$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/3/326130353a646663313a313030303a3a2f34302d3430203d3e203534323138.roa File: 326130353a646663313a313030303a3a2f34302d3430203d3e203534323138.roa (raw, json) Hash identifier: zn3YgmszpwFBQFF2wpXLZQr7p0GB3DPVOn4R6Btb2mg= Subject key identifier: F5:FF:8E:9C:BE:EE:4F:97:8E:DE:FA:C9:53:2D:A7:2F:D6:A7:90:09 Certificate issuer: /CN=F77F4B82C60F0B0171F0976CDCFADB441829DC83 Certificate serial: 2628B8FBBA7991E1C981ADC3EC6EFA62B3561F97 Authority key identifier: F7:7F:4B:82:C6:0F:0B:01:71:F0:97:6C:DC:FA:DB:44:18:29:DC:83 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F77F4B82C60F0B0171F0976CDCFADB441829DC83.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/3/326130353a646663313a313030303a3a2f34302d3430203d3e203534323138.roa Signing time: Tue 25 Feb 2025 21:14:19 +0000 ROA not before: Tue 25 Feb 2025 21:09:19 +0000 ROA not after: Tue 24 Feb 2026 21:14:19 +0000 asID: 54218 IP address blocks: 2a05:dfc1:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/3/F77F4B82C60F0B0171F0976CDCFADB441829DC83.crl rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/3/F77F4B82C60F0B0171F0976CDCFADB441829DC83.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F77F4B82C60F0B0171F0976CDCFADB441829DC83.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:28:b8:fb:ba:79:91:e1:c9:81:ad:c3:ec:6e:fa:62:b3:56:1f:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F77F4B82C60F0B0171F0976CDCFADB441829DC83 Validity Not Before: Feb 25 21:09:19 2025 GMT Not After : Feb 24 21:14:19 2026 GMT Subject: CN=F5FF8E9CBEEE4F978EDEFAC9532DA72FD6A79009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:75:8e:8f:12:dc:48:d7:9c:58:e3:e6:74:7a: ce:d9:a6:0a:aa:6f:c9:6f:25:48:0d:44:61:62:49: 1f:1a:9b:11:c5:44:05:28:de:79:35:6d:84:dd:b3: 0e:24:26:bf:9e:3b:18:a7:2e:86:87:a4:13:65:e7: 38:be:f5:94:4c:b3:83:19:97:77:28:e2:69:45:8e: 4a:a3:d5:33:be:ba:42:ee:ea:10:43:cf:f8:90:68: cc:f0:9c:ea:09:2b:0a:eb:0c:ff:bb:98:9a:ff:f1: 25:c3:c4:81:f9:93:00:cb:51:80:4b:c5:77:e4:80: 69:a5:92:d2:2e:f3:28:81:51:f2:34:2d:d2:7d:20: 90:b7:e3:d7:56:88:e5:40:b2:e5:82:3f:a0:f9:16: f1:45:8b:d8:05:fd:2f:17:29:07:30:53:1e:a5:18: 9c:0b:e1:77:87:af:3b:3a:12:8e:1a:33:f2:7e:48: b6:d4:7c:53:b2:8e:bf:67:11:86:4c:c3:c6:05:6e: 12:99:13:cb:02:46:06:83:78:71:b6:d1:a0:dd:bf: 0f:2d:f1:ec:5c:c3:fa:79:56:71:b7:b3:33:56:a6: f8:ae:50:07:9b:1a:7f:7f:2f:48:27:25:eb:3c:a1: b4:a5:d3:ab:22:50:77:9e:5f:6a:89:a9:6a:55:01: f3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:FF:8E:9C:BE:EE:4F:97:8E:DE:FA:C9:53:2D:A7:2F:D6:A7:90:09 X509v3 Authority Key Identifier: keyid:F7:7F:4B:82:C6:0F:0B:01:71:F0:97:6C:DC:FA:DB:44:18:29:DC:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/3/F77F4B82C60F0B0171F0976CDCFADB441829DC83.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F77F4B82C60F0B0171F0976CDCFADB441829DC83.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/3/326130353a646663313a313030303a3a2f34302d3430203d3e203534323138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1000::/40 Signature Algorithm: sha256WithRSAEncryption 12:b5:f5:a9:5f:5a:2a:ef:25:98:6b:57:57:06:a9:d4:ff:7b: 30:be:6b:0b:1d:5f:2d:65:96:a0:b4:06:ae:70:35:66:f0:c6: e9:15:01:17:06:d2:2b:a5:f3:cc:76:19:ff:de:87:ad:5e:cf: 69:2e:35:32:db:64:da:81:35:b5:1e:3e:96:da:3b:18:c1:c9: 33:21:c6:07:24:bd:50:a2:e7:32:2c:12:b7:54:12:15:b7:fc: 35:60:76:26:30:47:48:78:59:76:4d:3d:a0:05:3c:a7:f4:0e: e1:6f:3b:7c:26:ec:ba:4e:5f:b8:3f:91:2c:6c:51:fa:5e:92: 02:82:99:e5:7d:7b:9b:f3:50:73:c0:b6:0e:85:aa:94:7d:64: c4:cb:78:a8:3c:60:53:91:5c:30:f7:21:f9:5d:dc:e6:ee:30: a6:e8:89:65:f3:a3:fb:63:8b:e2:39:ad:06:65:a7:c2:db:a5: 43:15:b6:cb:e0:6b:c2:be:27:34:f9:f6:4d:53:ce:8f:61:b7: d7:9c:c1:a2:0e:c4:b6:6e:75:33:43:22:22:86:7e:c6:a9:94: 85:a2:af:bc:a5:9c:95:a5:f7:da:2c:39:ae:a4:f9:cd:b8:1d: fd:6f:10:af:ee:a8:6c:2b:6a:55:d5:30:69:a2:1e:d7:61:ab: 3b:8f:ba:a0 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIUJii4+7p5keHJga3D7G76YrNWH5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjc3RjRCODJDNjBGMEIwMTcxRjA5NzZDRENGQURCNDQx ODI5REM4MzAeFw0yNTAyMjUyMTA5MTlaFw0yNjAyMjQyMTE0MTlaMDMxMTAvBgNV BAMTKEY1RkY4RTlDQkVFRTRGOTc4RURFRkFDOTUzMkRBNzJGRDZBNzkwMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7dY6PEtxI15xY4+Z0es7Zpgqq b8lvJUgNRGFiSR8amxHFRAUo3nk1bYTdsw4kJr+eOxinLoaHpBNl5zi+9ZRMs4MZ l3co4mlFjkqj1TO+ukLu6hBDz/iQaMzwnOoJKwrrDP+7mJr/8SXDxIH5kwDLUYBL xXfkgGmlktIu8yiBUfI0LdJ9IJC349dWiOVAsuWCP6D5FvFFi9gF/S8XKQcwUx6l GJwL4XeHrzs6Eo4aM/J+SLbUfFOyjr9nEYZMw8YFbhKZE8sCRgaDeHG20aDdvw8t 8excw/p5VnG3szNWpviuUAebGn9/L0gnJes8obSl06siUHeeX2qJqWpVAfMRAgMB AAGjggJCMIICPjAdBgNVHQ4EFgQU9f+OnL7uT5eO3vrJUy2nL9ankAkwHwYDVR0j BBgwFoAU939LgsYPCwFx8Jds3PrbRBgp3IMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGU4OGUzOWJmYTAxODkwYzlmZWVjMTI0OWUvMy9GNzdGNEI4MkM2 MEYwQjAxNzFGMDk3NkNEQ0ZBREI0NDE4MjlEQzgzLmNybDB6BggrBgEFBQcBAQRu MGwwagYIKwYBBQUHMAKGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3Jl cG8vQ0xPVURJRS1SUEtJLzAvRjc3RjRCODJDNjBGMEIwMTcxRjA5NzZDRENGQURC NDQxODI5REM4My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aB inJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTg4 ZTM5YmZhMDE4OTBjOWZlZWMxMjQ5ZS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzEz MDMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzNTM0MzIzMTM4LnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAI AwYAKgXfwRAwDQYJKoZIhvcNAQELBQADggEBABK19alfWirvJZhrV1cGqdT/ezC+ awsdXy1llqC0Bq5wNWbwxukVARcG0iul88x2Gf/eh61ez2kuNTLbZNqBNbUePpba OxjByTMhxgckvVCi5zIsErdUEhW3/DVgdiYwR0h4WXZNPaAFPKf0DuFvO3wm7LpO X7g/kSxsUfpekgKCmeV9e5vzUHPAtg6FqpR9ZMTLeKg8YFORXDD3Ifld3ObuMKbo iWXzo/tji+I5rQZlp8LbpUMVtsvga8K+JzT59k1Tzo9ht9ecwaIOxLZudTNDIiKG fsaplIWir7ylnJWl99osOa6k+c24Hf1vEK/uqGwralXVMGmiHtdhqzuPuqA= -----END CERTIFICATE-----Generated at Thu Apr 3 07:11:05 2025 by rpki-client