$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_660378fe866243659ee022a8c44f7a7e/0/326131313a663263303a666663623a3a2f34382d3438203d3e20323133343931.roa File: 326131313a663263303a666663623a3a2f34382d3438203d3e20323133343931.roa (raw, json) Hash identifier: 3BL+HEoImozoUbts5Jll+SxE0fgy/ejIZu9gGc1JaXc= Subject key identifier: E1:33:95:8C:5D:44:EA:F9:4F:37:43:15:83:53:83:7F:2F:D1:11:DB Certificate issuer: /CN=62A86C7D9E920A161C8A4CEDDD0EE1BB74C581AC Certificate serial: 74E8A28CAEA9D266FDF7E3D81A63A32C6E3FBF20 Authority key identifier: 62:A8:6C:7D:9E:92:0A:16:1C:8A:4C:ED:DD:0E:E1:BB:74:C5:81:AC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/62A86C7D9E920A161C8A4CEDDD0EE1BB74C581AC.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_660378fe866243659ee022a8c44f7a7e/0/326131313a663263303a666663623a3a2f34382d3438203d3e20323133343931.roa Signing time: Sat 25 Apr 2026 21:04:00 +0000 ROA not before: Sat 25 Apr 2026 20:59:00 +0000 ROA not after: Sat 24 Apr 2027 21:04:00 +0000 asID: 213491 IP address blocks: 2a11:f2c0:ffcb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_660378fe866243659ee022a8c44f7a7e/0/62A86C7D9E920A161C8A4CEDDD0EE1BB74C581AC.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_660378fe866243659ee022a8c44f7a7e/0/62A86C7D9E920A161C8A4CEDDD0EE1BB74C581AC.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/62A86C7D9E920A161C8A4CEDDD0EE1BB74C581AC.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 01 May 2026 09:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:e8:a2:8c:ae:a9:d2:66:fd:f7:e3:d8:1a:63:a3:2c:6e:3f:bf:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62A86C7D9E920A161C8A4CEDDD0EE1BB74C581AC Validity Not Before: Apr 25 20:59:00 2026 GMT Not After : Apr 24 21:04:00 2027 GMT Subject: CN=E133958C5D44EAF94F3743158353837F2FD111DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:69:73:8f:2c:37:db:57:29:f8:42:06:6b:87: 92:e8:3b:71:70:6b:09:6d:92:2b:7b:db:03:12:e9: 4f:73:b2:82:4c:2b:cc:f0:1c:1e:10:8c:f3:11:49: f0:cc:34:dd:c1:33:41:84:cf:7e:bc:1d:5b:9c:9c: 8a:59:0a:b7:60:1a:c3:7a:3c:99:3a:51:88:0b:8c: 1e:e5:07:1a:14:a6:c7:c5:a5:4d:00:d7:03:3c:1b: 13:91:e9:ef:b4:6e:f4:b8:c7:b6:04:52:4e:71:bf: 9b:41:53:ea:11:67:0c:d1:3a:c3:fc:64:1a:a0:53: 92:c4:25:44:c1:89:fa:af:c2:39:1e:97:a3:56:4d: 01:ac:fc:96:29:f4:7b:65:ae:bc:99:5d:87:f0:d8: 52:99:55:b0:88:c7:ac:6c:81:61:e5:5c:f7:1c:cf: 7c:59:19:a5:2a:29:98:dc:32:74:b6:59:04:50:f8: c4:33:61:c7:7d:e2:13:20:28:34:c4:ec:76:50:6c: 41:d2:d5:92:14:5a:b8:e3:4a:fa:dd:9f:88:47:5a: c1:ef:f9:69:96:75:64:56:d8:90:99:dc:e8:d4:f2: c9:ca:54:8d:32:a0:73:9a:f4:45:b5:6d:73:d0:6d: 38:98:eb:17:04:15:a4:f7:ef:50:7f:d6:1d:6e:85: ce:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:33:95:8C:5D:44:EA:F9:4F:37:43:15:83:53:83:7F:2F:D1:11:DB X509v3 Authority Key Identifier: keyid:62:A8:6C:7D:9E:92:0A:16:1C:8A:4C:ED:DD:0E:E1:BB:74:C5:81:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_660378fe866243659ee022a8c44f7a7e/0/62A86C7D9E920A161C8A4CEDDD0EE1BB74C581AC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/62A86C7D9E920A161C8A4CEDDD0EE1BB74C581AC.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_660378fe866243659ee022a8c44f7a7e/0/326131313a663263303a666663623a3a2f34382d3438203d3e20323133343931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffcb::/48 Signature Algorithm: sha256WithRSAEncryption d8:6a:41:7c:fc:09:7b:72:a9:0f:6d:89:46:7c:a2:24:a0:12: 31:d8:56:83:22:cb:8d:f3:1a:53:ed:31:cd:f2:96:83:ad:02: 0c:47:fc:84:32:58:c2:36:b4:c2:3b:80:04:cf:9a:28:5d:7f: 2a:16:2f:af:36:b6:5a:60:c3:99:4a:cb:f0:5d:a4:22:32:1f: 07:5d:d7:f1:fc:04:e5:89:5e:3d:17:f3:55:97:d2:d7:02:46: 99:1e:83:4e:c6:41:ec:11:43:3f:b5:65:a8:ea:51:85:41:b2: 98:84:c9:4c:64:95:44:9d:5f:d3:fd:ee:63:d2:2e:e8:05:9e: 53:5a:72:04:b0:9a:2a:fd:a3:50:18:97:64:cc:94:ba:c2:38: 77:ca:b4:06:57:46:d8:86:98:28:7e:c5:15:89:96:42:72:73: 87:44:fa:d4:10:48:3e:cd:0b:84:df:90:25:4f:cd:b3:c9:6e: 95:72:27:34:a3:e2:9b:3e:16:01:36:e1:14:91:f5:d7:a5:28: 6b:8f:6d:a0:4c:f5:ff:12:5a:45:bd:39:6b:c5:38:70:34:f8: 99:ce:2d:85:37:d2:99:3a:c0:97:03:64:c1:8f:08:3b:f9:13: a2:c8:9c:e9:55:0f:43:f8:7d:7f:de:8f:8f:e5:69:2e:86:ad: f7:de:3d:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUdOiijK6p0mb99+PYGmOjLG4/vyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJBODZDN0Q5RTkyMEExNjFDOEE0Q0VEREQwRUUxQkI3 NEM1ODFBQzAeFw0yNjA0MjUyMDU5MDBaFw0yNzA0MjQyMTA0MDBaMDMxMTAvBgNV BAMTKEUxMzM5NThDNUQ0NEVBRjk0RjM3NDMxNTgzNTM4MzdGMkZEMTExREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpaXOPLDfbVyn4QgZrh5LoO3Fw awltkit72wMS6U9zsoJMK8zwHB4QjPMRSfDMNN3BM0GEz368HVucnIpZCrdgGsN6 PJk6UYgLjB7lBxoUpsfFpU0A1wM8GxOR6e+0bvS4x7YEUk5xv5tBU+oRZwzROsP8 ZBqgU5LEJUTBifqvwjkel6NWTQGs/JYp9HtlrryZXYfw2FKZVbCIx6xsgWHlXPcc z3xZGaUqKZjcMnS2WQRQ+MQzYcd94hMgKDTE7HZQbEHS1ZIUWrjjSvrdn4hHWsHv +WmWdWRW2JCZ3OjU8snKVI0yoHOa9EW1bXPQbTiY6xcEFaT371B/1h1uhc6lAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQU4TOVjF1E6vlPN0MVg1ODfy/REdswHwYDVR0j BBgwFoAUYqhsfZ6SChYcikzt3Q7hu3TFgawwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzY2MDM3OGZlODY2MjQzNjU5ZWUwMjJhOGM0NGY3YTdlLzAv NjJBODZDN0Q5RTkyMEExNjFDOEE0Q0VEREQwRUUxQkI3NEM1ODFBQy5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy82MkE4NkM3RDlFOTIwQTE2MUM4QTRDRURERDBFRTFC Qjc0QzU4MUFDLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV82NjAz NzhmZTg2NjI0MzY1OWVlMDIyYThjNDRmN2E3ZS8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzNjIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzMzNDM5MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8swDQYJKoZIhvcNAQELBQADggEBANhqQXz8CXtyqQ9t iUZ8oiSgEjHYVoMiy43zGlPtMc3yloOtAgxH/IQyWMI2tMI7gATPmihdfyoWL682 tlpgw5lKy/BdpCIyHwdd1/H8BOWJXj0X81WX0tcCRpkeg07GQewRQz+1ZajqUYVB spiEyUxklUSdX9P97mPSLugFnlNacgSwmir9o1AYl2TMlLrCOHfKtAZXRtiGmCh+ xRWJlkJyc4dE+tQQSD7NC4TfkCVPzbPJbpVyJzSj4ps+FgE24RSR9delKGuPbaBM 9f8SWkW9OWvFOHA0+JnOLYU30pk6wJcDZMGPCDv5E6LInOlVD0P4fX/ej4/laS6G rffePYg= -----END CERTIFICATE-----Generated at Thu Apr 30 15:55:20 2026 by rpki-client