$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a616361303a3a2f34342d3438203d3e20323132323435.roa File: 326131313a663263303a616361303a3a2f34342d3438203d3e20323132323435.roa (raw, json) Hash identifier: 9SYQBw+WVon+uq1bGjlomS1wDEHFsVFbA0dbRqR0nMs= Subject key identifier: 0D:03:72:C1:2E:3C:48:56:5F:BE:DC:87:BE:3F:05:20:A7:9C:87:36 Certificate issuer: /CN=970AD94C83244100A97F9186D53DADAB07995EE9 Certificate serial: 21F6949C2DA9390F45FA58165CB15932B1F9A58D Authority key identifier: 97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a616361303a3a2f34342d3438203d3e20323132323435.roa Signing time: Sun 10 May 2026 20:14:02 +0000 ROA not before: Sun 10 May 2026 20:09:02 +0000 ROA not after: Sun 09 May 2027 20:14:02 +0000 asID: 212245 IP address blocks: 2a11:f2c0:aca0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f6:94:9c:2d:a9:39:0f:45:fa:58:16:5c:b1:59:32:b1:f9:a5:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=970AD94C83244100A97F9186D53DADAB07995EE9 Validity Not Before: May 10 20:09:02 2026 GMT Not After : May 9 20:14:02 2027 GMT Subject: CN=0D0372C12E3C48565FBEDC87BE3F0520A79C8736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cd:ef:3a:37:1e:a0:b6:4b:02:80:ff:91:2a: c1:da:e4:27:b3:f0:59:e4:c3:e9:7b:cf:fa:e2:26: 96:8f:d2:a9:39:f5:89:db:92:bd:51:ad:99:a1:82: 45:01:a2:2d:b4:13:f1:1e:19:64:ee:f4:65:7d:89: f3:3d:f1:54:fb:4d:26:c7:8b:4f:6f:3f:60:5d:aa: f0:5e:27:bc:9b:63:40:37:e3:56:64:97:89:84:c9: 81:37:8c:dd:66:de:dc:67:b3:59:42:19:7a:50:1e: 89:f3:9a:df:93:3f:6b:6b:be:97:9a:72:db:21:33: ec:c2:9b:db:56:a9:06:9c:9f:12:59:d5:c7:91:79: fc:a8:c4:2e:0d:28:43:21:68:1f:68:f5:0b:86:34: 57:23:1d:da:83:fd:22:b3:87:3b:35:7c:fc:b0:8f: 71:aa:5d:34:b4:23:22:b9:ae:99:eb:81:ec:8d:45: 5d:67:2c:ad:6c:ef:ef:1c:ba:9c:9e:d6:1d:f8:02: 01:7f:8a:47:37:cc:68:05:4b:eb:02:e8:31:0a:6c: 77:34:4f:2e:e8:05:6a:2b:2a:eb:56:8c:12:a4:c2: 92:f9:c2:7e:73:60:3a:74:48:04:e1:1a:5b:ee:e9: 60:e6:b0:e5:39:e4:f9:81:12:f7:10:90:64:dd:b6: 0f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:03:72:C1:2E:3C:48:56:5F:BE:DC:87:BE:3F:05:20:A7:9C:87:36 X509v3 Authority Key Identifier: keyid:97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a616361303a3a2f34342d3438203d3e20323132323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:aca0::/44 Signature Algorithm: sha256WithRSAEncryption 5d:f2:80:a7:46:8b:2f:5a:6a:ce:ee:c5:1d:de:33:e2:50:f3: b6:01:79:0f:d4:ac:2a:2f:1a:5a:76:d8:0f:99:6c:2d:ba:ce: f4:3a:45:d6:a7:ea:96:88:76:d7:5a:6e:53:39:bb:57:ac:5e: 93:4d:69:35:49:9f:17:64:62:7b:b1:f1:f5:0d:d4:87:9a:96: e7:b3:c4:bb:e4:44:84:e9:a2:3d:bf:46:28:61:3e:e0:e4:55: 30:6c:11:17:61:ae:97:53:00:ee:3b:5d:ac:8d:2b:63:8a:84: 3a:b3:05:09:62:dc:e0:3d:63:7c:8f:da:8b:00:2c:de:53:dc: 96:d8:d3:1b:44:6b:c9:c6:97:eb:e8:e4:2f:ab:cf:eb:21:c0: 09:31:fa:e5:c6:d1:c4:eb:33:54:b0:5f:06:c2:f4:6d:ea:f1: d7:d5:5e:5c:6f:b4:5d:0c:17:06:21:e7:4e:4f:86:9d:52:9f: 30:6b:8d:d4:62:a5:e7:6b:8e:0d:91:79:90:93:32:4f:21:8e: 18:df:b9:d4:65:66:88:ed:67:3d:6e:eb:5b:e6:12:d7:b7:f6: 74:0e:2c:76:7c:8d:1a:ad:a3:81:ff:af:13:c3:b7:bc:12:41: 8c:62:21:b6:20:03:d9:19:27:b3:39:be:17:86:97:3b:ab:36: 39:0f:68:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUIfaUnC2pOQ9F+lgWXLFZMrH5pY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIw Nzk5NUVFOTAeFw0yNjA1MTAyMDA5MDJaFw0yNzA1MDkyMDE0MDJaMDMxMTAvBgNV BAMTKDBEMDM3MkMxMkUzQzQ4NTY1RkJFREM4N0JFM0YwNTIwQTc5Qzg3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeze86Nx6gtksCgP+RKsHa5Cez 8Fnkw+l7z/riJpaP0qk59Ynbkr1RrZmhgkUBoi20E/EeGWTu9GV9ifM98VT7TSbH i09vP2BdqvBeJ7ybY0A341Zkl4mEyYE3jN1m3txns1lCGXpQHonzmt+TP2trvpea ctshM+zCm9tWqQacnxJZ1ceRefyoxC4NKEMhaB9o9QuGNFcjHdqD/SKzhzs1fPyw j3GqXTS0IyK5rpnrgeyNRV1nLK1s7+8cupye1h34AgF/ikc3zGgFS+sC6DEKbHc0 Ty7oBWorKutWjBKkwpL5wn5zYDp0SAThGlvu6WDmsOU55PmBEvcQkGTdtg8NAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUDQNywS48SFZfvtyHvj8FIKechzYwHwYDVR0j BBgwFoAUlwrZTIMkQQCpf5GG1T2tqweZXukwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzlkODM5Y2EwYTU1ZTQyYTQ5ZDEwZGUwNzFmNDY1OThiLzAv OTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIwNzk5NUVFOS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy85NzBBRDk0QzgzMjQ0MTAwQTk3RjkxODZENTNEQURB QjA3OTk1RUU5LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV85ZDgz OWNhMGE1NWU0MmE0OWQxMGRlMDcxZjQ2NTk4Yi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjE2MzYxMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMjMxMzIzMjM0MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwQqEfLArKAwDQYJKoZIhvcNAQELBQADggEBAF3ygKdGiy9aas7u xR3eM+JQ87YBeQ/UrCovGlp22A+ZbC26zvQ6Rdan6paIdtdablM5u1esXpNNaTVJ nxdkYnux8fUN1IealuezxLvkRITpoj2/RihhPuDkVTBsERdhrpdTAO47XayNK2OK hDqzBQli3OA9Y3yP2osALN5T3JbY0xtEa8nGl+vo5C+rz+shwAkx+uXG0cTrM1Sw XwbC9G3q8dfVXlxvtF0MFwYh505Php1SnzBrjdRipedrjg2ReZCTMk8hjhjfudRl ZojtZz1u61vmEte39nQOLHZ8jRqto4H/rxPDt7wSQYxiIbYgA9kZJ7M5vheGlzur NjkPaJU= -----END CERTIFICATE-----Generated at Wed May 13 16:25:03 2026 by rpki-client