$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034343a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333034343a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: PInLC2yhc5OzaH8Db4fZox+x8NRN4iE6VLOgd3TRBNM= Subject key identifier: D1:FC:F1:69:48:57:C4:0C:19:E8:6F:BB:E0:5D:4C:BF:FC:12:F7:36 Certificate issuer: /CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Certificate serial: 12B6D9842B3085050A92CBEEFA7512CCD5A79584 Authority key identifier: B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034343a3a2f34382d3438203d3e20313531333439.roa Signing time: Thu 26 Dec 2024 11:37:19 +0000 ROA not before: Thu 26 Dec 2024 11:32:19 +0000 ROA not after: Thu 25 Dec 2025 11:37:19 +0000 asID: 151349 IP address blocks: 2a06:9f81:3044::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 08 Apr 2025 20:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b6:d9:84:2b:30:85:05:0a:92:cb:ee:fa:75:12:cc:d5:a7:95:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Validity Not Before: Dec 26 11:32:19 2024 GMT Not After : Dec 25 11:37:19 2025 GMT Subject: CN=D1FCF1694857C40C19E86FBBE05D4CBFFC12F736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3f:e5:4b:8d:73:f1:e1:da:15:6a:b8:35:17: 6d:a1:3c:db:82:50:e1:3e:5e:ba:6f:4e:5c:50:d1: e5:fc:b5:9c:21:c7:17:fa:d3:fa:4e:b5:ad:56:af: 1e:0e:17:5b:75:91:24:77:f9:de:75:da:31:f3:bf: 2c:f5:51:c6:d8:f9:44:0e:01:11:c1:71:dc:b0:fe: 29:46:ef:5f:4b:5c:bc:38:98:97:df:da:f8:65:d8: 5d:47:06:e7:16:ff:4b:12:87:de:be:c7:4e:41:fc: f4:56:4e:98:fa:b4:66:b9:de:05:4a:74:b0:d5:f0: cc:cd:1f:02:16:44:bc:22:1f:bd:09:d4:de:55:5a: 82:4b:5e:a1:90:eb:40:9f:1c:bb:16:f8:e1:13:e8: 2a:97:af:a7:5f:95:a7:68:16:6b:5f:21:3f:c4:40: a5:9a:3d:37:64:b9:c1:d7:d6:9c:24:4d:63:4e:ce: 44:2e:7e:d3:d1:97:af:c4:cf:33:5e:b7:c9:a9:fe: eb:e3:04:a7:04:fa:a2:0b:fa:24:0e:b7:31:d3:1b: c1:e8:a0:f9:19:4c:44:41:2d:d8:36:35:02:94:b7: 3d:14:aa:21:4b:15:9f:94:70:6c:2e:1b:e9:d8:f0: 7c:c1:cc:74:10:47:13:8f:1b:4c:81:f3:00:0a:da: 09:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FC:F1:69:48:57:C4:0C:19:E8:6F:BB:E0:5D:4C:BF:FC:12:F7:36 X509v3 Authority Key Identifier: keyid:B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333034343a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3044::/48 Signature Algorithm: sha256WithRSAEncryption 29:6a:9e:6f:9e:95:3c:d7:b1:25:b9:2e:ca:ca:48:4f:ef:06: a2:66:e7:8a:b8:c0:68:f5:a3:77:a4:32:0f:e2:85:2a:b7:86: c6:6c:d5:97:6b:3b:0a:5e:97:32:ec:7f:d7:24:7a:f4:31:6c: e0:32:df:f1:ea:7b:c4:fc:22:8c:bf:fb:90:7c:11:ac:65:71: 43:1d:c5:c7:22:b3:2c:f4:b8:3d:d9:14:0c:37:41:cd:6c:47: 46:5d:2d:f5:d0:e1:26:f8:3c:56:04:b7:84:ad:e3:74:a9:9d: e8:b1:ec:20:69:cb:f8:36:22:90:3e:36:81:40:41:1c:fe:2f: 9a:d7:69:88:1f:71:d2:51:e3:4c:ff:a9:12:8e:c9:83:02:2e: ce:dd:da:f8:05:f3:22:46:27:79:ec:34:0c:34:23:26:06:3c: a5:f3:90:fc:ea:b0:ed:7e:41:a2:f3:76:bd:64:de:f1:7e:ab: 2b:0f:9d:f6:12:0a:9d:d3:f7:2e:cf:84:c6:22:17:88:52:c1: 09:88:5c:c3:b6:52:e7:19:dc:cf:bd:19:f1:b0:52:42:2d:ef: 70:cb:2b:ca:eb:e9:d5:7f:f0:54:8a:74:22:46:30:36:4a:d8: 24:81:5c:28:45:36:04:c4:b3:52:6a:90:f1:29:23:a4:20:47: 67:29:a6:9e -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUErbZhCswhQUKksvu+nUSzNWnlYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3 MjY4ODlFQjAeFw0yNDEyMjYxMTMyMTlaFw0yNTEyMjUxMTM3MTlaMDMxMTAvBgNV BAMTKEQxRkNGMTY5NDg1N0M0MEMxOUU4NkZCQkUwNUQ0Q0JGRkMxMkY3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXP+VLjXPx4doVarg1F22hPNuC UOE+XrpvTlxQ0eX8tZwhxxf60/pOta1Wrx4OF1t1kSR3+d512jHzvyz1UcbY+UQO ARHBcdyw/ilG719LXLw4mJff2vhl2F1HBucW/0sSh96+x05B/PRWTpj6tGa53gVK dLDV8MzNHwIWRLwiH70J1N5VWoJLXqGQ60CfHLsW+OET6CqXr6dfladoFmtfIT/E QKWaPTdkucHX1pwkTWNOzkQuftPRl6/EzzNet8mp/uvjBKcE+qIL+iQOtzHTG8Ho oPkZTERBLdg2NQKUtz0UqiFLFZ+UcGwuG+nY8HzBzHQQRxOPG0yB8wAK2gllAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU0fzxaUhXxAwZ6G+74F1Mv/wS9zYwHwYDVR0j BBgwFoAUt15fNlJDDO+W4eC9Ft2sQHJoieswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzAvQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3MjY4ODlFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0I3NUU1RjM2NTI0MzBD RUY5NkUxRTBCRDE2RERBQzQwNzI2ODg5RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8wLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDM0MzQzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMEQwDQYJKoZIhvcN AQELBQADggEBAClqnm+elTzXsSW5LsrKSE/vBqJm54q4wGj1o3ekMg/ihSq3hsZs 1ZdrOwpelzLsf9ckevQxbOAy3/Hqe8T8Ioy/+5B8EaxlcUMdxccisyz0uD3ZFAw3 Qc1sR0ZdLfXQ4Sb4PFYEt4St43Spneix7CBpy/g2IpA+NoFAQRz+L5rXaYgfcdJR 40z/qRKOyYMCLs7d2vgF8yJGJ3nsNAw0IyYGPKXzkPzqsO1+QaLzdr1k3vF+qysP nfYSCp3T9y7PhMYiF4hSwQmIXMO2UucZ3M+9GfGwUkIt73DLK8rr6dV/8FSKdCJG MDZK2CSBXChFNgTEs1JqkPEpI6QgR2cppp4= -----END CERTIFICATE-----Generated at Tue Apr 8 09:47:08 2025 by rpki-client