$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/326131313a663263303a666663633a3a2f34382d3438203d3e20323135373638.roa File: 326131313a663263303a666663633a3a2f34382d3438203d3e20323135373638.roa (raw, json) Hash identifier: Kk1bQIf9LRxj6c8BCVTFj/J0x7No1PMyTUzJXHrtFfg= Subject key identifier: A3:3E:26:DD:77:4B:6B:E8:F1:83:53:A0:13:44:52:A8:AF:22:89:AC Certificate issuer: /CN=AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439 Certificate serial: 0C738AD14F1022B83A543140E8D258815B23AA61 Authority key identifier: AF:5A:EE:5A:C3:83:5D:AD:FF:52:DC:E6:BE:76:F9:83:2B:C3:D4:39 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/326131313a663263303a666663633a3a2f34382d3438203d3e20323135373638.roa Signing time: Sun 10 May 2026 20:14:08 +0000 ROA not before: Sun 10 May 2026 20:09:08 +0000 ROA not after: Sun 09 May 2027 20:14:08 +0000 asID: 215768 IP address blocks: 2a11:f2c0:ffcc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:73:8a:d1:4f:10:22:b8:3a:54:31:40:e8:d2:58:81:5b:23:aa:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439 Validity Not Before: May 10 20:09:08 2026 GMT Not After : May 9 20:14:08 2027 GMT Subject: CN=A33E26DD774B6BE8F18353A0134452A8AF2289AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:25:c2:94:ec:0d:f7:1f:f7:7f:fd:67:f7:94: 98:a4:c6:69:21:e2:3b:db:f4:71:a6:50:53:de:32: 21:e1:a5:d1:fd:f1:e4:43:c5:45:78:93:32:1e:33: 29:ae:b4:d0:3b:18:63:a5:34:d7:04:5c:c8:91:e1: 6c:13:ef:21:58:64:6c:0d:a2:8f:f7:74:b0:54:9c: 30:ec:17:b6:14:db:b6:38:ca:35:ae:74:06:bb:7a: b0:4e:5c:7e:67:cd:d2:95:96:42:c7:c7:f7:4b:a6: a5:17:3a:bc:68:48:e0:fe:0f:cf:07:a3:e7:43:ca: a8:70:08:3f:e2:6a:cc:46:59:30:12:dd:17:52:92: 01:82:ec:f0:f0:a8:87:ce:14:7c:77:5e:e4:12:d4: 26:57:44:5b:6a:30:38:45:4a:0c:c9:62:16:27:37: ea:d9:a3:02:e6:93:70:42:9b:66:29:53:6f:f0:cf: 43:9c:48:16:aa:2b:4e:37:00:3b:4a:9d:ea:31:23: 35:df:8c:8e:06:3e:d2:49:d3:ac:39:ba:7f:fb:40: 8d:49:e3:55:c7:20:28:12:73:c4:3f:ac:0c:07:eb: 36:5e:a6:09:37:2f:f1:c5:b0:a6:93:b5:57:70:27: 38:c3:d6:c8:2f:b1:b3:b6:64:9e:a0:a4:b0:71:86: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3E:26:DD:77:4B:6B:E8:F1:83:53:A0:13:44:52:A8:AF:22:89:AC X509v3 Authority Key Identifier: keyid:AF:5A:EE:5A:C3:83:5D:AD:FF:52:DC:E6:BE:76:F9:83:2B:C3:D4:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/326131313a663263303a666663633a3a2f34382d3438203d3e20323135373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffcc::/48 Signature Algorithm: sha256WithRSAEncryption 37:3a:99:4e:73:ad:53:b7:db:ce:5d:81:5e:23:1a:6d:9c:52: 07:2b:78:79:86:a9:c3:6a:22:2a:04:d8:d2:40:ee:03:1e:e9: d4:9a:4c:93:18:d4:7c:4f:eb:32:85:89:41:be:5a:8c:40:4e: 97:e3:f4:38:9d:56:1b:97:78:23:1c:ce:90:c9:7b:d7:13:1c: a5:5a:02:98:90:ea:f3:89:2c:bb:65:a9:ea:e9:13:0d:1c:69: c9:65:45:ad:24:47:3d:1c:30:da:6f:0c:cd:e1:44:ca:e9:b5: 72:96:70:7a:74:93:2d:6e:36:a2:f9:a8:a8:0c:43:1a:a0:8b: 03:39:df:4e:1c:2c:bd:bb:ab:f4:57:82:a7:1f:c2:0e:99:cf: 45:16:21:2b:e2:ee:fb:42:0e:f5:db:54:a6:22:7e:11:ab:2c: 74:1f:69:f8:6f:46:fc:a6:c0:3e:10:a5:40:c8:ee:59:b4:ac: 1f:c9:18:0c:93:61:10:d7:55:4f:7c:49:db:59:05:fa:28:cb: 49:e8:26:dc:44:1a:3b:4e:95:43:49:11:c3:c1:df:9f:43:33: 89:ae:bd:27:2a:1a:58:10:62:b8:0d:1b:f1:c9:e9:e0:65:60: 06:5b:c4:b6:eb:3c:36:56:18:30:c1:50:48:c9:88:6c:53:3f: da:03:d5:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUDHOK0U8QIrg6VDFA6NJYgVsjqmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1QUVFNUFDMzgzNURBREZGNTJEQ0U2QkU3NkY5ODMy QkMzRDQzOTAeFw0yNjA1MTAyMDA5MDhaFw0yNzA1MDkyMDE0MDhaMDMxMTAvBgNV BAMTKEEzM0UyNkRENzc0QjZCRThGMTgzNTNBMDEzNDQ1MkE4QUYyMjg5QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbJcKU7A33H/d//Wf3lJikxmkh 4jvb9HGmUFPeMiHhpdH98eRDxUV4kzIeMymutNA7GGOlNNcEXMiR4WwT7yFYZGwN oo/3dLBUnDDsF7YU27Y4yjWudAa7erBOXH5nzdKVlkLHx/dLpqUXOrxoSOD+D88H o+dDyqhwCD/iasxGWTAS3RdSkgGC7PDwqIfOFHx3XuQS1CZXRFtqMDhFSgzJYhYn N+rZowLmk3BCm2YpU2/wz0OcSBaqK043ADtKneoxIzXfjI4GPtJJ06w5un/7QI1J 41XHICgSc8Q/rAwH6zZepgk3L/HFsKaTtVdwJzjD1sgvsbO2ZJ6gpLBxhrSNAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUoz4m3XdLa+jxg1OgE0RSqK8iiawwHwYDVR0j BBgwFoAUr1ruWsODXa3/Utzmvnb5gyvD1DkwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhX2E4NDA1ZWI1M2RlNDQ2YTk5NGQyMWYzYzI3ZWEzZjk4LzAv QUY1QUVFNUFDMzgzNURBREZGNTJEQ0U2QkU3NkY5ODMyQkMzRDQzOS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9BRjVBRUU1QUMzODM1REFERkY1MkRDRTZCRTc2Rjk4 MzJCQzNENDM5LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV9hODQw NWViNTNkZTQ0NmE5OTRkMjFmM2MyN2VhM2Y5OC8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzNjMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzNzM2Mzgu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8wwDQYJKoZIhvcNAQELBQADggEBADc6mU5zrVO3285d gV4jGm2cUgcreHmGqcNqIioE2NJA7gMe6dSaTJMY1HxP6zKFiUG+WoxATpfj9Did VhuXeCMczpDJe9cTHKVaApiQ6vOJLLtlqerpEw0cacllRa0kRz0cMNpvDM3hRMrp tXKWcHp0ky1uNqL5qKgMQxqgiwM5304cLL27q/RXgqcfwg6Zz0UWISvi7vtCDvXb VKYifhGrLHQfafhvRvymwD4QpUDI7lm0rB/JGAyTYRDXVU98SdtZBfooy0noJtxE GjtOlUNJEcPB359DM4muvScqGlgQYrgNG/HJ6eBlYAZbxLbrPDZWGDDBUEjJiGxT P9oD1Vs= -----END CERTIFICATE-----Generated at Wed May 13 17:58:27 2026 by rpki-client