$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_cf8a4e16b3584a11b911bb04d7e0a43f/0/326131313a663263303a666665333a3a2f34382d3438203d3e20323131333730.roa File: 326131313a663263303a666665333a3a2f34382d3438203d3e20323131333730.roa (raw, json) Hash identifier: v6P7lVcBcrvneKUvz62ZdwKzn3zDH59Qve86pHfHkj8= Subject key identifier: 8C:3B:55:97:D5:5A:2F:4C:FD:EA:1B:75:2C:E2:43:97:C9:51:9C:36 Certificate issuer: /CN=3FF2982D4C8AE10F3F4EABDC8163F1D209271824 Certificate serial: 7A4D4B87C8235C7933D99B7B06A9F0C34C3BB766 Authority key identifier: 3F:F2:98:2D:4C:8A:E1:0F:3F:4E:AB:DC:81:63:F1:D2:09:27:18:24 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3FF2982D4C8AE10F3F4EABDC8163F1D209271824.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_cf8a4e16b3584a11b911bb04d7e0a43f/0/326131313a663263303a666665333a3a2f34382d3438203d3e20323131333730.roa Signing time: Mon 11 May 2026 21:23:12 +0000 ROA not before: Mon 11 May 2026 21:18:12 +0000 ROA not after: Mon 10 May 2027 21:23:12 +0000 asID: 211370 IP address blocks: 2a11:f2c0:ffe3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_cf8a4e16b3584a11b911bb04d7e0a43f/0/3FF2982D4C8AE10F3F4EABDC8163F1D209271824.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_cf8a4e16b3584a11b911bb04d7e0a43f/0/3FF2982D4C8AE10F3F4EABDC8163F1D209271824.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3FF2982D4C8AE10F3F4EABDC8163F1D209271824.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 00:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:4d:4b:87:c8:23:5c:79:33:d9:9b:7b:06:a9:f0:c3:4c:3b:b7:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FF2982D4C8AE10F3F4EABDC8163F1D209271824 Validity Not Before: May 11 21:18:12 2026 GMT Not After : May 10 21:23:12 2027 GMT Subject: CN=8C3B5597D55A2F4CFDEA1B752CE24397C9519C36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:37:cc:d4:19:38:27:95:8e:f2:13:5b:53:2a: 12:f6:c9:de:51:d4:46:29:0e:28:2e:b9:dd:30:15: 5f:fb:be:48:60:0f:88:f1:3e:87:51:69:2d:d5:1b: 5a:ab:e9:9e:0a:b6:e2:53:11:fb:52:02:20:66:a8: c1:8c:05:d4:9d:7a:2a:37:44:56:09:21:d9:1b:47: d3:e1:77:02:6a:c1:a3:33:bd:c1:7c:f6:4d:b4:e2: 23:12:b1:08:47:58:56:d8:6b:05:57:e7:18:50:5e: d2:e0:c0:0e:8e:f8:b8:44:5f:2d:a3:d5:5f:1d:b5: 09:80:f1:b5:50:fd:2a:81:85:76:28:23:e1:ad:ad: 98:e3:8d:03:dd:7b:40:c1:89:12:44:b2:25:d7:d0: e7:09:e3:45:b1:02:e9:02:29:74:72:c0:3b:8c:65: 80:8f:cb:8e:30:4e:81:97:55:74:36:98:f7:b0:ba: 73:3e:cd:10:36:b4:6b:73:a1:ab:d8:a0:bc:ec:de: 1e:c1:62:1f:08:8d:5f:4b:88:6c:df:71:1d:17:50: 47:9a:62:ea:36:12:5f:eb:f1:93:9c:4e:04:70:fd: a6:ff:b6:83:bd:b2:6c:33:39:9d:30:59:6d:f9:04: 74:32:76:1a:a3:ee:54:15:17:3b:2a:90:22:38:25: f2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:3B:55:97:D5:5A:2F:4C:FD:EA:1B:75:2C:E2:43:97:C9:51:9C:36 X509v3 Authority Key Identifier: keyid:3F:F2:98:2D:4C:8A:E1:0F:3F:4E:AB:DC:81:63:F1:D2:09:27:18:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_cf8a4e16b3584a11b911bb04d7e0a43f/0/3FF2982D4C8AE10F3F4EABDC8163F1D209271824.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3FF2982D4C8AE10F3F4EABDC8163F1D209271824.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_cf8a4e16b3584a11b911bb04d7e0a43f/0/326131313a663263303a666665333a3a2f34382d3438203d3e20323131333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffe3::/48 Signature Algorithm: sha256WithRSAEncryption 8a:0d:bd:a1:81:66:74:d2:d0:7f:b8:8c:2f:59:c5:82:56:d8: 31:05:62:aa:46:52:ab:63:e5:5d:6c:95:63:42:ed:b7:c3:ae: f8:cc:a8:73:48:18:a2:3a:b6:77:fd:b7:b6:d8:78:03:98:02: 4d:30:91:7f:25:bb:1b:ff:8b:64:91:08:69:63:25:75:18:55: 7c:53:76:41:19:53:40:60:bd:fa:0b:3e:23:d8:d5:25:b0:0a: c9:24:9f:c2:07:99:10:dc:e5:c8:df:e9:3a:43:58:26:4d:4e: 54:d9:a8:93:93:d6:1e:8c:25:69:d3:70:18:a6:6f:a4:6c:ad: 75:93:6b:12:68:03:66:80:e4:0c:f8:36:e9:c5:9b:ba:e9:4b: 4d:06:cc:4c:54:a5:fe:3c:28:2c:fd:3c:55:71:fd:a4:25:19: 67:c0:0f:3b:e7:99:5a:08:98:62:de:11:4e:84:39:e2:d2:aa: c5:bc:f5:3c:81:d3:5c:a5:1c:e5:3c:04:16:6d:c9:9d:d0:96: 55:a9:60:f3:4f:b6:ec:5e:2c:66:af:91:66:bb:3d:fe:ea:28: 3f:ab:0e:a3:86:20:47:cc:4f:04:df:12:a9:d1:41:85:34:2c: 3d:4a:04:18:bc:b4:1f:de:09:7b:2d:99:51:4e:d3:ab:1e:5d: 72:56:c9:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUek1Lh8gjXHkz2Zt7Bqnww0w7t2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGMjk4MkQ0QzhBRTEwRjNGNEVBQkRDODE2M0YxRDIw OTI3MTgyNDAeFw0yNjA1MTEyMTE4MTJaFw0yNzA1MTAyMTIzMTJaMDMxMTAvBgNV BAMTKDhDM0I1NTk3RDU1QTJGNENGREVBMUI3NTJDRTI0Mzk3Qzk1MTlDMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuN8zUGTgnlY7yE1tTKhL2yd5R 1EYpDiguud0wFV/7vkhgD4jxPodRaS3VG1qr6Z4KtuJTEftSAiBmqMGMBdSdeio3 RFYJIdkbR9PhdwJqwaMzvcF89k204iMSsQhHWFbYawVX5xhQXtLgwA6O+LhEXy2j 1V8dtQmA8bVQ/SqBhXYoI+GtrZjjjQPde0DBiRJEsiXX0OcJ40WxAukCKXRywDuM ZYCPy44wToGXVXQ2mPewunM+zRA2tGtzoavYoLzs3h7BYh8IjV9LiGzfcR0XUEea Yuo2El/r8ZOcTgRw/ab/toO9smwzOZ0wWW35BHQydhqj7lQVFzsqkCI4JfL1AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUjDtVl9VaL0z96ht1LOJDl8lRnDYwHwYDVR0j BBgwFoAUP/KYLUyK4Q8/TqvcgWPx0gknGCQwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhX2NmOGE0ZTE2YjM1ODRhMTFiOTExYmIwNGQ3ZTBhNDNmLzAv M0ZGMjk4MkQ0QzhBRTEwRjNGNEVBQkRDODE2M0YxRDIwOTI3MTgyNC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zRkYyOTgyRDRDOEFFMTBGM0Y0RUFCREM4MTYzRjFE MjA5MjcxODI0LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV9jZjhh NGUxNmIzNTg0YTExYjkxMWJiMDRkN2UwYTQzZi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY1MzMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzEzMzM3MzAu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/+MwDQYJKoZIhvcNAQELBQADggEBAIoNvaGBZnTS0H+4 jC9ZxYJW2DEFYqpGUqtj5V1slWNC7bfDrvjMqHNIGKI6tnf9t7bYeAOYAk0wkX8l uxv/i2SRCGljJXUYVXxTdkEZU0BgvfoLPiPY1SWwCskkn8IHmRDc5cjf6TpDWCZN TlTZqJOT1h6MJWnTcBimb6RsrXWTaxJoA2aA5Az4NunFm7rpS00GzExUpf48KCz9 PFVx/aQlGWfADzvnmVoImGLeEU6EOeLSqsW89TyB01ylHOU8BBZtyZ3QllWpYPNP tuxeLGavkWa7Pf7qKD+rDqOGIEfMTwTfEqnRQYU0LD1KBBi8tB/eCXstmVFO06se XXJWyac= -----END CERTIFICATE-----Generated at Wed May 13 13:48:46 2026 by rpki-client