$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: AvPgJpOsI1TploqZ0/2ASRnaOVLSsJ7W3kE96A2TVTo= Subject key identifier: 29:CF:51:DC:BD:65:41:75:A4:58:C5:96:AD:E5:04:66:A7:0F:AD:B9 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 4217CAA50783D492F49997C7BB92A82416ECE7A0 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 10 May 2026 20:14:00 +0000 ROA not before: Sun 10 May 2026 20:09:00 +0000 ROA not after: Sun 09 May 2027 20:14:00 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffd1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:17:ca:a5:07:83:d4:92:f4:99:97:c7:bb:92:a8:24:16:ec:e7:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: May 10 20:09:00 2026 GMT Not After : May 9 20:14:00 2027 GMT Subject: CN=29CF51DCBD654175A458C596ADE50466A70FADB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:13:58:c9:5a:b2:63:07:1b:f0:c1:4d:70:47: 6a:78:4a:e9:ba:cd:4f:c0:9d:30:80:58:6c:bd:05: 0f:79:23:89:e1:c0:38:e5:14:41:f7:39:b0:e1:07: eb:02:a9:12:f0:fc:2c:b4:91:68:01:e6:17:76:a3: 47:a7:0d:c7:7a:f6:cf:56:51:81:11:88:ba:91:c0: cb:e0:dc:dd:ee:6b:1a:2a:60:5a:56:99:4d:ff:22: f0:bc:c4:cd:ba:e9:e5:59:74:c9:df:8b:52:a7:a9: 62:cb:4c:0e:87:a3:52:5b:10:75:7f:74:cc:e4:d9: c4:7f:84:53:96:17:4c:a3:8b:28:fa:43:c8:51:37: b5:46:10:7a:ba:8f:a8:98:2d:9f:57:45:96:b1:77: c1:70:d6:2b:27:2d:5a:4b:9f:d9:08:ab:d5:a4:b0: 37:41:82:39:a6:51:5f:16:f6:d3:90:83:46:4d:67: 58:58:b1:e3:74:94:b7:55:ff:91:f9:51:c7:7b:96: 1b:2a:31:9d:17:f1:fc:22:ee:41:55:37:92:f8:fe: c4:8b:60:e9:d2:16:9d:2b:ea:21:53:cb:e3:ff:7d: c5:44:0e:62:3e:37:6c:95:f8:5a:24:3a:85:11:8f: 30:9e:28:55:ec:5d:ed:52:79:7a:57:07:d6:d9:dc: b3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:CF:51:DC:BD:65:41:75:A4:58:C5:96:AD:E5:04:66:A7:0F:AD:B9 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffd1::/48 Signature Algorithm: sha256WithRSAEncryption 13:ee:97:37:a1:69:0e:7b:5b:52:f6:f4:f4:dc:8c:b8:85:08: 6c:7e:b2:12:fa:24:0d:1e:b6:63:46:9f:06:61:30:fe:f3:dc: d5:87:da:43:2c:8d:e7:11:eb:30:df:04:24:6a:94:e4:7e:55: 1e:e5:db:f2:fa:49:ee:4b:8d:d4:ff:35:7d:be:38:14:de:a3: 63:0e:be:f0:5f:15:39:f7:6b:87:d8:32:4b:8c:95:84:50:c7: 24:bd:01:c6:cd:67:ac:1d:74:a2:db:5d:66:87:1c:c9:3b:ec: 31:2a:b8:78:01:2b:17:38:d7:2f:6a:c1:47:c2:7f:8a:c4:76: a3:ad:33:48:7a:c3:2e:1d:ba:59:9e:23:43:7c:37:49:75:81: fd:52:70:9a:cb:6d:9a:06:f3:9e:5c:e9:24:75:0e:ff:2e:d2: 7b:55:ef:25:90:ac:a9:40:a9:40:b7:42:ae:68:19:58:e7:43: af:81:fb:13:e1:ea:e0:05:5b:90:87:0a:4c:2a:02:6a:cc:cb: eb:3a:d9:4c:66:a6:60:36:af:ce:92:dd:e2:8e:42:bc:e5:4a: 65:6b:d0:72:61:84:9b:d3:89:72:c8:a3:a5:4d:d4:32:af:34: 95:1d:6b:2c:2b:3e:cd:06:d9:38:69:1e:1b:f3:9b:13:e7:2c: 8d:49:a2:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUQhfKpQeD1JL0mZfHu5KoJBbs56AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNjA1MTAyMDA5MDBaFw0yNzA1MDkyMDE0MDBaMDMxMTAvBgNV BAMTKDI5Q0Y1MURDQkQ2NTQxNzVBNDU4QzU5NkFERTUwNDY2QTcwRkFEQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsE1jJWrJjBxvwwU1wR2p4Sum6 zU/AnTCAWGy9BQ95I4nhwDjlFEH3ObDhB+sCqRLw/Cy0kWgB5hd2o0enDcd69s9W UYERiLqRwMvg3N3uaxoqYFpWmU3/IvC8xM266eVZdMnfi1KnqWLLTA6Ho1JbEHV/ dMzk2cR/hFOWF0yjiyj6Q8hRN7VGEHq6j6iYLZ9XRZaxd8Fw1isnLVpLn9kIq9Wk sDdBgjmmUV8W9tOQg0ZNZ1hYseN0lLdV/5H5Ucd7lhsqMZ0X8fwi7kFVN5L4/sSL YOnSFp0r6iFTy+P/fcVEDmI+N2yV+FokOoURjzCeKFXsXe1SeXpXB9bZ3LO9AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUKc9R3L1lQXWkWMWWreUEZqcPrbkwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0MzEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/9EwDQYJKoZIhvcNAQELBQADggEBABPulzehaQ57W1L2 9PTcjLiFCGx+shL6JA0etmNGnwZhMP7z3NWH2kMsjecR6zDfBCRqlOR+VR7l2/L6 Se5LjdT/NX2+OBTeo2MOvvBfFTn3a4fYMkuMlYRQxyS9AcbNZ6wddKLbXWaHHMk7 7DEquHgBKxc41y9qwUfCf4rEdqOtM0h6wy4dulmeI0N8N0l1gf1ScJrLbZoG855c 6SR1Dv8u0ntV7yWQrKlAqUC3Qq5oGVjnQ6+B+xPh6uAFW5CHCkwqAmrMy+s62Uxm pmA2r86S3eKOQrzlSmVr0HJhhJvTiXLIo6VN1DKvNJUdaywrPs0G2ThpHhvzmxPn LI1Joug= -----END CERTIFICATE-----Generated at Wed May 13 16:46:39 2026 by rpki-client