$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663323a3a2f34382d3438203d3e20313939333337.roa File: 326131313a663263303a666663323a3a2f34382d3438203d3e20313939333337.roa (raw, json) Hash identifier: mGICFwpePDC//7H7pNzqqtaxos1cs8gBg5nTz4FiekQ= Subject key identifier: A5:AE:2F:5C:BD:60:53:CB:E7:FA:42:0E:B8:97:67:83:02:96:0D:03 Certificate issuer: /CN=1A889E0950A8B6489E67E7C7189539FB887EAD71 Certificate serial: 75511BAFC2C2B1E6064C434B4A3054A6D358BADD Authority key identifier: 1A:88:9E:09:50:A8:B6:48:9E:67:E7:C7:18:95:39:FB:88:7E:AD:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663323a3a2f34382d3438203d3e20313939333337.roa Signing time: Sun 10 May 2026 20:14:07 +0000 ROA not before: Sun 10 May 2026 20:09:07 +0000 ROA not after: Sun 09 May 2027 20:14:07 +0000 asID: 199337 IP address blocks: 2a11:f2c0:ffc2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/1A889E0950A8B6489E67E7C7189539FB887EAD71.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/1A889E0950A8B6489E67E7C7189539FB887EAD71.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:51:1b:af:c2:c2:b1:e6:06:4c:43:4b:4a:30:54:a6:d3:58:ba:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A889E0950A8B6489E67E7C7189539FB887EAD71 Validity Not Before: May 10 20:09:07 2026 GMT Not After : May 9 20:14:07 2027 GMT Subject: CN=A5AE2F5CBD6053CBE7FA420EB897678302960D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:77:5a:ff:36:0e:f1:94:5d:a8:3f:0b:56:7e: 00:de:1b:c4:e1:6b:fa:b8:ca:b5:09:0b:19:ca:b0: e9:d2:d8:5c:71:d7:72:d4:38:88:ab:ec:43:8e:73: f7:1a:48:28:c5:88:1a:ae:72:99:b8:4c:6e:32:85: b6:04:5b:e0:a0:99:d2:da:41:2b:45:e6:50:42:a8: c8:48:f3:f7:d7:19:4a:34:c0:51:18:37:c7:31:3e: 07:8c:14:a0:21:55:c4:92:1b:df:0b:a9:c2:4f:69: 9f:2b:2a:08:46:e0:f9:90:ca:c3:f0:45:1d:f6:12: 4f:0e:b4:4d:5d:b9:d3:0f:19:d2:36:a0:cb:64:f5: 08:b1:7a:41:53:f7:72:ce:7b:59:d5:15:c0:fd:9d: 8a:66:9a:10:9e:20:13:dd:6f:de:91:ce:8d:5e:61: da:3c:8b:30:bb:1c:8e:be:7a:3e:40:61:48:7d:ac: 57:99:f1:9b:e0:43:5b:18:f8:6b:0a:ab:4d:3b:d3: 42:2a:7f:ec:53:7c:7c:85:07:f3:ef:76:bd:07:bd: 8f:d7:38:bb:65:ec:5a:91:a4:48:38:38:fc:87:dd: 58:76:28:bc:9a:81:e1:4a:30:7d:72:3c:23:87:88: 28:67:e3:f0:14:f6:78:77:40:d9:4f:d5:f1:bf:5f: 8b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AE:2F:5C:BD:60:53:CB:E7:FA:42:0E:B8:97:67:83:02:96:0D:03 X509v3 Authority Key Identifier: keyid:1A:88:9E:09:50:A8:B6:48:9E:67:E7:C7:18:95:39:FB:88:7E:AD:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/1A889E0950A8B6489E67E7C7189539FB887EAD71.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663323a3a2f34382d3438203d3e20313939333337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc2::/48 Signature Algorithm: sha256WithRSAEncryption 22:e7:ea:df:b4:82:70:38:77:99:9d:ba:af:21:1d:39:a1:2c: 33:9d:0b:70:2a:c9:24:ad:1f:52:05:b6:67:41:cd:b4:10:79: ea:e1:00:df:d6:00:b0:96:9d:39:8c:6c:8c:15:32:c0:df:ae: 06:c8:24:56:96:4b:f3:34:74:76:4c:15:6c:b4:a8:75:0c:f3: 9c:be:fa:94:a7:20:6c:16:65:06:c6:fd:89:c9:04:d5:f8:88: 39:a2:c7:28:94:14:ec:3e:b4:25:90:e7:30:4d:08:d7:6f:97: d8:df:1c:e9:91:19:8e:d2:9d:0a:61:26:e3:20:8a:ba:81:3e: b9:6e:25:38:62:64:12:f5:dc:a8:10:f8:9b:7a:83:43:0d:dd: a6:93:55:cb:c8:75:4d:07:bc:38:e9:2d:a7:bc:5c:2e:d0:1b: 25:bf:f7:c8:3d:9d:a9:5e:55:bc:52:2b:1a:b4:d7:9c:8f:ac: 7c:28:c3:ed:db:c2:2f:79:bf:0f:9d:f3:87:c7:6b:7a:3f:89: ab:d8:ea:bd:f4:e2:8f:a3:13:3d:50:71:2f:2a:6d:ef:ed:10: e8:03:9e:08:95:2a:60:0d:94:ea:ff:ef:77:57:39:f7:24:72: 57:c7:7e:0a:89:fa:ec:45:d4:2f:a4:9c:86:78:0c:65:46:69: fe:72:06:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUdVEbr8LCseYGTENLSjBUptNYut0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE4ODlFMDk1MEE4QjY0ODlFNjdFN0M3MTg5NTM5RkI4 ODdFQUQ3MTAeFw0yNjA1MTAyMDA5MDdaFw0yNzA1MDkyMDE0MDdaMDMxMTAvBgNV BAMTKEE1QUUyRjVDQkQ2MDUzQ0JFN0ZBNDIwRUI4OTc2NzgzMDI5NjBEMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdd1r/Ng7xlF2oPwtWfgDeG8Th a/q4yrUJCxnKsOnS2Fxx13LUOIir7EOOc/caSCjFiBqucpm4TG4yhbYEW+CgmdLa QStF5lBCqMhI8/fXGUo0wFEYN8cxPgeMFKAhVcSSG98LqcJPaZ8rKghG4PmQysPw RR32Ek8OtE1dudMPGdI2oMtk9QixekFT93LOe1nVFcD9nYpmmhCeIBPdb96Rzo1e Ydo8izC7HI6+ej5AYUh9rFeZ8ZvgQ1sY+GsKq00700Iqf+xTfHyFB/Pvdr0HvY/X OLtl7FqRpEg4OPyH3Vh2KLyageFKMH1yPCOHiChn4/AU9nh3QNlP1fG/X4sRAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUpa4vXL1gU8vn+kIOuJdngwKWDQMwHwYDVR0j BBgwFoAUGoieCVCotkieZ+fHGJU5+4h+rXEwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhX2E1MGQ3MTc4YmFkZjQzYmViOTgxMWM3ZWMyN2I0ODljLzAv MUE4ODlFMDk1MEE4QjY0ODlFNjdFN0M3MTg5NTM5RkI4ODdFQUQ3MS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8xQTg4OUUwOTUwQThCNjQ4OUU2N0U3QzcxODk1MzlG Qjg4N0VBRDcxLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV9hNTBk NzE3OGJhZGY0M2JlYjk4MTFjN2VjMjdiNDg5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM5MzkzMzMzMzcu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8IwDQYJKoZIhvcNAQELBQADggEBACLn6t+0gnA4d5md uq8hHTmhLDOdC3AqySStH1IFtmdBzbQQeerhAN/WALCWnTmMbIwVMsDfrgbIJFaW S/M0dHZMFWy0qHUM85y++pSnIGwWZQbG/YnJBNX4iDmixyiUFOw+tCWQ5zBNCNdv l9jfHOmRGY7SnQphJuMgirqBPrluJThiZBL13KgQ+Jt6g0MN3aaTVcvIdU0HvDjp Lae8XC7QGyW/98g9naleVbxSKxq015yPrHwow+3bwi95vw+d84fHa3o/iavY6r30 4o+jEz1QcS8qbe/tEOgDngiVKmANlOr/73dXOfckclfHfgqJ+uxF1C+knIZ4DGVG af5yBl4= -----END CERTIFICATE-----Generated at Wed May 13 17:21:29 2026 by rpki-client