2f34302d3430203d3e20323130343634.roa File: 326131343a373538333a3830303a3a2f34302d3430203d3e20323130343634.roa (raw, json) Hash identifier: +wJjjEed1Hiq+IO3zR9/ZUn4Yc6NLql02f1VUhQS1AI= Subject key identifier: 40:D3:FD:3C:FF:87:9B:38:15:F1:53:16:E7:85:4F:24:8A:92:6F:87 Certificate issuer: /CN=A609E97AC39E3F53678C0C9422F89947B6146002 Certificate serial: 0F33D93F0B810516D8D0A01FD45254FD498B7150 Authority key identifier: A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject info access: rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3830303a3a2f34302d3430203d3e20323130343634.roa Signing time: Sat 06 Sep 2025 10:45:24 +0000 ROA not before: Sat 06 Sep 2025 10:40:24 +0000 ROA not after: Sat 05 Sep 2026 10:45:24 +0000 asID: 210464 IP address blocks: 2a14:7583:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Sep 2025 07:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:33:d9:3f:0b:81:05:16:d8:d0:a0:1f:d4:52:54:fd:49:8b:71:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A609E97AC39E3F53678C0C9422F89947B6146002 Validity Not Before: Sep 6 10:40:24 2025 GMT Not After : Sep 5 10:45:24 2026 GMT Subject: CN=40D3FD3CFF879B3815F15316E7854F248A926F87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cd:1c:d1:8c:2c:34:3c:aa:33:56:e6:f1:40: 96:fc:f9:08:4c:15:4a:ad:20:db:8c:83:a1:01:48: 08:ed:72:ba:3f:d4:3f:e4:b8:39:48:ab:a4:46:d2: cb:ca:cd:b2:4a:10:a2:29:39:f5:07:3e:23:3c:31: 98:4f:16:5a:81:4f:bf:69:8b:9e:d7:2d:bc:89:bd: 33:07:1e:4b:27:22:66:9c:56:bb:a8:7c:c1:51:70: 55:83:ca:8f:d4:40:a9:25:2a:f3:47:a1:f4:00:4f: 36:4b:2c:7f:a5:26:89:90:43:59:f9:a1:6f:ae:e1: 19:fa:a6:3f:e4:86:53:d6:f2:df:5d:59:91:7e:8f: 31:7e:72:90:f7:f6:1e:cd:85:a4:cd:e5:06:fb:d5: bf:8a:c0:4c:91:89:67:f5:52:c1:f4:ae:1f:e4:6d: 18:42:32:6c:52:4f:a5:e3:d1:8f:3e:b6:99:54:80: 8f:53:8d:56:8b:09:df:1f:66:87:c9:a4:9d:7d:cb: f5:cd:3e:29:21:eb:55:df:08:e5:be:fc:73:f8:89: 52:7a:e7:d8:02:dd:0b:84:55:9a:a9:05:0d:30:30: 39:22:fb:c4:a3:8e:46:a7:19:58:28:da:85:45:2e: 0a:65:7c:9b:be:4c:fa:c5:1a:64:39:f6:a0:2f:09: f9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D3:FD:3C:FF:87:9B:38:15:F1:53:16:E7:85:4F:24:8A:92:6F:87 X509v3 Authority Key Identifier: keyid:A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject Information Access: Signed Object - URI:rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3830303a3a2f34302d3430203d3e20323130343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:800::/40 Signature Algorithm: sha256WithRSAEncryption 8a:05:fa:4d:d5:12:a7:67:10:e9:53:5f:95:dc:d7:78:d3:cd: 6f:bd:e8:f8:c7:e0:b7:3c:63:80:95:15:fe:c5:fa:10:10:30: bc:52:af:98:ae:7e:5a:82:7b:9f:f4:a7:6e:44:fd:bc:75:cc: ce:50:f7:24:b2:89:5e:ed:fb:ae:73:f5:bf:de:de:6f:25:5c: 28:19:24:38:57:c1:5a:b4:9d:6a:38:b6:e8:43:f6:48:66:77: 06:d7:e8:01:62:3d:72:02:60:39:bb:e9:39:69:fa:66:58:0b: 26:bd:b1:47:53:8c:e2:30:5d:10:84:cf:9f:ff:0a:83:83:16: c1:61:52:e5:93:7b:32:60:dd:f7:31:d5:8f:f7:ea:e0:a0:53: 09:5c:97:32:26:f4:9a:e6:ca:25:30:fa:8e:29:56:ee:f6:10: 46:8c:4d:3b:3b:0f:03:77:50:44:59:f4:75:5d:f9:a2:81:8a: 89:83:fd:3a:5c:a5:2d:1a:78:1c:a8:55:77:06:25:44:b2:3f: 62:56:b3:8c:dc:3a:21:dc:bb:06:1f:58:26:5b:14:92:b3:f2: 3c:ae:58:61:d4:18:eb:a8:39:a7:12:fe:76:d3:c9:8e:0f:86: a2:3b:cd:70:5a:89:eb:48:3c:a6:39:be:6c:44:ac:82:71:7e: 8f:70:c0:11 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgIUDzPZPwuBBRbY0KAf1FJU/UmLcVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdC NjE0NjAwMjAeFw0yNTA5MDYxMDQwMjRaFw0yNjA5MDUxMDQ1MjRaMDMxMTAvBgNV BAMTKDQwRDNGRDNDRkY4NzlCMzgxNUYxNTMxNkU3ODU0RjI0OEE5MjZGODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBzRzRjCw0PKozVubxQJb8+QhM FUqtINuMg6EBSAjtcro/1D/kuDlIq6RG0svKzbJKEKIpOfUHPiM8MZhPFlqBT79p i57XLbyJvTMHHksnImacVruofMFRcFWDyo/UQKklKvNHofQATzZLLH+lJomQQ1n5 oW+u4Rn6pj/khlPW8t9dWZF+jzF+cpD39h7NhaTN5Qb71b+KwEyRiWf1UsH0rh/k bRhCMmxST6Xj0Y8+tplUgI9TjVaLCd8fZofJpJ19y/XNPikh61XfCOW+/HP4iVJ6 59gC3QuEVZqpBQ0wMDki+8SjjkanGVgo2oVFLgplfJu+TPrFGmQ59qAvCfnfAgMB AAGjggIeMIICGjAdBgNVHQ4EFgQUQNP9PP+HmzgV8VMW54VPJIqSb4cwHwYDVR0j BBgwFoAUpgnpesOeP1NnjAyUIviZR7YUYAIwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraS5hdnNpc3AuY29tL3JlcG8vQVZTSVNQ LzAvQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdCNjE0NjAwMi5jcmww gZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5w YWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQyOTkt YjA3OS0zMDllZDk3ZjM4MjQvMC9BNjA5RTk3QUMzOUUzRjUzNjc4QzBDOTQyMkY4 OTk0N0I2MTQ2MDAyLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhy c3luYzovL3Jwa2kuYXZzaXNwLmNvbS9yZXBvL0FWU0lTUC8wLzMyNjEzMTM0M2Ez NzM1MzgzMzNhMzgzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzMTMwMzQz NjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/ BBIwEDAOBAIAAjAIAwYAKhR1gwgwDQYJKoZIhvcNAQELBQADggEBAIoF+k3VEqdn EOlTX5Xc13jTzW+96PjH4Lc8Y4CVFf7F+hAQMLxSr5iuflqCe5/0p25E/bx1zM5Q 9ySyiV7t+65z9b/e3m8lXCgZJDhXwVq0nWo4tuhD9khmdwbX6AFiPXICYDm76Tlp +mZYCya9sUdTjOIwXRCEz5//CoODFsFhUuWTezJg3fcx1Y/36uCgUwlclzIm9Jrm yiUw+o4pVu72EEaMTTs7DwN3UERZ9HVd+aKBiomD/TpcpS0aeByoVXcGJUSyP2JW s4zcOiHcuwYfWCZbFJKz8jyuWGHUGOuoOacS/nbTyY4PhqI7zXBaietIPKY5vmxE rIJxfo9wwBE= -----END CERTIFICATE-----Generated at Sun Sep 14 19:13:33 2025 by rpki-client