$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_3db8163f69224798ac2c463c0bca4d6b/0/326131313a663263303a666666623a3a2f34382d3438203d3e20323033313035.roa File: 326131313a663263303a666666623a3a2f34382d3438203d3e20323033313035.roa (raw, json) Hash identifier: c6cC288Nt+6ZLopbJZfrPCqS0RtJOJx9nVbb4es7uak= Subject key identifier: 6A:3A:EA:2F:83:69:CE:5D:83:CA:ED:29:86:8E:17:63:C8:AC:0E:F9 Certificate issuer: /CN=16589CDE5DC3339CE7BBD4BB1C7C14647497C956 Certificate serial: 660C107AD0689198213258E210AF3D3FDF6DDE51 Authority key identifier: 16:58:9C:DE:5D:C3:33:9C:E7:BB:D4:BB:1C:7C:14:64:74:97:C9:56 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/16589CDE5DC3339CE7BBD4BB1C7C14647497C956.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_3db8163f69224798ac2c463c0bca4d6b/0/326131313a663263303a666666623a3a2f34382d3438203d3e20323033313035.roa Signing time: Sun 10 May 2026 20:13:59 +0000 ROA not before: Sun 10 May 2026 20:08:59 +0000 ROA not after: Sun 09 May 2027 20:13:59 +0000 asID: 203105 IP address blocks: 2a11:f2c0:fffb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_3db8163f69224798ac2c463c0bca4d6b/0/16589CDE5DC3339CE7BBD4BB1C7C14647497C956.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_3db8163f69224798ac2c463c0bca4d6b/0/16589CDE5DC3339CE7BBD4BB1C7C14647497C956.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/16589CDE5DC3339CE7BBD4BB1C7C14647497C956.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:0c:10:7a:d0:68:91:98:21:32:58:e2:10:af:3d:3f:df:6d:de:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16589CDE5DC3339CE7BBD4BB1C7C14647497C956 Validity Not Before: May 10 20:08:59 2026 GMT Not After : May 9 20:13:59 2027 GMT Subject: CN=6A3AEA2F8369CE5D83CAED29868E1763C8AC0EF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f8:fe:d2:70:a3:46:14:dc:46:bb:b7:9a:cb: 7a:5d:60:b7:30:5c:1c:aa:41:75:70:a6:1d:c0:c7: e8:e1:60:2b:0d:c3:48:83:35:ad:b3:d3:6d:4a:70: 89:10:c9:09:7e:d2:f1:15:06:da:78:f6:2e:f3:78: 10:02:c1:ab:e7:50:4a:96:a5:ab:a8:8e:25:a5:16: 75:8d:0c:57:b2:7b:84:42:45:19:37:6a:58:b7:d1: ee:44:c8:15:9b:87:f4:10:89:60:ca:d6:f5:d2:90: af:b2:2b:90:49:9d:e3:93:87:ff:eb:a5:de:c4:4e: 07:37:5c:77:b6:76:25:f5:5f:39:f4:37:3c:9c:f5: f4:57:ed:02:14:77:21:89:85:cf:f1:db:85:45:5a: 4e:16:28:b8:3d:8d:28:e9:98:e7:f3:77:58:36:5b: 59:71:ea:0a:08:42:1d:06:83:91:aa:be:20:2d:f6: 17:cb:e8:82:2e:12:68:1a:e0:fe:5a:3d:74:49:9c: 32:7c:95:66:cc:ba:50:48:76:9d:1e:03:0a:1b:de: 1f:7d:20:c9:ac:80:7e:d3:e9:80:61:6a:f6:18:b7: d3:e4:38:fc:06:7a:00:72:fb:3b:93:1a:06:ad:9f: 40:01:55:14:c5:05:1d:66:90:e2:9b:df:48:58:60: cb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3A:EA:2F:83:69:CE:5D:83:CA:ED:29:86:8E:17:63:C8:AC:0E:F9 X509v3 Authority Key Identifier: keyid:16:58:9C:DE:5D:C3:33:9C:E7:BB:D4:BB:1C:7C:14:64:74:97:C9:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_3db8163f69224798ac2c463c0bca4d6b/0/16589CDE5DC3339CE7BBD4BB1C7C14647497C956.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/16589CDE5DC3339CE7BBD4BB1C7C14647497C956.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_3db8163f69224798ac2c463c0bca4d6b/0/326131313a663263303a666666623a3a2f34382d3438203d3e20323033313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:fffb::/48 Signature Algorithm: sha256WithRSAEncryption 28:f5:03:ba:b9:6a:da:8c:5e:62:6e:24:7f:cf:19:87:88:1b: 40:d0:97:da:78:9a:1b:df:a2:56:5d:32:7c:72:54:a7:e9:63: 96:29:e0:b6:d4:89:13:51:08:d8:ae:3b:a4:7a:34:b1:9d:7c: 2b:9e:21:2b:c1:41:80:2d:25:71:9b:3e:6d:ac:98:a0:c7:c9: a5:41:c7:ba:d4:09:cc:9e:59:0a:c0:f0:02:ef:92:72:6f:e5: 41:6f:57:4a:7c:b5:cb:ed:67:e3:92:5e:37:ea:41:b5:a4:54: 85:6e:cc:f8:aa:1d:1e:38:89:b6:16:62:d2:56:43:4e:ad:1c: 7b:98:bf:15:b4:e2:3e:cb:28:ab:71:7b:64:8f:fd:7c:20:8d: ee:aa:29:9b:13:af:d5:f0:05:f3:83:f2:f1:11:14:d3:28:97: 3a:4b:d3:cd:f8:75:ee:0d:cf:36:d3:1b:27:5d:11:83:da:27: b0:bb:92:6c:27:f0:b9:51:a8:67:8f:65:4f:2c:ee:5a:71:b5: 7d:55:ae:78:f0:5f:d7:98:1a:31:ca:36:df:c0:c8:6b:c1:7f: bc:e5:ff:8e:36:ce:04:cf:43:56:09:b1:9b:ee:5a:92:16:b1: 96:1e:02:60:2c:ef:00:1d:d8:26:dc:44:f6:f0:e4:2b:7d:d7: d1:ef:7f:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUZgwQetBokZghMljiEK89P99t3lEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1ODlDREU1REMzMzM5Q0U3QkJENEJCMUM3QzE0NjQ3 NDk3Qzk1NjAeFw0yNjA1MTAyMDA4NTlaFw0yNzA1MDkyMDEzNTlaMDMxMTAvBgNV BAMTKDZBM0FFQTJGODM2OUNFNUQ4M0NBRUQyOTg2OEUxNzYzQzhBQzBFRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCU+P7ScKNGFNxGu7eay3pdYLcw XByqQXVwph3Ax+jhYCsNw0iDNa2z021KcIkQyQl+0vEVBtp49i7zeBACwavnUEqW pauojiWlFnWNDFeye4RCRRk3ali30e5EyBWbh/QQiWDK1vXSkK+yK5BJneOTh//r pd7ETgc3XHe2diX1Xzn0Nzyc9fRX7QIUdyGJhc/x24VFWk4WKLg9jSjpmOfzd1g2 W1lx6goIQh0Gg5GqviAt9hfL6IIuEmga4P5aPXRJnDJ8lWbMulBIdp0eAwob3h99 IMmsgH7T6YBhavYYt9PkOPwGegBy+zuTGgatn0ABVRTFBR1mkOKb30hYYMvjAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUajrqL4Npzl2Dyu0pho4XY8isDvkwHwYDVR0j BBgwFoAUFlic3l3DM5znu9S7HHwUZHSXyVYwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzNkYjgxNjNmNjkyMjQ3OThhYzJjNDYzYzBiY2E0ZDZiLzAv MTY1ODlDREU1REMzMzM5Q0U3QkJENEJCMUM3QzE0NjQ3NDk3Qzk1Ni5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8xNjU4OUNERTVEQzMzMzlDRTdCQkQ0QkIxQzdDMTQ2 NDc0OTdDOTU2LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8zZGI4 MTYzZjY5MjI0Nzk4YWMyYzQ2M2MwYmNhNGQ2Yi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY2NjIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMwMzMzMTMwMzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA//swDQYJKoZIhvcNAQELBQADggEBACj1A7q5atqMXmJu JH/PGYeIG0DQl9p4mhvfolZdMnxyVKfpY5Yp4LbUiRNRCNiuO6R6NLGdfCueISvB QYAtJXGbPm2smKDHyaVBx7rUCcyeWQrA8ALvknJv5UFvV0p8tcvtZ+OSXjfqQbWk VIVuzPiqHR44ibYWYtJWQ06tHHuYvxW04j7LKKtxe2SP/Xwgje6qKZsTr9XwBfOD 8vERFNMolzpL0834de4NzzbTGyddEYPaJ7C7kmwn8LlRqGePZU8s7lpxtX1Vrnjw X9eYGjHKNt/AyGvBf7zl/442zgTPQ1YJsZvuWpIWsZYeAmAs7wAd2CbcRPbw5Ct9 19Hvf+0= -----END CERTIFICATE-----Generated at Wed May 13 17:51:29 2026 by rpki-client