$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: KSgTOOL8ZdXrf0lBxQkVAAr95/tmOBwkp7oTrpzhA3k= Subject key identifier: 4A:E5:37:76:E7:BF:07:6C:60:E7:51:AC:40:4E:38:8A:76:14:36:15 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 7152DE0C797F7CDBE37FAEDDB91B867E94169749 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 10 May 2026 20:14:00 +0000 ROA not before: Sun 10 May 2026 20:09:00 +0000 ROA not after: Sun 09 May 2027 20:14:00 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffdd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:52:de:0c:79:7f:7c:db:e3:7f:ae:dd:b9:1b:86:7e:94:16:97:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: May 10 20:09:00 2026 GMT Not After : May 9 20:14:00 2027 GMT Subject: CN=4AE53776E7BF076C60E751AC404E388A76143615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:11:a9:7d:8b:f4:30:8c:7d:1c:7f:11:f1:cb: 8c:18:34:13:12:b9:29:4a:8d:fa:7e:8f:8e:24:26: 0a:de:18:08:b2:37:9c:82:06:88:3f:a9:e3:f5:0f: c5:f4:98:12:3e:60:84:2c:19:30:30:e0:4b:15:a4: b1:17:3c:34:41:1f:53:e4:40:6f:05:c5:27:90:49: 63:68:e8:42:f6:7a:35:60:f9:81:52:da:fe:ac:66: 54:ff:65:e8:e7:38:a0:a7:a5:2b:28:d3:bd:e8:1a: 0f:0f:29:ac:df:fc:ac:83:52:d5:f4:0f:2f:27:ec: 2a:74:10:58:27:de:89:5b:88:f2:55:7b:4c:2e:f1: d6:44:1b:69:bb:4a:37:aa:04:0d:76:7e:21:63:0e: b0:f8:33:3c:db:15:13:2d:01:c5:14:e5:0a:20:a1: f0:2d:41:e4:58:1a:26:68:e8:44:5a:db:28:c9:f8: 47:78:fe:eb:7f:4d:68:b2:4c:74:b1:00:b7:86:c0: 5d:79:4c:56:c3:68:06:ca:d6:a4:c5:83:77:b1:b3: de:c6:88:10:ef:c2:31:2e:68:13:ed:b1:20:45:be: 38:cb:d1:af:2e:1c:cb:45:43:43:1f:36:e2:e1:ff: 28:46:3b:02:9c:6a:b2:5a:30:cd:38:98:3f:09:07: f6:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E5:37:76:E7:BF:07:6C:60:E7:51:AC:40:4E:38:8A:76:14:36:15 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffdd::/48 Signature Algorithm: sha256WithRSAEncryption a0:d0:90:19:1b:6b:36:6f:c5:0c:25:c6:39:84:5d:d1:c0:c7: dd:de:bd:9e:14:f3:b1:02:2f:62:1f:bc:5d:88:a2:77:8a:04: c2:82:73:41:4c:49:53:7c:d7:81:2b:6c:18:50:6f:64:66:53: cb:44:b5:91:68:0c:d4:6e:ed:15:83:74:56:e4:44:69:12:25: ad:5e:f3:00:88:81:e2:de:86:36:bf:8a:b3:23:0b:3a:ab:64: db:2f:57:c5:68:c4:b5:5b:1d:af:53:28:fa:70:f8:d0:c8:3b: a8:e9:2a:11:84:bd:1e:c4:0f:20:c9:2b:4f:42:9f:8e:39:96: 09:71:62:ac:b0:76:ed:07:75:c6:75:ce:7d:f5:b9:6e:9c:63: af:38:04:2a:c5:2c:9e:b5:c6:b3:66:68:b5:19:c9:8f:64:79: c4:a5:09:88:78:d3:21:15:d7:85:13:71:2c:67:2f:66:95:43: 1d:81:7d:dd:7c:be:37:33:e1:8f:55:80:4e:3b:52:6e:41:34: 41:5b:7b:08:9b:d4:7d:77:1f:11:a3:84:99:9f:68:a6:55:3b: 87:ce:b0:b6:92:31:a0:40:5c:8b:22:9d:37:59:32:12:c6:3c: f3:8d:05:d9:39:d4:65:63:1d:d0:24:b0:f9:f9:91:f4:04:11: 0c:63:92:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUcVLeDHl/fNvjf67duRuGfpQWl0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNjA1MTAyMDA5MDBaFw0yNzA1MDkyMDE0MDBaMDMxMTAvBgNV BAMTKDRBRTUzNzc2RTdCRjA3NkM2MEU3NTFBQzQwNEUzODhBNzYxNDM2MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiEal9i/QwjH0cfxHxy4wYNBMS uSlKjfp+j44kJgreGAiyN5yCBog/qeP1D8X0mBI+YIQsGTAw4EsVpLEXPDRBH1Pk QG8FxSeQSWNo6EL2ejVg+YFS2v6sZlT/ZejnOKCnpSso073oGg8PKazf/KyDUtX0 Dy8n7Cp0EFgn3olbiPJVe0wu8dZEG2m7SjeqBA12fiFjDrD4MzzbFRMtAcUU5Qog ofAtQeRYGiZo6ERa2yjJ+Ed4/ut/TWiyTHSxALeGwF15TFbDaAbK1qTFg3exs97G iBDvwjEuaBPtsSBFvjjL0a8uHMtFQ0MfNuLh/yhGOwKcarJaMM04mD8JB/bxAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUSuU3due/B2xg51GsQE44inYUNhUwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0NjQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/90wDQYJKoZIhvcNAQELBQADggEBAKDQkBkbazZvxQwl xjmEXdHAx93evZ4U87ECL2IfvF2IoneKBMKCc0FMSVN814ErbBhQb2RmU8tEtZFo DNRu7RWDdFbkRGkSJa1e8wCIgeLehja/irMjCzqrZNsvV8VoxLVbHa9TKPpw+NDI O6jpKhGEvR7EDyDJK09Cn445lglxYqywdu0HdcZ1zn31uW6cY684BCrFLJ61xrNm aLUZyY9kecSlCYh40yEV14UTcSxnL2aVQx2Bfd18vjcz4Y9VgE47Um5BNEFbewib 1H13HxGjhJmfaKZVO4fOsLaSMaBAXIsinTdZMhLGPPONBdk51GVjHdAksPn5kfQE EQxjkrw= -----END CERTIFICATE-----Generated at Wed May 13 16:45:25 2026 by rpki-client