$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa File: 326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa (raw, json) Hash identifier: Iu5zEupNr3d2HM/VgOsiZY0jlgghbGowPktIjWL0DAU= Subject key identifier: 0D:31:37:A4:95:10:91:37:2A:CA:DD:36:79:2A:53:21:F6:77:20:B3 Certificate issuer: /CN=C2724A29EF989A4340933B8130B402DD4627A501 Certificate serial: 5D22DBF83733AD8C48F5DA4C4A6DCD733DA72935 Authority key identifier: C2:72:4A:29:EF:98:9A:43:40:93:3B:81:30:B4:02:DD:46:27:A5:01 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/C2724A29EF989A4340933B8130B402DD4627A501.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa Signing time: Sun 10 May 2026 20:14:01 +0000 ROA not before: Sun 10 May 2026 20:09:01 +0000 ROA not after: Sun 09 May 2027 20:14:01 +0000 asID: 198805 IP address blocks: 2a11:f2c0:ffc3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/C2724A29EF989A4340933B8130B402DD4627A501.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/C2724A29EF989A4340933B8130B402DD4627A501.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/C2724A29EF989A4340933B8130B402DD4627A501.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:22:db:f8:37:33:ad:8c:48:f5:da:4c:4a:6d:cd:73:3d:a7:29:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2724A29EF989A4340933B8130B402DD4627A501 Validity Not Before: May 10 20:09:01 2026 GMT Not After : May 9 20:14:01 2027 GMT Subject: CN=0D3137A4951091372ACADD36792A5321F67720B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:96:17:a0:19:0d:e7:b2:10:ce:48:7d:ba:48: 04:11:00:95:a4:04:b4:9f:16:d9:a9:1e:f2:94:e7: 9f:c0:de:ff:2a:4e:32:77:c0:02:c0:aa:81:8a:fa: e6:15:5a:fa:3c:47:2b:48:c7:f7:f8:12:5f:fa:e6: 5f:22:81:d9:9e:49:bc:0b:8b:e6:87:28:1f:e7:3e: c8:c6:34:69:cc:be:4f:82:7d:d9:c3:4d:11:55:de: d1:c2:5d:ef:67:8a:fc:3a:b9:43:a7:cb:64:34:2c: 01:6c:2b:5c:45:06:89:0a:54:88:66:f7:13:aa:1a: 49:54:40:80:df:98:60:78:5c:2d:a3:05:a5:b2:85: 54:ff:2a:fe:c7:37:57:7f:44:53:82:3b:7f:cd:84: ad:ea:12:69:47:5e:17:7d:f5:ad:69:66:ab:c1:30: b8:f8:10:c9:b6:19:d6:1a:a0:41:7c:d5:d6:5f:2e: b4:f9:d7:1d:44:c3:6f:5e:c7:eb:f6:db:d6:9c:e3: 3d:90:b5:f4:21:37:b8:61:2b:a2:43:9e:47:ac:9e: f9:24:62:77:e9:28:87:39:f8:83:e0:87:28:a2:5c: 64:15:de:e3:30:c9:c2:d2:4b:16:59:d4:3d:11:75: 3f:2f:bb:a0:36:93:f5:86:74:c3:c9:58:61:e9:d7: b3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:31:37:A4:95:10:91:37:2A:CA:DD:36:79:2A:53:21:F6:77:20:B3 X509v3 Authority Key Identifier: keyid:C2:72:4A:29:EF:98:9A:43:40:93:3B:81:30:B4:02:DD:46:27:A5:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/C2724A29EF989A4340933B8130B402DD4627A501.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/C2724A29EF989A4340933B8130B402DD4627A501.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_8b83e631279f4c69a53fab250bbe69db/0/326131313a663263303a666663333a3a2f34382d3438203d3e20313938383035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc3::/48 Signature Algorithm: sha256WithRSAEncryption 3a:60:e0:b2:43:a8:4b:ce:0a:95:6e:0e:ff:b3:4b:cf:97:a4: e9:b8:b9:45:65:00:20:50:e8:a3:2c:98:68:a5:6f:32:c7:7c: dc:0b:7f:ef:a3:70:f5:36:e3:ca:51:47:e1:9a:d2:00:6c:ba: 86:ff:a1:9b:17:18:98:a2:2e:57:ca:86:3f:f5:62:6e:3b:51: 84:37:80:db:ca:1a:80:d1:d7:5c:93:3d:a5:be:5d:bc:ed:32: 9f:eb:af:68:03:8d:c7:e5:44:d9:8d:5d:0f:10:d8:72:b2:ab: 9f:5a:e6:35:57:01:db:59:89:e2:6d:5e:94:e5:b0:42:4d:90: da:1a:af:96:a7:e1:23:ce:6b:0f:86:ca:10:4d:62:04:89:78: 9f:59:a4:d5:79:46:03:95:08:f4:72:10:6c:2f:a8:e5:1a:1e: 0a:a1:36:e3:75:4d:b6:e4:2b:63:aa:fb:2e:2e:0e:42:89:20: 1e:d3:45:84:05:dc:ca:26:01:61:89:b4:00:30:a2:ac:09:2e: c5:b5:95:1a:8c:c1:af:7b:0a:de:87:31:ad:1b:84:d1:2c:78: bf:8b:16:52:44:f4:e0:df:38:38:40:46:24:6f:b9:23:b4:67: 71:a2:c7:ff:09:d6:65:d5:cd:19:92:32:36:70:54:df:27:c3: e0:1f:d2:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUXSLb+DczrYxI9dpMSm3Ncz2nKTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI3MjRBMjlFRjk4OUE0MzQwOTMzQjgxMzBCNDAyREQ0 NjI3QTUwMTAeFw0yNjA1MTAyMDA5MDFaFw0yNzA1MDkyMDE0MDFaMDMxMTAvBgNV BAMTKDBEMzEzN0E0OTUxMDkxMzcyQUNBREQzNjc5MkE1MzIxRjY3NzIwQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDalhegGQ3nshDOSH26SAQRAJWk BLSfFtmpHvKU55/A3v8qTjJ3wALAqoGK+uYVWvo8RytIx/f4El/65l8igdmeSbwL i+aHKB/nPsjGNGnMvk+CfdnDTRFV3tHCXe9nivw6uUOny2Q0LAFsK1xFBokKVIhm 9xOqGklUQIDfmGB4XC2jBaWyhVT/Kv7HN1d/RFOCO3/NhK3qEmlHXhd99a1pZqvB MLj4EMm2GdYaoEF81dZfLrT51x1Ew29ex+v229ac4z2QtfQhN7hhK6JDnkesnvkk YnfpKIc5+IPghyiiXGQV3uMwycLSSxZZ1D0RdT8vu6A2k/WGdMPJWGHp17MnAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUDTE3pJUQkTcqyt02eSpTIfZ3ILMwHwYDVR0j BBgwFoAUwnJKKe+YmkNAkzuBMLQC3UYnpQEwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzhiODNlNjMxMjc5ZjRjNjlhNTNmYWIyNTBiYmU2OWRiLzAv QzI3MjRBMjlFRjk4OUE0MzQwOTMzQjgxMzBCNDAyREQ0NjI3QTUwMS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9DMjcyNEEyOUVGOTg5QTQzNDA5MzNCODEzMEI0MDJE RDQ2MjdBNTAxLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV84Yjgz ZTYzMTI3OWY0YzY5YTUzZmFiMjUwYmJlNjlkYi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM5MzgzODMwMzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8MwDQYJKoZIhvcNAQELBQADggEBADpg4LJDqEvOCpVu Dv+zS8+XpOm4uUVlACBQ6KMsmGilbzLHfNwLf++jcPU248pRR+Ga0gBsuob/oZsX GJiiLlfKhj/1Ym47UYQ3gNvKGoDR11yTPaW+XbztMp/rr2gDjcflRNmNXQ8Q2HKy q59a5jVXAdtZieJtXpTlsEJNkNoar5an4SPOaw+GyhBNYgSJeJ9ZpNV5RgOVCPRy EGwvqOUaHgqhNuN1TbbkK2Oq+y4uDkKJIB7TRYQF3MomAWGJtAAwoqwJLsW1lRqM wa97Ct6HMa0bhNEseL+LFlJE9ODfODhARiRvuSO0Z3Gix/8J1mXVzRmSMjZwVN8n w+Af0p0= -----END CERTIFICATE-----Generated at Wed May 13 16:51:52 2026 by rpki-client