$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa File: 326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa (raw, json) Hash identifier: MoaZbbTY7Jqr4LowGTe1KRJNCD2PmKCRt2v7wni6Nh8= Subject key identifier: 16:45:12:D8:17:A2:2D:84:90:13:96:E1:DF:30:9E:E1:6A:44:DC:9F Certificate issuer: /CN=970AD94C83244100A97F9186D53DADAB07995EE9 Certificate serial: 21B7DC4ECF0968E0B72E3BA912382CB791E6EE59 Authority key identifier: 97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa Signing time: Sun 10 May 2026 20:14:01 +0000 ROA not before: Sun 10 May 2026 20:09:01 +0000 ROA not after: Sun 09 May 2027 20:14:01 +0000 asID: 212245 IP address blocks: 2a11:f2c0:fff6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 05:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b7:dc:4e:cf:09:68:e0:b7:2e:3b:a9:12:38:2c:b7:91:e6:ee:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=970AD94C83244100A97F9186D53DADAB07995EE9 Validity Not Before: May 10 20:09:01 2026 GMT Not After : May 9 20:14:01 2027 GMT Subject: CN=164512D817A22D84901396E1DF309EE16A44DC9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7e:dd:ee:c2:02:81:64:9d:33:42:e1:59:f3: 80:cf:27:f4:09:f5:10:8d:4a:38:fa:96:69:77:51: cd:bd:01:39:5d:46:f5:99:5a:f0:c2:81:8d:cd:2e: 40:20:65:f8:b7:d7:62:0f:de:e4:c2:d0:47:1c:a9: de:b2:ce:b7:e1:fe:ab:42:29:2c:07:4c:ea:41:5c: 26:b7:7d:ec:18:30:ba:ca:44:87:22:c4:78:3d:e9: 45:8f:65:4d:d0:5d:3e:91:25:d4:17:7b:50:63:69: aa:53:8d:3a:4a:3e:63:44:5e:2f:8c:51:e9:91:69: a3:69:b9:7e:33:35:70:f2:fe:d1:25:40:bb:bd:92: db:56:8d:fa:69:d9:81:c9:a8:90:97:aa:4a:24:e5: 98:b2:5c:c5:38:49:25:cd:6d:90:f5:0f:35:6b:8b: c1:6c:2f:ab:e2:03:75:85:95:5e:09:6d:63:50:bd: fd:bf:e0:68:ee:9a:3c:d1:17:ad:35:4b:0a:de:ca: 18:72:86:60:f2:8e:b1:dd:33:f9:86:12:e4:e8:89: 0e:ce:a7:e3:66:5e:cc:1e:5c:a0:ce:76:b3:0a:a4: b6:04:a7:90:df:2f:1c:f2:b8:91:9f:ad:95:24:b6: c4:69:80:34:52:6a:92:ea:7e:18:73:18:4e:f2:82: 48:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:45:12:D8:17:A2:2D:84:90:13:96:E1:DF:30:9E:E1:6A:44:DC:9F X509v3 Authority Key Identifier: keyid:97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:fff6::/48 Signature Algorithm: sha256WithRSAEncryption 49:4a:22:67:e2:b2:ab:c2:f7:3b:c2:f8:39:5a:2a:cd:01:22: c8:ed:66:af:70:d7:ca:ce:c3:c0:12:fb:b3:6c:95:79:b2:f5: 3d:9d:f6:92:02:10:85:e5:af:4e:da:76:66:b0:12:33:47:b2: d4:44:23:ce:1e:0d:89:d5:8e:76:69:a0:27:b4:d3:82:31:27: b8:1b:d4:89:64:a2:69:62:76:2c:93:ad:85:9f:4c:32:03:b9: 32:2e:c3:7d:5b:eb:7b:6f:c7:f2:f9:d9:2d:1e:fc:fa:a0:3e: e0:28:1f:07:5e:82:3c:d4:09:78:f7:a0:e9:db:30:cb:36:8b: b6:cf:fd:44:08:f3:41:d4:5c:d7:09:f0:26:bb:16:0f:36:8a: 8b:52:18:62:00:29:2c:1f:a5:1b:94:5c:9a:11:03:81:39:c8: 36:02:d2:a4:f0:73:77:d1:1b:90:f9:e8:99:de:07:c8:7d:2d: 0b:e9:db:47:02:cc:33:72:c6:d0:0a:fb:ef:77:c1:aa:ae:6b: 72:bf:ac:3c:79:cd:be:6b:16:d4:ba:f6:20:e5:62:49:69:56: 3c:19:d9:8c:83:d1:d3:ba:ee:6d:3d:d5:c1:32:8b:08:31:76: fe:56:99:c5:0e:e4:b0:fb:d2:f6:e2:de:10:1b:75:d2:09:d5: e8:8c:4e:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUIbfcTs8JaOC3LjupEjgst5Hm7lkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIw Nzk5NUVFOTAeFw0yNjA1MTAyMDA5MDFaFw0yNzA1MDkyMDE0MDFaMDMxMTAvBgNV BAMTKDE2NDUxMkQ4MTdBMjJEODQ5MDEzOTZFMURGMzA5RUUxNkE0NERDOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ft3uwgKBZJ0zQuFZ84DPJ/QJ 9RCNSjj6lml3Uc29ATldRvWZWvDCgY3NLkAgZfi312IP3uTC0Eccqd6yzrfh/qtC KSwHTOpBXCa3fewYMLrKRIcixHg96UWPZU3QXT6RJdQXe1BjaapTjTpKPmNEXi+M UemRaaNpuX4zNXDy/tElQLu9kttWjfpp2YHJqJCXqkok5ZiyXMU4SSXNbZD1DzVr i8FsL6viA3WFlV4JbWNQvf2/4GjumjzRF601SwreyhhyhmDyjrHdM/mGEuToiQ7O p+NmXsweXKDOdrMKpLYEp5DfLxzyuJGfrZUktsRpgDRSapLqfhhzGE7ygkhvAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUFkUS2BeiLYSQE5bh3zCe4WpE3J8wHwYDVR0j BBgwFoAUlwrZTIMkQQCpf5GG1T2tqweZXukwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzlkODM5Y2EwYTU1ZTQyYTQ5ZDEwZGUwNzFmNDY1OThiLzAv OTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIwNzk5NUVFOS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy85NzBBRDk0QzgzMjQ0MTAwQTk3RjkxODZENTNEQURB QjA3OTk1RUU5LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV85ZDgz OWNhMGE1NWU0MmE0OWQxMGRlMDcxZjQ2NTk4Yi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY2MzYzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzIzMjM0MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA//YwDQYJKoZIhvcNAQELBQADggEBAElKImfisqvC9zvC +DlaKs0BIsjtZq9w18rOw8AS+7NslXmy9T2d9pICEIXlr07admawEjNHstREI84e DYnVjnZpoCe004IxJ7gb1IlkomlidiyTrYWfTDIDuTIuw31b63tvx/L52S0e/Pqg PuAoHwdegjzUCXj3oOnbMMs2i7bP/UQI80HUXNcJ8Ca7Fg82iotSGGIAKSwfpRuU XJoRA4E5yDYC0qTwc3fRG5D56JneB8h9LQvp20cCzDNyxtAK++93waqua3K/rDx5 zb5rFtS69iDlYklpVjwZ2YyD0dO67m091cEyiwgxdv5WmcUO5LD70vbi3hAbddIJ 1eiMTlo= -----END CERTIFICATE-----Generated at Wed May 13 19:05:36 2026 by rpki-client