$ rpki-client -vvf rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a6530303a3a2f34302d3430203d3e20323130343634.roa File: 326131343a373538333a6530303a3a2f34302d3430203d3e20323130343634.roa (raw, json) Hash identifier: h/faRutmshXccwksfhnp0IW/q8FgXwcvdBIuyRruBio= Subject key identifier: 2B:F2:91:4E:12:2B:A5:F2:7A:C3:F4:B1:7F:05:5D:4F:B4:E4:51:0B Certificate issuer: /CN=A609E97AC39E3F53678C0C9422F89947B6146002 Certificate serial: 06B749DE3FB1B53041401773BFF968D6084EF879 Authority key identifier: A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject info access: rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a6530303a3a2f34302d3430203d3e20323130343634.roa Signing time: Sat 06 Sep 2025 10:47:51 +0000 ROA not before: Sat 06 Sep 2025 10:42:51 +0000 ROA not after: Sat 05 Sep 2026 10:47:51 +0000 asID: 210464 IP address blocks: 2a14:7583:e00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 07 Nov 2025 18:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b7:49:de:3f:b1:b5:30:41:40:17:73:bf:f9:68:d6:08:4e:f8:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A609E97AC39E3F53678C0C9422F89947B6146002 Validity Not Before: Sep 6 10:42:51 2025 GMT Not After : Sep 5 10:47:51 2026 GMT Subject: CN=2BF2914E122BA5F27AC3F4B17F055D4FB4E4510B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e8:bc:80:c3:20:44:fc:8a:dd:2d:67:91:3b: 17:dc:a1:ff:9c:28:42:c6:d1:54:24:32:df:80:22: 86:48:7c:9a:0b:ee:85:69:cf:cc:6a:98:fb:6b:ef: df:64:0d:b6:9b:ec:a5:17:ed:04:61:f1:82:34:ba: ba:e6:f2:b1:fa:c3:df:19:26:3e:fb:6b:23:c1:87: d8:ba:47:fa:f8:a8:ac:55:d8:6b:77:9e:e0:b1:e5: 3b:b9:d1:8d:d1:d0:8a:ef:7f:23:4c:fd:c3:b7:1e: bf:21:6f:16:e3:c1:3d:1d:68:de:81:86:72:36:d8: c2:59:b2:76:6c:9b:8c:55:1e:5f:d2:a1:7d:31:ba: 29:53:0b:a6:68:9a:9e:56:12:2b:b5:63:77:8c:4b: 18:c5:59:54:3c:d8:08:8b:93:f5:56:72:f5:2d:54: 96:cc:67:eb:0f:9a:43:e3:8d:c9:fb:8d:13:eb:52: c6:33:bc:08:aa:91:07:ed:0c:18:f3:93:97:e6:88: 0d:b7:a0:f4:2c:b2:0f:2e:f0:00:76:3a:d1:a4:e6: 9a:e3:84:53:c5:d0:2e:3a:d0:98:0a:97:14:99:7d: f1:1c:4a:ea:c0:7b:b9:71:8f:c0:97:6b:c9:e6:bc: 21:be:b7:8e:80:62:4c:f6:8e:7b:2f:68:ad:2f:fd: 50:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F2:91:4E:12:2B:A5:F2:7A:C3:F4:B1:7F:05:5D:4F:B4:E4:51:0B X509v3 Authority Key Identifier: keyid:A6:09:E9:7A:C3:9E:3F:53:67:8C:0C:94:22:F8:99:47:B6:14:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.avsisp.com/repo/AVSISP/0/A609E97AC39E3F53678C0C9422F89947B6146002.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A609E97AC39E3F53678C0C9422F89947B6146002.cer Subject Information Access: Signed Object - URI:rsync://rpki.avsisp.com/repo/AVSISP/0/326131343a373538333a6530303a3a2f34302d3430203d3e20323130343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:e00::/40 Signature Algorithm: sha256WithRSAEncryption 31:72:dc:00:b8:9a:02:1e:7a:14:1d:11:11:70:e2:4e:78:02: 17:f6:a3:fc:75:80:bd:46:c2:f8:ff:d7:95:be:e2:09:a4:3b: 78:1c:e7:d6:0f:e6:5e:ec:f2:ef:d1:39:84:7f:dc:b9:75:dc: 37:85:97:91:12:73:6f:d3:c3:8d:a9:d8:de:84:13:2f:b1:89: 40:f1:64:a4:47:56:d5:58:d6:c4:e0:91:50:47:ee:47:da:6e: 1e:c9:d2:7f:2b:91:b6:de:19:43:4d:ac:0f:35:6c:32:8a:01: 39:c4:36:c1:7a:6e:dd:0c:27:12:e9:d3:9d:43:d9:e7:32:33: 8d:bc:2a:6d:b5:11:03:90:de:82:d7:de:61:a7:27:f9:69:2f: 33:f7:53:1b:50:c4:3a:47:6d:c8:8c:54:30:2c:58:20:0e:12: 6f:7b:eb:ab:fb:85:59:02:6e:fd:fa:e2:7c:b0:28:35:b0:0b: 6c:0b:f6:92:d7:83:15:42:5a:80:63:9d:81:59:71:25:45:4c: 74:fe:21:8c:c8:08:08:be:80:5e:3e:f3:62:6a:b5:1c:83:fe: d3:37:e3:c4:9c:5f:49:80:0a:66:45:4d:ed:f1:ea:dc:98:96: 0d:57:bf:33:10:88:ca:2d:d6:1f:d8:87:5e:09:aa:13:fa:a8: f2:fa:a0:7f -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgIUBrdJ3j+xtTBBQBdzv/lo1ghO+HkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdC NjE0NjAwMjAeFw0yNTA5MDYxMDQyNTFaFw0yNjA5MDUxMDQ3NTFaMDMxMTAvBgNV BAMTKDJCRjI5MTRFMTIyQkE1RjI3QUMzRjRCMTdGMDU1RDRGQjRFNDUxMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC86LyAwyBE/IrdLWeROxfcof+c KELG0VQkMt+AIoZIfJoL7oVpz8xqmPtr799kDbab7KUX7QRh8YI0urrm8rH6w98Z Jj77ayPBh9i6R/r4qKxV2Gt3nuCx5Tu50Y3R0IrvfyNM/cO3Hr8hbxbjwT0daN6B hnI22MJZsnZsm4xVHl/SoX0xuilTC6Zomp5WEiu1Y3eMSxjFWVQ82AiLk/VWcvUt VJbMZ+sPmkPjjcn7jRPrUsYzvAiqkQftDBjzk5fmiA23oPQssg8u8AB2OtGk5prj hFPF0C460JgKlxSZffEcSurAe7lxj8CXa8nmvCG+t46AYkz2jnsvaK0v/VANAgMB AAGjggIeMIICGjAdBgNVHQ4EFgQUK/KRThIrpfJ6w/SxfwVdT7TkUQswHwYDVR0j BBgwFoAUpgnpesOeP1NnjAyUIviZR7YUYAIwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraS5hdnNpc3AuY29tL3JlcG8vQVZTSVNQ LzAvQTYwOUU5N0FDMzlFM0Y1MzY3OEMwQzk0MjJGODk5NDdCNjE0NjAwMi5jcmww gZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5w YWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQyOTkt YjA3OS0zMDllZDk3ZjM4MjQvMC9BNjA5RTk3QUMzOUUzRjUzNjc4QzBDOTQyMkY4 OTk0N0I2MTQ2MDAyLmNlcjCBhAYIKwYBBQUHAQsEeDB2MHQGCCsGAQUFBzALhmhy c3luYzovL3Jwa2kuYXZzaXNwLmNvbS9yZXBvL0FWU0lTUC8wLzMyNjEzMTM0M2Ez NzM1MzgzMzNhNjUzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzMTMwMzQz NjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/ BBIwEDAOBAIAAjAIAwYAKhR1gw4wDQYJKoZIhvcNAQELBQADggEBADFy3AC4mgIe ehQdERFw4k54Ahf2o/x1gL1Gwvj/15W+4gmkO3gc59YP5l7s8u/ROYR/3Ll13DeF l5ESc2/Tw42p2N6EEy+xiUDxZKRHVtVY1sTgkVBH7kfabh7J0n8rkbbeGUNNrA81 bDKKATnENsF6bt0MJxLp051D2ecyM428Km21EQOQ3oLX3mGnJ/lpLzP3UxtQxDpH bciMVDAsWCAOEm9766v7hVkCbv364nywKDWwC2wL9pLXgxVCWoBjnYFZcSVFTHT+ IYzICAi+gF4+82JqtRyD/tM348ScX0mACmZFTe3x6tyYlg1XvzMQiMot1h/Yh14J qhP6qPL6oH8= -----END CERTIFICATE-----Generated at Fri Nov 7 02:33:17 2025 by rpki-client