$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034333a3a2f34382d3438203d3e20313530383035.roa File: 326130363a396638313a333034333a3a2f34382d3438203d3e20313530383035.roa (raw, json) Hash identifier: JEUv1HH1RuwPJ4VpwTzTSk13rWwUnefmCKZaO/l6gy8= Subject key identifier: D8:B5:9C:19:FC:C2:2D:69:DB:E9:4A:42:FA:2E:88:3E:66:2D:96:15 Certificate issuer: /CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Certificate serial: 10747A666812E28B815B9A1B160F3E28DA293833 Authority key identifier: B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034333a3a2f34382d3438203d3e20313530383035.roa Signing time: Tue 24 Dec 2024 15:11:54 +0000 ROA not before: Tue 24 Dec 2024 15:06:54 +0000 ROA not after: Tue 23 Dec 2025 15:11:54 +0000 asID: 150805 IP address blocks: 2a06:9f81:3043::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 08 Apr 2025 02:09:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:74:7a:66:68:12:e2:8b:81:5b:9a:1b:16:0f:3e:28:da:29:38:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Validity Not Before: Dec 24 15:06:54 2024 GMT Not After : Dec 23 15:11:54 2025 GMT Subject: CN=D8B59C19FCC22D69DBE94A42FA2E883E662D9615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ea:ca:a8:bc:a3:aa:66:83:88:34:2b:a6:ce: db:85:39:ae:2a:ba:cb:14:07:22:01:b3:5a:3e:36: bc:51:c3:f2:bd:f2:59:e3:06:93:f5:fb:0d:de:e7: a6:39:15:e8:10:10:19:59:8a:d6:c3:4f:39:14:9d: 58:cc:1f:8d:35:84:3e:61:7f:dc:39:59:3e:9d:fb: 81:bc:5d:60:e0:81:23:ac:b1:91:49:56:19:94:4a: ce:bb:90:38:fd:15:53:bf:2a:cd:e3:e2:d6:d4:c2: c7:f2:6f:25:da:98:b8:ab:f1:2c:59:16:ee:d9:66: 35:d5:00:5f:0b:08:a9:b3:a4:9e:35:2c:84:2d:c4: 65:f1:ed:33:40:90:d0:b1:13:f6:cc:6b:6c:90:87: 2e:7d:c9:5d:63:a8:c5:ef:af:5a:61:77:86:81:b1: d3:9b:ad:3e:58:60:72:70:bb:5a:6e:df:11:1d:99: c9:d6:38:69:2f:21:a3:37:c7:d5:ab:30:c5:15:f5: f1:2e:b9:39:e2:97:4a:7a:95:bd:10:a4:d4:70:da: 17:74:78:89:cd:7b:28:3f:86:ca:2f:ad:0b:96:c1: a6:60:a1:56:36:45:b9:78:48:af:98:f7:b5:9d:aa: bd:16:dc:f7:2b:f5:64:64:96:47:a9:cd:a1:e5:e2: 6a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B5:9C:19:FC:C2:2D:69:DB:E9:4A:42:FA:2E:88:3E:66:2D:96:15 X509v3 Authority Key Identifier: keyid:B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034333a3a2f34382d3438203d3e20313530383035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3043::/48 Signature Algorithm: sha256WithRSAEncryption 52:3e:27:de:a6:b6:6e:35:09:ec:8c:fe:d8:9b:9f:7c:cc:15: d0:e8:50:87:40:25:f4:22:af:2b:5d:2a:82:2a:76:8d:ff:96: 6a:a9:2c:c1:2f:17:e2:63:3a:35:1e:b9:4d:fc:8e:b5:17:b8: cc:70:ca:23:4d:7e:77:6a:09:94:83:f7:c6:c0:e7:64:5f:e3: 0f:2e:8a:81:b9:e9:30:bf:42:a3:a8:11:71:bc:ce:30:30:6b: 6e:b4:b7:8d:87:bf:f9:0c:ba:ce:e9:fa:eb:98:59:d0:65:24: 4f:b8:43:33:71:51:c5:a2:f4:ed:61:7a:69:a3:1f:60:82:b7: 1d:cb:51:16:b5:4c:1d:4a:2a:f8:0a:13:5c:72:b4:ab:64:10: 03:d5:da:0e:35:71:07:9b:a9:57:4e:a0:7b:86:01:4f:9b:9f: 2b:94:a1:fd:ca:f9:a3:35:6d:19:58:ed:0c:95:7a:67:4d:95: d8:5f:44:e7:21:c1:f5:cd:04:f5:f2:7c:7a:d9:9c:80:20:49: d4:68:21:3b:e8:ed:28:26:9f:0d:a8:0a:aa:0e:d6:2e:4e:10: 94:9d:c4:86:3c:3f:cd:0b:68:41:2d:1e:54:9b:ea:eb:12:57: 54:68:1a:aa:06:4d:a3:17:dc:80:94:04:2e:33:ac:c1:0c:cb: 50:c5:c5:e2 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUEHR6ZmgS4ouBW5obFg8+KNopODMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3 MjY4ODlFQjAeFw0yNDEyMjQxNTA2NTRaFw0yNTEyMjMxNTExNTRaMDMxMTAvBgNV BAMTKEQ4QjU5QzE5RkNDMjJENjlEQkU5NEE0MkZBMkU4ODNFNjYyRDk2MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd6sqovKOqZoOINCumztuFOa4q ussUByIBs1o+NrxRw/K98lnjBpP1+w3e56Y5FegQEBlZitbDTzkUnVjMH401hD5h f9w5WT6d+4G8XWDggSOssZFJVhmUSs67kDj9FVO/Ks3j4tbUwsfybyXamLir8SxZ Fu7ZZjXVAF8LCKmzpJ41LIQtxGXx7TNAkNCxE/bMa2yQhy59yV1jqMXvr1phd4aB sdObrT5YYHJwu1pu3xEdmcnWOGkvIaM3x9WrMMUV9fEuuTnil0p6lb0QpNRw2hd0 eInNeyg/hsovrQuWwaZgoVY2Rbl4SK+Y97Wdqr0W3Pcr9WRklkepzaHl4mozAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU2LWcGfzCLWnb6UpC+i6IPmYtlhUwHwYDVR0j BBgwFoAUt15fNlJDDO+W4eC9Ft2sQHJoieswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzAvQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3MjY4ODlFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0I3NUU1RjM2NTI0MzBD RUY5NkUxRTBCRDE2RERBQzQwNzI2ODg5RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8wLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDM0MzMzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzAzODMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMEMwDQYJKoZIhvcN AQELBQADggEBAFI+J96mtm41CeyM/tibn3zMFdDoUIdAJfQirytdKoIqdo3/lmqp LMEvF+JjOjUeuU38jrUXuMxwyiNNfndqCZSD98bA52Rf4w8uioG56TC/QqOoEXG8 zjAwa260t42Hv/kMus7p+uuYWdBlJE+4QzNxUcWi9O1hemmjH2CCtx3LURa1TB1K KvgKE1xytKtkEAPV2g41cQebqVdOoHuGAU+bnyuUof3K+aM1bRlY7QyVemdNldhf ROchwfXNBPXyfHrZnIAgSdRoITvo7Sgmnw2oCqoO1i5OEJSdxIY8P80LaEEtHlSb 6usSV1RoGqoGTaMX3ICUBC4zrMEMy1DFxeI= -----END CERTIFICATE-----Generated at Mon Apr 7 13:10:58 2025 by rpki-client