$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/326130613a363034303a613130383a3a2f34382d3438203d3e20323033383433.roa File: 326130613a363034303a613130383a3a2f34382d3438203d3e20323033383433.roa (raw, json) Hash identifier: nYmPrk/p3XSTF2XANQcl/CgW4KrSzA7liFnUdw6bGF8= Subject key identifier: CE:D7:F0:02:0B:5A:9B:ED:F1:5F:07:9E:B6:E5:C0:6B:D1:20:04:38 Certificate issuer: /CN=13DDCFA128DC141F076EB7B60F46359286489D55 Certificate serial: 299A791D444EF5F0B5F28D15FE90B56168D2F178 Authority key identifier: 13:DD:CF:A1:28:DC:14:1F:07:6E:B7:B6:0F:46:35:92:86:48:9D:55 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/13DDCFA128DC141F076EB7B60F46359286489D55.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/326130613a363034303a613130383a3a2f34382d3438203d3e20323033383433.roa Signing time: Sun 19 Jan 2025 13:10:55 +0000 ROA not before: Sun 19 Jan 2025 13:05:55 +0000 ROA not after: Sun 18 Jan 2026 13:10:55 +0000 asID: 203843 IP address blocks: 2a0a:6040:a108::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/13DDCFA128DC141F076EB7B60F46359286489D55.crl rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/13DDCFA128DC141F076EB7B60F46359286489D55.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/13DDCFA128DC141F076EB7B60F46359286489D55.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 20 Feb 2025 04:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:9a:79:1d:44:4e:f5:f0:b5:f2:8d:15:fe:90:b5:61:68:d2:f1:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=13DDCFA128DC141F076EB7B60F46359286489D55 Validity Not Before: Jan 19 13:05:55 2025 GMT Not After : Jan 18 13:10:55 2026 GMT Subject: CN=CED7F0020B5A9BEDF15F079EB6E5C06BD1200438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:05:f2:49:8c:56:c3:4c:25:2a:11:2a:ec:3c: c7:c6:24:40:ea:d8:b2:88:70:86:be:2d:f7:a4:11: 07:52:42:88:03:9f:ba:b2:44:16:56:38:75:63:b7: 2e:5a:5b:72:7c:f9:d0:b6:9d:32:8e:bf:58:3a:22: 7c:c2:4a:5d:99:77:0a:02:93:bd:39:17:6e:91:e7: 00:d3:3a:fb:44:7d:4c:79:fd:79:7e:ee:bd:20:ba: 76:b8:fb:32:ed:73:50:75:4c:6c:ea:ca:aa:b6:04: 69:46:1b:68:32:92:9a:5f:8b:db:20:98:79:83:57: f5:58:c4:c0:91:18:7e:fb:46:c9:19:cd:90:50:38: 47:fa:bc:3b:ef:00:9c:af:fb:81:26:84:2e:e2:af: 4c:31:97:83:cb:46:38:8b:3f:bf:91:29:41:78:a7: 3b:dc:76:6d:d9:ff:96:55:92:51:5f:67:16:1c:0f: ac:f8:a7:0e:13:b7:3e:f7:0c:c1:79:6c:f7:5d:60: 98:eb:36:18:c6:04:46:50:ba:c3:c1:4d:12:7c:c0: 84:7c:7b:06:da:9b:8f:2e:a7:ec:c2:ce:5c:73:b3: 0a:74:4c:08:e7:fd:88:d9:1a:ee:78:f3:67:a6:66: 95:8c:c1:fe:f4:71:0c:6d:65:ed:02:3f:e4:b1:1a: f7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:D7:F0:02:0B:5A:9B:ED:F1:5F:07:9E:B6:E5:C0:6B:D1:20:04:38 X509v3 Authority Key Identifier: keyid:13:DD:CF:A1:28:DC:14:1F:07:6E:B7:B6:0F:46:35:92:86:48:9D:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/13DDCFA128DC141F076EB7B60F46359286489D55.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/13DDCFA128DC141F076EB7B60F46359286489D55.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/2/326130613a363034303a613130383a3a2f34382d3438203d3e20323033383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a108::/48 Signature Algorithm: sha256WithRSAEncryption bf:55:41:0d:28:cc:98:c2:b1:64:cd:50:82:37:11:ef:24:5e: c4:88:f0:5e:bf:bf:5c:ef:64:50:8c:a0:fa:31:6b:6c:be:45: 08:1b:f1:4d:89:9a:71:fe:77:15:b5:a2:df:4c:d5:37:e1:17: 5d:4d:a5:8c:36:27:be:b0:63:da:92:e2:fb:ad:00:10:7b:66: cd:4a:37:77:60:df:72:46:da:77:c0:46:80:01:44:9d:dd:d4: 56:9a:71:98:31:e7:76:d9:73:cf:7b:24:7b:e8:15:72:95:ad: 15:20:ca:e1:97:ab:2f:39:bd:d4:9d:5f:b4:82:14:89:ad:5f: 1b:20:a4:9d:87:11:bc:55:12:82:9e:a1:da:7a:fc:85:88:e9: 19:cf:09:a0:49:ca:35:05:69:7d:bb:44:3e:fb:61:e3:eb:56: 8a:fb:e3:cf:14:77:49:a0:ed:b9:4e:fb:17:ed:1b:6d:e1:ff: 63:f6:4d:c9:93:98:fe:89:58:5d:91:11:df:a2:27:82:85:f1: 47:bd:99:22:a9:e1:3e:84:64:29:07:36:67:01:23:b8:c3:28: 02:f6:2b:27:39:ee:b0:8d:10:5f:45:da:41:f4:18:f0:8d:d7: 30:bc:70:89:46:dc:e9:4a:fe:1d:72:ff:60:3e:04:13:3d:21: 24:2d:47:36 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUKZp5HURO9fC18o0V/pC1YWjS8XgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTNERENGQTEyOERDMTQxRjA3NkVCN0I2MEY0NjM1OTI4 NjQ4OUQ1NTAeFw0yNTAxMTkxMzA1NTVaFw0yNjAxMTgxMzEwNTVaMDMxMTAvBgNV BAMTKENFRDdGMDAyMEI1QTlCRURGMTVGMDc5RUI2RTVDMDZCRDEyMDA0MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChBfJJjFbDTCUqESrsPMfGJEDq 2LKIcIa+LfekEQdSQogDn7qyRBZWOHVjty5aW3J8+dC2nTKOv1g6InzCSl2ZdwoC k705F26R5wDTOvtEfUx5/Xl+7r0guna4+zLtc1B1TGzqyqq2BGlGG2gykppfi9sg mHmDV/VYxMCRGH77RskZzZBQOEf6vDvvAJyv+4EmhC7ir0wxl4PLRjiLP7+RKUF4 pzvcdm3Z/5ZVklFfZxYcD6z4pw4Ttz73DMF5bPddYJjrNhjGBEZQusPBTRJ8wIR8 ewbam48up+zCzlxzswp0TAjn/YjZGu5482emZpWMwf70cQxtZe0CP+SxGvehAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUztfwAgtam+3xXweetuXAa9EgBDgwHwYDVR0j BBgwFoAUE93PoSjcFB8Hbre2D0Y1koZInVUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTNmNjg1NjEtMGE3NC00Y2NhLWJmOGYtMTJmYWFhZmM4 ZWI4LzIvMTNERENGQTEyOERDMTQxRjA3NkVCN0I2MEY0NjM1OTI4NjQ4OUQ1NS5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzEzRERDRkExMjhEQzE0 MUYwNzZFQjdCNjBGNDYzNTkyODY0ODlENTUuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzEzZjY4NTYxLTBhNzQtNGNjYS1iZjhmLTEyZmFhYWZjOGVi OC8yLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjEzMTMwMzgzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMwMzMzODM0MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAoQgwDQYJKoZIhvcN AQELBQADggEBAL9VQQ0ozJjCsWTNUII3Ee8kXsSI8F6/v1zvZFCMoPoxa2y+RQgb 8U2JmnH+dxW1ot9M1TfhF11NpYw2J76wY9qS4vutABB7Zs1KN3dg33JG2nfARoAB RJ3d1FaacZgx53bZc897JHvoFXKVrRUgyuGXqy85vdSdX7SCFImtXxsgpJ2HEbxV EoKeodp6/IWI6RnPCaBJyjUFaX27RD77YePrVor7488Ud0mg7blO+xftG23h/2P2 TcmTmP6JWF2REd+iJ4KF8Ue9mSKp4T6EZCkHNmcBI7jDKAL2Kyc57rCNEF9F2kH0 GPCN1zC8cIlG3OlK/h1y/2A+BBM9ISQtRzY= -----END CERTIFICATE-----Generated at Wed Feb 19 20:38:12 2025 by rpki-client