$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa File: 326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa (raw, json) Hash identifier: elgEW1aflrNdCdgrDrZhMXXhu4mKyg1SqJu+vklMHhY= Subject key identifier: 3E:BC:AA:4B:9C:32:C0:CF:84:BE:E4:E9:79:C3:85:89:82:1F:38:10 Certificate issuer: /CN=B8222A845C0CDC59E8D369AE23E116CDDEA08777 Certificate serial: 09CB04E184DDB2BD3A8826717B38C7421A70F3F1 Authority key identifier: B8:22:2A:84:5C:0C:DC:59:E8:D3:69:AE:23:E1:16:CD:DE:A0:87:77 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa Signing time: Sun 10 May 2026 20:14:02 +0000 ROA not before: Sun 10 May 2026 20:09:02 +0000 ROA not after: Sun 09 May 2027 20:14:02 +0000 asID: 216141 IP address blocks: 2a11:f2c0:ffc7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:cb:04:e1:84:dd:b2:bd:3a:88:26:71:7b:38:c7:42:1a:70:f3:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8222A845C0CDC59E8D369AE23E116CDDEA08777 Validity Not Before: May 10 20:09:02 2026 GMT Not After : May 9 20:14:02 2027 GMT Subject: CN=3EBCAA4B9C32C0CF84BEE4E979C38589821F3810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:83:c3:89:bb:34:fc:72:5a:f2:60:13:d1:87: 55:30:83:44:03:3a:27:1e:83:47:fb:08:48:36:70: 08:22:55:3b:fe:06:5e:33:8d:fe:bf:38:c2:8d:f8: f1:08:38:7e:ce:e6:f1:2e:32:09:53:c9:d4:fa:ba: c9:04:19:86:a9:53:0a:8c:f7:99:f3:db:98:0a:8c: e3:04:bf:10:ef:5e:ec:3e:a6:20:f1:bb:ea:7d:6c: 2c:46:a8:20:fc:33:a7:df:b5:76:26:61:10:8b:fc: c9:c1:bd:db:9f:0c:36:d1:de:86:35:a7:49:a9:ec: 32:10:31:c8:0b:15:2d:01:37:75:94:0f:ef:07:4e: 70:a5:9b:62:1d:f6:2e:5d:23:94:17:bd:32:48:dd: fb:d4:8b:0d:9d:fc:33:01:23:a7:2b:34:fd:44:d4: e8:3d:3b:ac:36:15:7f:94:0d:e6:ee:05:2a:c9:30: 54:ba:4a:c8:a5:d8:d7:7c:11:e0:d2:25:f2:ad:86: 77:dd:72:03:64:71:4a:75:15:0a:95:9a:e8:ed:02: e7:21:06:db:3a:2a:9d:7e:d5:b8:48:ee:e8:8f:5a: 16:b7:0c:e5:ac:2c:34:93:21:12:c0:0c:ad:16:f7: 9b:72:1a:1f:72:8a:ff:49:93:46:ed:33:40:f9:45: 67:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:BC:AA:4B:9C:32:C0:CF:84:BE:E4:E9:79:C3:85:89:82:1F:38:10 X509v3 Authority Key Identifier: keyid:B8:22:2A:84:5C:0C:DC:59:E8:D3:69:AE:23:E1:16:CD:DE:A0:87:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/B8222A845C0CDC59E8D369AE23E116CDDEA08777.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B8222A845C0CDC59E8D369AE23E116CDDEA08777.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0980e262f081490999dd0d5e229e9cfa/0/326131313a663263303a666663373a3a2f34382d3438203d3e20323136313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc7::/48 Signature Algorithm: sha256WithRSAEncryption bf:29:77:96:e3:c9:de:50:4f:61:9a:c0:76:05:11:e8:ba:f1: 69:e6:4c:de:bc:d5:de:0d:04:3a:60:80:00:b1:28:71:4c:5c: c6:b3:d9:1a:19:4d:57:9b:5a:f3:d2:f5:c6:96:e3:76:a3:02: bd:04:fe:be:19:c1:10:8c:b6:d4:4c:46:75:f1:3b:c7:fd:23: bc:6e:e4:0e:7c:57:2e:5e:7d:57:28:02:16:18:6c:c5:32:90: aa:c8:7f:bd:b7:f1:cf:05:2f:48:f5:5b:33:d5:ea:e0:be:2b: 80:65:30:25:7f:ee:73:b1:2d:fd:e5:f0:33:d3:96:99:71:15: 4e:9b:0e:9f:7c:3c:d3:80:02:96:f5:7e:65:72:94:f4:8c:71: 7b:5c:ca:86:4a:18:78:20:b3:1f:b9:49:c5:3b:a0:c4:f3:52: cc:8f:18:f6:2a:4a:c1:2b:4a:65:24:87:24:ca:63:4d:76:42: 1e:ba:06:5d:13:af:a3:64:cc:d2:a2:17:21:a8:2f:ae:9f:b6: e2:77:80:9d:5c:3e:31:8c:50:e8:d4:df:5e:c3:7c:c6:76:de: 05:0a:9f:fa:6a:a3:78:78:ec:b5:8f:01:16:e1:c0:71:f3:df: 9a:c2:42:95:53:36:74:35:d6:9f:d7:e1:74:16:9f:ee:8d:00: 57:b9:43:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUCcsE4YTdsr06iCZxezjHQhpw8/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjgyMjJBODQ1QzBDREM1OUU4RDM2OUFFMjNFMTE2Q0RE RUEwODc3NzAeFw0yNjA1MTAyMDA5MDJaFw0yNzA1MDkyMDE0MDJaMDMxMTAvBgNV BAMTKDNFQkNBQTRCOUMzMkMwQ0Y4NEJFRTRFOTc5QzM4NTg5ODIxRjM4MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpg8OJuzT8clryYBPRh1Uwg0QD Oiceg0f7CEg2cAgiVTv+Bl4zjf6/OMKN+PEIOH7O5vEuMglTydT6uskEGYapUwqM 95nz25gKjOMEvxDvXuw+piDxu+p9bCxGqCD8M6fftXYmYRCL/MnBvdufDDbR3oY1 p0mp7DIQMcgLFS0BN3WUD+8HTnClm2Id9i5dI5QXvTJI3fvUiw2d/DMBI6crNP1E 1Og9O6w2FX+UDebuBSrJMFS6Ssil2Nd8EeDSJfKthnfdcgNkcUp1FQqVmujtAuch Bts6Kp1+1bhI7uiPWha3DOWsLDSTIRLADK0W95tyGh9yiv9Jk0btM0D5RWcVAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUPryqS5wywM+EvuTpecOFiYIfOBAwHwYDVR0j BBgwFoAUuCIqhFwM3Fno02muI+EWzd6gh3cwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzA5ODBlMjYyZjA4MTQ5MDk5OWRkMGQ1ZTIyOWU5Y2ZhLzAv QjgyMjJBODQ1QzBDREM1OUU4RDM2OUFFMjNFMTE2Q0RERUEwODc3Ny5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9CODIyMkE4NDVDMENEQzU5RThEMzY5QUUyM0UxMTZD RERFQTA4Nzc3LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8wOTgw ZTI2MmYwODE0OTA5OTlkZDBkNWUyMjllOWNmYS8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzczYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzYzMTM0MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8cwDQYJKoZIhvcNAQELBQADggEBAL8pd5bjyd5QT2Ga wHYFEei68WnmTN681d4NBDpggACxKHFMXMaz2RoZTVebWvPS9caW43ajAr0E/r4Z wRCMttRMRnXxO8f9I7xu5A58Vy5efVcoAhYYbMUykKrIf7238c8FL0j1WzPV6uC+ K4BlMCV/7nOxLf3l8DPTlplxFU6bDp98PNOAApb1fmVylPSMcXtcyoZKGHggsx+5 ScU7oMTzUsyPGPYqSsErSmUkhyTKY012Qh66Bl0Tr6NkzNKiFyGoL66ftuJ3gJ1c PjGMUOjU317DfMZ23gUKn/pqo3h47LWPARbhwHHz35rCQpVTNnQ11p/X4XQWn+6N AFe5Q/8= -----END CERTIFICATE-----Generated at Wed May 13 16:57:32 2026 by rpki-client