$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: vn32w0zGgfB0cVJZQUH0tGQAvf+HZ/StuvYLZuELll0= Subject key identifier: 2E:47:6B:51:A8:89:D7:A0:2D:6E:91:F5:E4:ED:55:8D:39:11:3D:9A Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 3BCFFB4ACA3420698E5B520B23591403C4F11F80 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 10 May 2026 20:14:00 +0000 ROA not before: Sun 10 May 2026 20:09:00 +0000 ROA not after: Sun 09 May 2027 20:14:00 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffdc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:cf:fb:4a:ca:34:20:69:8e:5b:52:0b:23:59:14:03:c4:f1:1f:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: May 10 20:09:00 2026 GMT Not After : May 9 20:14:00 2027 GMT Subject: CN=2E476B51A889D7A02D6E91F5E4ED558D39113D9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1a:64:cd:76:68:e2:37:e9:04:17:5c:1b:06: ef:9c:d5:cf:89:f3:62:6f:a0:c1:cd:fb:b5:cb:4d: 9f:c8:5d:ee:40:be:68:eb:73:a2:a3:5f:58:e6:38: 5a:f7:58:46:e0:72:fa:1d:92:6d:af:bd:25:85:86: e0:d0:36:1e:8a:49:db:4c:6f:30:24:6e:b5:a9:7b: 39:09:57:bd:d6:56:bc:f6:65:36:d1:81:f8:0f:b8: f6:7b:4e:da:c9:d0:00:ce:29:7c:61:65:0f:fa:61: 16:19:65:10:fd:49:fb:ac:81:d0:35:cf:52:61:f3: 5c:18:5c:d3:59:cb:ec:01:a5:a7:2e:40:b0:6d:52: 0a:93:a0:08:10:31:30:2a:fe:27:de:87:ce:b8:02: 6d:69:c8:1f:11:4e:d9:ea:46:b2:3f:0a:f8:d9:25: 22:72:f2:d2:36:e7:89:8d:01:a3:7e:9f:d1:f8:ba: 71:e9:5e:c7:9c:3f:ed:b7:df:b4:93:a2:2d:5a:e5: 83:c8:8a:80:45:af:90:0a:e8:01:ef:34:b3:bf:ff: a2:97:31:3e:66:5a:c6:3a:bb:ae:8c:9b:db:7f:4c: b2:ba:2b:68:f0:f8:64:60:12:66:f5:67:01:e6:56: 55:be:97:2f:71:43:c6:86:11:5b:c3:ce:9e:9d:ae: 8d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:47:6B:51:A8:89:D7:A0:2D:6E:91:F5:E4:ED:55:8D:39:11:3D:9A X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffdc::/48 Signature Algorithm: sha256WithRSAEncryption 2b:e6:c6:8f:64:58:f7:5c:a0:57:7b:76:3d:16:bc:fe:4d:4a: 76:af:64:5d:e1:39:19:80:12:b7:68:8f:38:c3:6e:e9:37:09: 2d:45:99:99:01:a6:e0:2d:e6:e0:1d:c7:07:52:99:c1:cb:e5: 11:f3:e2:0d:8e:62:92:e6:05:33:25:f9:2e:0b:bf:55:b2:84: 5b:bc:ef:71:42:31:e2:20:0c:5f:49:b1:34:c0:0e:70:70:69: 81:80:07:a0:ed:66:ce:9a:6f:47:3d:7c:10:22:c5:a6:46:33: 35:ce:98:5d:4f:05:3f:94:47:13:78:aa:a6:94:ca:81:a4:5c: 18:c5:a8:d3:47:d2:f8:c2:80:ad:dd:91:ea:05:ce:bc:d6:42: 83:f1:20:3f:6e:91:ab:1e:e9:56:6e:02:dd:85:67:db:b0:f1: 75:1b:38:66:12:71:9a:9c:d6:60:4c:d3:d4:11:dc:41:b0:45: 2c:12:5e:3f:60:56:39:43:77:37:b6:5e:48:aa:33:59:ab:a5: 11:02:b5:5d:3f:e7:e2:f5:ee:62:80:8f:dd:37:61:a7:cc:3a: 5e:84:6a:c5:87:5e:b4:5f:b8:09:d1:0b:d0:1b:cc:6e:7e:7f: b8:4b:d0:56:6c:af:05:5a:88:91:b8:0b:58:02:46:ad:64:25: 1e:a6:b8:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUO8/7Sso0IGmOW1ILI1kUA8TxH4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNjA1MTAyMDA5MDBaFw0yNzA1MDkyMDE0MDBaMDMxMTAvBgNV BAMTKDJFNDc2QjUxQTg4OUQ3QTAyRDZFOTFGNUU0RUQ1NThEMzkxMTNEOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvGmTNdmjiN+kEF1wbBu+c1c+J 82JvoMHN+7XLTZ/IXe5Avmjrc6KjX1jmOFr3WEbgcvodkm2vvSWFhuDQNh6KSdtM bzAkbrWpezkJV73WVrz2ZTbRgfgPuPZ7TtrJ0ADOKXxhZQ/6YRYZZRD9SfusgdA1 z1Jh81wYXNNZy+wBpacuQLBtUgqToAgQMTAq/ifeh864Am1pyB8RTtnqRrI/CvjZ JSJy8tI254mNAaN+n9H4unHpXsecP+2337SToi1a5YPIioBFr5AK6AHvNLO//6KX MT5mWsY6u66Mm9t/TLK6K2jw+GRgEmb1ZwHmVlW+ly9xQ8aGEVvDzp6dro3rAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQULkdrUaiJ16AtbpH15O1VjTkRPZowHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0NjMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/9wwDQYJKoZIhvcNAQELBQADggEBACvmxo9kWPdcoFd7 dj0WvP5NSnavZF3hORmAErdojzjDbuk3CS1FmZkBpuAt5uAdxwdSmcHL5RHz4g2O YpLmBTMl+S4Lv1WyhFu873FCMeIgDF9JsTTADnBwaYGAB6DtZs6ab0c9fBAixaZG MzXOmF1PBT+URxN4qqaUyoGkXBjFqNNH0vjCgK3dkeoFzrzWQoPxID9ukase6VZu At2FZ9uw8XUbOGYScZqc1mBM09QR3EGwRSwSXj9gVjlDdze2XkiqM1mrpRECtV0/ 5+L17mKAj903YafMOl6EasWHXrRfuAnRC9AbzG5+f7hL0FZsrwVaiJG4C1gCRq1k JR6muEI= -----END CERTIFICATE-----Generated at Wed May 13 18:29:32 2026 by rpki-client