$ rpki-client -vvf rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3930303a3a2f34302d3430203d3e20323134393736.roa File: 326131343a373538333a3930303a3a2f34302d3430203d3e20323134393736.roa (raw, json) Hash identifier: 0qT1c1K69lqN9nUqtSWlpWhbn6N1fTr4T30eQdNLLRw= Subject key identifier: C1:C4:76:50:1F:F8:D1:13:96:B6:BA:76:BB:69:91:5E:E6:E7:53:D9 Certificate issuer: /CN=A609E97AC39E3F53678C0C9422F89947B6146002 Certificate serial: 37402EA9E22BDCDCBE82E0E2A3CD32A44285C89C Authority key identifier: A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject info access: rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3930303a3a2f34302d3430203d3e20323134393736.roa Signing time: Sat 06 Sep 2025 10:45:49 +0000 ROA not before: Sat 06 Sep 2025 10:40:49 +0000 ROA not after: Sat 05 Sep 2026 10:45:49 +0000 asID: 214976 IP address blocks: 2a14:7583:900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Sep 2025 07:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:40:2e:a9:e2:2b:dc:dc:be:82:e0:e2:a3:cd:32:a4:42:85:c8:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A609E97AC39E3F53678C0C9422F89947B6146002 Validity Not Before: Sep 6 10:40:49 2025 GMT Not After : Sep 5 10:45:49 2026 GMT Subject: CN=C1C476501FF8D11396B6BA76BB69915EE6E753D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:0b:72:61:87:85:f7:32:81:5a:53:dc:93: 1f:db:af:73:0c:a3:45:1b:57:7a:4e:eb:a8:90:5e: f8:b5:82:50:38:7c:63:52:c4:28:4d:70:3f:e0:c8: 2d:5d:7a:4d:57:0e:cc:a4:32:09:a9:41:fa:a7:1f: 78:7c:3b:ba:30:2c:f0:40:89:cb:74:f6:f4:92:b4: 4c:3a:fa:81:37:cb:aa:eb:c2:d9:f3:da:df:28:b8: 15:d9:a4:a7:ea:0b:44:7a:1f:61:6d:66:aa:f1:ed: 4a:a1:b4:84:98:de:b7:a6:70:de:23:d7:9b:a3:88: 6e:08:20:1a:e0:e7:8f:3b:f6:9a:e8:3d:d3:d4:88: 98:2e:ef:b7:7b:98:ef:7c:60:64:5d:d0:af:61:36: bb:d6:0d:6d:d1:d2:0d:39:7b:82:b0:ad:ea:19:6e: a0:16:25:6a:7e:6c:95:34:9b:de:0f:ab:c3:2b:cb: fc:4b:6d:a3:7f:fd:b2:76:82:37:5a:bd:1c:a5:07: ad:58:15:f2:7c:51:7e:38:5a:2d:9f:52:65:5d:dc: 34:e0:6d:78:29:fb:79:01:81:f2:ae:93:fa:e3:fd: 39:af:98:7b:f6:62:68:b7:5d:ba:1f:09:d4:90:ec: 18:d4:5b:e4:e3:36:46:17:0c:94:7c:03:16:79:d3: 90:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C4:76:50:1F:F8:D1:13:96:B6:BA:76:BB:69:91:5E:E6:E7:53:D9 X509v3 Authority Key Identifier: keyid:A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject Information Access: Signed Object - URI:rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3930303a3a2f34302d3430203d3e20323134393736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:900::/40 Signature Algorithm: sha256WithRSAEncryption 7e:16:51:08:2d:c5:d4:80:e4:04:a3:b9:f8:a2:70:fb:ed:03: 39:f8:f6:f7:3c:a0:82:aa:35:e0:a5:4a:31:03:ec:7b:fd:e3: 22:f2:18:04:dd:02:5d:17:d8:ad:d8:d5:20:2f:4e:ae:2f:79: 74:6f:7a:08:3e:cc:ad:74:a4:62:2a:28:f7:da:1a:1d:6b:1f: e9:6b:6e:bb:35:7f:cd:b2:bb:75:d9:db:45:66:8f:94:54:22: e7:18:9e:26:6f:36:18:d9:90:ae:51:7a:75:05:a0:20:d2:27: b4:a1:c5:71:e5:91:bc:20:42:bf:53:d7:63:04:8e:3b:71:b2: 92:ee:27:f0:60:39:9a:b4:66:58:77:4a:a4:35:22:45:e3:0a: 6e:58:a9:1c:c1:97:c2:15:f6:61:cd:ed:74:e0:ca:c6:1d:cc: 8f:8e:25:8c:b7:de:b8:bf:a3:87:b2:03:f3:94:07:bf:75:41: e0:18:54:96:f7:26:55:f9:a1:18:81:12:8e:37:d4:72:2d:b3: 62:47:4f:d2:fb:b9:2f:97:b1:e9:f0:37:a6:b0:91:e2:7a:b0: d3:2a:18:5f:ed:cd:8d:46:bd:0d:ed:c6:d1:3f:47:9d:8a:9e: 49:3e:57:60:78:09:9a:d2:28:e2:af:2c:1c:00:a5:58:e2:68: 83:8d:bd:bc -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgIUN0AuqeIr3Ny+guDio80ypEKFyJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdC NjE0NjAwMjAeFw0yNTA5MDYxMDQwNDlaFw0yNjA5MDUxMDQ1NDlaMDMxMTAvBgNV BAMTKEMxQzQ3NjUwMUZGOEQxMTM5NkI2QkE3NkJCNjk5MTVFRTZFNzUzRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAnwtyYYeF9zKBWlPckx/br3MM o0UbV3pO66iQXvi1glA4fGNSxChNcD/gyC1dek1XDsykMgmpQfqnH3h8O7owLPBA ict09vSStEw6+oE3y6rrwtnz2t8ouBXZpKfqC0R6H2FtZqrx7UqhtISY3remcN4j 15ujiG4IIBrg54879proPdPUiJgu77d7mO98YGRd0K9hNrvWDW3R0g05e4KwreoZ bqAWJWp+bJU0m94Pq8Mry/xLbaN//bJ2gjdavRylB61YFfJ8UX44Wi2fUmVd3DTg bXgp+3kBgfKuk/rj/TmvmHv2Ymi3XbofCdSQ7BjUW+TjNkYXDJR8AxZ505DTAgMB AAGjggIeMIICGjAdBgNVHQ4EFgQUwcR2UB/40ROWtrp2u2mRXubnU9kwHwYDVR0j BBgwFoAUpgnpesOeP1NnjAyUIviZR7YUYAIwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraS5hdnNpc3AuY29tL3JlcG8vQVZTSVNQ LzAvQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdCNjE0NjAwMi5jcmww gZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5w YWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQyOTkt YjA3OS0zMDllZDk3ZjM4MjQvMC9BNjA5RTk3QUMzOUUzRjUzNjc4QzBDOTQyMkY4 OTk0N0I2MTQ2MDAyLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhy c3luYzovL3Jwa2kuYXZzaXNwLmNvbS9yZXBvL0FWU0lTUC8wLzMyNjEzMTM0M2Ez NzM1MzgzMzNhMzkzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzMTM0Mzkz NzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/ BBIwEDAOBAIAAjAIAwYAKhR1gwkwDQYJKoZIhvcNAQELBQADggEBAH4WUQgtxdSA 5ASjufiicPvtAzn49vc8oIKqNeClSjED7Hv94yLyGATdAl0X2K3Y1SAvTq4veXRv egg+zK10pGIqKPfaGh1rH+lrbrs1f82yu3XZ20Vmj5RUIucYniZvNhjZkK5RenUF oCDSJ7ShxXHlkbwgQr9T12MEjjtxspLuJ/BgOZq0Zlh3SqQ1IkXjCm5YqRzBl8IV 9mHN7XTgysYdzI+OJYy33ri/o4eyA/OUB791QeAYVJb3JlX5oRiBEo431HIts2JH T9L7uS+XsenwN6awkeJ6sNMqGF/tzY1GvQ3txtE/R52Knkk+V2B4CZrSKOKvLBwA pVjiaIONvbw= -----END CERTIFICATE-----Generated at Sun Sep 14 19:12:17 2025 by rpki-client