$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/326131313a663263303a666330303a3a2f34302d3430203d3e20323032303736.roa File: 326131313a663263303a666330303a3a2f34302d3430203d3e20323032303736.roa (raw, json) Hash identifier: xLQAJrSJm1fgs6FwcnWz9b5L+eTkpEnw3AYpTuci0+w= Subject key identifier: AD:72:5F:0F:7C:FE:37:94:A8:CC:E2:9B:CB:13:40:1D:3A:AC:0C:E8 Certificate issuer: /CN=1ABB08D41A5A6974320D97887769A15BA6B7EF71 Certificate serial: 0AA1D138430263C4979761C8221BA81DC236BB42 Authority key identifier: 1A:BB:08:D4:1A:5A:69:74:32:0D:97:88:77:69:A1:5B:A6:B7:EF:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1ABB08D41A5A6974320D97887769A15BA6B7EF71.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/326131313a663263303a666330303a3a2f34302d3430203d3e20323032303736.roa Signing time: Sun 10 May 2026 20:14:07 +0000 ROA not before: Sun 10 May 2026 20:09:07 +0000 ROA not after: Sun 09 May 2027 20:14:07 +0000 asID: 202076 IP address blocks: 2a11:f2c0:fc00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/1ABB08D41A5A6974320D97887769A15BA6B7EF71.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/1ABB08D41A5A6974320D97887769A15BA6B7EF71.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1ABB08D41A5A6974320D97887769A15BA6B7EF71.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:a1:d1:38:43:02:63:c4:97:97:61:c8:22:1b:a8:1d:c2:36:bb:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ABB08D41A5A6974320D97887769A15BA6B7EF71 Validity Not Before: May 10 20:09:07 2026 GMT Not After : May 9 20:14:07 2027 GMT Subject: CN=AD725F0F7CFE3794A8CCE29BCB13401D3AAC0CE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a7:91:84:13:04:4b:eb:90:dd:b6:c3:55:4c: be:6d:29:f3:15:83:1b:38:0f:6c:3c:73:a7:bc:f8: 53:18:fe:df:9c:74:92:6f:c8:23:a0:5e:ea:a5:0f: d2:5a:08:2a:4a:1d:b7:a8:b5:7e:29:29:ca:ee:a5: f3:e4:ef:1e:51:24:46:9e:c2:2c:49:70:c3:76:06: 4b:03:e0:6d:f9:7a:13:a3:4a:84:0c:31:ed:9a:c4: aa:61:6c:c7:58:6a:19:7a:05:b0:89:4a:1d:f6:58: 6f:da:d9:1c:10:1b:b1:f8:ee:95:eb:48:9a:1d:64: e4:1c:4c:7a:00:3d:e6:da:bc:cf:1b:db:55:1d:dc: 84:d6:4a:90:a7:66:9c:b0:d9:5f:7c:fb:6f:fa:28: 3e:e3:5b:11:8a:82:60:1a:f7:70:51:e9:4f:e7:59: 83:5b:6f:b1:64:3e:06:da:8f:83:0d:b9:90:ac:6e: 94:36:42:21:94:5f:63:78:c3:f9:84:ce:83:fe:85: 46:fa:c4:02:ad:82:1f:7f:b9:34:fe:7b:14:99:ef: a7:08:0c:31:3c:82:91:6f:53:8f:5b:32:71:89:ad: a8:a4:d9:af:d5:96:45:59:91:bd:b1:b8:96:ab:6a: b3:98:9f:5c:6e:71:b9:a5:6d:c6:00:1f:26:ec:76: c2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:72:5F:0F:7C:FE:37:94:A8:CC:E2:9B:CB:13:40:1D:3A:AC:0C:E8 X509v3 Authority Key Identifier: keyid:1A:BB:08:D4:1A:5A:69:74:32:0D:97:88:77:69:A1:5B:A6:B7:EF:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/1ABB08D41A5A6974320D97887769A15BA6B7EF71.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1ABB08D41A5A6974320D97887769A15BA6B7EF71.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_b3da5785f0c841ac8dd815b7354623df/0/326131313a663263303a666330303a3a2f34302d3430203d3e20323032303736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 6e:fa:5a:82:a9:85:95:7c:09:d5:7f:37:c6:1c:9e:89:c4:0c: da:1b:e3:72:2f:bf:2b:df:73:ae:1e:f9:10:fb:88:db:b1:d0: bf:0a:5c:c5:ae:06:87:a4:63:7b:4c:6b:70:7d:38:98:31:8a: 3f:e1:ef:16:a6:0c:c6:d6:79:00:12:6e:87:7f:5d:64:27:b1: 01:8d:47:be:ed:37:b1:2a:c1:fa:57:6f:0c:64:b0:6a:4a:df: 74:84:40:c2:4c:ec:22:75:93:87:e1:41:e9:91:e4:e3:d9:47: e1:4b:64:34:93:cf:bf:48:95:35:be:85:98:08:91:05:8c:4c: c1:2a:32:bb:dc:9a:ab:ed:9e:7c:c8:cf:c3:76:c6:38:83:0e: db:04:a8:3f:00:25:91:e7:3a:9d:3a:94:8f:68:34:7d:59:99: 5a:c5:63:db:1c:bb:2a:8c:04:dc:12:f5:6b:f6:c5:3b:fe:40: 2a:b7:49:91:58:89:8f:52:2f:25:82:79:0d:bf:33:56:54:ab: d8:93:f8:62:6b:5a:46:7b:e0:3b:c2:82:e0:3a:04:37:83:0b: 63:c7:5c:d7:2c:34:16:fe:3d:5a:6f:7e:cb:a0:f4:8d:07:92: 70:fb:de:90:44:1b:85:84:e0:db:ef:f9:88:63:78:dc:07:61: e9:02:0c:9c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUCqHROEMCY8SXl2HIIhuoHcI2u0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFCQjA4RDQxQTVBNjk3NDMyMEQ5Nzg4Nzc2OUExNUJB NkI3RUY3MTAeFw0yNjA1MTAyMDA5MDdaFw0yNzA1MDkyMDE0MDdaMDMxMTAvBgNV BAMTKEFENzI1RjBGN0NGRTM3OTRBOENDRTI5QkNCMTM0MDFEM0FBQzBDRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrp5GEEwRL65DdtsNVTL5tKfMV gxs4D2w8c6e8+FMY/t+cdJJvyCOgXuqlD9JaCCpKHbeotX4pKcrupfPk7x5RJEae wixJcMN2BksD4G35ehOjSoQMMe2axKphbMdYahl6BbCJSh32WG/a2RwQG7H47pXr SJodZOQcTHoAPebavM8b21Ud3ITWSpCnZpyw2V98+2/6KD7jWxGKgmAa93BR6U/n WYNbb7FkPgbaj4MNuZCsbpQ2QiGUX2N4w/mEzoP+hUb6xAKtgh9/uTT+exSZ76cI DDE8gpFvU49bMnGJraik2a/VlkVZkb2xuJararOYn1xucbmlbcYAHybsdsJJAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUrXJfD3z+N5SozOKbyxNAHTqsDOgwHwYDVR0j BBgwFoAUGrsI1BpaaXQyDZeId2mhW6a373EwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhX2IzZGE1Nzg1ZjBjODQxYWM4ZGQ4MTViNzM1NDYyM2RmLzAv MUFCQjA4RDQxQTVBNjk3NDMyMEQ5Nzg4Nzc2OUExNUJBNkI3RUY3MS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8xQUJCMDhENDFBNUE2OTc0MzIwRDk3ODg3NzY5QTE1 QkE2QjdFRjcxLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV9iM2Rh NTc4NWYwYzg0MWFjOGRkODE1YjczNTQ2MjNkZi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2MzMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMjMwMzIzMDM3MzYu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQ MA4EAgACMAgDBgAqEfLA/DANBgkqhkiG9w0BAQsFAAOCAQEAbvpagqmFlXwJ1X83 xhyeicQM2hvjci+/K99zrh75EPuI27HQvwpcxa4Gh6Rje0xrcH04mDGKP+HvFqYM xtZ5ABJuh39dZCexAY1Hvu03sSrB+ldvDGSwakrfdIRAwkzsInWTh+FB6ZHk49lH 4UtkNJPPv0iVNb6FmAiRBYxMwSoyu9yaq+2efMjPw3bGOIMO2wSoPwAlkec6nTqU j2g0fVmZWsVj2xy7KowE3BL1a/bFO/5AKrdJkViJj1IvJYJ5Db8zVlSr2JP4Ymta RnvgO8KC4DoEN4MLY8dc1yw0Fv49Wm9+y6D0jQeScPvekEQbhYTg2+/5iGN43Adh 6QIMnA== -----END CERTIFICATE-----Generated at Wed May 13 16:49:40 2026 by rpki-client