$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: udhj+Cj6LdKS6F7VmXpps98C6UmzFOStEjpktiC8S+w= Subject key identifier: 41:C3:38:BB:B0:1D:2C:A4:3B:25:03:CD:C7:79:FE:54:DB:7E:CE:85 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 686812A0251BA2997A99B6AEAD1CB33CD2147C28 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 10 May 2026 20:14:00 +0000 ROA not before: Sun 10 May 2026 20:09:00 +0000 ROA not after: Sun 09 May 2027 20:14:00 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffd0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:68:12:a0:25:1b:a2:99:7a:99:b6:ae:ad:1c:b3:3c:d2:14:7c:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: May 10 20:09:00 2026 GMT Not After : May 9 20:14:00 2027 GMT Subject: CN=41C338BBB01D2CA43B2503CDC779FE54DB7ECE85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:33:c0:e2:23:53:dd:79:62:5a:9e:29:87:82: 06:04:3f:a3:be:94:97:36:14:7e:22:24:a8:3b:ee: 3d:e7:16:a2:df:38:09:1b:dc:2c:38:d6:60:ed:72: 76:a7:b6:25:7a:42:56:fc:38:8f:31:a2:77:0b:c2: c2:5f:cf:33:99:0a:8e:99:0b:7e:87:21:68:7f:01: 9f:e3:c3:4b:63:da:32:f4:f5:c8:56:61:dc:39:dd: 46:0a:cb:fa:86:4c:97:29:60:3c:57:7c:03:d8:c2: 33:dd:d5:0e:c8:6f:f8:61:8e:e2:e8:94:fa:8b:d0: 5d:43:05:d8:bf:ba:a7:15:c3:b7:96:a5:e4:e2:7c: df:88:49:4d:38:a1:45:32:62:d5:3a:f3:9f:6e:1d: b3:58:c2:95:56:8c:4a:d6:72:a0:47:1f:f9:a6:b7: 49:68:99:b2:4b:65:42:c7:7f:34:22:1d:5b:09:6a: 1f:58:02:38:0f:7f:fd:08:23:70:56:7f:34:2f:f2: b2:9c:9b:04:5b:54:bc:83:bf:f6:a7:f7:b2:36:99: c0:b6:9b:10:f0:a5:cd:fb:0f:0a:93:8c:a2:c5:5d: 2f:fe:bb:62:dc:23:54:91:59:53:94:cb:1e:1f:93: 6d:1f:03:79:b8:e4:2c:de:9e:fa:d4:cf:19:1e:ac: bb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C3:38:BB:B0:1D:2C:A4:3B:25:03:CD:C7:79:FE:54:DB:7E:CE:85 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffd0::/48 Signature Algorithm: sha256WithRSAEncryption a8:34:fe:ae:d6:0f:4a:28:82:91:14:ad:f5:30:ca:c0:60:d9: fa:1d:21:38:dc:93:5d:a2:9d:6c:c9:01:aa:42:c6:60:4c:65: ca:ea:52:b6:46:b4:43:be:57:d9:f4:be:6e:77:31:8d:3b:e1: 18:85:3e:64:48:cd:07:71:81:6f:3b:d4:53:ac:ff:2d:be:8c: 57:00:16:c1:d3:e0:0e:d1:6f:3d:87:4b:57:d0:37:9a:a6:bd: cf:22:d9:f2:a9:e3:d6:fc:a9:db:77:7f:2f:eb:a7:87:4b:79: b1:ac:88:49:68:34:a6:d1:f5:1c:74:c2:f9:ea:b5:d5:05:08: 10:97:99:f1:fc:d4:20:0d:0a:b8:06:52:2f:51:f9:4d:97:48: 4f:43:02:63:70:1d:8c:c7:55:0d:ea:1b:d7:59:15:83:7f:d8: 84:aa:dd:6d:73:2b:17:2a:10:79:d3:1f:37:71:5f:0a:de:ca: e2:da:01:0e:64:fe:00:bc:e9:eb:3b:72:3e:3c:b6:71:8c:a1: 31:8f:8f:93:94:3e:9b:b0:a1:6b:e6:79:15:ca:51:9d:58:cf: b5:e9:94:7b:4b:07:21:a5:f3:36:d1:fb:96:d0:68:82:46:94: 18:81:fe:aa:3e:ea:59:1b:c7:00:79:cd:7a:08:b0:54:29:01: 9e:f1:a5:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUaGgSoCUbopl6mbaurRyzPNIUfCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNjA1MTAyMDA5MDBaFw0yNzA1MDkyMDE0MDBaMDMxMTAvBgNV BAMTKDQxQzMzOEJCQjAxRDJDQTQzQjI1MDNDREM3NzlGRTU0REI3RUNFODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAM8DiI1PdeWJanimHggYEP6O+ lJc2FH4iJKg77j3nFqLfOAkb3Cw41mDtcnantiV6Qlb8OI8xoncLwsJfzzOZCo6Z C36HIWh/AZ/jw0tj2jL09chWYdw53UYKy/qGTJcpYDxXfAPYwjPd1Q7Ib/hhjuLo lPqL0F1DBdi/uqcVw7eWpeTifN+ISU04oUUyYtU6859uHbNYwpVWjErWcqBHH/mm t0lombJLZULHfzQiHVsJah9YAjgPf/0II3BWfzQv8rKcmwRbVLyDv/an97I2mcC2 mxDwpc37DwqTjKLFXS/+u2LcI1SRWVOUyx4fk20fA3m45CzenvrUzxkerLtDAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUQcM4u7AdLKQ7JQPNx3n+VNt+zoUwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/9AwDQYJKoZIhvcNAQELBQADggEBAKg0/q7WD0oogpEU rfUwysBg2fodITjck12inWzJAapCxmBMZcrqUrZGtEO+V9n0vm53MY074RiFPmRI zQdxgW871FOs/y2+jFcAFsHT4A7Rbz2HS1fQN5qmvc8i2fKp49b8qdt3fy/rp4dL ebGsiEloNKbR9Rx0wvnqtdUFCBCXmfH81CANCrgGUi9R+U2XSE9DAmNwHYzHVQ3q G9dZFYN/2ISq3W1zKxcqEHnTHzdxXwreyuLaAQ5k/gC86es7cj48tnGMoTGPj5OU PpuwoWvmeRXKUZ1Yz7XplHtLByGl8zbR+5bQaIJGlBiB/qo+6lkbxwB5zXoIsFQp AZ7xpWA= -----END CERTIFICATE-----Generated at Wed May 13 17:16:31 2026 by rpki-client