$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: +Pw2Pz/niLR0OIvDdEcfjmpFskGwMua2flzbLEwL+Go= Subject key identifier: 35:10:75:7D:7E:9E:D8:57:80:B9:E4:F9:40:A7:1B:AE:49:A7:5C:94 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 53FEB52FC4A079A2B3B8CA5DB12285E54DB28AF5 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 10 May 2026 20:14:00 +0000 ROA not before: Sun 10 May 2026 20:09:00 +0000 ROA not after: Sun 09 May 2027 20:14:00 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffde::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:fe:b5:2f:c4:a0:79:a2:b3:b8:ca:5d:b1:22:85:e5:4d:b2:8a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: May 10 20:09:00 2026 GMT Not After : May 9 20:14:00 2027 GMT Subject: CN=3510757D7E9ED85780B9E4F940A71BAE49A75C94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:12:c8:84:5c:07:d9:59:d5:97:a5:8e:b3:70: 3b:f8:de:34:e0:c9:6b:fe:ff:68:71:5b:b8:93:7d: 90:92:9f:d8:54:d6:ee:ad:77:e7:0a:e4:c2:cd:4a: 30:cf:a5:49:7f:dc:7e:45:c1:81:36:20:ed:ff:d9: bd:86:dc:82:60:46:95:e3:07:02:be:94:40:32:38: 25:b4:37:5f:30:08:18:e3:ad:e8:dc:2d:20:0a:9d: a9:e0:1f:21:dc:32:e3:40:b3:bf:72:50:71:1a:ea: 14:27:0b:5f:77:b9:d5:52:a6:b4:ac:3e:23:1c:bf: 3d:6c:f7:d9:a0:5e:37:bb:b3:9e:de:ad:56:fb:35: d9:bb:73:7b:e1:d5:fe:72:6f:28:77:fa:cc:56:30: c2:8a:67:c6:34:1b:7e:b9:73:72:c8:ca:41:d3:3d: ac:f9:82:e3:41:4f:75:6b:22:18:0d:81:69:64:87: 8d:26:84:8d:93:8f:18:58:92:31:8a:53:ae:34:12: a7:1e:8f:1f:7d:c5:42:c0:82:62:be:e9:58:33:5d: a4:c2:76:fa:3d:4f:03:68:cf:e5:c0:cf:96:62:04: 1b:4d:66:93:19:4b:40:8e:53:b4:1c:94:7c:77:2a: b6:89:92:aa:b3:56:b8:f4:94:4b:3a:66:03:ce:86: 34:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:10:75:7D:7E:9E:D8:57:80:B9:E4:F9:40:A7:1B:AE:49:A7:5C:94 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffde::/48 Signature Algorithm: sha256WithRSAEncryption 6d:1b:cb:99:ff:a5:04:f7:69:49:6b:70:10:e7:bc:66:a2:74: b3:3e:72:8b:47:65:d7:f0:74:bc:2f:38:5f:c9:bc:e8:b8:42: 10:7c:22:e2:93:1e:41:13:8c:ce:a9:7a:b0:18:c0:dc:05:12: 0a:41:f9:3d:85:39:f1:83:60:9e:ad:21:07:11:96:73:9b:6b: fb:3f:0c:c6:5d:2d:a6:a1:35:dd:21:86:47:27:d2:05:da:e7: 60:45:17:bd:40:d4:bd:cd:14:29:d7:a2:aa:5c:2d:0e:8d:45: 55:01:09:c6:7c:e7:2c:38:b2:38:98:e7:c2:92:88:44:a2:80: 08:1f:d8:f1:78:e1:ba:d6:5c:ba:ee:87:8c:16:6a:b7:7f:3b: 0b:cf:d5:31:ed:f8:ec:da:5e:3c:96:98:02:65:cb:87:77:66: 47:1b:02:0d:97:2a:55:85:e4:82:f1:98:51:24:cf:f3:7f:d7: d6:16:6c:ce:46:3a:f9:b1:c2:90:61:89:ee:04:e2:6b:8f:6f: 27:d4:77:7c:5a:c4:f4:66:50:89:10:32:4f:98:20:68:3d:31: b7:30:d6:d9:c3:e5:fe:87:7f:13:b9:2d:17:bd:06:26:79:7c: a8:b5:fd:70:cb:2b:4b:00:6f:31:e4:63:23:50:dd:d0:27:24: ee:14:d8:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUU/61L8SgeaKzuMpdsSKF5U2yivUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNjA1MTAyMDA5MDBaFw0yNzA1MDkyMDE0MDBaMDMxMTAvBgNV BAMTKDM1MTA3NTdEN0U5RUQ4NTc4MEI5RTRGOTQwQTcxQkFFNDlBNzVDOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKEsiEXAfZWdWXpY6zcDv43jTg yWv+/2hxW7iTfZCSn9hU1u6td+cK5MLNSjDPpUl/3H5FwYE2IO3/2b2G3IJgRpXj BwK+lEAyOCW0N18wCBjjrejcLSAKnangHyHcMuNAs79yUHEa6hQnC193udVSprSs PiMcvz1s99mgXje7s57erVb7Ndm7c3vh1f5ybyh3+sxWMMKKZ8Y0G365c3LIykHT Paz5guNBT3VrIhgNgWlkh40mhI2TjxhYkjGKU640Eqcejx99xULAgmK+6VgzXaTC dvo9TwNoz+XAz5ZiBBtNZpMZS0COU7QclHx3KraJkqqzVrj0lEs6ZgPOhjTVAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUNRB1fX6e2FeAueT5QKcbrkmnXJQwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0NjUzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/94wDQYJKoZIhvcNAQELBQADggEBAG0by5n/pQT3aUlr cBDnvGaidLM+cotHZdfwdLwvOF/JvOi4QhB8IuKTHkETjM6perAYwNwFEgpB+T2F OfGDYJ6tIQcRlnOba/s/DMZdLaahNd0hhkcn0gXa52BFF71A1L3NFCnXoqpcLQ6N RVUBCcZ85yw4sjiY58KSiESigAgf2PF44brWXLruh4wWard/OwvP1THt+OzaXjyW mAJly4d3ZkcbAg2XKlWF5ILxmFEkz/N/19YWbM5GOvmxwpBhie4E4muPbyfUd3xa xPRmUIkQMk+YIGg9Mbcw1tnD5f6HfxO5LRe9BiZ5fKi1/XDLK0sAbzHkYyNQ3dAn JO4U2OA= -----END CERTIFICATE-----Generated at Wed May 13 18:29:28 2026 by rpki-client