$ rpki-client -vvf rpki.axivora.net/repo/Axivora-Net/3/326130663a316363353a666666663a3a2f34382d3438203d3e20323039353635.roa File: 326130663a316363353a666666663a3a2f34382d3438203d3e20323039353635.roa (raw, json) Hash identifier: 3cmkdO4VeT0RJIinA1rlCxC9qOQs4S6nhL5US7cQ0F4= Subject key identifier: BA:7D:3E:22:4B:A8:AF:1C:75:FF:E6:0F:01:49:C2:B5:2A:08:10:3C Certificate issuer: /CN=808DAC70271F8080A22C1AEE42EFAF98E1776954 Certificate serial: 4276BF15C3F0C782899ADA1E19A62EA33FAC66E4 Authority key identifier: 80:8D:AC:70:27:1F:80:80:A2:2C:1A:EE:42:EF:AF:98:E1:77:69:54 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/808DAC70271F8080A22C1AEE42EFAF98E1776954.cer Subject info access: rsync://rpki.axivora.net/repo/Axivora-Net/3/326130663a316363353a666666663a3a2f34382d3438203d3e20323039353635.roa Signing time: Wed 18 Mar 2026 16:46:17 +0000 ROA not before: Wed 18 Mar 2026 16:41:17 +0000 ROA not after: Wed 17 Mar 2027 16:46:17 +0000 asID: 209565 IP address blocks: 2a0f:1cc5:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.axivora.net/repo/Axivora-Net/3/808DAC70271F8080A22C1AEE42EFAF98E1776954.crl rsync://rpki.axivora.net/repo/Axivora-Net/3/808DAC70271F8080A22C1AEE42EFAF98E1776954.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/808DAC70271F8080A22C1AEE42EFAF98E1776954.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 08:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:76:bf:15:c3:f0:c7:82:89:9a:da:1e:19:a6:2e:a3:3f:ac:66:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=808DAC70271F8080A22C1AEE42EFAF98E1776954 Validity Not Before: Mar 18 16:41:17 2026 GMT Not After : Mar 17 16:46:17 2027 GMT Subject: CN=BA7D3E224BA8AF1C75FFE60F0149C2B52A08103C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:99:f6:68:26:cc:e6:7e:b9:aa:49:67:f9:e7: c3:01:0c:11:b4:2a:15:51:c6:35:7d:0c:c9:de:3f: c1:67:b3:b1:cf:c4:ee:2f:c2:84:e0:06:f8:25:d9: 29:02:9c:f9:39:7a:18:93:26:3e:6c:4b:76:9d:84: ea:0d:77:21:84:3b:fb:af:2c:ac:f4:a9:6a:ad:15: 0f:e2:42:c5:d7:5f:5c:63:92:77:30:e9:90:62:40: 14:ce:08:bc:34:df:25:54:1a:ca:c8:c7:b0:cc:81: 3a:a6:e6:82:85:dc:5e:78:d2:6a:89:45:76:08:8a: 8f:c6:05:ae:40:b9:bd:ee:72:bc:0c:04:5f:49:fa: 2b:a8:8f:03:be:52:cd:85:58:9e:27:c0:09:54:7b: 6a:0b:ed:9f:08:b0:d9:17:03:80:02:e4:e2:7a:eb: 65:d3:a4:e9:a1:0a:ad:0a:a5:1f:61:63:23:69:81: f3:25:0b:d9:12:00:a9:ed:42:f6:33:77:a0:f0:42: 91:fc:a8:e8:b6:dd:77:09:32:3b:17:ba:74:2f:b4: 8d:d6:05:93:a6:1c:93:57:e9:c2:70:fc:0a:b5:ba: 67:a8:8d:93:f2:3a:70:f4:78:19:4f:bf:30:5f:19: 05:64:82:01:aa:a4:f8:29:9e:8d:97:10:f5:c3:23: fb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7D:3E:22:4B:A8:AF:1C:75:FF:E6:0F:01:49:C2:B5:2A:08:10:3C X509v3 Authority Key Identifier: keyid:80:8D:AC:70:27:1F:80:80:A2:2C:1A:EE:42:EF:AF:98:E1:77:69:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.axivora.net/repo/Axivora-Net/3/808DAC70271F8080A22C1AEE42EFAF98E1776954.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/808DAC70271F8080A22C1AEE42EFAF98E1776954.cer Subject Information Access: Signed Object - URI:rsync://rpki.axivora.net/repo/Axivora-Net/3/326130663a316363353a666666663a3a2f34382d3438203d3e20323039353635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 90:8e:a6:52:44:65:23:59:1e:ea:ec:f6:5e:74:e9:7c:f2:c2: 91:14:dd:30:84:d6:2a:39:b3:42:ce:7f:23:64:f0:a3:7e:aa: 16:a6:ca:65:5f:4c:c7:7e:24:02:bf:96:08:39:d1:6a:6a:04: 9b:ce:96:74:20:ca:62:cc:7d:42:8b:6a:3f:2c:65:7d:50:8d: 83:d5:11:bf:79:bd:56:a1:ea:85:14:f2:55:70:8a:40:2c:08: f9:e7:eb:33:03:8b:aa:14:39:99:1f:36:b7:07:75:51:0c:7c: 62:0e:d0:9f:e5:9e:db:f3:12:2a:c3:a7:ac:82:f6:7d:f3:ca: cf:d8:4c:69:71:b2:df:af:b9:b2:a2:71:49:07:49:09:53:ad: 9c:e6:29:cc:a7:83:3a:cf:29:04:54:fc:16:54:2f:5e:81:2d: dc:16:70:f9:6d:82:19:57:35:37:2a:ea:c2:c0:43:1f:4f:53: 71:5a:66:c8:76:5e:73:dc:e1:8f:6f:6b:a7:6f:6e:6d:28:9c: e2:94:61:30:95:b9:30:40:f4:33:ae:1c:ac:a4:74:7f:f7:cf: a6:9f:0e:f0:6e:d1:73:b3:a2:c2:9e:9c:14:bb:b0:84:a1:86: e1:60:05:e3:bd:36:40:5c:7f:c8:50:9c:04:8f:2e:0e:f0:e3: 9b:07:bb:ad -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUQna/FcPwx4KJmtoeGaYuoz+sZuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODA4REFDNzAyNzFGODA4MEEyMkMxQUVFNDJFRkFGOThF MTc3Njk1NDAeFw0yNjAzMTgxNjQxMTdaFw0yNzAzMTcxNjQ2MTdaMDMxMTAvBgNV BAMTKEJBN0QzRTIyNEJBOEFGMUM3NUZGRTYwRjAxNDlDMkI1MkEwODEwM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClmfZoJszmfrmqSWf558MBDBG0 KhVRxjV9DMneP8Fns7HPxO4vwoTgBvgl2SkCnPk5ehiTJj5sS3adhOoNdyGEO/uv LKz0qWqtFQ/iQsXXX1xjkncw6ZBiQBTOCLw03yVUGsrIx7DMgTqm5oKF3F540mqJ RXYIio/GBa5Aub3ucrwMBF9J+iuojwO+Us2FWJ4nwAlUe2oL7Z8IsNkXA4AC5OJ6 62XTpOmhCq0KpR9hYyNpgfMlC9kSAKntQvYzd6DwQpH8qOi23XcJMjsXunQvtI3W BZOmHJNX6cJw/Aq1umeojZPyOnD0eBlPvzBfGQVkggGqpPgpno2XEPXDI/sdAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUun0+Ikuorxx1/+YPAUnCtSoIEDwwHwYDVR0j BBgwFoAUgI2scCcfgICiLBruQu+vmOF3aVQwDgYDVR0PAQH/BAQDAgeAMGkGA1Ud HwRiMGAwXqBcoFqGWHJzeW5jOi8vcnBraS5heGl2b3JhLm5ldC9yZXBvL0F4aXZv cmEtTmV0LzMvODA4REFDNzAyNzFGODA4MEEyMkMxQUVFNDJFRkFGOThFMTc3Njk1 NC5jcmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9y c3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJh LTQ5MzktOTVlOS0wMDc3YjgwYjRmMGUvMC84MDhEQUM3MDI3MUY4MDgwQTIyQzFB RUU0MkVGQUY5OEUxNzc2OTU0LmNlcjCBjQYIKwYBBQUHAQsEgYAwfjB8BggrBgEF BQcwC4ZwcnN5bmM6Ly9ycGtpLmF4aXZvcmEubmV0L3JlcG8vQXhpdm9yYS1OZXQv My8zMjYxMzA2NjNhMzE2MzYzMzUzYTY2NjY2NjY2M2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMDM5MzUzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg8cxf//MA0GCSqGSIb3DQEB CwUAA4IBAQCQjqZSRGUjWR7q7PZedOl88sKRFN0whNYqObNCzn8jZPCjfqoWpspl X0zHfiQCv5YIOdFqagSbzpZ0IMpizH1Ci2o/LGV9UI2D1RG/eb1WoeqFFPJVcIpA LAj55+szA4uqFDmZHza3B3VRDHxiDtCf5Z7b8xIqw6esgvZ988rP2ExpcbLfr7my onFJB0kJU62c5inMp4M6zykEVPwWVC9egS3cFnD5bYIZVzU3KurCwEMfT1NxWmbI dl5z3OGPb2unb25tKJzilGEwlbkwQPQzrhyspHR/98+mnw7wbtFzs6LCnpwUu7CE oYbhYAXjvTZAXH/IUJwEjy4O8OObB7ut -----END CERTIFICATE-----Generated at Wed Mar 25 22:55:14 2026 by rpki-client