$ rpki-client -vvf rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3a2f33362d3336203d3e203233353037.roa File: 326131343a373538333a3a2f33362d3336203d3e203233353037.roa (raw, json) Hash identifier: glgfdV+PhGCRRHNDDvcfZnj+YSVY9ZJ2VPzzf2KV134= Subject key identifier: 14:FC:92:FC:C9:BE:58:09:5B:D6:3F:8C:47:FA:B2:37:E3:EA:98:77 Certificate issuer: /CN=A609E97AC39E3F53678C0C9422F89947B6146002 Certificate serial: 2A938E41FCBE2A19EF85CACE853681AE9F421CDC Authority key identifier: A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject info access: rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3a2f33362d3336203d3e203233353037.roa Signing time: Sat 06 Sep 2025 10:43:42 +0000 ROA not before: Sat 06 Sep 2025 10:38:42 +0000 ROA not after: Sat 05 Sep 2026 10:43:42 +0000 asID: 23507 IP address blocks: 2a14:7583::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Sep 2025 04:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:93:8e:41:fc:be:2a:19:ef:85:ca:ce:85:36:81:ae:9f:42:1c:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A609E97AC39E3F53678C0C9422F89947B6146002 Validity Not Before: Sep 6 10:38:42 2025 GMT Not After : Sep 5 10:43:42 2026 GMT Subject: CN=14FC92FCC9BE58095BD63F8C47FAB237E3EA9877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:9e:80:14:56:2f:8d:2d:26:40:ee:81:08: 16:d4:9c:b2:2e:ee:96:a6:3c:f9:fb:38:0b:77:7a: 29:ab:89:fc:80:c4:39:fc:ad:c5:87:17:29:72:ef: e1:03:4b:d7:f0:e8:c5:68:8b:20:e7:9b:56:01:08: e8:fd:b2:23:ea:39:87:fa:51:15:8a:1b:96:48:04: 5b:0e:17:2d:89:66:5c:bd:17:4b:92:23:34:6f:16: d1:fa:78:38:2e:8a:94:1e:cb:88:c1:d8:1a:9d:9b: 7a:9b:bd:e2:fc:32:e3:7e:4e:20:2e:2f:31:b2:38: d2:c0:8c:52:6a:b9:36:96:93:50:0d:07:74:5f:89: 50:c1:1c:d1:0f:8a:e5:44:1f:d4:83:9e:58:d8:93: d1:82:31:91:b4:62:4f:00:80:ee:3d:8c:f0:73:63: b4:95:65:c9:6e:04:7f:17:12:8c:29:26:31:d3:d7: 3b:0c:82:f2:8d:4f:c2:23:31:10:4f:39:60:a6:b1: aa:33:d1:eb:6d:0d:49:1b:85:3f:59:4c:2e:1f:f8: 9f:7c:0b:6e:f7:db:d6:80:db:c3:ad:1f:42:1a:c6: 49:a0:62:32:14:5b:22:1a:aa:5b:67:2c:41:7c:6d: 2a:d2:25:32:32:61:a2:40:28:a0:56:d3:4a:ce:16: c1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:FC:92:FC:C9:BE:58:09:5B:D6:3F:8C:47:FA:B2:37:E3:EA:98:77 X509v3 Authority Key Identifier: keyid:A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject Information Access: Signed Object - URI:rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a3a2f33362d3336203d3e203233353037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583::/36 Signature Algorithm: sha256WithRSAEncryption 2d:06:bc:e7:02:91:01:f2:39:31:b6:1d:ca:fd:4b:86:47:30: 49:9d:51:06:94:49:a3:4c:13:9f:7f:08:cc:e2:6c:86:89:33: 77:28:19:ee:c1:0d:74:89:2e:2b:75:bf:2d:44:be:43:4b:41: d6:6d:13:27:f7:48:c5:9f:38:fa:e3:88:48:30:2c:c4:64:ef: 16:14:4a:1e:18:ab:7e:63:25:e5:eb:75:b8:13:d9:66:63:1b: 6b:e9:28:91:7c:b8:31:3d:3e:0b:e7:2d:90:c8:fa:77:aa:3e: c3:25:7b:3b:63:de:fe:90:b7:5e:67:50:d5:f6:73:bf:46:97: 62:51:e1:5d:d4:e6:cb:94:f9:7d:82:92:11:cb:44:5d:61:f7: 9a:ac:34:5c:30:a4:49:ab:47:62:22:46:85:6e:63:f1:b1:14: 79:91:9e:aa:e9:9e:26:6e:80:fb:18:4f:bb:1c:4a:eb:b1:c5: e0:45:38:f9:19:82:dd:e8:ba:d9:0f:e9:3a:26:72:71:ee:dc: 10:10:b8:b0:e5:04:23:63:7f:d7:bf:ba:10:aa:12:32:c8:c5: d5:7e:7c:97:46:e3:4e:8e:67:24:a6:28:a1:d6:c9:ba:57:3b: bb:01:18:f9:50:55:28:ab:0a:73:85:f9:32:c3:4b:0d:d0:13: 2e:e3:cd:ca -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIUKpOOQfy+KhnvhcrOhTaBrp9CHNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdC NjE0NjAwMjAeFw0yNTA5MDYxMDM4NDJaFw0yNjA5MDUxMDQzNDJaMDMxMTAvBgNV BAMTKDE0RkM5MkZDQzlCRTU4MDk1QkQ2M0Y4QzQ3RkFCMjM3RTNFQTk4NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCza56AFFYvjS0mQO6BCBbUnLIu 7pamPPn7OAt3eimrifyAxDn8rcWHFyly7+EDS9fw6MVoiyDnm1YBCOj9siPqOYf6 URWKG5ZIBFsOFy2JZly9F0uSIzRvFtH6eDguipQey4jB2Bqdm3qbveL8MuN+TiAu LzGyONLAjFJquTaWk1ANB3RfiVDBHNEPiuVEH9SDnljYk9GCMZG0Yk8AgO49jPBz Y7SVZcluBH8XEowpJjHT1zsMgvKNT8IjMRBPOWCmsaoz0ettDUkbhT9ZTC4f+J98 C27329aA28OtH0IaxkmgYjIUWyIaqltnLEF8bSrSJTIyYaJAKKBW00rOFsHdAgMB AAGjggITMIICDzAdBgNVHQ4EFgQUFPyS/Mm+WAlb1j+MR/qyN+PqmHcwHwYDVR0j BBgwFoAUpgnpesOeP1NnjAyUIviZR7YUYAIwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraS5hdnNpc3AuY29tL3JlcG8vQVZTSVNQ LzAvQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdCNjE0NjAwMi5jcmww gZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5w YWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQyOTkt YjA3OS0zMDllZDk3ZjM4MjQvMC9BNjA5RTk3QUMzOUUzRjUzNjc4QzBDOTQyMkY4 OTk0N0I2MTQ2MDAyLmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz eW5jOi8vcnBraS5hdnNpc3AuY29tL3JlcG8vQVZTSVNQLzAvMzI2MTMxMzQzYTM3 MzUzODMzM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIzMzM1MzAzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGBCoUdYMAMA0GCSqGSIb3DQEBCwUAA4IBAQAtBrznApEB8jkxth3K/UuGRzBJ nVEGlEmjTBOffwjM4myGiTN3KBnuwQ10iS4rdb8tRL5DS0HWbRMn90jFnzj644hI MCzEZO8WFEoeGKt+YyXl63W4E9lmYxtr6SiRfLgxPT4L5y2QyPp3qj7DJXs7Y97+ kLdeZ1DV9nO/RpdiUeFd1ObLlPl9gpIRy0RdYfearDRcMKRJq0diIkaFbmPxsRR5 kZ6q6Z4mboD7GE+7HErrscXgRTj5GYLd6LrZD+k6JnJx7twQELiw5QQjY3/Xv7oQ qhIyyMXVfnyXRuNOjmckpiih1sm6Vzu7ARj5UFUoqwpzhfkyw0sN0BMu483K -----END CERTIFICATE-----Generated at Sun Sep 14 15:29:19 2025 by rpki-client