$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/326131313a663263303a666638303a3a2f34382d3438203d3e20323134353738.roa File: 326131313a663263303a666638303a3a2f34382d3438203d3e20323134353738.roa (raw, json) Hash identifier: BjKc9VMASsXPgZhYz/2yz7n3Gaf1Y9hvN7y8UGTtnR0= Subject key identifier: 4A:0D:03:10:0C:3E:D5:3F:BD:88:14:E3:4F:45:50:56:C7:4B:B8:56 Certificate issuer: /CN=31586760843F668A816117EA02F6F30FE8F9C359 Certificate serial: 406D68BB5543C588289C87803CDF5AD941F9977D Authority key identifier: 31:58:67:60:84:3F:66:8A:81:61:17:EA:02:F6:F3:0F:E8:F9:C3:59 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/31586760843F668A816117EA02F6F30FE8F9C359.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/326131313a663263303a666638303a3a2f34382d3438203d3e20323134353738.roa Signing time: Sun 10 May 2026 20:14:03 +0000 ROA not before: Sun 10 May 2026 20:09:03 +0000 ROA not after: Sun 09 May 2027 20:14:03 +0000 asID: 214578 IP address blocks: 2a11:f2c0:ff80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/31586760843F668A816117EA02F6F30FE8F9C359.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/31586760843F668A816117EA02F6F30FE8F9C359.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/31586760843F668A816117EA02F6F30FE8F9C359.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:6d:68:bb:55:43:c5:88:28:9c:87:80:3c:df:5a:d9:41:f9:97:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31586760843F668A816117EA02F6F30FE8F9C359 Validity Not Before: May 10 20:09:03 2026 GMT Not After : May 9 20:14:03 2027 GMT Subject: CN=4A0D03100C3ED53FBD8814E34F455056C74BB856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:a4:33:2a:4c:0f:6d:77:31:76:94:fe:5f: d8:e8:b1:1f:04:12:8e:ba:ea:09:3d:dc:d8:f5:62: 82:78:09:8f:e2:ad:58:44:fb:6e:a5:90:98:3b:6c: f4:c6:ff:a4:ac:99:3b:ff:67:8f:d7:78:b2:c6:b0: 6f:da:48:aa:91:d2:e8:04:39:09:46:ce:f1:56:3c: e5:6b:40:a4:07:f0:67:89:21:cd:4f:2e:87:5c:2f: df:e1:d5:92:4a:08:4e:81:c8:aa:84:01:06:9f:90: 4b:05:33:cc:c0:c6:7b:2a:e4:cb:8a:0a:9e:92:4b: 3d:f8:b0:4c:ff:12:dd:61:f0:d2:fd:63:39:a4:b6: 7c:f5:91:6b:2f:25:72:a1:97:84:a2:fe:90:c1:47: 82:f9:cb:e5:29:d7:94:79:37:7f:29:3f:71:db:ee: 0f:0a:4f:5f:58:c9:3a:9e:f8:00:ee:e4:b8:75:36: 0d:27:8c:bd:ad:fe:63:cd:96:31:3e:2b:9f:c7:0c: 71:f0:a9:4e:83:bf:00:54:73:08:cf:72:b0:61:7a: 17:f3:2b:78:37:ad:28:e4:84:89:9c:fa:dd:b5:44: 7f:46:88:c5:6e:89:48:59:a7:9e:61:f0:98:11:28: 27:de:07:6d:69:51:8e:cc:ba:21:59:ca:e6:9e:10: 32:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0D:03:10:0C:3E:D5:3F:BD:88:14:E3:4F:45:50:56:C7:4B:B8:56 X509v3 Authority Key Identifier: keyid:31:58:67:60:84:3F:66:8A:81:61:17:EA:02:F6:F3:0F:E8:F9:C3:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/31586760843F668A816117EA02F6F30FE8F9C359.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/31586760843F668A816117EA02F6F30FE8F9C359.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/326131313a663263303a666638303a3a2f34382d3438203d3e20323134353738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ff80::/48 Signature Algorithm: sha256WithRSAEncryption 10:3f:06:c8:e7:a1:01:3b:41:90:a0:fb:bd:11:ac:ff:67:60: 82:88:69:23:1e:7a:86:15:a3:cf:e5:cc:a7:e7:10:bf:6f:a0: 9e:0c:c6:64:5e:52:6b:c7:be:9d:0f:ff:c6:de:72:f1:2f:25: 14:4d:95:8c:02:c4:b9:fb:dd:33:cc:7f:2a:84:2b:7c:72:9d: 9f:22:05:e1:8e:55:92:64:c2:f9:3c:c1:70:39:cc:be:58:cc: 9d:f0:c8:ed:37:0b:ad:af:20:7f:3c:12:ee:d3:f2:d7:4c:ec: d8:04:0f:25:f8:f2:2e:d7:55:d7:e7:32:b5:60:46:a8:88:a8: e1:fe:65:b4:c6:de:0d:36:12:5f:cd:fa:49:08:a4:21:36:0a: d1:d7:71:e5:1a:b2:b0:c0:28:f2:e9:bc:9e:a5:3e:9b:05:aa: 1b:13:fb:46:65:1a:a8:17:02:c0:e7:6f:dd:7a:12:b6:23:f3: 0c:a3:2a:34:7f:a4:ab:27:23:26:10:b1:bc:c9:08:0f:a5:29: 5d:97:68:e8:07:bf:86:4d:2b:71:e3:20:fc:1c:e7:89:b0:30: 92:59:61:07:cc:cb:95:44:51:07:35:ff:cb:67:81:9e:fb:0f: d5:5e:e3:24:73:9a:be:e0:e0:04:f6:fc:ef:fd:ca:f0:69:60: 1b:b1:6a:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUQG1ou1VDxYgonIeAPN9a2UH5l30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE1ODY3NjA4NDNGNjY4QTgxNjExN0VBMDJGNkYzMEZF OEY5QzM1OTAeFw0yNjA1MTAyMDA5MDNaFw0yNzA1MDkyMDE0MDNaMDMxMTAvBgNV BAMTKDRBMEQwMzEwMEMzRUQ1M0ZCRDg4MTRFMzRGNDU1MDU2Qzc0QkI4NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJhKQzKkwPbXcxdpT+X9josR8E Eo666gk93Nj1YoJ4CY/irVhE+26lkJg7bPTG/6SsmTv/Z4/XeLLGsG/aSKqR0ugE OQlGzvFWPOVrQKQH8GeJIc1PLodcL9/h1ZJKCE6ByKqEAQafkEsFM8zAxnsq5MuK Cp6SSz34sEz/Et1h8NL9Yzmktnz1kWsvJXKhl4Si/pDBR4L5y+Up15R5N38pP3Hb 7g8KT19YyTqe+ADu5Lh1Ng0njL2t/mPNljE+K5/HDHHwqU6DvwBUcwjPcrBhehfz K3g3rSjkhImc+t21RH9GiMVuiUhZp55h8JgRKCfeB21pUY7MuiFZyuaeEDJdAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUSg0DEAw+1T+9iBTjT0VQVsdLuFYwHwYDVR0j BBgwFoAUMVhnYIQ/ZoqBYRfqAvbzD+j5w1kwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzY3YzVkNGFkNDMzZTRjZmM5MDg2ZWExZjMzZjJkMjc2LzAv MzE1ODY3NjA4NDNGNjY4QTgxNjExN0VBMDJGNkYzMEZFOEY5QzM1OS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zMTU4Njc2MDg0M0Y2NjhBODE2MTE3RUEwMkY2RjMw RkU4RjlDMzU5LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV82N2M1 ZDRhZDQzM2U0Y2ZjOTA4NmVhMWYzM2YyZDI3Ni8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjM4MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzQzNTM3Mzgu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/4AwDQYJKoZIhvcNAQELBQADggEBABA/BsjnoQE7QZCg +70RrP9nYIKIaSMeeoYVo8/lzKfnEL9voJ4MxmReUmvHvp0P/8becvEvJRRNlYwC xLn73TPMfyqEK3xynZ8iBeGOVZJkwvk8wXA5zL5YzJ3wyO03C62vIH88Eu7T8tdM 7NgEDyX48i7XVdfnMrVgRqiIqOH+ZbTG3g02El/N+kkIpCE2CtHXceUasrDAKPLp vJ6lPpsFqhsT+0ZlGqgXAsDnb916ErYj8wyjKjR/pKsnIyYQsbzJCA+lKV2XaOgH v4ZNK3HjIPwc54mwMJJZYQfMy5VEUQc1/8tngZ77D9Ve4yRzmr7g4AT2/O/9yvBp YBuxakw= -----END CERTIFICATE-----Generated at Wed May 13 16:23:13 2026 by rpki-client