$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a623030623a3a2f34382d3438203d3e20323035373839.roa File: 326131313a663263303a623030623a3a2f34382d3438203d3e20323035373839.roa (raw, json) Hash identifier: 4QQNsk8lBa8O942cPNbgOsUIiLitH/4e3K7Oj090cpQ= Subject key identifier: 7A:01:70:1A:9C:E8:A5:92:F7:90:85:8A:E4:01:EB:53:E9:32:79:38 Certificate issuer: /CN=B88A94DCA09E3A653C06F478434DC7C8F21E0518 Certificate serial: 152FE1888EC8B45FEFA7E91DED6438A2FD3ED5A7 Authority key identifier: B8:8A:94:DC:A0:9E:3A:65:3C:06:F4:78:43:4D:C7:C8:F2:1E:05:18 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a623030623a3a2f34382d3438203d3e20323035373839.roa Signing time: Sun 10 May 2026 20:14:06 +0000 ROA not before: Sun 10 May 2026 20:09:06 +0000 ROA not after: Sun 09 May 2027 20:14:06 +0000 asID: 205789 IP address blocks: 2a11:f2c0:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 14:48:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:2f:e1:88:8e:c8:b4:5f:ef:a7:e9:1d:ed:64:38:a2:fd:3e:d5:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B88A94DCA09E3A653C06F478434DC7C8F21E0518 Validity Not Before: May 10 20:09:06 2026 GMT Not After : May 9 20:14:06 2027 GMT Subject: CN=7A01701A9CE8A592F790858AE401EB53E9327938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:15:32:14:8a:65:5e:86:10:22:97:2a:2f:57: 7f:a7:c0:c1:81:52:c8:8c:9c:5e:f0:67:7e:be:c7: e3:ff:61:c5:a3:07:40:09:c0:0e:95:33:d7:33:71: 96:e1:44:5d:bf:38:4d:bb:ed:ac:48:aa:07:9a:18: 0e:60:3f:73:34:df:ce:0a:dd:88:83:e7:fc:d2:af: e1:53:59:5b:14:85:31:71:58:96:35:7f:dd:ae:75: 7f:6d:dd:11:03:c2:93:13:0b:c8:9b:a5:54:25:48: f4:82:fd:c6:83:95:6d:01:5b:3f:5b:d9:f8:19:57: 8b:7b:26:00:02:c0:a4:b1:26:00:02:14:f8:c2:6a: 17:48:06:ce:65:8e:56:ea:2c:86:35:e9:08:ad:f5: 46:3e:f8:83:aa:3f:68:2b:89:e8:73:c6:82:40:c0: 35:c9:00:98:25:46:54:2a:b9:6b:23:47:68:0c:87: 1a:9d:ee:0d:d1:79:48:1b:66:14:ba:cf:9b:31:4e: 4d:fe:89:b0:37:2d:cb:a0:e4:18:c3:66:bc:33:a9: 0d:05:2a:9e:68:12:c2:6e:61:cd:f2:4c:3b:c4:d8: ec:e7:b7:64:30:29:14:52:02:e6:8f:c0:65:8f:fd: 6e:25:84:90:10:f2:40:df:ed:a8:c3:e4:dd:5d:2f: 4c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:01:70:1A:9C:E8:A5:92:F7:90:85:8A:E4:01:EB:53:E9:32:79:38 X509v3 Authority Key Identifier: keyid:B8:8A:94:DC:A0:9E:3A:65:3C:06:F4:78:43:4D:C7:C8:F2:1E:05:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/B88A94DCA09E3A653C06F478434DC7C8F21E0518.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B88A94DCA09E3A653C06F478434DC7C8F21E0518.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_0a4637df5ba743fea1b482be8235818f/0/326131313a663263303a623030623a3a2f34382d3438203d3e20323035373839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 89:82:9b:82:fa:54:71:16:14:65:f9:eb:4e:8d:76:1c:61:86: 4a:48:f9:51:a4:1c:87:5c:e5:f8:60:5d:d1:30:1a:f3:de:2e: 73:b9:b2:20:8e:6c:f6:8f:1a:fd:e0:c8:b9:ec:9e:06:e0:6d: 04:d0:84:1d:ec:80:a9:93:62:52:75:b9:16:96:0b:f8:b7:44: 93:dd:c8:30:db:56:0c:77:8c:c7:72:bb:05:cb:65:18:e9:24: a9:79:fc:0d:4c:9f:23:03:2b:b7:a2:72:6e:17:71:6e:ac:8f: b9:4f:4a:32:f2:58:6a:14:99:bc:13:cf:c4:47:b1:40:e0:56: 69:4d:97:a3:81:04:9f:b1:f0:fa:ba:42:76:7a:8f:b6:0c:1b: 71:01:ba:41:60:1d:e6:41:b4:1e:fe:7e:cc:d9:da:ab:78:e3: 53:2c:aa:b3:cf:68:cb:06:e1:3c:bc:77:dc:03:94:fd:2b:44: fa:99:92:fa:c7:c3:b0:8a:a2:86:50:19:65:ff:0f:02:75:6a: 38:fb:8a:a5:d6:4d:b8:33:d4:4a:22:a0:75:56:e9:95:f3:c2: e3:5a:07:6d:61:60:47:35:0e:f0:22:de:6b:47:7a:55:02:6a: 15:f7:4f:1d:42:a7:3b:f2:6a:b6:17:c0:0a:0a:40:58:e5:28: 05:68:99:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUFS/hiI7ItF/vp+kd7WQ4ov0+1acwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg4QTk0RENBMDlFM0E2NTNDMDZGNDc4NDM0REM3QzhG MjFFMDUxODAeFw0yNjA1MTAyMDA5MDZaFw0yNzA1MDkyMDE0MDZaMDMxMTAvBgNV BAMTKDdBMDE3MDFBOUNFOEE1OTJGNzkwODU4QUU0MDFFQjUzRTkzMjc5MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5FTIUimVehhAilyovV3+nwMGB UsiMnF7wZ36+x+P/YcWjB0AJwA6VM9czcZbhRF2/OE277axIqgeaGA5gP3M0384K 3YiD5/zSr+FTWVsUhTFxWJY1f92udX9t3REDwpMTC8ibpVQlSPSC/caDlW0BWz9b 2fgZV4t7JgACwKSxJgACFPjCahdIBs5ljlbqLIY16Qit9UY++IOqP2griehzxoJA wDXJAJglRlQquWsjR2gMhxqd7g3ReUgbZhS6z5sxTk3+ibA3Lcug5BjDZrwzqQ0F Kp5oEsJuYc3yTDvE2Oznt2QwKRRSAuaPwGWP/W4lhJAQ8kDf7ajD5N1dL0w1AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUegFwGpzopZL3kIWK5AHrU+kyeTgwHwYDVR0j BBgwFoAUuIqU3KCeOmU8BvR4Q03HyPIeBRgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzBhNDYzN2RmNWJhNzQzZmVhMWI0ODJiZTgyMzU4MThmLzAv Qjg4QTk0RENBMDlFM0E2NTNDMDZGNDc4NDM0REM3QzhGMjFFMDUxOC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9CODhBOTREQ0EwOUUzQTY1M0MwNkY0Nzg0MzREQzdD OEYyMUUwNTE4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8wYTQ2 MzdkZjViYTc0M2ZlYTFiNDgyYmU4MjM1ODE4Zi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjIzMDMwNjIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMwMzUzNzM4Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLAsAswDQYJKoZIhvcNAQELBQADggEBAImCm4L6VHEWFGX5 606NdhxhhkpI+VGkHIdc5fhgXdEwGvPeLnO5siCObPaPGv3gyLnsngbgbQTQhB3s gKmTYlJ1uRaWC/i3RJPdyDDbVgx3jMdyuwXLZRjpJKl5/A1MnyMDK7eicm4XcW6s j7lPSjLyWGoUmbwTz8RHsUDgVmlNl6OBBJ+x8Pq6QnZ6j7YMG3EBukFgHeZBtB7+ fszZ2qt441MsqrPPaMsG4Ty8d9wDlP0rRPqZkvrHw7CKooZQGWX/DwJ1ajj7iqXW Tbgz1EoioHVW6ZXzwuNaB21hYEc1DvAi3mtHelUCahX3Tx1CpzvyarYXwAoKQFjl KAVomRE= -----END CERTIFICATE-----Generated at Wed May 13 19:46:37 2026 by rpki-client