$ rpki-client -vvf rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a6330303a3a2f34302d3430203d3e20323130343634.roa File: 326131343a373538333a6330303a3a2f34302d3430203d3e20323130343634.roa (raw, json) Hash identifier: ghgUC1FkuuCEpl7atds36b5VAhGeigyHvpmuAij4NF8= Subject key identifier: D0:5D:04:3F:ED:4A:C0:AF:4D:8D:53:A1:0F:46:C7:66:AC:7A:28:BD Certificate issuer: /CN=A609E97AC39E3F53678C0C9422F89947B6146002 Certificate serial: 3440A1A19F27FD9938B9919B5950088C2C89ADAF Authority key identifier: A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject info access: rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a6330303a3a2f34302d3430203d3e20323130343634.roa Signing time: Sat 06 Sep 2025 10:47:05 +0000 ROA not before: Sat 06 Sep 2025 10:42:05 +0000 ROA not after: Sat 05 Sep 2026 10:47:05 +0000 asID: 210464 IP address blocks: 2a14:7583:c00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 07 Nov 2025 18:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:40:a1:a1:9f:27:fd:99:38:b9:91:9b:59:50:08:8c:2c:89:ad:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A609E97AC39E3F53678C0C9422F89947B6146002 Validity Not Before: Sep 6 10:42:05 2025 GMT Not After : Sep 5 10:47:05 2026 GMT Subject: CN=D05D043FED4AC0AF4D8D53A10F46C766AC7A28BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:37:3a:15:4a:1a:21:fe:27:6d:0f:06:8d:d6: 3a:fd:ed:50:ec:47:03:70:9b:42:20:a6:52:3c:07: 68:86:46:6d:a1:5b:eb:40:45:24:aa:39:4d:17:aa: f6:bd:98:7d:ac:f6:69:6d:3e:ae:91:e2:b2:cf:2c: 08:2f:e2:31:1c:04:45:98:4b:58:8d:95:9e:78:b6: 77:4a:ef:10:80:50:6b:0a:5e:92:72:50:d5:73:70: a8:82:2a:f8:28:52:88:84:13:2f:50:2e:50:ec:bd: 06:21:81:33:01:8d:37:e5:46:ff:f0:f6:a3:0d:e3: 4b:24:50:4f:ae:0a:4b:7c:ec:87:ed:ec:b8:80:04: 21:0e:c3:59:d2:6f:05:07:e7:86:cb:27:8a:67:46: e3:27:02:b6:bf:35:6a:9c:2e:aa:c7:26:04:67:3d: bf:c7:2f:39:70:15:e6:33:17:6e:bd:4b:9f:79:c7: 8d:ed:ee:9c:6f:fd:65:05:4e:a1:79:3c:73:4e:f6: 68:27:85:f2:6f:46:35:c1:8d:8e:4a:69:b8:dc:bd: 9e:cd:b8:d8:af:da:26:f5:df:e5:cd:88:eb:eb:d0: b6:23:1b:b8:2b:a1:72:c0:9c:ea:da:11:40:89:1b: dd:eb:7f:f8:2d:e5:21:4b:68:90:18:8f:da:fb:84: 87:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:5D:04:3F:ED:4A:C0:AF:4D:8D:53:A1:0F:46:C7:66:AC:7A:28:BD X509v3 Authority Key Identifier: keyid:A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject Information Access: Signed Object - URI:rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a6330303a3a2f34302d3430203d3e20323130343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:c00::/40 Signature Algorithm: sha256WithRSAEncryption 1a:19:8c:52:4f:1c:01:fa:20:6f:79:52:e0:e8:bb:78:7a:34: 6a:9a:f0:fd:9e:c7:85:6d:63:40:d2:91:20:23:d5:7c:eb:26: 82:62:a6:0b:40:b0:b2:91:c5:32:bf:fb:6a:99:21:18:2c:30: cc:bc:a0:83:2f:6b:54:14:78:ef:81:8a:0a:2c:8a:9e:af:41: a2:35:64:44:81:09:25:11:7a:75:6d:df:79:fc:b8:a8:f4:4a: 31:6c:8c:6e:d2:8d:88:2c:b9:cb:db:c8:f1:3e:f1:07:fe:cf: 9f:dc:30:ce:79:04:0a:4c:32:db:d0:41:e2:ce:b3:01:9b:48: f8:c1:08:21:73:59:d1:bb:25:68:28:26:d5:d4:43:54:fe:f9: 12:8e:64:dd:7c:cd:06:06:a7:be:64:db:37:d0:34:c2:1c:1e: 41:01:4c:95:ee:19:b6:ff:11:a2:49:74:40:09:0d:51:18:ae: 04:49:74:36:a0:f4:34:e8:09:60:56:1f:43:5b:f5:f7:33:b8: d4:1e:1a:7c:0e:05:00:1e:c1:99:bd:87:7d:de:c5:11:a5:c0: e8:9c:c8:47:9c:cc:e0:67:bd:63:59:f8:b4:ef:ac:fc:39:82: d1:41:b9:0a:74:b2:f2:ef:36:9e:1e:e2:e7:5f:c5:e1:6f:0c: 35:38:76:45 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgIUNEChoZ8n/Zk4uZGbWVAIjCyJra8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdC NjE0NjAwMjAeFw0yNTA5MDYxMDQyMDVaFw0yNjA5MDUxMDQ3MDVaMDMxMTAvBgNV BAMTKEQwNUQwNDNGRUQ0QUMwQUY0RDhENTNBMTBGNDZDNzY2QUM3QTI4QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+NzoVShoh/idtDwaN1jr97VDs RwNwm0IgplI8B2iGRm2hW+tARSSqOU0Xqva9mH2s9mltPq6R4rLPLAgv4jEcBEWY S1iNlZ54tndK7xCAUGsKXpJyUNVzcKiCKvgoUoiEEy9QLlDsvQYhgTMBjTflRv/w 9qMN40skUE+uCkt87Ift7LiABCEOw1nSbwUH54bLJ4pnRuMnAra/NWqcLqrHJgRn Pb/HLzlwFeYzF269S595x43t7pxv/WUFTqF5PHNO9mgnhfJvRjXBjY5KabjcvZ7N uNiv2ib13+XNiOvr0LYjG7groXLAnOraEUCJG93rf/gt5SFLaJAYj9r7hId/AgMB AAGjggIeMIICGjAdBgNVHQ4EFgQU0F0EP+1KwK9NjVOhD0bHZqx6KL0wHwYDVR0j BBgwFoAUpgnpesOeP1NnjAyUIviZR7YUYAIwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraS5hdnNpc3AuY29tL3JlcG8vQVZTSVNQ LzAvQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdCNjE0NjAwMi5jcmww gZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5w YWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQyOTkt YjA3OS0zMDllZDk3ZjM4MjQvMC9BNjA5RTk3QUMzOUUzRjUzNjc4QzBDOTQyMkY4 OTk0N0I2MTQ2MDAyLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhy c3luYzovL3Jwa2kuYXZzaXNwLmNvbS9yZXBvL0FWU0lTUC8wLzMyNjEzMTM0M2Ez NzM1MzgzMzNhNjMzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzMTMwMzQz NjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/ BBIwEDAOBAIAAjAIAwYAKhR1gwwwDQYJKoZIhvcNAQELBQADggEBABoZjFJPHAH6 IG95UuDou3h6NGqa8P2ex4VtY0DSkSAj1XzrJoJipgtAsLKRxTK/+2qZIRgsMMy8 oIMva1QUeO+Bigosip6vQaI1ZESBCSURenVt33n8uKj0SjFsjG7SjYgsucvbyPE+ 8Qf+z5/cMM55BApMMtvQQeLOswGbSPjBCCFzWdG7JWgoJtXUQ1T++RKOZN18zQYG p75k2zfQNMIcHkEBTJXuGbb/EaJJdEAJDVEYrgRJdDag9DToCWBWH0Nb9fczuNQe GnwOBQAewZm9h33exRGlwOicyEeczOBnvWNZ+LTvrPw5gtFBuQp0svLvNp4e4udf xeFvDDU4dkU= -----END CERTIFICATE-----Generated at Fri Nov 7 02:32:52 2025 by rpki-client