$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/4/326130613a363034303a633230303a3a2f34382d3438203d3e20313532333638.roa File: 326130613a363034303a633230303a3a2f34382d3438203d3e20313532333638.roa (raw, json) Hash identifier: wxDJH4ENQUNyQpIi/xWRti5QA0HXMlYu5nsSdi9A/zg= Subject key identifier: 02:8C:CA:2F:47:47:15:B9:52:8A:9B:F1:EF:07:87:81:26:C5:AC:E2 Certificate issuer: /CN=B126634521E5E49C535FCBEC43BA2D922C30E136 Certificate serial: 4B4481FB6028C7CBF7664A11727FB220A84595B8 Authority key identifier: B1:26:63:45:21:E5:E4:9C:53:5F:CB:EC:43:BA:2D:92:2C:30:E1:36 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B126634521E5E49C535FCBEC43BA2D922C30E136.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/4/326130613a363034303a633230303a3a2f34382d3438203d3e20313532333638.roa Signing time: Fri 04 Apr 2025 12:11:46 +0000 ROA not before: Fri 04 Apr 2025 12:06:46 +0000 ROA not after: Fri 03 Apr 2026 12:11:46 +0000 asID: 152368 IP address blocks: 2a0a:6040:c200::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/4/B126634521E5E49C535FCBEC43BA2D922C30E136.crl rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/4/B126634521E5E49C535FCBEC43BA2D922C30E136.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B126634521E5E49C535FCBEC43BA2D922C30E136.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 09:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:44:81:fb:60:28:c7:cb:f7:66:4a:11:72:7f:b2:20:a8:45:95:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B126634521E5E49C535FCBEC43BA2D922C30E136 Validity Not Before: Apr 4 12:06:46 2025 GMT Not After : Apr 3 12:11:46 2026 GMT Subject: CN=028CCA2F474715B9528A9BF1EF07878126C5ACE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:10:df:27:3b:01:f8:c6:ea:98:46:28:ff: 4d:69:23:5a:21:ae:5f:86:90:05:bf:f6:9d:ff:42: 32:47:19:8a:46:a4:da:b2:25:e6:92:bb:ca:1b:90: ed:c1:47:b8:63:6c:8a:77:e5:1f:34:03:70:91:69: 01:dc:b7:cd:d7:ef:71:31:15:c7:e0:19:41:17:7f: 60:6e:ca:6a:11:32:2a:6c:f4:7d:ed:5b:b6:01:b5: 9e:86:3d:34:2b:fd:be:17:0c:5c:07:e8:15:1f:a0: 4b:38:5e:c3:76:ea:d5:e4:44:49:2c:bc:5a:ca:a8: df:78:62:f9:8e:5d:1b:99:99:b7:c0:cd:05:ba:f2: a3:6a:39:23:e0:ce:f8:8b:13:70:91:ff:db:64:02: 19:46:ae:0f:fa:83:b0:40:57:db:17:d6:1a:a6:c5: 9a:1d:45:31:1f:c8:f8:4f:18:b9:7b:f3:c5:ee:ae: 7c:24:9a:1f:23:a1:d9:59:44:cf:67:32:66:3b:e2: e6:33:2c:42:85:c8:79:2c:f3:96:43:8f:21:f2:f0: b7:7b:79:45:08:03:22:05:ee:5e:cb:3e:5a:d7:fb: 23:94:34:30:5b:56:13:4c:b0:b6:74:37:c9:e2:7e: 7a:fe:67:c0:21:c3:d1:a5:d5:0e:a1:48:c5:5a:81: 43:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8C:CA:2F:47:47:15:B9:52:8A:9B:F1:EF:07:87:81:26:C5:AC:E2 X509v3 Authority Key Identifier: keyid:B1:26:63:45:21:E5:E4:9C:53:5F:CB:EC:43:BA:2D:92:2C:30:E1:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/4/B126634521E5E49C535FCBEC43BA2D922C30E136.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B126634521E5E49C535FCBEC43BA2D922C30E136.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/4/326130613a363034303a633230303a3a2f34382d3438203d3e20313532333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c200::/48 Signature Algorithm: sha256WithRSAEncryption 6c:b2:c6:6a:23:48:39:ea:5b:ab:28:2c:29:8b:b9:69:6b:64: e6:89:93:cd:c3:78:38:5d:a5:76:54:65:8e:ca:37:b1:09:ff: ef:0e:b3:15:58:ce:93:a3:0b:ee:e5:26:d2:5e:e7:67:76:6e: bb:a3:91:7e:1a:a0:b5:05:e1:e4:a2:a8:21:6e:98:2a:26:ec: 02:e7:ad:a0:29:2d:08:29:0a:91:17:35:5c:0d:63:40:53:07: 32:fb:74:27:8b:68:ec:94:70:aa:ec:b2:be:de:8d:bb:f0:47: 39:f8:d7:f3:3c:5f:5a:d4:06:97:fb:4e:67:73:c0:ba:1f:52: 35:8c:ec:a4:80:2c:c3:84:7c:f9:49:bb:ea:6c:0f:b9:ad:27: cd:cb:a6:af:9c:bf:7f:13:ce:0c:14:2c:12:e5:76:3e:08:7a: f7:a2:da:13:da:4e:3a:86:5f:db:52:b0:22:39:e0:77:a7:00: 10:8d:6b:8f:7c:b5:a6:99:86:c8:b2:f9:86:95:92:4e:91:c2: 9f:48:89:8a:d1:bc:c0:75:61:57:80:2b:d8:af:42:86:cd:b1: c7:e7:3b:7f:68:2d:a2:d0:02:3d:53:52:ad:7f:b8:09:76:18: 0e:af:24:97:da:5c:7d:05:17:29:2f:47:b3:d8:cf:2a:a3:2f: 78:d4:55:d6 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUS0SB+2Aox8v3ZkoRcn+yIKhFlbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjEyNjYzNDUyMUU1RTQ5QzUzNUZDQkVDNDNCQTJEOTIy QzMwRTEzNjAeFw0yNTA0MDQxMjA2NDZaFw0yNjA0MDMxMjExNDZaMDMxMTAvBgNV BAMTKDAyOENDQTJGNDc0NzE1Qjk1MjhBOUJGMUVGMDc4NzgxMjZDNUFDRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtRxDfJzsB+MbqmEYo/01pI1oh rl+GkAW/9p3/QjJHGYpGpNqyJeaSu8obkO3BR7hjbIp35R80A3CRaQHct83X73Ex FcfgGUEXf2BuymoRMips9H3tW7YBtZ6GPTQr/b4XDFwH6BUfoEs4XsN26tXkREks vFrKqN94YvmOXRuZmbfAzQW68qNqOSPgzviLE3CR/9tkAhlGrg/6g7BAV9sX1hqm xZodRTEfyPhPGLl788Xurnwkmh8jodlZRM9nMmY74uYzLEKFyHks85ZDjyHy8Ld7 eUUIAyIF7l7LPlrX+yOUNDBbVhNMsLZ0N8nifnr+Z8Ahw9Gl1Q6hSMVagUNhAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUAozKL0dHFblSipvx7weHgSbFrOIwHwYDVR0j BBgwFoAUsSZjRSHl5JxTX8vsQ7otkiww4TYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQtZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVk OGM0LzQvQjEyNjYzNDUyMUU1RTQ5QzUzNUZDQkVDNDNCQTJEOTIyQzMwRTEzNi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0IxMjY2MzQ1MjFFNUU0 OUM1MzVGQ0JFQzQzQkEyRDkyMkMzMEUxMzYuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzFiZDMwNmI0LWU1YzMtNDhmOS1iMmVlLTM2YTliZGRlZDhj NC80LzMyNjEzMDYxM2EzNjMwMzQzMDNhNjMzMjMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzIzMzM2Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAwgAwDQYJKoZIhvcN AQELBQADggEBAGyyxmojSDnqW6soLCmLuWlrZOaJk83DeDhdpXZUZY7KN7EJ/+8O sxVYzpOjC+7lJtJe52d2brujkX4aoLUF4eSiqCFumCom7ALnraApLQgpCpEXNVwN Y0BTBzL7dCeLaOyUcKrssr7ejbvwRzn41/M8X1rUBpf7TmdzwLofUjWM7KSALMOE fPlJu+psD7mtJ83Lpq+cv38TzgwULBLldj4Ievei2hPaTjqGX9tSsCI54HenABCN a498taaZhsiy+YaVkk6Rwp9IiYrRvMB1YVeAK9ivQobNscfnO39oLaLQAj1TUq1/ uAl2GA6vJJfaXH0FFykvR7PYzyqjL3jUVdY= -----END CERTIFICATE-----Generated at Sun Apr 6 00:50:22 2025 by rpki-client