$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa File: 326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa (raw, json) Hash identifier: tLThUwSwrPfCypAsdBnMMAhmoYAyEUY8DuOIJQne5ZA= Subject key identifier: C6:52:36:91:CE:82:49:40:9C:E3:3F:B0:CE:3F:96:48:72:70:40:06 Certificate issuer: /CN=1D570B984E9C5E382B0A879AA21F6518621F059F Certificate serial: 7CC14E90A8CA1D65FB04200093C0EC8DAC447117 Authority key identifier: 1D:57:0B:98:4E:9C:5E:38:2B:0A:87:9A:A2:1F:65:18:62:1F:05:9F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa Signing time: Sun 10 May 2026 20:14:03 +0000 ROA not before: Sun 10 May 2026 20:09:03 +0000 ROA not after: Sun 09 May 2027 20:14:03 +0000 asID: 216055 IP address blocks: 2a11:f2c0:ffc8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:c1:4e:90:a8:ca:1d:65:fb:04:20:00:93:c0:ec:8d:ac:44:71:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D570B984E9C5E382B0A879AA21F6518621F059F Validity Not Before: May 10 20:09:03 2026 GMT Not After : May 9 20:14:03 2027 GMT Subject: CN=C6523691CE8249409CE33FB0CE3F964872704006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:b3:39:80:9d:e8:d0:b6:ef:a8:29:39:b1: 75:ca:e7:f0:cf:f5:55:08:d5:2e:c0:b4:d6:b3:3d: 79:12:bf:56:93:e1:47:fd:e9:0d:06:c8:91:44:7a: 2b:96:fb:59:b2:37:48:ba:2e:c0:91:0b:d1:12:8a: 84:a2:61:7b:01:08:52:c2:b8:4c:a7:5d:85:2d:df: d3:b1:c8:05:70:bd:e9:65:cb:8d:6e:05:7e:39:7a: 0d:5f:bd:dd:7a:2b:dd:70:fc:99:e0:5d:e7:aa:0f: 00:72:0c:7f:6a:54:b2:4d:bc:95:33:e5:16:27:b6: 30:93:7e:58:f6:e4:43:e2:b7:e6:82:2c:b8:bc:de: d4:58:d2:45:85:e8:c0:4f:71:f1:44:dd:06:df:91: 93:70:5c:c2:3d:7f:e5:d2:b5:5d:7a:f3:71:0d:48: 9e:45:a7:a9:15:87:fb:4a:25:f8:e8:64:16:e6:6c: ab:1c:14:e6:ba:7d:83:3a:66:76:c5:77:9d:c1:6a: f0:14:76:86:31:de:a9:ef:b5:57:98:7d:68:48:51: c6:d8:3c:a7:67:ea:76:89:ec:a1:95:8a:cc:f2:f0: 8a:fc:80:65:8d:a2:de:0e:b3:2e:ce:e3:10:f7:70: a1:c5:33:3e:c5:f9:53:84:14:f0:33:07:d0:f3:72: 7b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:52:36:91:CE:82:49:40:9C:E3:3F:B0:CE:3F:96:48:72:70:40:06 X509v3 Authority Key Identifier: keyid:1D:57:0B:98:4E:9C:5E:38:2B:0A:87:9A:A2:1F:65:18:62:1F:05:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc8::/48 Signature Algorithm: sha256WithRSAEncryption 5a:88:4b:4f:d6:f2:91:61:be:55:0e:05:8c:14:29:09:ab:fc: 82:82:33:c5:a1:f5:4b:cc:66:d7:5c:be:86:94:7f:79:34:a2: dd:21:78:2a:15:61:42:5b:51:43:3f:40:f9:13:b2:99:61:ff: d6:41:1b:09:64:96:33:60:3a:c7:9c:89:fc:13:8d:63:f0:df: 49:03:41:2d:b6:32:a6:9d:52:9a:89:37:d8:da:5d:ba:13:9c: b5:05:f2:0d:67:99:c8:c0:12:36:07:e3:b6:cf:b4:aa:ea:5f: 00:29:26:b6:a8:5d:f8:1f:94:da:2b:66:c2:5f:41:93:5b:9c: d4:4e:86:05:e6:32:e3:cf:08:c2:9d:c6:44:c1:99:07:ba:ea: b9:c5:68:17:13:0e:af:45:39:54:0f:4e:83:f6:3a:e3:e0:eb: 44:b9:ee:87:28:b4:04:4c:59:7f:85:dc:8e:72:94:fc:64:7a: 88:37:bf:eb:2b:99:53:2b:9a:34:d6:1a:c0:04:04:49:fa:f5: ef:ae:02:fb:61:80:34:a8:79:1d:29:20:64:2e:41:90:7a:bd: e4:bf:a8:54:62:83:ad:39:2b:71:7d:f4:15:5e:68:d4:bd:3c: c4:1e:b4:7b:99:bb:ea:dc:69:7b:ff:35:13:39:c7:9a:e7:f3: de:4f:ef:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUfMFOkKjKHWX7BCAAk8DsjaxEcRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ1NzBCOTg0RTlDNUUzODJCMEE4NzlBQTIxRjY1MTg2 MjFGMDU5RjAeFw0yNjA1MTAyMDA5MDNaFw0yNzA1MDkyMDE0MDNaMDMxMTAvBgNV BAMTKEM2NTIzNjkxQ0U4MjQ5NDA5Q0UzM0ZCMENFM0Y5NjQ4NzI3MDQwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6vLM5gJ3o0LbvqCk5sXXK5/DP 9VUI1S7AtNazPXkSv1aT4Uf96Q0GyJFEeiuW+1myN0i6LsCRC9ESioSiYXsBCFLC uEynXYUt39OxyAVwvelly41uBX45eg1fvd16K91w/JngXeeqDwByDH9qVLJNvJUz 5RYntjCTflj25EPit+aCLLi83tRY0kWF6MBPcfFE3QbfkZNwXMI9f+XStV1683EN SJ5Fp6kVh/tKJfjoZBbmbKscFOa6fYM6ZnbFd53BavAUdoYx3qnvtVeYfWhIUcbY PKdn6naJ7KGViszy8Ir8gGWNot4Osy7O4xD3cKHFMz7F+VOEFPAzB9DzcnsRAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUxlI2kc6CSUCc4z+wzj+WSHJwQAYwHwYDVR0j BBgwFoAUHVcLmE6cXjgrCoeaoh9lGGIfBZ8wDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzRkNWMzMDlhZTExYTQ0OWVhODQwN2FjZTFmNzkwMWYwLzAv MUQ1NzBCOTg0RTlDNUUzODJCMEE4NzlBQTIxRjY1MTg2MjFGMDU5Ri5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8xRDU3MEI5ODRFOUM1RTM4MkIwQTg3OUFBMjFGNjUx ODYyMUYwNTlGLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV80ZDVj MzA5YWUxMWE0NDllYTg0MDdhY2UxZjc5MDFmMC8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzgzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzYzMDM1MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8gwDQYJKoZIhvcNAQELBQADggEBAFqIS0/W8pFhvlUO BYwUKQmr/IKCM8Wh9UvMZtdcvoaUf3k0ot0heCoVYUJbUUM/QPkTsplh/9ZBGwlk ljNgOsecifwTjWPw30kDQS22MqadUpqJN9jaXboTnLUF8g1nmcjAEjYH47bPtKrq XwApJraoXfgflNorZsJfQZNbnNROhgXmMuPPCMKdxkTBmQe66rnFaBcTDq9FOVQP ToP2OuPg60S57ocotARMWX+F3I5ylPxkeog3v+srmVMrmjTWGsAEBEn69e+uAvth gDSoeR0pIGQuQZB6veS/qFRig605K3F99BVeaNS9PMQetHuZu+rcaXv/NRM5x5rn 895P78w= -----END CERTIFICATE-----Generated at Wed May 13 16:57:05 2026 by rpki-client