$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/10/326130613a363034303a336638303a3a2f34312d3438203d3e203136353039.roa File: 326130613a363034303a336638303a3a2f34312d3438203d3e203136353039.roa (raw, json) Hash identifier: Wmi4Se034d+qqZcAnERqLlh4fra7054HHLp3mkWO2Ww= Subject key identifier: 37:25:5A:A1:66:8D:6C:2A:3D:07:97:51:36:A8:D2:C3:E1:E5:C2:13 Certificate issuer: /CN=6EF8DF8B74C5D8BB6737EC42CE032AB4B03E0C51 Certificate serial: 385DE330DED506122FC51C3558864CF0A0B577E7 Authority key identifier: 6E:F8:DF:8B:74:C5:D8:BB:67:37:EC:42:CE:03:2A:B4:B0:3E:0C:51 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/6EF8DF8B74C5D8BB6737EC42CE032AB4B03E0C51.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/10/326130613a363034303a336638303a3a2f34312d3438203d3e203136353039.roa Signing time: Sat 05 Jul 2025 08:10:54 +0000 ROA not before: Sat 05 Jul 2025 08:05:54 +0000 ROA not after: Sat 04 Jul 2026 08:10:54 +0000 asID: 16509 IP address blocks: 2a0a:6040:3f80::/41 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/10/6EF8DF8B74C5D8BB6737EC42CE032AB4B03E0C51.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/10/6EF8DF8B74C5D8BB6737EC42CE032AB4B03E0C51.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/6EF8DF8B74C5D8BB6737EC42CE032AB4B03E0C51.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 14:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:5d:e3:30:de:d5:06:12:2f:c5:1c:35:58:86:4c:f0:a0:b5:77:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EF8DF8B74C5D8BB6737EC42CE032AB4B03E0C51 Validity Not Before: Jul 5 08:05:54 2025 GMT Not After : Jul 4 08:10:54 2026 GMT Subject: CN=37255AA1668D6C2A3D07975136A8D2C3E1E5C213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a0:14:a8:0a:8a:ad:d8:0e:60:d7:e7:5c:37: a0:fd:3d:20:6c:02:4b:0c:5c:3d:3f:3b:e8:95:39: 38:bb:78:96:17:fc:52:d0:d5:5b:30:e7:5a:fe:96: f7:f4:b5:b4:42:ca:a7:35:eb:33:95:d8:5f:b2:86: 43:56:cc:53:52:0e:78:bd:ab:7f:10:be:19:68:23: 4e:a2:2d:e7:71:e0:85:93:8f:15:37:d1:9d:f7:b1: ab:e1:0c:e1:36:81:9b:33:79:90:46:ad:b8:79:e7: 9b:f6:e9:14:de:dd:78:55:f0:d2:30:30:d0:79:76: 5a:90:03:ae:a0:0b:de:d9:a9:f7:00:92:b0:5b:f4: f6:0e:35:d2:35:1e:e3:b6:35:60:6e:81:72:13:bc: 61:28:8e:d0:31:e6:5a:c5:3a:85:78:3e:4e:70:21: ec:a3:53:e4:26:aa:87:ce:4d:a0:ef:8b:ee:6a:49: 06:d5:32:3d:a6:fe:88:e1:cd:1a:d3:af:dc:cd:d1: 51:98:32:e5:43:0d:02:95:18:fa:74:71:15:06:3f: 63:65:20:b3:84:50:d2:1a:27:7e:f9:ee:e3:57:6a: af:4f:c2:e2:b6:f9:9b:c7:81:09:27:77:52:cb:c1: 45:f6:26:41:ed:3f:5e:e9:33:c0:28:99:a2:d8:77: a0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:25:5A:A1:66:8D:6C:2A:3D:07:97:51:36:A8:D2:C3:E1:E5:C2:13 X509v3 Authority Key Identifier: keyid:6E:F8:DF:8B:74:C5:D8:BB:67:37:EC:42:CE:03:2A:B4:B0:3E:0C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/10/6EF8DF8B74C5D8BB6737EC42CE032AB4B03E0C51.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/6EF8DF8B74C5D8BB6737EC42CE032AB4B03E0C51.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/10/326130613a363034303a336638303a3a2f34312d3438203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3f80::/41 Signature Algorithm: sha256WithRSAEncryption 40:42:9f:bf:1b:d4:9f:40:c3:21:08:e6:04:d8:01:6d:ab:05: 9d:bd:e3:a4:7b:6c:be:68:ce:8b:f7:fc:7c:80:21:ac:52:5d: 96:d1:85:64:cc:98:e2:be:0b:c2:df:f7:94:de:63:ce:c7:51: c3:b1:81:d5:f9:6d:dd:dd:67:48:74:e2:7e:c8:97:59:35:d4: 51:b9:df:7c:23:4e:ca:24:6e:72:e8:d9:95:ad:54:1f:8e:ac: a4:95:9a:29:e2:b1:4a:d4:76:b6:43:2c:d0:39:71:09:31:08: 7a:c3:b8:8e:2c:57:95:30:4b:99:f1:92:50:97:29:ab:c5:96: 5d:a1:5c:08:0f:6f:90:61:33:30:27:26:2c:10:21:09:b3:01: 91:81:3b:27:fe:18:a0:ae:d6:99:51:21:29:9a:c1:9d:8c:d0: 7a:56:e5:25:86:f4:3e:a0:1e:c5:50:be:25:1e:e2:fe:68:17: 5c:fd:90:d7:48:31:b4:ba:aa:b4:c6:ec:a9:06:7a:9b:f7:d5: 41:53:3b:f8:90:cb:92:eb:6e:a6:6c:3f:f0:18:d3:0a:a1:05: cd:02:a7:8f:fe:1c:5a:9f:79:45:25:6f:c1:19:35:1c:51:1a: b6:16:93:e1:79:b7:f8:2f:d6:bd:61:52:17:58:95:0f:7a:96: 5e:5f:dc:80 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgIUOF3jMN7VBhIvxRw1WIZM8KC1d+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkVGOERGOEI3NEM1RDhCQjY3MzdFQzQyQ0UwMzJBQjRC MDNFMEM1MTAeFw0yNTA3MDUwODA1NTRaFw0yNjA3MDQwODEwNTRaMDMxMTAvBgNV BAMTKDM3MjU1QUExNjY4RDZDMkEzRDA3OTc1MTM2QThEMkMzRTFFNUMyMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdoBSoCoqt2A5g1+dcN6D9PSBs AksMXD0/O+iVOTi7eJYX/FLQ1Vsw51r+lvf0tbRCyqc16zOV2F+yhkNWzFNSDni9 q38QvhloI06iLedx4IWTjxU30Z33savhDOE2gZszeZBGrbh555v26RTe3XhV8NIw MNB5dlqQA66gC97ZqfcAkrBb9PYONdI1HuO2NWBugXITvGEojtAx5lrFOoV4Pk5w IeyjU+QmqofOTaDvi+5qSQbVMj2m/ojhzRrTr9zN0VGYMuVDDQKVGPp0cRUGP2Nl ILOEUNIaJ3757uNXaq9PwuK2+ZvHgQknd1LLwUX2JkHtP17pM8AomaLYd6CnAgMB AAGjggJhMIICXTAdBgNVHQ4EFgQUNyVaoWaNbCo9B5dRNqjSw+HlwhMwHwYDVR0j BBgwFoAUbvjfi3TF2LtnN+xCzgMqtLA+DFEwDgYDVR0PAQH/BAQDAgeAMIGXBgNV HR8EgY8wgYwwgYmggYaggYOGgYByc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzFiZjhlOTc3LTcyNzgtNDZjZi1hYmQxLTk5Y2QxZmQy YmU0ZS8xMC82RUY4REY4Qjc0QzVEOEJCNjczN0VDNDJDRTAzMkFCNEIwM0UwQzUx LmNybDB6BggrBgEFBQcBAQRuMGwwagYIKwYBBQUHMAKGXnJzeW5jOi8vY2xvdWRp ZS1yZXBvLnJwa2kuYXBwL3JlcG8vQ0xPVURJRS1SUEtJLzQvNkVGOERGOEI3NEM1 RDhCQjY3MzdFQzQyQ0UwMzJBQjRCMDNFMEM1MS5jZXIwgbYGCCsGAQUFBwELBIGp MIGmMIGjBggrBgEFBQcwC4aBlnJzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzEwLzMyNjEzMDYxM2EzNjMwMzQzMDNhMzM2NjM4MzAzYTNhMmYzNDMxMmQz NDM4MjAzZDNlMjAzMTM2MzUzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcHKgpgQD+AMA0GCSqGSIb3 DQEBCwUAA4IBAQBAQp+/G9SfQMMhCOYE2AFtqwWdveOke2y+aM6L9/x8gCGsUl2W 0YVkzJjivgvC3/eU3mPOx1HDsYHV+W3d3WdIdOJ+yJdZNdRRud98I07KJG5y6NmV rVQfjqyklZop4rFK1Ha2QyzQOXEJMQh6w7iOLFeVMEuZ8ZJQlymrxZZdoVwID2+Q YTMwJyYsECEJswGRgTsn/higrtaZUSEpmsGdjNB6VuUlhvQ+oB7FUL4lHuL+aBdc /ZDXSDG0uqq0xuypBnqb99VBUzv4kMuS626mbD/wGNMKoQXNAqeP/hxan3lFJW/B GTUcURq2FpPhebf4L9a9YVIXWJUPepZeX9yA -----END CERTIFICATE-----Generated at Tue Jul 22 04:35:23 2025 by rpki-client